This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/6cba1a-5f4d-4308-bf46-eb37a85a82c5/1/GkouH-o047T5JTSoOlFrFlZ6LAk.roa File: GkouH-o047T5JTSoOlFrFlZ6LAk.roa (raw, json) Hash identifier: LyKAkgLhQ3B6LkGr5mqVhCq49UmdkcvtOyqh3Ra9Jtw= Subject key identifier: 1A:4A:2E:1F:EA:34:E3:B4:F9:25:34:A8:3A:51:6B:16:56:7A:2C:09 Certificate issuer: /CN=31828c99d35cb92e2d53daf128e497e841b63ab0 Certificate serial: 019B7F8508CF0BA7F1B700FB499B3F3AD05E Authority key identifier: 31:82:8C:99:D3:5C:B9:2E:2D:53:DA:F1:28:E4:97:E8:41:B6:3A:B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYKMmdNcuS4tU9rxKOSX6EG2OrA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/6cba1a-5f4d-4308-bf46-eb37a85a82c5/1/GkouH-o047T5JTSoOlFrFlZ6LAk.roa Signing time: Fri 02 Jan 2026 16:23:03 +0000 ROA not before: Fri 02 Jan 2026 16:23:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198285 IP address blocks: 158.255.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/6cba1a-5f4d-4308-bf46-eb37a85a82c5/1/MYKMmdNcuS4tU9rxKOSX6EG2OrA.crl rsync://rpki.ripe.net/repository/DEFAULT/de/6cba1a-5f4d-4308-bf46-eb37a85a82c5/1/MYKMmdNcuS4tU9rxKOSX6EG2OrA.mft rsync://rpki.ripe.net/repository/DEFAULT/MYKMmdNcuS4tU9rxKOSX6EG2OrA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:08:cf:0b:a7:f1:b7:00:fb:49:9b:3f:3a:d0:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31828c99d35cb92e2d53daf128e497e841b63ab0 Validity Not Before: Jan 2 16:23:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a4a2e1fea34e3b4f92534a83a516b16567a2c09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:43:54:c5:24:28:57:5e:17:76:bc:1c:51:21: 78:ab:7d:0f:38:2e:4f:4c:26:ac:95:c2:18:fe:e2: 5a:bc:3a:c4:eb:d2:6f:77:28:e0:44:64:ed:7f:fd: 93:8e:6c:0b:d5:1d:bc:75:ae:43:14:12:c8:48:6c: fa:cb:42:46:46:64:4d:56:48:08:99:90:20:a2:97: 68:52:fd:7b:48:b9:d5:af:dd:d3:49:a0:66:79:15: 56:11:74:dc:3a:13:07:1b:c2:f6:4d:f7:90:b0:25: 2f:5d:92:26:3b:ca:f9:51:90:75:cc:e1:eb:8c:46: c3:b6:12:74:ab:c3:a9:fa:6a:3f:63:f3:36:5f:34: f8:d1:0a:22:2e:f1:34:0a:b5:0c:f2:42:98:c8:4a: b7:a0:94:73:f3:c3:c0:2e:82:41:e3:e3:69:56:1f: 6e:55:28:0a:d9:12:3d:eb:bf:91:09:60:21:a5:f0: d8:f9:c0:63:dd:2a:48:74:2e:d8:90:f2:08:00:0e: 77:e8:df:7a:20:70:02:c0:07:70:3d:26:62:f0:25: 74:d1:ac:10:5c:24:a6:5a:99:67:ab:e6:fb:d4:c1: 77:2a:da:de:1c:e6:68:e9:f3:78:50:b6:74:7b:b3: 99:b8:58:20:e4:f0:92:27:54:47:da:4b:dd:38:6b: 0b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4A:2E:1F:EA:34:E3:B4:F9:25:34:A8:3A:51:6B:16:56:7A:2C:09 X509v3 Authority Key Identifier: keyid:31:82:8C:99:D3:5C:B9:2E:2D:53:DA:F1:28:E4:97:E8:41:B6:3A:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYKMmdNcuS4tU9rxKOSX6EG2OrA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6cba1a-5f4d-4308-bf46-eb37a85a82c5/1/GkouH-o047T5JTSoOlFrFlZ6LAk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6cba1a-5f4d-4308-bf46-eb37a85a82c5/1/MYKMmdNcuS4tU9rxKOSX6EG2OrA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.255.56.