This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/GJhh8vWiqWpiHiP3VYi3X3ItnvA.roa File: GJhh8vWiqWpiHiP3VYi3X3ItnvA.roa (raw, json) Hash identifier: tNirVmxjlbrQuQ0TS8mgziEdfotI43SAU47hWmclcD4= Subject key identifier: 18:98:61:F2:F5:A2:A9:6A:62:1E:23:F7:55:88:B7:5F:72:2D:9E:F0 Certificate issuer: /CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Certificate serial: 019B78A3277CABF64C08841CE2CAAB67ED03 Authority key identifier: F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/GJhh8vWiqWpiHiP3VYi3X3ItnvA.roa Signing time: Thu 01 Jan 2026 08:18:36 +0000 ROA not before: Thu 01 Jan 2026 08:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212232 IP address blocks: 109.205.193.0/24 maxlen: 24 2a01:fb01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.mft rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:27:7c:ab:f6:4c:08:84:1c:e2:ca:ab:67:ed:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Validity Not Before: Jan 1 08:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=189861f2f5a2a96a621e23f75588b75f722d9ef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b7:be:ce:dc:ec:91:a2:ab:7d:2c:3f:80:bb: 38:a7:e2:d3:5c:8e:fc:b2:f5:c8:17:50:a5:3f:ad: 3e:6b:69:89:f6:77:cc:8a:d1:8c:e4:c5:60:bc:ee: e0:cf:2c:af:ca:e8:8a:da:28:56:b6:ba:22:ca:a7: 20:f2:ea:af:6c:cd:9e:01:45:4a:5a:5e:2d:a4:3a: c1:ae:cf:a9:3e:3c:54:8c:b0:a5:69:72:04:db:91: f9:2d:e8:48:3d:cb:21:b8:68:73:54:4c:63:f8:0a: 79:f6:14:8c:fa:2f:e5:ea:f7:98:02:d5:b2:d3:a2: 01:1c:95:ed:a7:6d:31:79:d3:45:66:a1:8e:cc:f6: 87:a9:ba:86:b4:71:db:dd:6e:3e:8f:9a:ca:fd:ed: 64:0a:83:e4:cd:76:47:9e:c1:95:af:91:25:de:ef: f8:07:be:4c:43:d6:54:f8:3e:62:a3:72:a6:e2:40: 1c:7c:01:2a:1b:3f:af:c1:4e:c2:f0:55:ee:46:7b: 29:f8:b7:d5:c4:9b:2e:98:6f:97:50:9f:e7:57:c9: f0:f6:07:53:aa:02:3b:f8:f2:ad:4b:72:b0:1c:35: 57:c3:b5:2c:46:0b:c9:4c:06:b7:03:07:5e:05:bf: 3e:f2:fc:3d:05:3e:a0:eb:bc:f0:1e:9e:d5:fc:27: ea:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:98:61:F2:F5:A2:A9:6A:62:1E:23:F7:55:88:B7:5F:72:2D:9E:F0 X509v3 Authority Key Identifier: keyid:F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/GJhh8vWiqWpiHiP3VYi3X3ItnvA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.193.0/24 IPv6: 2a01:fb01::/32 Signature Algorithm: sha256WithRSAEncryption 2a:03:6b:26:e8:fd:cf:0a:8f:9b:bc:25:b6:54:c0:5d:27:57: 3e:c1:bd:47:25:45:ba:d8:f8:c4:e8:d4:be:e8:db:17:95:11: 18:56:ec:16:50:69:5a:fe:08:a0:56:44:0e:24:37:4d:59:f0: ac:81:10:2f:69:db:53:33:27:2f:86:b6:5f:77:94:f8:c8:10: 1e:ca:61:7e:ec:af:49:30:27:41:8f:d4:c1:5e:80:c4:e4:1a: 28:8e:7f:80:00:d8:ed:ca:59:8d:3f:e6:00:33:9a:63:7b:31: a9:1c:df:8f:6f:05:d9:bc:bd:d5:8d:f8:5c:db:ec:7a:92:bb: 71:0c:04:8d:e7:d0:07:76:d7:3a:d4:21:1f:60:c5:67:20:23: 22:37:7c:83:f8:de:a4:ad:bc:02:9c:35:20:71:c2:8c:cf:d4: 88:3e:ef:f2:42:39:cb:1d:ae:d1:ec:f8:a5:3d:7f:5e:ba:32: 22:86:2e:4e:9f:7e:1e:41:e4:82:5c:97:3f:e5:17:bc:dd:99: 34:fa:cc:9e:81:13:bf:73:b6:83:b1:9f:f9:c0:d3:94:cd:fc: f5:c4:60:dc:45:61:f6:8a:55:5f:2b:8b:8b:93:79:ed:53:6b: e6:a5:21:49:40:36:b0:52:13:44:9f:2f:5f:19:63:c2:61:32: cd:d7:e8:d8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4oyd8q/ZMCIQc4sqrZ+0DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMjQ1ODFlNDM2ODgyNWQ1ZTEzZjRmMmEwZDZmZjhlNDg0 Yzk1ZTYwHhcNMjYwMTAxMDgxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODk4NjFmMmY1YTJhOTZhNjIxZTIzZjc1NTg4Yjc1ZjcyMmQ5ZWYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLe+ztzskaKrfSw/gLs4p+LTXI78 svXIF1ClP60+a2mJ9nfMitGM5MVgvO7gzyyvyuiK2ihWtroiyqcg8uqvbM2eAUVK Wl4tpDrBrs+pPjxUjLClaXIE25H5LehIPcshuGhzVExj+Ap59hSM+i/l6veYAtWy 06IBHJXtp20xedNFZqGOzPaHqbqGtHHb3W4+j5rK/e1kCoPkzXZHnsGVr5El3u/4 B75MQ9ZU+D5io3Km4kAcfAEqGz+vwU7C8FXuRnsp+LfVxJsumG+XUJ/nV8nw9gdT qgI7+PKtS3KwHDVXw7UsRgvJTAa3AwdeBb8+8vw9BT6g67zwHp7V/CfqqwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBiYYfL1oqlqYh4j91WIt19yLZ7wMB8GA1UdIwQY MBaAFPMkWB5DaIJdXhP08qDW/45ITJXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMt NmUyZDk3Y2ExNWZmLzEvR0poaDh2V2lxV3BpSGlQM1ZZaTNYM0l0bnZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMtNmUyZDk3Y2ExNWZm LzEvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAbc3BMA0E AgACMAcDBQAqAfsBMA0GCSqGSIb3DQEBCwUAA4IBAQAqA2sm6P3PCo+bvCW2VMBd J1c+wb1HJUW62PjE6NS+6NsXlREYVuwWUGla/gigVkQOJDdNWfCsgRAvadtTMycv hrZfd5T4yBAeymF+7K9JMCdBj9TBXoDE5Boojn+AANjtylmNP+YAM5pjezGpHN+P bwXZvL3Vjfhc2+x6krtxDASN59AHdtc61CEfYMVnICMiN3yD+N6krbwCnDUgccKM z9SIPu/yQjnLHa7R7PilPX9eujIihi5On34eQeSCXJc/5Re83Zk0+syegRO/c7aD sZ/5wNOUzfz1xGDcRWH2ilVfK4uLk3ntU2vmpSFJQDawUhNEny9fGWPCYTLN1+jY -----END CERTIFICATE-----Generated at Mon Jan 19 14:40:07 2026 by rpki-client