This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/gNqfXwEsDs2H9TmakWZzI3gll9M.roa File: gNqfXwEsDs2H9TmakWZzI3gll9M.roa (raw, json) Hash identifier: XIA0aeWXMxA5hB+A1Fir62br/80BKcxOMOVJi2T93Z0= Subject key identifier: 80:DA:9F:5F:01:2C:0E:CD:87:F5:39:9A:91:66:73:23:78:25:97:D3 Certificate issuer: /CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f Certificate serial: 019B7C80493BAAE4CA29D143563AC31AD2B4 Authority key identifier: 36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/gNqfXwEsDs2H9TmakWZzI3gll9M.roa Signing time: Fri 02 Jan 2026 02:19:00 +0000 ROA not before: Fri 02 Jan 2026 02:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51847 IP address blocks: 185.113.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/NpT8xr9qh0D6eBRkH9nW7I2GLl8.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/NpT8xr9qh0D6eBRkH9nW7I2GLl8.mft rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 20:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:49:3b:aa:e4:ca:29:d1:43:56:3a:c3:1a:d2:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f Validity Not Before: Jan 2 02:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=80da9f5f012c0ecd87f5399a91667323782597d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:71:e2:b4:23:ee:09:bf:0d:60:08:cc:95:3f: 48:38:7e:d2:1a:0f:77:42:bf:eb:a4:2a:53:22:01: 96:d9:64:62:71:f7:a5:e3:62:83:cf:ea:33:29:0b: 6e:1b:18:b1:50:80:7f:0d:56:3a:f0:2d:0e:f8:1d: c4:c7:6b:00:5e:10:57:8c:c7:45:66:27:88:eb:be: d1:6c:69:31:17:dd:5d:87:47:54:20:ac:7c:05:fa: 99:7b:7c:05:b8:3b:de:15:79:d6:ed:fb:1e:33:1a: 1a:de:e5:74:c0:83:de:37:7e:e5:e1:83:2c:4d:57: b6:cf:5b:1d:58:18:d2:88:34:ab:74:5f:af:98:08: df:ff:73:0d:b6:10:3f:75:5e:b5:68:ea:6a:09:d5: 5a:59:92:14:df:55:42:d3:4f:f8:e7:90:93:53:61: 8f:42:5c:60:9b:05:1f:21:d9:51:07:a3:87:88:53: bb:2c:8e:19:ea:f5:01:fe:1b:94:d5:97:36:91:5f: 99:7c:b4:02:e0:75:63:04:12:8a:58:88:2c:ec:bc: 31:6f:16:5d:15:1e:d3:37:6c:bc:0c:22:7e:b6:81: f3:a0:9f:2d:64:cc:5b:fa:4e:d0:fd:0a:7b:fe:72: ee:01:d7:85:f3:cd:da:7e:cf:1b:0d:63:7a:0c:ab: cb:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:DA:9F:5F:01:2C:0E:CD:87:F5:39:9A:91:66:73:23:78:25:97:D3 X509v3 Authority Key Identifier: keyid:36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/gNqfXwEsDs2H9TmakWZzI3gll9M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/NpT8xr9qh0D6eBRkH9nW7I2GLl8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.113.66.