This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/GDoBWX1Zlup6n9R7-4KowHMAH2c.roa File: GDoBWX1Zlup6n9R7-4KowHMAH2c.roa (raw, json) Hash identifier: zITFjtSHZtBX6uRd3C9BycIhrxB4/nE70BUhqc7LIiw= Subject key identifier: 18:3A:01:59:7D:59:96:EA:7A:9F:D4:7B:FB:82:A8:C0:73:00:1F:67 Certificate issuer: /CN=427df95ee10a2ad4eaf082dfac159838b37d3450 Certificate serial: 019B7D5B147E838EADBA5E900160A4940CE6 Authority key identifier: 42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/GDoBWX1Zlup6n9R7-4KowHMAH2c.roa Signing time: Fri 02 Jan 2026 06:17:59 +0000 ROA not before: Fri 02 Jan 2026 06:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59635 IP address blocks: 91.247.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:14:7e:83:8e:ad:ba:5e:90:01:60:a4:94:0c:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=427df95ee10a2ad4eaf082dfac159838b37d3450 Validity Not Before: Jan 2 06:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=183a01597d5996ea7a9fd47bfb82a8c073001f67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:75:5a:f8:09:1f:b8:a9:08:1d:f4:67:fc:84: 29:e8:c3:91:38:ac:51:89:32:e3:9e:48:ff:e0:7c: 45:98:1a:c4:9f:74:bc:0c:d6:f7:86:90:a1:5e:b0: 5a:e6:fe:84:1f:ac:12:c5:7e:fb:e4:fd:b7:6d:07: 0e:83:84:76:92:63:d3:25:1d:28:74:36:cf:9a:4d: 18:63:16:7f:70:c4:ec:75:b1:bc:99:70:8a:56:eb: 58:c6:b2:6f:f0:41:22:86:2c:3b:9d:c9:c2:50:90: 46:7d:e2:78:b5:1b:42:a7:51:c6:d8:07:6e:84:c7: 0f:3e:55:5d:4c:2c:cd:62:b0:49:96:7e:13:bc:89: e7:36:b0:30:09:52:4a:1f:53:02:01:00:66:f6:21: 1f:d1:a4:0f:e2:ec:e1:01:49:e6:9d:00:81:da:f1: 94:10:5e:5a:68:64:38:54:ef:b1:a6:f5:a5:36:95: bc:fb:34:d5:8c:4d:48:0a:22:55:77:d5:2d:d7:16: ee:c5:d4:27:64:43:db:52:f4:26:ee:6b:3f:ff:50: 0c:4d:4a:47:28:71:e4:0b:f1:91:b4:b8:e1:65:47: e7:f5:a1:1f:37:da:31:e9:14:14:3f:a1:b5:ef:4f: 0b:dc:38:e4:c8:63:80:49:5e:54:a0:24:9b:1b:2a: ea:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3A:01:59:7D:59:96:EA:7A:9F:D4:7B:FB:82:A8:C0:73:00:1F:67 X509v3 Authority Key Identifier: keyid:42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/GDoBWX1Zlup6n9R7-4KowHMAH2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.247.66.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:ce:15:f5:b0:40:3c:71:3a:97:fc:cc:b1:38:5c:82:99:11: 26:95:14:30:71:94:7d:98:0e:6f:0c:08:d5:cf:ee:22:e0:de: 70:c0:ca:a1:97:51:11:f5:8e:4f:89:6d:85:da:51:86:c8:34: 48:e9:70:34:97:c3:80:f5:c4:be:59:80:3c:64:d2:2e:0f:a5: 18:f2:de:70:42:1a:7c:94:20:90:f6:b1:ce:ac:32:69:2f:b1: fb:e4:a5:94:10:52:2d:1d:91:c6:a8:5c:ae:6d:ee:fe:13:63: 06:87:4d:10:46:7c:63:7f:fe:79:43:01:ee:72:e5:14:2e:35: 17:38:8a:12:cb:ee:49:d4:97:f0:1f:a3:2f:55:fe:b3:36:21: 95:86:c3:50:2f:7f:34:e7:2c:41:46:53:5f:07:7c:ff:d2:30: 48:e9:e3:fc:14:f0:40:4a:b5:af:c1:4b:9e:0e:af:3f:a1:f1: 8a:91:93:46:17:35:08:b2:f1:34:48:91:32:d5:98:ee:d2:1f: 45:58:50:51:61:48:f6:63:1a:37:7b:a7:a8:50:ef:36:35:8e: f4:fd:f6:a7:6d:e0:8e:82:a8:05:42:21:9b:81:11:5b:11:18: cf:76:a7:8c:7f:6e:a1:85:72:f5:67:fa:90:a1:75:02:5c:31: 92:b0:89:27 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9WxR+g46tul6QAWCklAzmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyN2RmOTVlZTEwYTJhZDRlYWYwODJkZmFjMTU5ODM4YjM3 ZDM0NTAwHhcNMjYwMTAyMDYxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODNhMDE1OTdkNTk5NmVhN2E5ZmQ0N2JmYjgyYThjMDczMDAxZjY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXVa+AkfuKkIHfRn/IQp6MOROKxR iTLjnkj/4HxFmBrEn3S8DNb3hpChXrBa5v6EH6wSxX775P23bQcOg4R2kmPTJR0o dDbPmk0YYxZ/cMTsdbG8mXCKVutYxrJv8EEihiw7ncnCUJBGfeJ4tRtCp1HG2Adu hMcPPlVdTCzNYrBJln4TvInnNrAwCVJKH1MCAQBm9iEf0aQP4uzhAUnmnQCB2vGU EF5aaGQ4VO+xpvWlNpW8+zTVjE1ICiJVd9Ut1xbuxdQnZEPbUvQm7ms//1AMTUpH KHHkC/GRtLjhZUfn9aEfN9ox6RQUP6G1708L3DjkyGOASV5UoCSbGyrqbQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBg6AVl9WZbqep/Ue/uCqMBzAB9nMB8GA1UdIwQY MBaAFEJ9+V7hCirU6vCC36wVmDizfTRQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUt Nzk0M2Q5YTc5YmQyLzEvR0RvQldYMVpsdXA2bjlSNy00S293SE1BSDJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUtNzk0M2Q5YTc5YmQy LzEvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW/dCMA0G CSqGSIb3DQEBCwUAA4IBAQAszhX1sEA8cTqX/MyxOFyCmREmlRQwcZR9mA5vDAjV z+4i4N5wwMqhl1ER9Y5PiW2F2lGGyDRI6XA0l8OA9cS+WYA8ZNIuD6UY8t5wQhp8 lCCQ9rHOrDJpL7H75KWUEFItHZHGqFyube7+E2MGh00QRnxjf/55QwHucuUULjUX OIoSy+5J1JfwH6MvVf6zNiGVhsNQL3805yxBRlNfB3z/0jBI6eP8FPBASrWvwUue Dq8/ofGKkZNGFzUIsvE0SJEy1Zju0h9FWFBRYUj2Yxo3e6eoUO82NY70/fanbeCO gqgFQiGbgRFbERjPdqeMf26hhXL1Z/qQoXUCXDGSsIkn -----END CERTIFICATE-----Generated at Tue Feb 10 01:29:06 2026 by rpki-client