This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bc1828-3536-4d0f-952b-9d27091784cc/1/g299YTC_iLV4aJ1WAKAFuHKoAG8.roa File: g299YTC_iLV4aJ1WAKAFuHKoAG8.roa (raw, json) Hash identifier: RjwHc0a+p7SBX5dpTWoPHb71J5KbWW0USQUJuMMvXuI= Subject key identifier: 83:6F:7D:61:30:BF:88:B5:78:68:9D:56:00:A0:05:B8:72:A8:00:6F Certificate issuer: /CN=32f1b85fa5de57a5fe123de3a905f3cb36ab8afe Certificate serial: 019B7AC8DD32E0DCF98ED57C10FA03314F77 Authority key identifier: 32:F1:B8:5F:A5:DE:57:A5:FE:12:3D:E3:A9:05:F3:CB:36:AB:8A:FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MvG4X6XeV6X-Ej3jqQXzyzariv4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bc1828-3536-4d0f-952b-9d27091784cc/1/g299YTC_iLV4aJ1WAKAFuHKoAG8.roa Signing time: Thu 01 Jan 2026 18:19:02 +0000 ROA not before: Thu 01 Jan 2026 18:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48876 IP address blocks: 194.79.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/bc1828-3536-4d0f-952b-9d27091784cc/1/MvG4X6XeV6X-Ej3jqQXzyzariv4.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/bc1828-3536-4d0f-952b-9d27091784cc/1/MvG4X6XeV6X-Ej3jqQXzyzariv4.mft rsync://rpki.ripe.net/repository/DEFAULT/MvG4X6XeV6X-Ej3jqQXzyzariv4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:dd:32:e0:dc:f9:8e:d5:7c:10:fa:03:31:4f:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32f1b85fa5de57a5fe123de3a905f3cb36ab8afe Validity Not Before: Jan 1 18:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=836f7d6130bf88b578689d5600a005b872a8006f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:77:d8:a3:7e:c6:46:69:26:64:da:cb:32:ee: 93:ee:e9:ad:6d:bd:a4:97:a4:30:b4:8d:9a:40:b8: 3a:80:bd:93:79:67:a0:32:60:d7:6e:27:9e:5b:12: 93:ab:d0:8d:a9:ba:d7:6d:cb:44:b0:aa:e0:b5:1d: ee:53:4f:fb:ac:71:ad:3f:e7:18:2c:e8:ed:88:ec: 0a:d8:83:3a:61:10:9b:bd:c5:e1:63:3a:7f:a5:00: 93:d8:d1:4d:06:23:c4:53:d1:d6:30:70:78:4f:68: 7c:55:13:7d:bb:56:a4:2f:8b:38:a3:d9:88:dc:f0: 08:c8:c6:3c:cf:4e:6b:3b:a0:6c:42:88:d0:d1:ef: 39:c2:d9:45:a6:31:40:7b:7c:e7:03:50:20:ee:85: f5:2b:c7:99:f7:32:41:3c:51:77:17:f2:fe:8e:51: 4f:13:ab:bb:17:02:b1:46:71:74:55:6c:ae:b4:ab: 9d:9e:f9:b0:a7:a8:33:44:35:d8:ad:ac:71:76:27: 23:8e:83:56:0b:df:17:47:6a:0a:28:31:ae:e4:5f: 32:fd:9d:b0:24:a1:f6:8e:7c:f2:84:72:99:27:6e: 7b:24:db:71:e7:bd:72:ec:4b:d2:fc:cc:d1:90:38: b6:a2:14:93:86:59:35:05:4f:e5:f4:a9:72:db:d2: 5d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:6F:7D:61:30:BF:88:B5:78:68:9D:56:00:A0:05:B8:72:A8:00:6F X509v3 Authority Key Identifier: keyid:32:F1:B8:5F:A5:DE:57:A5:FE:12:3D:E3:A9:05:F3:CB:36:AB:8A:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MvG4X6XeV6X-Ej3jqQXzyzariv4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bc1828-3536-4d0f-952b-9d27091784cc/1/g299YTC_iLV4aJ1WAKAFuHKoAG8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bc1828-3536-4d0f-952b-9d27091784cc/1/MvG4X6XeV6X-Ej3jqQXzyzariv4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.79.250.0/23 