This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/Gvx0A26GJuiIG3z8VWVyHrx39Uw.roa File: Gvx0A26GJuiIG3z8VWVyHrx39Uw.roa (raw, json) Hash identifier: 9FhP0PhwRdbMjzh0xBPZjEofnVCnf5knINntOpTMBSM= Subject key identifier: 1A:FC:74:03:6E:86:26:E8:88:1B:7C:FC:55:65:72:1E:BC:77:F5:4C Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019AD18112CEDEF17B76275C1C54BC7802CA Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/Gvx0A26GJuiIG3z8VWVyHrx39Uw.roa Signing time: Sat 29 Nov 2025 21:24:48 +0000 ROA not before: Sat 29 Nov 2025 21:24:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 213520 IP address blocks: 64.188.68.0/22 maxlen: 24 64.188.74.0/24 maxlen: 24 64.188.104.0/22 maxlen: 24 77.239.120.0/23 maxlen: 24 144.31.16.0/23 maxlen: 24 144.31.18.0/23 maxlen: 24 144.31.84.0/23 maxlen: 24 144.31.116.0/23 maxlen: 24 144.31.118.0/23 maxlen: 24 144.31.122.0/23 maxlen: 24 144.31.138.0/23 maxlen: 24 144.31.196.0/23 maxlen: 24 150.241.78.0/23 maxlen: 24 193.23.197.0/24 maxlen: 24 193.23.210.0/23 maxlen: 24 193.23.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:d1:81:12:ce:de:f1:7b:76:27:5c:1c:54:bc:78:02:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Nov 29 21:24:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=1afc74036e8626e8881b7cfc5565721ebc77f54c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c9:00:f9:0f:e6:b7:00:d9:af:32:97:6d:22: da:37:08:3c:a0:34:94:99:32:fc:9c:a1:6b:8b:bb: 7b:45:8d:f4:8a:1f:fd:bf:60:46:75:09:f7:96:69: 3e:58:af:a4:e6:04:c5:10:00:a4:3c:33:da:3d:19: 49:a1:3c:2c:dd:a8:51:1b:15:ab:fc:17:38:6c:e0: 15:9c:16:05:b8:01:1a:c1:9b:48:7c:74:09:20:c0: e9:62:ca:34:75:66:5b:ac:5d:c5:35:de:61:2b:56: 25:59:be:0b:8b:ec:19:2c:fe:97:bc:ca:00:8d:d0: ae:cf:33:5d:95:b8:f7:dd:a4:92:59:e7:ed:f8:3e: 2a:c3:3e:eb:ca:9e:74:9e:b0:9d:9f:1f:fa:47:10: 5a:de:de:b1:89:a4:2c:70:a1:2b:f9:36:d7:12:97: b6:fb:ad:f4:78:9d:e6:72:ad:05:9b:5e:56:3e:0b: 67:31:8d:d4:ed:65:5a:82:fb:30:4c:0c:68:94:d5: 51:fe:5e:70:f6:06:99:c2:d3:18:0d:2e:35:07:31: 61:6a:53:28:d6:6f:a4:d6:05:98:5b:2a:ef:b8:1b: e1:9f:e1:2a:00:38:8f:b4:c5:1a:01:4d:1b:46:55: 76:b1:29:4a:a5:d8:ef:6a:a3:9d:a0:89:3c:45:cc: 9b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FC:74:03:6E:86:26:E8:88:1B:7C:FC:55:65:72:1E:BC:77:F5:4C X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/Gvx0A26GJuiIG3z8VWVyHrx39Uw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.188.68.0/22 64.188.74.0/24 64.188.104.0/22 