This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4630fd-a0ca-48a0-bcab-90a8c6e785c9/1/G_JW6F6wHuk8xHOWEfihSql-qpI.roa File: G_JW6F6wHuk8xHOWEfihSql-qpI.roa (raw, json) Hash identifier: DioqiN9gi012cANZP03n6UlA0P8l0ilW5rpF7qQDEm8= Subject key identifier: 1B:F2:56:E8:5E:B0:1E:E9:3C:C4:73:96:11:F8:A1:4A:A9:7E:AA:92 Certificate issuer: /CN=ace49763d2fdb90986469403066cb5e6a7825f0c Certificate serial: 019B78346C147687578543CE09E568B49293 Authority key identifier: AC:E4:97:63:D2:FD:B9:09:86:46:94:03:06:6C:B5:E6:A7:82:5F:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOSXY9L9uQmGRpQDBmy15qeCXww.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4630fd-a0ca-48a0-bcab-90a8c6e785c9/1/G_JW6F6wHuk8xHOWEfihSql-qpI.roa Signing time: Thu 01 Jan 2026 06:17:40 +0000 ROA not before: Thu 01 Jan 2026 06:17:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25521 IP address blocks: 193.0.220.0/23 maxlen: 23 195.20.100.0/24 maxlen: 24 2a13:8f40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4630fd-a0ca-48a0-bcab-90a8c6e785c9/1/rOSXY9L9uQmGRpQDBmy15qeCXww.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/4630fd-a0ca-48a0-bcab-90a8c6e785c9/1/rOSXY9L9uQmGRpQDBmy15qeCXww.mft rsync://rpki.ripe.net/repository/DEFAULT/rOSXY9L9uQmGRpQDBmy15qeCXww.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:6c:14:76:87:57:85:43:ce:09:e5:68:b4:92:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ace49763d2fdb90986469403066cb5e6a7825f0c Validity Not Before: Jan 1 06:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1bf256e85eb01ee93cc4739611f8a14aa97eaa92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:48:bc:33:cf:fc:3d:ce:1f:fe:3a:0a:cf:df: f8:7c:1c:f4:81:df:6b:8b:c5:9a:ba:47:7a:55:bf: c2:8a:01:1b:28:2b:f8:d6:77:48:5f:bd:86:37:b9: 3c:cf:27:6c:51:8e:96:c2:10:68:b3:99:02:77:c3: c3:e6:1d:4d:26:41:5c:ea:9b:09:ff:e2:12:74:af: a5:69:cd:89:56:e1:79:28:53:d4:78:fb:83:58:2f: 13:08:14:00:c7:2a:4c:d8:8b:f4:81:ce:0c:be:d9: fc:f8:68:bd:15:89:b3:b9:04:08:9d:fb:1e:9f:7a: c4:67:59:ae:b4:8c:5b:ad:60:28:d3:34:77:9b:33: ee:3e:cb:12:5b:20:fb:fa:26:a8:d4:10:01:2f:12: 5b:11:33:0b:e6:66:df:71:8b:b6:6b:9e:7e:7b:c8: 05:82:cc:21:52:f2:7b:7e:88:f2:05:b2:a8:b8:cb: 2a:73:a3:4b:bb:b8:8b:b0:93:fa:16:c7:52:17:42: e4:a0:22:9c:62:2e:c1:5c:ac:b1:c3:02:6d:02:79: b1:fb:bc:6f:d8:70:1c:ec:63:3b:d5:71:4a:4a:9a: 92:d6:7c:fd:4b:14:cb:1d:e0:58:4c:00:ab:20:73: d9:e0:cf:0d:e7:a4:7e:ae:11:ed:43:b0:b0:57:c9: 5a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F2:56:E8:5E:B0:1E:E9:3C:C4:73:96:11:F8:A1:4A:A9:7E:AA:92 X509v3 Authority Key Identifier: keyid:AC:E4:97:63:D2:FD:B9:09:86:46:94:03:06:6C:B5:E6:A7:82:5F:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOSXY9L9uQmGRpQDBmy15qeCXww.