This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/_gMstHGZPe_7SzCes23Xk4_prxs.roa File: _gMstHGZPe_7SzCes23Xk4_prxs.roa (raw, json) Hash identifier: UfaVFa/Va8RG4LCVknZ/sC6sc8zENIigGZfQiIzmNA4= Subject key identifier: FE:03:2C:B4:71:99:3D:EF:FB:4B:30:9E:B3:6D:D7:93:8F:E9:AF:1B Certificate issuer: /CN=798e0da4f91007b224768acb4d131f12517d2b7a Certificate serial: 019B7759277E8CAE3AD500012DBBFE5BB35F Authority key identifier: 79:8E:0D:A4:F9:10:07:B2:24:76:8A:CB:4D:13:1F:12:51:7D:2B:7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY4NpPkQB7IkdorLTRMfElF9K3o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/_gMstHGZPe_7SzCes23Xk4_prxs.roa Signing time: Thu 01 Jan 2026 02:18:10 +0000 ROA not before: Thu 01 Jan 2026 02:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31229 IP address blocks: 91.202.100.0/24 maxlen: 24 91.202.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/eY4NpPkQB7IkdorLTRMfElF9K3o.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/eY4NpPkQB7IkdorLTRMfElF9K3o.mft rsync://rpki.ripe.net/repository/DEFAULT/eY4NpPkQB7IkdorLTRMfElF9K3o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 14:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:27:7e:8c:ae:3a:d5:00:01:2d:bb:fe:5b:b3:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=798e0da4f91007b224768acb4d131f12517d2b7a Validity Not Before: Jan 1 02:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fe032cb471993deffb4b309eb36dd7938fe9af1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e4:d8:13:87:63:31:24:79:07:0e:10:42:ef: e4:40:1d:28:f2:fa:75:64:9a:25:b2:80:71:2e:89: 20:a5:1b:26:d9:dc:f6:55:4a:51:f6:4a:25:ca:59: 3a:ba:e8:e7:12:ae:f4:05:45:20:8d:f9:79:79:20: c6:ac:62:3f:47:cf:87:ae:da:38:f1:fb:f2:12:ff: 42:69:b8:ef:b7:cc:0f:aa:48:15:ac:52:e5:b3:19: a6:33:ec:4b:01:99:ef:63:1b:2e:26:94:2c:7a:e9: a1:03:1c:f8:17:89:13:b7:ad:2a:f5:4c:8b:1f:de: 03:65:d5:e3:6e:20:84:c7:e6:2f:63:8d:3e:9f:8a: 02:9e:26:4c:eb:b5:99:82:af:3c:1a:66:f2:f7:6b: b1:ac:d2:46:8c:fd:4c:c5:1c:5b:07:8b:f8:77:29: 9d:73:09:9f:7d:3b:54:bd:d1:e5:b3:10:90:51:48: 6c:63:38:0e:d5:93:c2:7f:a6:45:d9:1f:74:b0:81: a4:6b:70:ae:fb:bf:10:22:15:38:a2:3a:12:8c:e0: 2f:5c:ab:93:8d:f7:be:7c:4d:7a:ba:db:ea:49:9a: b4:5c:93:c9:54:4c:f0:1b:7c:5e:78:1d:36:f0:3b: c8:30:54:25:5a:43:a8:81:ce:64:d5:20:f7:b6:db: 45:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:03:2C:B4:71:99:3D:EF:FB:4B:30:9E:B3:6D:D7:93:8F:E9:AF:1B X509v3 Authority Key Identifier: keyid:79:8E:0D:A4:F9:10:07:B2:24:76:8A:CB:4D:13:1F:12:51:7D:2B:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY4NpPkQB7IkdorLTRMfElF9K3o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/_gMstHGZPe_7SzCes23Xk4_prxs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/eY4NpPkQB7IkdorLTRMfElF9K3o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.202.100.