This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/Gq2VB9PjY2d42VE1l06FJT2-xes.roa File: Gq2VB9PjY2d42VE1l06FJT2-xes.roa (raw, json) Hash identifier: idiOLZ8yC3ZWBi2Z9igfWCRSUat/SpYrqd26vqS32rI= Subject key identifier: 1A:AD:95:07:D3:E3:63:67:78:D9:51:35:97:4E:85:25:3D:BE:C5:EB Certificate issuer: /CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c Certificate serial: 019B783546F26AC303C838241384B0C7F0F8 Authority key identifier: A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/Gq2VB9PjY2d42VE1l06FJT2-xes.roa Signing time: Thu 01 Jan 2026 06:18:36 +0000 ROA not before: Thu 01 Jan 2026 06:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204648 IP address blocks: 173.255.144.0/24 maxlen: 24 173.255.146.0/24 maxlen: 24 173.255.148.0/24 maxlen: 24 173.255.150.0/24 maxlen: 24 193.17.36.0/24 maxlen: 24 193.17.37.0/24 maxlen: 24 193.17.38.0/24 maxlen: 24 193.17.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:46:f2:6a:c3:03:c8:38:24:13:84:b0:c7:f0:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c Validity Not Before: Jan 1 06:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1aad9507d3e3636778d95135974e85253dbec5eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:86:95:4c:31:11:1e:b5:32:26:53:5f:72:be: 3c:df:e8:b7:1c:c4:a1:4a:d5:c2:d3:35:89:3f:2f: 9e:cf:d5:09:8d:3c:3b:b6:6d:15:b0:31:20:dc:eb: 63:8d:af:26:d4:fd:e4:dc:98:97:b2:a9:30:f3:4a: 9e:56:c9:c7:2c:df:af:4c:74:cb:c8:41:ab:9f:f7: df:8a:07:cc:5f:41:5e:75:a5:5f:c2:82:a4:e1:bc: 1f:31:4b:d2:f1:81:b9:46:81:84:b4:6f:78:d8:b7: a1:b7:5e:9b:4c:c1:3a:7b:6d:09:f8:91:13:aa:f6: ab:e5:43:8a:2f:51:9d:8c:0d:ae:bb:07:a1:b9:f9: 7a:29:57:3a:7d:d5:da:3e:bb:3f:9f:fb:ed:59:af: da:d3:df:fa:5d:cc:a0:6c:87:38:9f:0b:a4:c3:f9: 07:34:03:24:9d:9b:16:3a:1f:0b:8e:74:72:84:3d: a2:c3:31:ec:c0:09:aa:d7:9a:87:3b:80:16:90:22: ca:da:8f:3e:30:3e:f8:a3:83:5b:b9:b4:61:10:e4: f5:51:5f:27:bb:81:33:7e:a5:3e:a9:b7:c9:54:16: 3d:f2:19:99:34:fb:1a:db:17:04:37:17:fd:df:06: 0e:59:b2:64:0f:af:b2:1f:2d:9a:c1:d9:ec:d6:cd: aa:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:AD:95:07:D3:E3:63:67:78:D9:51:35:97:4E:85:25:3D:BE:C5:EB X509v3 Authority Key Identifier: keyid:A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/Gq2VB9PjY2d42VE1l06FJT2-xes.