This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/gdkG9J28VtKge69Dtz6nYxoWS4E.roa File: gdkG9J28VtKge69Dtz6nYxoWS4E.roa (raw, json) Hash identifier: 8XwMXuWP61QIVZw8vtY3HHl4aNq7qQ8km37pm++lPVA= Subject key identifier: 81:D9:06:F4:9D:BC:56:D2:A0:7B:AF:43:B7:3E:A7:63:1A:16:4B:81 Certificate issuer: /CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Certificate serial: 019B78A32389C190BEDEBCE4ED40871AE20E Authority key identifier: F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/gdkG9J28VtKge69Dtz6nYxoWS4E.roa Signing time: Thu 01 Jan 2026 08:18:35 +0000 ROA not before: Thu 01 Jan 2026 08:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61138 IP address blocks: 109.205.193.0/24 maxlen: 24 2a01:fb05:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.mft rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:23:89:c1:90:be:de:bc:e4:ed:40:87:1a:e2:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Validity Not Before: Jan 1 08:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=81d906f49dbc56d2a07baf43b73ea7631a164b81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b3:7a:e5:0a:88:fc:0b:a0:08:b2:99:0f:69: a5:48:ef:6e:24:42:e5:7c:bd:9a:c2:da:14:42:9f: 1f:57:20:cd:53:a1:f7:b7:fa:a2:5b:06:7a:a3:31: d4:70:e5:2f:5e:48:3f:5f:12:be:6d:04:08:ff:1b: 10:62:05:f9:c1:be:a9:b1:fc:f2:f3:1b:cb:6e:85: e1:f1:c4:8b:76:a6:7c:6d:75:d0:e6:08:4f:bd:cf: 9e:a7:af:66:2c:4f:85:8a:a5:89:80:a7:d7:f8:0a: 91:d2:17:24:b3:22:fd:47:79:4c:32:3f:e8:ab:8a: d0:7f:2d:a1:18:b3:66:03:87:b5:a1:8b:13:fa:ac: b0:c9:8a:c9:be:0b:60:f1:e2:76:9d:ab:69:d6:1c: 46:b9:e6:37:52:a9:d0:c1:64:aa:b8:97:8e:dc:c1: 56:1d:9c:0f:cc:7a:79:c0:4a:52:0f:5b:bd:f3:3a: 5c:b4:64:f8:05:01:10:d8:17:19:cd:bd:fd:59:7b: 0c:65:5f:56:7f:cc:62:d1:f7:48:71:1c:88:a2:f3: 61:f9:6a:cb:94:29:9e:30:b6:3f:49:fa:1d:76:5c: f2:ca:85:0f:f3:bd:90:1d:a7:a1:fa:29:70:da:ca: 36:09:b5:e1:9f:24:80:b6:6b:8f:42:f4:98:9c:e0: 5c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D9:06:F4:9D:BC:56:D2:A0:7B:AF:43:B7:3E:A7:63:1A:16:4B:81 X509v3 Authority Key Identifier: keyid:F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/gdkG9J28VtKge69Dtz6nYxoWS4E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.193.0/24 IPv6: 2a01:fb05:3000::/36 Signature Algorithm: sha256WithRSAEncryption 6e:17:3e:e3:4f:52:7e:10:21:91:03:45:ef:c6:e2:06:f3:f4: 16:4f:30:4d:77:9c:13:74:fc:5b:8f:3b:5f:92:e3:bf:b7:36: 2e:1b:46:eb:e6:53:1b:4c:cc:ab:ce:b0:d6:2b:ee:ce:4c:12: fb:3f:3e:b9:47:b4:a7:7c:eb:5e:73:ff:c2:c0:86:80:67:4f: 81:19:d9:29:77:94:e7:95:b1:53:df:6e:8e:4e:4c:75:8b:c5: bb:6a:23:1f:fe:0c:bd:0e:93:d9:03:32:f6:45:30:fc:28:1a: 63:99:92:5d:87:f9:9c:61:4d:aa:57:28:35:30:b3:b6:d5:41: 83:e5:6d:0e:3f:25:b2:9b:86:03:fc:7c:7f:5f:37:46:46:6d: ca:ac:69:37:eb:d3:73:38:35:be:d2:a3:aa:03:18:76:13:54: 7b:6d:72:9e:83:f8:a8:5c:b2:83:bd:43:b9:a5:40:0a:ff:15: cf:db:49:94:8c:f0:be:97:19:bb:fa:63:c6:b5:81:c4:69:93: e9:34:cc:48:40:be:83:fd:b5:e5:04:3a:48:24:29:7e:70:3d: d3:4e:14:d3:4d:98:f7:21:89:3d:46:02:46:17:23:f1:fa:60: 52:d7:ab:e9:bc:cd:96:f4:dc:cc:99:ba:a7:2b:b1:5c:0d:86: 03:dc:9d:a4 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt4oyOJwZC+3rzk7UCHGuIOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMjQ1ODFlNDM2ODgyNWQ1ZTEzZjRmMmEwZDZmZjhlNDg0 Yzk1ZTYwHhcNMjYwMTAxMDgxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MWQ5MDZmNDlkYmM1NmQyYTA3YmFmNDNiNzNlYTc2MzFhMTY0YjgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLN65QqI/AugCLKZD2mlSO9uJELl fL2awtoUQp8fVyDNU6H3t/qiWwZ6ozHUcOUvXkg/XxK+bQQI/xsQYgX5wb6psfzy 8xvLboXh8cSLdqZ8bXXQ5ghPvc+ep69mLE+FiqWJgKfX+AqR0hcksyL9R3lMMj/o q4rQfy2hGLNmA4e1oYsT+qywyYrJvgtg8eJ2natp1hxGueY3UqnQwWSquJeO3MFW HZwPzHp5wEpSD1u98zpctGT4BQEQ2BcZzb39WXsMZV9Wf8xi0fdIcRyIovNh+WrL lCmeMLY/SfoddlzyyoUP872QHaeh+ilw2so2CbXhnySAtmuPQvSYnOBcnwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFIHZBvSdvFbSoHuvQ7c+p2MaFkuBMB8GA1UdIwQY MBaAFPMkWB5DaIJdXhP08qDW/45ITJXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMt NmUyZDk3Y2ExNWZmLzEvZ2RrRzlKMjhWdEtnZTY5RHR6Nm5ZeG9XUzRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMtNmUyZDk3Y2ExNWZm LzEvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAbc3BMA4E AgACMAgDBgQqAfsFMDANBgkqhkiG9w0BAQsFAAOCAQEAbhc+409SfhAhkQNF78bi BvP0Fk8wTXecE3T8W487X5Ljv7c2LhtG6+ZTG0zMq86w1ivuzkwS+z8+uUe0p3zr XnP/wsCGgGdPgRnZKXeU55WxU99ujk5MdYvFu2ojH/4MvQ6T2QMy9kUw/CgaY5mS XYf5nGFNqlcoNTCzttVBg+VtDj8lspuGA/x8f183RkZtyqxpN+vTczg1vtKjqgMY dhNUe21ynoP4qFyyg71DuaVACv8Vz9tJlIzwvpcZu/pjxrWBxGmT6TTMSEC+g/21 5QQ6SCQpfnA9004U002Y9yGJPUYCRhcj8fpgUter6bzNlvTczJm6pyuxXA2GA9yd pA== -----END CERTIFICATE-----Generated at Mon Jan 19 14:43:30 2026 by rpki-client