This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/gH0BmhGdI-4jnerabl4mUmUrBX4.roa File: gH0BmhGdI-4jnerabl4mUmUrBX4.roa (raw, json) Hash identifier: vNs9/H6iuDqV1b/jbRlgh+sdKrOOTZh6C5aRY+PDcq0= Subject key identifier: 80:7D:01:9A:11:9D:23:EE:23:9D:EA:DA:6E:5E:26:52:65:2B:05:7E Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a Certificate serial: 019B7EA7050D91E5538F5810A39A23CEFC27 Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/gH0BmhGdI-4jnerabl4mUmUrBX4.roa Signing time: Fri 02 Jan 2026 12:20:33 +0000 ROA not before: Fri 02 Jan 2026 12:20:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 2001:67c:d1c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:05:0d:91:e5:53:8f:58:10:a3:9a:23:ce:fc:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a Validity Not Before: Jan 2 12:20:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=807d019a119d23ee239deada6e5e2652652b057e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:1f:d0:31:95:76:75:98:2d:74:9f:53:2e:3c: fa:b4:28:64:6f:61:18:54:39:bf:d9:c8:45:db:ba: 14:7a:20:ab:a0:2f:aa:6a:0c:1b:6d:95:35:a1:e7: 9c:56:15:85:05:5a:a2:f8:8b:43:80:05:61:b7:19: 33:92:e3:b8:88:80:bd:04:65:7a:b4:a8:49:0d:3f: e8:4f:d0:21:f3:f5:9b:9a:20:93:eb:03:ea:b7:fa: c6:58:bd:c1:7a:f4:84:1e:f7:f1:9f:f9:bf:75:28: 1d:b6:9b:23:7c:a6:99:40:db:6a:cd:30:26:ba:d1: 88:0c:21:f7:4a:af:d3:ef:f0:3f:b6:24:0b:1b:7c: 8f:1a:a7:fc:84:82:ac:c0:8d:7f:77:4b:bb:c0:10: e1:56:12:11:36:3c:fd:fa:ed:29:fb:64:a7:bf:a7: cb:ed:8d:54:61:61:19:13:2e:eb:06:5e:e9:44:82: a1:e3:6e:f8:f5:9e:7f:b0:94:22:71:3e:8d:71:26: 09:ac:2d:52:3a:83:27:12:5c:cf:31:96:69:4f:0d: f5:31:ab:42:d0:e7:ca:1d:5a:77:f1:d6:9d:5c:97: 72:fa:3a:ea:a0:5a:c0:f3:c7:84:3b:02:b1:4d:b9: 42:cd:3d:0f:76:2c:1c:da:a7:c7:6e:a5:b6:3c:29: 25:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7D:01:9A:11:9D:23:EE:23:9D:EA:DA:6E:5E:26:52:65:2B:05:7E X509v3 Authority Key Identifier: keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/gH0BmhGdI-4jnerabl4mUmUrBX4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:d1c::/48 Signature Algorithm: sha256WithRSAEncryption 8a:f9:b8:5e:9d:65:5e:bf:59:ee:97:87:0c:1a:df:50:4b:3d: 02:2b:ca:4e:ed:9c:66:71:b4:aa:0f:64:d9:f4:c4:87:2b:eb: 65:9d:e2:79:b2:3b:72:45:7f:b5:89:58:d4:59:3a:b0:3e:b1: ec:bb:dd:83:59:46:34:09:7c:6d:19:ad:8d:a7:d3:a8:70:53: 16:1e:60:03:f7:ae:e9:c7:4e:b3:0d:22:3d:61:5e:24:17:a1: 7d:d9:a7:03:85:e0:b8:49:62:55:f3:bc:57:af:fd:65:11:bf: 8d:b1:19:a7:46:61:b4:e9:c6:fd:63:62:67:78:b9:b0:15:7d: 60:dc:47:d7:6e:c0:e1:ed:da:09:4b:69:44:e9:4d:ad:3c:1e: a2:bc:9d:dc:f5:74:3b:07:e6:ca:b0:49:1e:42:c6:48:3c:6d: f0:1d:49:d2:de:fc:72:8b:7c:3b:d2:c8:8d:df:0d:e0:7b:07: 6c:1a:0f:d9:1e:95:1c:7a:03:bc:35:8e:39:6b:e5:82:df:2d: ee:3d:2a:ff:6b:e5:ec:c3:10:66:84:dd:50:d8:29:8c:94:ff: 44:c9:e1:41:38:1b:69:2c:3a:db:89:fd:1a:27:ec:07:65:1c: 0f:ae:b9:0e:83:c0:92:5e:85:91:88:dd:48:40:07:c0:23:1d: 47:a8:13:ac -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pwUNkeVTj1gQo5ojzvwnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4YzY4Y2RhNjVmNjY5NjJjY2I5NjgzZjE1NTBkMTRlNTYx MDdhMGEwHhcNMjYwMTAyMTIyMDMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MDdkMDE5YTExOWQyM2VlMjM5ZGVhZGE2ZTVlMjY1MjY1MmIwNTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7h/QMZV2dZgtdJ9TLjz6tChkb2EY VDm/2chF27oUeiCroC+qagwbbZU1oeecVhWFBVqi+ItDgAVhtxkzkuO4iIC9BGV6 tKhJDT/oT9Ah8/WbmiCT6wPqt/rGWL3BevSEHvfxn/m/dSgdtpsjfKaZQNtqzTAm utGIDCH3Sq/T7/A/tiQLG3yPGqf8hIKswI1/d0u7wBDhVhIRNjz9+u0p+2Snv6fL 7Y1UYWEZEy7rBl7pRIKh42749Z5/sJQicT6NcSYJrC1SOoMnElzPMZZpTw31MatC 0OfKHVp38dadXJdy+jrqoFrA88eEOwKxTblCzT0Pdiwc2qfHbqW2PCklhwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFIB9AZoRnSPuI53q2m5eJlJlKwV+MB8GA1UdIwQY MBaAFLjGjNpl9mlizLloPxVQ0U5WEHoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAt OGY0OGEzNzAyZjkwLzEvZ0gwQm1oR2RJLTRqbmVyYWJsNG1VbVVyQlg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAtOGY0OGEzNzAyZjkw LzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA0c MA0GCSqGSIb3DQEBCwUAA4IBAQCK+bhenWVev1nul4cMGt9QSz0CK8pO7ZxmcbSq D2TZ9MSHK+tlneJ5sjtyRX+1iVjUWTqwPrHsu92DWUY0CXxtGa2Np9OocFMWHmAD 967px06zDSI9YV4kF6F92acDheC4SWJV87xXr/1lEb+NsRmnRmG06cb9Y2JneLmw FX1g3EfXbsDh7doJS2lE6U2tPB6ivJ3c9XQ7B+bKsEkeQsZIPG3wHUnS3vxyi3w7 0siN3w3gewdsGg/ZHpUcegO8NY45a+WC3y3uPSr/a+XswxBmhN1Q2CmMlP9EyeFB OBtpLDrbif0aJ+wHZRwPrrkOg8CSXoWRiN1IQAfAIx1HqBOs -----END CERTIFICATE-----Generated at Sun Jan 18 15:29:35 2026 by rpki-client