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.255.144.0/24 173.255.146.0/24 173.255.148.0/24 173.255.150.0/24 193.17.36.0/22 Signature Algorithm: sha256WithRSAEncryption 85:ce:31:46:03:a5:bc:3e:88:ac:8d:19:0a:e9:6b:19:60:22: 67:50:c5:f8:e3:4b:b9:df:82:9f:9a:e0:8b:03:7d:47:f8:94: d9:e8:64:6c:c5:65:c8:c3:a6:78:fd:43:42:55:0b:ab:cd:23: 65:f9:4d:ff:64:ec:62:ea:55:8d:9f:bd:a3:69:22:cd:89:31: 17:7a:87:7d:a8:59:19:73:91:c6:af:97:bc:fe:e2:9a:30:2e: 7e:cf:a9:1f:7d:59:b7:b1:b1:6a:3f:9c:ba:7d:72:e1:44:15: da:ef:89:d7:ef:a7:41:74:57:c8:34:8a:11:99:5c:74:f0:4a: d3:d4:d3:46:08:d4:3c:b0:d7:20:c1:60:10:f7:dd:47:e1:d7: cf:ea:af:4d:d8:9b:35:90:37:0f:77:6e:19:e2:eb:67:e6:a2: 4b:ae:10:ae:9d:33:e9:5d:08:76:20:10:8d:f7:f6:9e:c0:a7: 6c:05:50:e3:95:7e:a3:6a:e4:7b:c6:cd:88:e1:5f:10:55:5a: 98:c3:cd:1d:23:ed:98:f7:01:29:94:6b:c8:e2:96:1f:32:3b: 48:82:9a:7d:77:d0:e6:11:a2:5e:f2:77:09:65:3f:d3:65:21: 73:45:63:2d:9a:d5:51:85:e4:4b:0f:8d:62:3b:9a:30:7f:3a: c5:6e:e0:b6 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt4NUbyasMDyDgkE4Swx/D4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3YjFkZWY2OTU4ODVlYWRlNWNjYzhiNGJlMmEwMmJiMTYw NzllOWMwHhcNMjYwMTAxMDYxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYWFkOTUwN2QzZTM2MzY3NzhkOTUxMzU5NzRlODUyNTNkYmVjNWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIaVTDERHrUyJlNfcr483+i3HMSh StXC0zWJPy+ez9UJjTw7tm0VsDEg3Otjja8m1P3k3JiXsqkw80qeVsnHLN+vTHTL yEGrn/ffigfMX0FedaVfwoKk4bwfMUvS8YG5RoGEtG942Leht16bTME6e20J+JET qvar5UOKL1GdjA2uuwehufl6KVc6fdXaPrs/n/vtWa/a09/6XcygbIc4nwukw/kH NAMknZsWOh8LjnRyhD2iwzHswAmq15qHO4AWkCLK2o8+MD74o4NbubRhEOT1UV8n u4EzfqU+qbfJVBY98hmZNPsa2xcENxf93wYOWbJkD6+yHy2awdns1s2qzwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFBqtlQfT42NneNlRNZdOhSU9vsXrMB8GA1UdIwQY MBaAFKex3vaViF6t5czItL4qArsWB56cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDdIZTlwV0lYcTNsek1pMHZpb0N1eFlIbnB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC82ODhjYWUtNWY5Ni00ODc1LTg3MDEt OTQ0ZWNlYzdhNDIzLzEvR3EyVkI5UGpZMmQ0MlZFMWwwNkZKVDIteGVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC82ODhjYWUtNWY5Ni00ODc1LTg3MDEtOTQ0ZWNlYzdhNDIz LzEvcDdIZTlwV0lYcTNsek1pMHZpb0N1eFlIbnB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQArf+QAwQA rf+SAwQArf+UAwQArf+WAwQCwREkMA0GCSqGSIb3DQEBCwUAA4IBAQCFzjFGA6W8 PoisjRkK6WsZYCJnUMX440u534KfmuCLA31H+JTZ6GRsxWXIw6Z4/UNCVQurzSNl +U3/ZOxi6lWNn72jaSLNiTEXeod9qFkZc5HGr5e8/uKaMC5+z6kffVm3sbFqP5y6 fXLhRBXa74nX76dBdFfINIoRmVx08ErT1NNGCNQ8sNcgwWAQ991H4dfP6q9N2Js1 kDcPd24Z4utn5qJLrhCunTPpXQh2IBCN9/aewKdsBVDjlX6jauR7xs2I4V8QVVqY w80dI+2Y9wEplGvI4pYfMjtIgpp9d9DmEaJe8ncJZT/TZSFzRWMtmtVRheRLD41i O5owfzrFbuC2 -----END CERTIFICATE-----Generated at Tue Feb 10 00:02:35 2026 by rpki-client