Signature Algorithm: sha256WithRSAEncryption 00:91:08:a4:c4:f8:70:a6:03:ca:33:57:7e:8b:96:ba:c8:99: 17:d3:39:9c:0f:a0:b4:66:ed:71:eb:49:89:17:56:99:e1:d1: ef:a7:82:bc:15:b8:24:8c:7a:c8:14:f8:a1:3c:46:4b:43:0a: 20:a1:a0:3a:00:ff:5a:3f:ed:f6:d2:99:fb:ef:ca:35:52:db: 6a:a9:54:a1:a9:9b:89:ce:76:da:fa:6e:2b:76:94:66:5a:58: b9:1d:1b:e5:a8:bd:51:73:f6:6b:11:e2:b0:c5:b3:3d:d3:74: fc:ba:fd:43:fc:56:20:31:3f:97:ec:34:6c:ce:4d:92:3e:c0: 6c:f5:3c:57:b0:7a:c3:a9:c3:f9:70:7d:cb:e5:54:cc:06:e3: db:64:0b:03:a6:2b:5c:19:25:3c:a5:e5:19:94:20:40:2d:5f: 60:90:94:62:bd:65:60:a9:aa:9e:a5:23:d1:f0:d2:b9:92:bd: f7:9a:e1:d6:9a:dc:7d:2d:c8:34:f9:87:15:9d:60:b2:df:67: 6c:35:ba:55:a9:df:f5:d7:55:3d:49:11:4b:9d:57:68:e2:9a: 4c:8a:a8:6c:2b:d7:94:1e:fa:8e:a2:a2:b4:94:96:06:f5:5c: ad:63:2c:e8:99:14:45:ee:a9:57:a7:ee:10:69:0f:f9:2f:93: df:3b:76:2b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yN0y4Nz5jtV8EPoDMU93MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyZjFiODVmYTVkZTU3YTVmZTEyM2RlM2E5MDVmM2NiMzZh YjhhZmUwHhcNMjYwMTAxMTgxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzZmN2Q2MTMwYmY4OGI1Nzg2ODlkNTYwMGEwMDViODcyYTgwMDZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnfYo37GRmkmZNrLMu6T7umtbb2k l6QwtI2aQLg6gL2TeWegMmDXbieeWxKTq9CNqbrXbctEsKrgtR3uU0/7rHGtP+cY LOjtiOwK2IM6YRCbvcXhYzp/pQCT2NFNBiPEU9HWMHB4T2h8VRN9u1akL4s4o9mI 3PAIyMY8z05rO6BsQojQ0e85wtlFpjFAe3znA1Ag7oX1K8eZ9zJBPFF3F/L+jlFP E6u7FwKxRnF0VWyutKudnvmwp6gzRDXYraxxdicjjoNWC98XR2oKKDGu5F8y/Z2w JKH2jnzyhHKZJ257JNtx571y7EvS/MzRkDi2ohSThlk1BU/l9Kly29JdEQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFINvfWEwv4i1eGidVgCgBbhyqABvMB8GA1UdIwQY MBaAFDLxuF+l3lel/hI946kF88s2q4r+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXZHNFg2WGVWNlgtRWozanFRWHp5emFyaXY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iYzE4MjgtMzUzNi00ZDBmLTk1MmIt OWQyNzA5MTc4NGNjLzEvZzI5OVlUQ19pTFY0YUoxV0FLQUZ1SEtvQUc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9iYzE4MjgtMzUzNi00ZDBmLTk1MmItOWQyNzA5MTc4NGNj LzEvTXZHNFg2WGVWNlgtRWozanFRWHp5emFyaXY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwk/6MA0G CSqGSIb3DQEBCwUAA4IBAQAAkQikxPhwpgPKM1d+i5a6yJkX0zmcD6C0Zu1x60mJ F1aZ4dHvp4K8FbgkjHrIFPihPEZLQwogoaA6AP9aP+320pn778o1UttqqVShqZuJ znba+m4rdpRmWli5HRvlqL1Rc/ZrEeKwxbM903T8uv1D/FYgMT+X7DRszk2SPsBs 9TxXsHrDqcP5cH3L5VTMBuPbZAsDpitcGSU8peUZlCBALV9gkJRivWVgqaqepSPR 8NK5kr33muHWmtx9Lcg0+YcVnWCy32dsNbpVqd/111U9SRFLnVdo4ppMiqhsK9eU HvqOoqK0lJYG9VytYyzomRRF7qlXp+4QaQ/5L5PfO3Yr -----END CERTIFICATE-----Generated at Tue Feb 10 00:13:40 2026 by rpki-client