This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gl-ggUsVmmpqDcNPHMzYBGmrMA8.roa File: Gl-ggUsVmmpqDcNPHMzYBGmrMA8.roa (raw, json) Hash identifier: xk0/xdnScysXdBoKt0IBKKmaEmn7cglicebHN1EZ2bo= Subject key identifier: 1A:5F:A0:81:4B:15:9A:6A:6A:0D:C3:4F:1C:CC:D8:04:69:AB:30:0F Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019AB9DFAE42D15E74BF9CBDE498CC6F894A Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gl-ggUsVmmpqDcNPHMzYBGmrMA8.roa Signing time: Tue 25 Nov 2025 07:17:15 +0000 ROA not before: Tue 25 Nov 2025 07:17:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 2.59.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 27 Nov 2025 01:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b9:df:ae:42:d1:5e:74:bf:9c:bd:e4:98:cc:6f:89:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Nov 25 07:17:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=1a5fa0814b159a6a6a0dc34f1cccd80469ab300f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a8:62:11:e4:d8:78:b5:2f:73:c1:dc:6a:6f: 55:c7:da:38:3e:fd:c1:5d:dc:da:c7:54:19:e8:c8: a6:56:35:1b:e4:63:7f:b0:79:0d:19:df:bf:8c:3c: 2c:fe:00:39:ec:e3:bb:33:cb:1a:1c:aa:da:1d:a5: a3:43:82:b7:f1:2f:29:f7:06:72:90:37:e4:c9:2e: 8f:04:ae:69:52:e6:c4:9f:82:c1:ad:88:61:77:d7: df:d8:54:46:71:c3:26:6c:7c:25:8f:96:f7:19:6f: a0:7e:92:57:43:12:37:eb:18:fb:64:a9:78:bf:39: 05:48:93:1b:d0:6d:53:d3:91:5d:83:ce:e5:f0:17: a8:c2:92:63:ad:de:1e:b8:ca:3a:70:36:1e:c9:b3: f0:49:be:33:76:e0:6d:bb:5c:08:ee:2c:d2:07:3c: 23:80:d1:87:52:b9:d2:12:9f:0e:ad:49:60:2a:04: 6d:93:08:7b:23:e7:50:c3:08:8c:75:56:6e:5d:b9: 3b:08:ca:09:c8:95:5c:e8:ee:16:62:cf:21:41:46: 0c:15:a3:db:34:65:2e:d3:99:fc:10:d2:fe:a6:6d: 3e:94:52:63:5c:c1:86:72:52:2a:00:44:e8:dd:df: 96:8a:f3:2b:05:0e:0b:f2:0c:74:54:8a:01:a1:0a: 4e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:5F:A0:81:4B:15:9A:6A:6A:0D:C3:4F:1C:CC:D8:04:69:AB:30:0F X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gl-ggUsVmmpqDcNPHMzYBGmrMA8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.59.180.0/24 Signature Algorithm: sha256WithRSAEncryption 18:22:c3:6d:54:dc:a6:af:e6:65:04:3c:ac:7e:9b:b2:9a:2b: ea:79:63:a8:e1:fc:3b:0b:c5:06:41:29:cb:7d:81:78:b3:44: df:7a:61:01:9a:61:fc:40:0b:b1:54:b5:c7:6c:2f:9b:41:97: 86:4f:b0:03:a0:af:c8:ae:47:92:61:28:06:20:9d:9c:88:4f: 8f:c4:31:b2:e0:f1:dc:8e:d8:40:41:43:b2:7e:1d:ca:2e:e1: 2b:a6:fb:df:91:ea:55:de:e6:ff:4d:5e:dc:a8:e3:0e:8d:14: 7d:f9:83:9e:25:7e:92:eb:ad:e0:7e:52:8b:ee:2a:3c:96:e0: 3c:ac:6a:92:8a:92:60:31:24:05:49:fa:9e:c7:b5:01:e7:57: 69:af:10:1a:b4:c3:18:e0:1a:6f:a6:91:f2:c3:dc:44:35:1f: 9c:35:78:5d:2d:c6:79:e6:ba:4b:50:e2:e7:7f:92:8b:7c:4d: a9:f5:e0:0f:9c:e6:3e:07:dd:e9:29:fa:bc:75:8c:dc:e0:6f: c6:7d:60:c6:a4:c3:bf:9b:82:7f:7b:bf:ec:c2:a9:81:3d:bf: 0f:07:f7:78:d2:49:66:01:30:30:22:87:12:26:ab:1c:be:fb: 8c:c9:cf:ed:14:b6:47:da:08:fa:e0:d3:0c:02:90:0c:e0:37: be:2b:d8:48 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZq5365C0V50v5y95JjMb4lKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMTI1MDcxNzE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTVmYTA4MTRiMTU5YTZhNmEwZGMzNGYxY2NjZDgwNDY5YWIzMDBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqhiEeTYeLUvc8Hcam9Vx9o4Pv3B Xdzax1QZ6MimVjUb5GN/sHkNGd+/jDws/gA57OO7M8saHKraHaWjQ4K38S8p9wZy kDfkyS6PBK5pUubEn4LBrYhhd9ff2FRGccMmbHwlj5b3GW+gfpJXQxI36xj7ZKl4 vzkFSJMb0G1T05Fdg87l8BeowpJjrd4euMo6cDYeybPwSb4zduBtu1wI7izSBzwj gNGHUrnSEp8OrUlgKgRtkwh7I+dQwwiMdVZuXbk7CMoJyJVc6O4WYs8hQUYMFaPb NGUu05n8ENL+pm0+lFJjXMGGclIqAETo3d+WivMrBQ4L8gx0VIoBoQpOYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBpfoIFLFZpqag3DTxzM2ARpqzAPMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR2wtZ2dVc1ZtbXBxRGNOUEhNellCR21yTUE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAju0MA0G CSqGSIb3DQEBCwUAA4IBAQAYIsNtVNymr+ZlBDysfpuymivqeWOo4fw7C8UGQSnL fYF4s0TfemEBmmH8QAuxVLXHbC+bQZeGT7ADoK/IrkeSYSgGIJ2ciE+PxDGy4PHc jthAQUOyfh3KLuErpvvfkepV3ub/TV7cqOMOjRR9+YOeJX6S663gflKL7io8luA8 rGqSipJgMSQFSfqex7UB51dprxAatMMY4BpvppHyw9xENR+cNXhdLcZ55rpLUOLn f5KLfE2p9eAPnOY+B93pKfq8dYzc4G/GfWDGpMO/m4J/e7/swqmBPb8PB/d40klm ATAwIocSJqscvvuMyc/tFLZH2gj64NMMApAM4De+K9hI -----END CERTIFICATE-----Generated at Wed Nov 26 10:08:02 2025 by rpki-client