This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/21-Gx_HWglPextRWoT4DnwDF0pk.roa File: 21-Gx_HWglPextRWoT4DnwDF0pk.roa (raw, json) Hash identifier: e+zmzR2Or2qOy/pWHXJyRpHdRXRWm4G3qfUx/eDhcoI= Subject key identifier: DB:5F:86:C7:F1:D6:82:53:DE:C6:D4:56:A1:3E:03:9F:00:C5:D2:99 Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929 Certificate serial: 019C096A12B832E4232B84B72E687A8011A3 Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/21-Gx_HWglPextRWoT4DnwDF0pk.roa Signing time: Thu 29 Jan 2026 11:01:12 +0000 ROA not before: Thu 29 Jan 2026 11:01:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29802 IP address blocks: 46.37.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.mft rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 11:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:09:6a:12:b8:32:e4:23:2b:84:b7:2e:68:7a:80:11:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929 Validity Not Before: Jan 29 11:01:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db5f86c7f1d68253dec6d456a13e039f00c5d299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a6:d7:af:19:71:a9:a9:5e:eb:9a:2b:dd:83: 0e:b2:5e:69:44:e2:a1:fb:b2:a9:3b:a3:17:19:b8: d1:00:66:c3:a6:93:fd:3a:f3:25:29:ff:e3:db:8a: 1e:9f:ca:7c:de:0e:ea:3e:4e:f9:84:3f:82:15:3e: 26:23:79:1b:c8:03:86:9f:15:df:d4:8b:d5:c5:9f: cf:9c:56:17:94:2d:b3:e5:12:f4:e2:ec:20:d4:af: df:2c:18:53:30:58:d5:cb:5d:4c:37:53:f8:10:e1: 27:69:66:0d:a3:ad:dd:d0:9b:e8:3d:b1:03:74:5c: fc:8c:a8:ec:1e:3d:67:fc:94:1f:5c:58:46:47:f2: 65:47:fb:8c:39:9b:64:f8:cb:50:78:9d:1e:c8:ad: 59:08:96:f9:1d:05:9c:60:50:25:19:d1:49:a5:3d: 69:96:2c:35:58:e4:75:18:71:e8:45:25:84:8d:6f: 63:58:0a:33:9b:13:73:b0:87:89:43:f4:56:7f:89: d3:93:ff:fa:66:a6:25:69:3a:cf:5d:4e:91:39:0b: 88:ca:13:4d:78:f3:6c:94:15:06:b5:32:a5:b3:0d: e0:72:3d:8b:58:48:56:c0:70:fd:5b:79:75:e7:12: 99:6f:60:91:8a:c2:de:6d:a0:46:c4:68:f3:42:1e: de:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:5F:86:C7:F1:D6:82:53:DE:C6:D4:56:A1:3E:03:9F:00:C5:D2:99 X509v3 Authority Key Identifier: keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/21-Gx_HWglPextRWoT4DnwDF0pk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.37.109.0/24 Signature Algorithm: sha256WithRSAEncryption 33:31:a2:a8:b6:9c:75:69:01:ff:5a:e5:7e:79:9c:9e:29:1e: ba:b3:11:55:47:1d:45:ce:0a:16:e9:ec:dc:16:d6:2b:b8:9b: d9:8d:89:ba:b6:4a:59:66:60:41:1e:8f:d7:ae:68:22:51:02: 7f:62:eb:67:ed:0f:77:8f:8d:5f:7c:4f:59:a8:80:5e:00:2a: eb:31:a9:fc:1e:90:97:62:55:bf:db:7b:4d:99:d9:2e:d6:68: bd:20:9e:74:bf:ec:1d:9a:1d:06:89:cf:25:10:8b:99:cb:9f: be:b0:f0:ff:ac:69:92:7d:3d:7d:e6:92:12:15:f4:75:94:9e: f8:8a:34:11:0b:8c:73:c7:5e:1c:37:a2:8a:ba:b9:02:40:4e: 2a:4a:06:e7:4d:9c:dd:34:e4:87:18:b7:ba:d0:36:58:4a:ae: 98:d9:13:95:5d:14:71:f3:18:a5:45:68:41:e4:ed:77:18:24: bd:db:7a:a5:d0:2c:33:c3:ec:e9:c8:f9:71:8a:7d:58:9e:e2: 79:9f:a5:87:09:aa:54:be:8c:8f:48:1e:60:56:f7:be:37:95: 32:68:6e:97:8e:3c:ba:86:b9:bb:20:a8:42:b7:93:84:68:57: 91:ca:5c:7a:4f:bc:06:35:3c:6f:14:41:60:1b:07:9e:a3:78: 32:e8:7c:a9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZwJahK4MuQjK4S3Lmh6gBGjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzY2YwODg0OTE4YTUwMjM5ZWY3MDUxOGVlOWZjMDRmMWFh ZTE5MjkwHhcNMjYwMTI5MTEwMTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjVmODZjN2YxZDY4MjUzZGVjNmQ0NTZhMTNlMDM5ZjAwYzVkMjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0abXrxlxqale65or3YMOsl5pROKh +7KpO6MXGbjRAGbDppP9OvMlKf/j24oen8p83g7qPk75hD+CFT4mI3kbyAOGnxXf 1IvVxZ/PnFYXlC2z5RL04uwg1K/fLBhTMFjVy11MN1P4EOEnaWYNo63d0JvoPbED dFz8jKjsHj1n/JQfXFhGR/JlR/uMOZtk+MtQeJ0eyK1ZCJb5HQWcYFAlGdFJpT1p liw1WOR1GHHoRSWEjW9jWAozmxNzsIeJQ/RWf4nTk//6ZqYlaTrPXU6ROQuIyhNN ePNslBUGtTKlsw3gcj2LWEhWwHD9W3l15xKZb2CRisLebaBGxGjzQh7eXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNtfhsfx1oJT3sbUVqE+A58AxdKZMB8GA1UdIwQY MBaAFNPPCISRilAjnvcFGO6fwE8arhkpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEt MjMxNTQ5NDA5NzIwLzEvMjEtR3hfSFdnbFBleHRSV29UNERud0RGMHBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEtMjMxNTQ5NDA5NzIw LzEvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALiVtMA0G CSqGSIb3DQEBCwUAA4IBAQAzMaKotpx1aQH/WuV+eZyeKR66sxFVRx1FzgoW6ezc FtYruJvZjYm6tkpZZmBBHo/XrmgiUQJ/Yutn7Q93j41ffE9ZqIBeACrrMan8HpCX YlW/23tNmdku1mi9IJ50v+wdmh0Gic8lEIuZy5++sPD/rGmSfT195pISFfR1lJ74 ijQRC4xzx14cN6KKurkCQE4qSgbnTZzdNOSHGLe60DZYSq6Y2ROVXRRx8xilRWhB 5O13GCS923ql0Cwzw+zpyPlxin1YnuJ5n6WHCapUvoyPSB5gVve+N5UyaG6Xjjy6 hrm7IKhCt5OEaFeRylx6T7wGNTxvFEFgGweeo3gy6Hyp -----END CERTIFICATE-----Generated at Thu Jan 29 17:47:37 2026 by rpki-client