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:cf:12:45:97:dc:e7:a8:0d:58:df:93:d0:0a:e4:8c:c6:b9: 18:e0:fc:c4:aa:49:11:d1:10:e1:c6:c4:fa:22:3e:c7:56:e7: 77:e7:98:2a:b0:03:76:1c:91:8c:cf:a2:94:02:aa:62:d8:5c: 2a:d0:31:7a:27:81:0c:a6:e7:98:46:07:96:26:05:78:36:bc: 7c:df:b4:87:bc:f4:18:a7:46:8f:13:76:1f:09:99:0b:9a:77: 8a:b1:05:55:0d:d2:2b:9f:52:06:f5:8a:09:44:51:5f:65:3b: f6:dc:fd:6b:1c:e5:d7:0f:c2:c9:41:95:7e:97:94:0f:e4:39: de:04:e8:f1:c3:f3:a0:fe:4f:04:1f:96:62:f0:0e:48:80:38: 9c:80:83:c0:3d:3f:7e:e0:f8:28:6e:72:dc:fb:5a:42:27:0c: 81:64:e5:9c:f3:c9:bf:70:75:14:a1:e6:80:c9:96:3c:5c:ee: 87:0e:38:d4:fa:1a:89:27:d0:cd:72:cc:9c:fd:44:19:e3:a5: ee:44:ef:40:16:21:e3:2b:dd:26:9a:18:14:33:87:71:4a:62: 1c:bd:da:d1:e2:8d:ef:77:1b:5b:22:d5:66:6c:bd:f7:dc:1d: 6f:2d:df:c9:bf:8f:0e:95:e0:8f:7a:0a:e1:ad:a3:14:6a:53: fc:a8:24:0e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gEk7quTKKdFDVjrDGtK0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OTRmY2M2YmY2YTg3NDBmYTc4MTQ2NDFmZDlkNmVjOGQ4 NjJlNWYwHhcNMjYwMTAyMDIxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MGRhOWY1ZjAxMmMwZWNkODdmNTM5OWE5MTY2NzMyMzc4MjU5N2QzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5HHitCPuCb8NYAjMlT9IOH7SGg93 Qr/rpCpTIgGW2WRicfel42KDz+ozKQtuGxixUIB/DVY68C0O+B3Ex2sAXhBXjMdF ZieI677RbGkxF91dh0dUIKx8BfqZe3wFuDveFXnW7fseMxoa3uV0wIPeN37l4YMs TVe2z1sdWBjSiDSrdF+vmAjf/3MNthA/dV61aOpqCdVaWZIU31VC00/455CTU2GP QlxgmwUfIdlRB6OHiFO7LI4Z6vUB/huU1Zc2kV+ZfLQC4HVjBBKKWIgs7LwxbxZd FR7TN2y8DCJ+toHzoJ8tZMxb+k7Q/Qp7/nLuAdeF883afs8bDWN6DKvLtQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIDan18BLA7Nh/U5mpFmcyN4JZfTMB8GA1UdIwQY MBaAFDaU/Ma/aodA+ngUZB/Z1uyNhi5fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnBUOHhyOXFoMEQ2ZUJSa0g5blc3STJHTGw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9hOGRkOWUtNzFmMi00Zjc3LWI1NzUt MGQzZmNlNDI5YmRlLzEvZ05xZlh3RXNEczJIOVRtYWtXWnpJM2dsbDlNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9hOGRkOWUtNzFmMi00Zjc3LWI1NzUtMGQzZmNlNDI5YmRl LzEvTnBUOHhyOXFoMEQ2ZUJSa0g5blc3STJHTGw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuXFCMA0G CSqGSIb3DQEBCwUAA4IBAQCazxJFl9znqA1Y35PQCuSMxrkY4PzEqkkR0RDhxsT6 Ij7HVud355gqsAN2HJGMz6KUAqpi2Fwq0DF6J4EMpueYRgeWJgV4Nrx837SHvPQY p0aPE3YfCZkLmneKsQVVDdIrn1IG9YoJRFFfZTv23P1rHOXXD8LJQZV+l5QP5Dne BOjxw/Og/k8EH5Zi8A5IgDicgIPAPT9+4PgobnLc+1pCJwyBZOWc88m/cHUUoeaA yZY8XO6HDjjU+hqJJ9DNcsyc/UQZ46XuRO9AFiHjK90mmhgUM4dxSmIcvdrR4o3v dxtbItVmbL333B1vLd/Jv48OleCPegrhraMUalP8qCQO -----END CERTIFICATE-----Generated at Sun Jan 18 04:08:26 2026 by rpki-client