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:b5:0b:0e:4e:2c:c7:54:dc:c9:4a:ae:18:d5:ea:f9:05:52: 70:0b:14:15:2c:48:52:9d:7a:77:52:e5:16:30:20:0e:6a:d0: f7:3d:58:2b:ae:f3:53:7d:92:b4:b0:66:83:73:50:df:66:5e: 1c:47:c6:b9:01:c8:ac:74:d9:80:5c:32:ff:55:ea:4f:e6:1b: e6:2b:5f:4b:31:27:e1:70:76:71:18:ad:ea:95:1b:49:ac:d0: 3c:ec:71:2c:c2:d5:db:e9:3b:c3:50:8e:b7:ae:1c:1c:14:40: 32:f2:c6:26:f5:66:0e:4c:8d:fc:dc:44:ef:a4:a7:15:9e:56: 13:ce:16:1e:35:3f:31:a4:8e:9a:e5:11:a3:c1:62:23:5c:6c: cd:53:4b:01:49:42:88:29:48:22:46:f4:23:54:5c:0b:0a:38: fe:07:52:f8:07:a6:20:2c:64:50:cc:f0:e7:e4:e6:04:f5:1d: 17:31:94:8b:a4:34:c4:d0:99:f9:38:2d:88:48:2a:8b:2d:d7: fb:64:92:4e:98:bc:9e:a8:58:41:45:fb:3a:99:d7:a2:8a:16: 95:51:3e:fc:c4:14:16:d5:aa:4c:3b:b9:ad:be:f0:03:24:ef: d6:d7:86:32:05:0c:91:e6:8a:12:9c:dc:0a:04:bc:cf:b0:17: e8:fd:9a:43 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hQjPC6fxtwD7SZs/OtBeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxODI4Yzk5ZDM1Y2I5MmUyZDUzZGFmMTI4ZTQ5N2U4NDFi NjNhYjAwHhcNMjYwMTAyMTYyMzAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTRhMmUxZmVhMzRlM2I0ZjkyNTM0YTgzYTUxNmIxNjU2N2EyYzA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAykNUxSQoV14XdrwcUSF4q30POC5P TCaslcIY/uJavDrE69JvdyjgRGTtf/2TjmwL1R28da5DFBLISGz6y0JGRmRNVkgI mZAgopdoUv17SLnVr93TSaBmeRVWEXTcOhMHG8L2TfeQsCUvXZImO8r5UZB1zOHr jEbDthJ0q8Op+mo/Y/M2XzT40QoiLvE0CrUM8kKYyEq3oJRz88PALoJB4+NpVh9u VSgK2RI967+RCWAhpfDY+cBj3SpIdC7YkPIIAA536N96IHACwAdwPSZi8CV00awQ XCSmWplnq+b71MF3KtreHOZo6fN4ULZ0e7OZuFgg5PCSJ1RH2kvdOGsLVQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBpKLh/qNOO0+SU0qDpRaxZWeiwJMB8GA1UdIwQY MBaAFDGCjJnTXLkuLVPa8Sjkl+hBtjqwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVlLTW1kTmN1UzR0VTlyeEtPU1g2RUcyT3JBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS82Y2JhMWEtNWY0ZC00MzA4LWJmNDYt ZWIzN2E4NWE4MmM1LzEvR2tvdUgtbzA0N1Q1SlRTb09sRnJGbFo2TEFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS82Y2JhMWEtNWY0ZC00MzA4LWJmNDYtZWIzN2E4NWE4MmM1 LzEvTVlLTW1kTmN1UzR0VTlyeEtPU1g2RUcyT3JBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnv84MA0G CSqGSIb3DQEBCwUAA4IBAQANtQsOTizHVNzJSq4Y1er5BVJwCxQVLEhSnXp3UuUW MCAOatD3PVgrrvNTfZK0sGaDc1DfZl4cR8a5AcisdNmAXDL/VepP5hvmK19LMSfh cHZxGK3qlRtJrNA87HEswtXb6TvDUI63rhwcFEAy8sYm9WYOTI383ETvpKcVnlYT zhYeNT8xpI6a5RGjwWIjXGzNU0sBSUKIKUgiRvQjVFwLCjj+B1L4B6YgLGRQzPDn 5OYE9R0XMZSLpDTE0Jn5OC2ISCqLLdf7ZJJOmLyeqFhBRfs6mdeiihaVUT78xBQW 1apMO7mtvvADJO/W14YyBQyR5ooSnNwKBLzPsBfo/ZpD -----END CERTIFICATE-----Generated at Tue Feb 10 01:29:04 2026 by rpki-client