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4630fd-a0ca-48a0-bcab-90a8c6e785c9/1/G_JW6F6wHuk8xHOWEfihSql-qpI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4630fd-a0ca-48a0-bcab-90a8c6e785c9/1/rOSXY9L9uQmGRpQDBmy15qeCXww.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.0.220.0/23 195.20.100.0/24 IPv6: 2a13:8f40::/29 Signature Algorithm: sha256WithRSAEncryption 18:2c:e8:7b:16:15:7b:9f:13:68:87:22:c0:6d:a1:ed:6b:12: b8:9d:e2:71:28:0d:32:f8:4a:a9:00:93:0e:27:a7:6d:f8:37: 29:ab:fe:17:81:fb:db:7f:11:dd:ab:5e:c8:15:d8:1a:e8:c3: 08:d7:32:87:90:49:8a:1e:c2:61:2c:7f:22:e3:bb:96:06:32: a9:d8:21:88:c1:87:bb:fa:c4:65:b3:4b:dd:00:8a:a7:48:e4: 03:dd:07:96:4a:e0:43:4f:4c:33:ec:89:55:e3:c3:cc:18:f5: e0:50:f4:e0:f8:e4:5b:de:41:c6:a8:5b:b3:ff:c8:b4:c7:09: 52:3a:90:1b:ee:79:ed:27:96:14:07:8b:c1:52:e7:e1:03:89: 04:0c:bb:11:6e:85:50:97:64:5e:2e:c4:18:f2:ae:96:19:e9: 6f:42:b9:8a:40:4d:76:25:da:27:a2:50:61:18:2b:4d:64:52: aa:ae:07:4e:8b:b3:d5:02:3e:d1:3b:37:81:aa:ac:77:1e:4a: 4a:90:ae:9a:d7:fd:f6:59:47:bb:b7:51:44:0f:b6:48:ff:18: 33:31:3e:98:28:b2:e6:cb:b9:05:ef:d8:ea:03:00:16:97:62: 6e:3c:cf:19:90:70:2f:d0:7a:0a:cf:ce:a2:e0:68:bc:13:44: dd:8a:64:4d -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt4NGwUdodXhUPOCeVotJKTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjZTQ5NzYzZDJmZGI5MDk4NjQ2OTQwMzA2NmNiNWU2YTc4 MjVmMGMwHhcNMjYwMTAxMDYxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYmYyNTZlODVlYjAxZWU5M2NjNDczOTYxMWY4YTE0YWE5N2VhYTkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0i8M8/8Pc4f/joKz9/4fBz0gd9r i8Waukd6Vb/CigEbKCv41ndIX72GN7k8zydsUY6WwhBos5kCd8PD5h1NJkFc6psJ /+ISdK+lac2JVuF5KFPUePuDWC8TCBQAxypM2Iv0gc4Mvtn8+Gi9FYmzuQQInfse n3rEZ1mutIxbrWAo0zR3mzPuPssSWyD7+iao1BABLxJbETML5mbfcYu2a55+e8gF gswhUvJ7fojyBbKouMsqc6NLu7iLsJP6FsdSF0LkoCKcYi7BXKyxwwJtAnmx+7xv 2HAc7GM71XFKSpqS1nz9SxTLHeBYTACrIHPZ4M8N56R+rhHtQ7CwV8laKQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFBvyVuhesB7pPMRzlhH4oUqpfqqSMB8GA1UdIwQY MBaAFKzkl2PS/bkJhkaUAwZsteangl8MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvck9TWFk5TDl1UW1HUnBRREJteTE1cWVDWHd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS80NjMwZmQtYTBjYS00OGEwLWJjYWIt OTBhOGM2ZTc4NWM5LzEvR19KVzZGNndIdWs4eEhPV0VmaWhTcWwtcXBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS80NjMwZmQtYTBjYS00OGEwLWJjYWItOTBhOGM2ZTc4NWM5 LzEvck9TWFk5TDl1UW1HUnBRREJteTE1cWVDWHd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQBwQDcAwQA wxRkMA0EAgACMAcDBQMqE49AMA0GCSqGSIb3DQEBCwUAA4IBAQAYLOh7FhV7nxNo hyLAbaHtaxK4neJxKA0y+EqpAJMOJ6dt+Dcpq/4XgfvbfxHdq17IFdga6MMI1zKH kEmKHsJhLH8i47uWBjKp2CGIwYe7+sRls0vdAIqnSOQD3QeWSuBDT0wz7IlV48PM GPXgUPTg+ORb3kHGqFuz/8i0xwlSOpAb7nntJ5YUB4vBUufhA4kEDLsRboVQl2Re LsQY8q6WGelvQrmKQE12JdonolBhGCtNZFKqrgdOi7PVAj7ROzeBqqx3HkpKkK6a 1/32WUe7t1FED7ZI/xgzMT6YKLLmy7kF79jqAwAWl2JuPM8ZkHAv0HoKz86i4Gi8 E0TdimRN -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:46 2026 by rpki-client