77.239.120.0/23 144.31.16.0/22 144.31.84.0/23 144.31.116.0/22 144.31.122.0/23 144.31.138.0/23 144.31.196.0/23 150.241.78.0/23 193.23.197.0/24 193.23.210.0/23 193.23.218.0/23 Signature Algorithm: sha256WithRSAEncryption 57:c9:fb:39:2c:4c:f4:c2:ee:d1:f3:f0:f9:21:ed:df:53:b8: de:2e:6d:7c:29:e5:94:5d:61:1d:5f:db:4f:cc:ae:2d:7a:a6: 36:d9:03:d0:2f:23:f4:8f:88:d1:5c:11:e2:5b:54:39:e1:17: af:f3:c3:7e:21:95:1a:f2:d1:8d:3c:7c:b2:a5:c8:1b:3a:b2: 4b:5d:d8:39:ed:9e:dc:a7:3a:fe:53:88:cb:b6:b9:a1:ee:67: eb:b7:1b:51:4f:18:68:b5:9b:d2:f4:18:ee:39:51:7c:84:21: d3:6e:ae:b5:56:54:95:d1:7a:f4:ac:68:c6:56:f9:ee:c4:79: d5:0c:31:59:07:39:a5:f4:bd:a5:31:63:cf:cb:0e:49:95:f7: 53:7b:a2:20:f5:e2:14:7f:dc:f6:84:16:ab:a1:db:fa:cc:07: 67:d8:82:57:e4:b0:36:a7:26:49:5f:d5:e9:12:76:a8:21:c6: 0c:a0:db:9f:55:4f:d6:38:94:1c:bf:5b:f6:ab:7d:90:11:77: 1f:b2:2c:d3:32:5d:14:e3:07:e7:4c:20:34:99:47:d2:78:49: 00:a4:80:46:81:03:b5:c6:d6:0a:51:5b:61:2e:42:ae:0a:7f: 73:01:eb:55:72:83:5c:18:fb:b7:0c:3f:4e:b3:5a:9a:24:65: 0c:3e:50:29 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgISAZrRgRLO3vF7didcHFS8eALKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjUxMTI5MjEyNDQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYWZjNzQwMzZlODYyNmU4ODgxYjdjZmM1NTY1NzIxZWJjNzdmNTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8kA+Q/mtwDZrzKXbSLaNwg8oDSU mTL8nKFri7t7RY30ih/9v2BGdQn3lmk+WK+k5gTFEACkPDPaPRlJoTws3ahRGxWr /Bc4bOAVnBYFuAEawZtIfHQJIMDpYso0dWZbrF3FNd5hK1YlWb4Li+wZLP6XvMoA jdCuzzNdlbj33aSSWeft+D4qwz7ryp50nrCdnx/6RxBa3t6xiaQscKEr+TbXEpe2 +630eJ3mcq0Fm15WPgtnMY3U7WVagvswTAxolNVR/l5w9gaZwtMYDS41BzFhalMo 1m+k1gWYWyrvuBvhn+EqADiPtMUaAU0bRlV2sSlKpdjvaqOdoIk8RcybpQIDAQAB o4ICVzCCAlMwHQYDVR0OBBYEFBr8dANuhiboiBt8/FVlch68d/VMMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvR3Z4MEEyNkdKdWlJRzN6OFZXVnlIcngzOVV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQCQLxEAwQA QLxKAwQCQLxoAwQBTe94AwQCkB8QAwQBkB9UAwQCkB90AwQBkB96AwQBkB+KAwQB kB/EAwQBlvFOAwQAwRfFAwQBwRfSAwQBwRfaMA0GCSqGSIb3DQEBCwUAA4IBAQBX yfs5LEz0wu7R8/D5Ie3fU7jeLm18KeWUXWEdX9tPzK4teqY22QPQLyP0j4jRXBHi W1Q54Rev88N+IZUa8tGNPHyypcgbOrJLXdg57Z7cpzr+U4jLtrmh7mfrtxtRTxho tZvS9BjuOVF8hCHTbq61VlSV0Xr0rGjGVvnuxHnVDDFZBzml9L2lMWPPyw5JlfdT e6Ig9eIUf9z2hBarodv6zAdn2IJX5LA2pyZJX9XpEnaoIcYMoNufVU/WOJQcv1v2 q32QEXcfsizTMl0U4wfnTCA0mUfSeEkApIBGgQO1xtYKUVthLkKuCn9zAetVcoNc GPu3DD9Os1qaJGUMPlAp -----END CERTIFICATE-----Generated at Fri Dec 5 17:52:20 2025 by rpki-client