This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/GokOnLgcwEKBfp_sk2MIuuQ-_TY.roa File: GokOnLgcwEKBfp_sk2MIuuQ-_TY.roa (raw, json) Hash identifier: zQRRa9NS4gIwYEiBt9K5iRhHmWoyu+BxEByrxS3tpEY= Subject key identifier: 1A:89:0E:9C:B8:1C:C0:42:81:7E:9F:EC:93:63:08:BA:E4:3E:FD:36 Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5 Certificate serial: 019B7F8307177C64A269D093E8DD085589F9 Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/GokOnLgcwEKBfp_sk2MIuuQ-_TY.roa Signing time: Fri 02 Jan 2026 16:20:52 +0000 ROA not before: Fri 02 Jan 2026 16:20:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20648 IP address blocks: 46.233.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.mft rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:07:17:7c:64:a2:69:d0:93:e8:dd:08:55:89:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5 Validity Not Before: Jan 2 16:20:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a890e9cb81cc042817e9fec936308bae43efd36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:08:d1:26:ff:92:0d:40:3e:cc:e6:27:a9:04: be:00:6b:a3:8a:40:04:c0:ef:e9:a6:b7:00:a3:19: 26:b9:55:9a:67:b7:bc:6a:74:68:03:b8:a9:f1:51: 9a:8f:7c:f6:31:13:f7:35:8c:2b:e4:17:aa:7a:05: 84:3d:72:35:5c:c2:04:ae:91:4a:6a:9b:4b:8c:49: cb:46:e7:ea:94:18:a8:6d:1a:30:fd:c5:8c:da:49: 7a:c9:53:bd:0b:2a:d3:05:29:e7:c3:55:d9:85:8e: f0:19:14:fd:a1:1d:b3:2f:8a:33:19:5d:96:d5:47: 79:18:7d:fe:14:4a:b2:36:39:a4:48:ad:00:ce:a0: 7e:28:22:41:25:58:06:b3:28:1c:e8:ef:cd:97:2e: b6:38:e8:ed:88:d6:42:f8:2f:b2:69:f0:ea:a7:2c: a8:76:59:a9:d8:94:56:09:9d:1a:71:31:eb:37:71: 6c:18:d5:32:80:82:99:95:d7:39:f3:c1:36:c1:d6: 00:c2:37:1f:8c:c1:0f:2d:a0:4f:bb:43:38:5e:33: 07:20:61:bd:e3:26:0c:2d:99:b9:44:dd:d8:c2:70: 3f:46:4b:b9:59:b2:93:c5:58:75:2d:6d:1c:65:e8: f8:cc:30:04:e9:dd:d8:a8:67:71:64:b2:e5:87:2e: 2b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:89:0E:9C:B8:1C:C0:42:81:7E:9F:EC:93:63:08:BA:E4:3E:FD:36 X509v3 Authority Key Identifier: keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/GokOnLgcwEKBfp_sk2MIuuQ-_TY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.233.33.0/24 Signature Algorithm: sha256WithRSAEncryption 11:3c:3f:b2:3c:80:61:db:01:8c:5b:fc:d7:7d:a1:b6:9a:03: 19:d6:0d:a9:e0:fb:bc:0f:6e:d2:4b:ed:b7:af:35:97:f8:0f: 9a:a4:84:fc:ff:75:53:84:e3:64:bb:19:5d:bc:3c:1f:37:42: 8b:4a:cf:9e:35:a2:f5:a6:5a:86:ee:9b:3a:34:68:29:69:cb: 4b:ce:ab:45:77:bf:ef:75:2a:8c:f7:00:7c:05:a7:bc:30:7e: 8a:a8:f0:63:3e:fe:7f:26:e5:9f:34:6e:75:4c:eb:c6:1e:07: 53:d3:9c:da:35:fb:51:5b:e1:82:25:53:f7:e3:db:7a:03:17: 9b:47:c8:27:b0:a2:72:87:e0:4e:b5:b0:fb:dc:21:96:4b:72: 92:34:c2:69:cf:e2:df:2e:ea:c1:75:b3:78:f7:43:38:90:10: f1:5f:d2:9e:1a:03:aa:05:b0:f1:7f:36:b0:a4:9d:f6:ed:00: 1a:08:21:6d:7b:e9:b0:d1:27:1e:6c:96:fc:47:5a:ff:28:ea: b8:70:8f:e9:9d:04:0c:04:4d:8e:a3:95:e5:e9:49:62:20:a8: ff:41:19:8b:62:0e:62:87:6a:0e:b9:8d:40:5e:88:b8:34:84: d3:02:e6:df:ba:6b:fe:78:6f:19:4c:a5:03:6b:6a:40:f1:c5: f0:4a:ec:20 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gwcXfGSiadCT6N0IVYn5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmYzUwZDBkNDIwNjdiNzZhYjFhMmU4ZTUzM2ZmODQ5YjY1 ZDU2ZjUwHhcNMjYwMTAyMTYyMDUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTg5MGU5Y2I4MWNjMDQyODE3ZTlmZWM5MzYzMDhiYWU0M2VmZDM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQjRJv+SDUA+zOYnqQS+AGujikAE wO/pprcAoxkmuVWaZ7e8anRoA7ip8VGaj3z2MRP3NYwr5BeqegWEPXI1XMIErpFK aptLjEnLRufqlBiobRow/cWM2kl6yVO9CyrTBSnnw1XZhY7wGRT9oR2zL4ozGV2W 1Ud5GH3+FEqyNjmkSK0AzqB+KCJBJVgGsygc6O/Nly62OOjtiNZC+C+yafDqpyyo dlmp2JRWCZ0acTHrN3FsGNUygIKZldc588E2wdYAwjcfjMEPLaBPu0M4XjMHIGG9 4yYMLZm5RN3YwnA/Rku5WbKTxVh1LW0cZej4zDAE6d3YqGdxZLLlhy4rAwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBqJDpy4HMBCgX6f7JNjCLrkPv02MB8GA1UdIwQY MBaAFG/FDQ1CBnt2qxoujlM/+Em2XVb1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjhVTkRVSUdlM2FyR2k2T1V6XzRTYlpkVnZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS9mMmJkNmMtNDg0My00ZWFkLWFhMDkt M2MxNmZmODQxYWIyLzEvR29rT25MZ2N3RUtCZnBfc2syTUl1dVEtX1RZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS9mMmJkNmMtNDg0My00ZWFkLWFhMDktM2MxNmZmODQxYWIy LzEvYjhVTkRVSUdlM2FyR2k2T1V6XzRTYlpkVnZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALukhMA0G CSqGSIb3DQEBCwUAA4IBAQARPD+yPIBh2wGMW/zXfaG2mgMZ1g2p4Pu8D27SS+23 rzWX+A+apIT8/3VThONkuxldvDwfN0KLSs+eNaL1plqG7ps6NGgpactLzqtFd7/v dSqM9wB8Bae8MH6KqPBjPv5/JuWfNG51TOvGHgdT05zaNftRW+GCJVP349t6Axeb R8gnsKJyh+BOtbD73CGWS3KSNMJpz+LfLurBdbN490M4kBDxX9KeGgOqBbDxfzaw pJ327QAaCCFte+mw0ScebJb8R1r/KOq4cI/pnQQMBE2Oo5Xl6UliIKj/QRmLYg5i h2oOuY1AXoi4NITTAubfumv+eG8ZTKUDa2pA8cXwSuwg -----END CERTIFICATE-----Generated at Thu Jan 8 08:55:09 2026 by rpki-client