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:0d:bd:7d:2f:20:a1:c6:df:6f:8d:d8:6d:d9:bf:1d:be:37: 39:f8:c9:f5:51:99:78:cf:ee:09:24:2b:34:59:e0:9f:1e:d7: 9d:bb:e9:d2:24:cd:aa:c1:0a:0d:a2:82:8f:96:62:52:08:97: 56:2d:4f:c5:e2:f4:04:e1:81:75:cd:0a:bc:f7:92:4f:3b:27: f2:31:2c:1f:4c:2d:db:d9:c1:2e:d9:d0:2f:b9:07:66:08:35: 91:6b:61:d2:82:e7:07:2e:de:c9:25:13:7a:32:23:72:88:62: 10:01:0e:c4:e8:79:a4:83:46:7d:6f:27:e1:ce:e4:1c:16:de: 0a:17:14:97:6d:d1:a0:10:53:37:a5:ed:c2:68:ea:4f:f0:f0: 1f:cf:f4:6f:83:e7:1d:1c:03:3b:ea:49:60:85:26:9f:6b:6c: 99:63:c3:7c:2b:b0:63:48:9e:de:20:bf:02:24:4e:87:ca:f5: 8d:28:be:cb:d5:58:f7:00:b8:76:75:2e:ae:d3:fc:77:48:c1: 43:5f:be:cb:b3:e5:fd:97:ef:0f:92:60:a1:b0:4b:57:b9:6b: e7:ad:f1:9d:11:14:9d:1d:81:2b:96:d7:20:e8:b2:25:f8:b6: f4:09:b4:a5:7d:0a:af:0a:9a:20:14:0c:fa:28:1b:4f:12:28: 49:72:e7:fb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WSd+jK461QABLbv+W7NfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5OGUwZGE0ZjkxMDA3YjIyNDc2OGFjYjRkMTMxZjEyNTE3 ZDJiN2EwHhcNMjYwMTAxMDIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZTAzMmNiNDcxOTkzZGVmZmI0YjMwOWViMzZkZDc5MzhmZTlhZjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOTYE4djMSR5Bw4QQu/kQB0o8vp1 ZJolsoBxLokgpRsm2dz2VUpR9kolylk6uujnEq70BUUgjfl5eSDGrGI/R8+Hrto4 8fvyEv9Cabjvt8wPqkgVrFLlsxmmM+xLAZnvYxsuJpQseumhAxz4F4kTt60q9UyL H94DZdXjbiCEx+YvY40+n4oCniZM67WZgq88Gmby92uxrNJGjP1MxRxbB4v4dymd cwmffTtUvdHlsxCQUUhsYzgO1ZPCf6ZF2R90sIGka3Cu+78QIhU4ojoSjOAvXKuT jfe+fE16utvqSZq0XJPJVEzwG3xeeB028DvIMFQlWkOogc5k1SD3tttF0QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFP4DLLRxmT3v+0swnrNt15OP6a8bMB8GA1UdIwQY MBaAFHmODaT5EAeyJHaKy00THxJRfSt6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZVk0TnBQa1FCN0lrZG9yTFRSTWZFbEY5SzNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MDRlNjQtZjk4MS00NWI1LTljYWUt NGZiNGVmOTFhODJmLzEvX2dNc3RIR1pQZV83U3pDZXMyM1hrNF9wcnhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC80MDRlNjQtZjk4MS00NWI1LTljYWUtNGZiNGVmOTFhODJm LzEvZVk0TnBQa1FCN0lrZG9yTFRSTWZFbEY5SzNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW8pkMA0G CSqGSIb3DQEBCwUAA4IBAQCcDb19LyChxt9vjdht2b8dvjc5+Mn1UZl4z+4JJCs0 WeCfHtedu+nSJM2qwQoNooKPlmJSCJdWLU/F4vQE4YF1zQq895JPOyfyMSwfTC3b 2cEu2dAvuQdmCDWRa2HSgucHLt7JJRN6MiNyiGIQAQ7E6Hmkg0Z9byfhzuQcFt4K FxSXbdGgEFM3pe3CaOpP8PAfz/Rvg+cdHAM76klghSafa2yZY8N8K7BjSJ7eIL8C JE6HyvWNKL7L1Vj3ALh2dS6u0/x3SMFDX77Ls+X9l+8PkmChsEtXuWvnrfGdERSd HYErltcg6LIl+Lb0CbSlfQqvCpogFAz6KBtPEihJcuf7 -----END CERTIFICATE-----Generated at Sun Jan 18 19:29:00 2026 by rpki-client