This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/93c851-baa6-4121-bcdd-a136a32895c0/1/gpmwXd1BMpqeIv12eURMuR5vqrE.roa File: gpmwXd1BMpqeIv12eURMuR5vqrE.roa (raw, json) Hash identifier: MaL/Mi+QAF5aIJfDW1OwguAqm+8Ed9pFbma9rR1Um2g= Subject key identifier: 82:99:B0:5D:DD:41:32:9A:9E:22:FD:76:79:44:4C:B9:1E:6F:AA:B1 Certificate issuer: /CN=372418f004d584f2fe26c84235e66bb6b2942718 Certificate serial: 019B7CECCCCAA8FE91A0485546D42FD26E0D Authority key identifier: 37:24:18:F0:04:D5:84:F2:FE:26:C8:42:35:E6:6B:B6:B2:94:27:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NyQY8ATVhPL-JshCNeZrtrKUJxg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/93c851-baa6-4121-bcdd-a136a32895c0/1/gpmwXd1BMpqeIv12eURMuR5vqrE.roa Signing time: Fri 02 Jan 2026 04:17:32 +0000 ROA not before: Fri 02 Jan 2026 04:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206004 IP address blocks: 185.194.200.0/23 maxlen: 24 2a0a:4fc0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/93c851-baa6-4121-bcdd-a136a32895c0/1/NyQY8ATVhPL-JshCNeZrtrKUJxg.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/93c851-baa6-4121-bcdd-a136a32895c0/1/NyQY8ATVhPL-JshCNeZrtrKUJxg.mft rsync://rpki.ripe.net/repository/DEFAULT/NyQY8ATVhPL-JshCNeZrtrKUJxg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:cc:ca:a8:fe:91:a0:48:55:46:d4:2f:d2:6e:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=372418f004d584f2fe26c84235e66bb6b2942718 Validity Not Before: Jan 2 04:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8299b05ddd41329a9e22fd7679444cb91e6faab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:71:2e:45:2a:dd:71:c4:ec:81:df:9a:09:50: 8c:57:fc:35:ae:38:9a:e5:6c:54:54:a5:30:a0:7b: 30:fb:2f:63:bc:c2:f2:e2:9e:1d:39:54:8c:53:6f: d5:39:ed:b2:7a:bb:8f:27:ee:bc:83:56:b5:c8:c0: 2e:46:70:d4:a8:28:ae:f8:b0:5c:f3:5e:a2:87:81: 65:3d:3e:fd:95:31:f6:b1:8b:85:75:b6:0e:ba:7e: 13:9b:2d:04:08:3c:26:64:ff:28:eb:cb:71:d9:73: 35:f8:17:64:37:1a:1e:32:13:99:97:8d:6f:91:ea: 37:a6:2c:fa:52:84:9b:eb:3a:a7:40:3f:f6:05:2c: c7:6b:3f:77:d4:93:6a:da:64:6b:d4:d6:d5:1a:9e: b8:74:3a:1f:fc:26:49:af:94:00:a0:ff:a2:3e:bb: 10:a5:7c:f8:e6:b3:e5:32:e9:41:bf:60:07:a0:25: d9:90:7c:3f:a3:0c:28:bc:d5:cd:7b:b1:bc:e3:49: 15:02:fa:7a:0d:bc:bc:06:20:15:cd:7d:80:b8:3c: ef:ad:5a:9b:fa:00:f3:0f:f4:27:f0:ac:e7:a7:f6: dc:c9:88:b3:26:2d:de:18:f1:b4:fa:dd:38:64:4e: 77:8c:81:db:d0:10:ab:ec:99:5e:55:1c:aa:d5:77: a3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:99:B0:5D:DD:41:32:9A:9E:22:FD:76:79:44:4C:B9:1E:6F:AA:B1 X509v3 Authority Key Identifier: keyid:37:24:18:F0:04:D5:84:F2:FE:26:C8:42:35:E6:6B:B6:B2:94:27:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NyQY8ATVhPL-JshCNeZrtrKUJxg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/93c851-baa6-4121-bcdd-a136a32895c0/1/gpmwXd1BMpqeIv12eURMuR5vqrE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/93c851-baa6-4121-bcdd-a136a32895c0/1/NyQY8ATVhPL-JshCNeZrtrKUJxg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.194.200.0/23 IPv6: 2a0a:4fc0::/29 Signature Algorithm: sha256WithRSAEncryption 44:ab:b1:30:60:5e:21:a1:52:d7:c9:29:c5:c4:76:34:92:11: 2d:fb:39:de:6b:33:d8:22:aa:11:3a:28:52:c4:6f:0d:9e:58: 58:54:58:71:00:2f:94:ce:5e:21:22:40:ef:99:b9:af:c3:83: 4a:0a:fa:8c:b0:13:99:63:5b:63:05:73:05:0c:49:c1:39:a2: d6:9d:f8:ea:0c:37:40:2e:aa:93:79:7a:b8:05:a5:75:71:9f: 02:9a:7f:56:d8:0b:34:33:bb:65:85:33:fb:62:b5:f2:20:db: af:f6:36:d6:5c:8a:72:81:ea:7e:c3:d9:5c:d8:19:df:e5:d2: 31:c7:8b:51:44:84:7e:d2:81:25:3c:b2:4e:47:02:86:55:2a: c0:47:de:80:7e:d9:e6:e1:c8:f8:a4:3e:a8:93:7c:b6:88:bf: 79:84:d8:16:e5:8e:1a:41:cc:fe:f9:ec:18:bb:03:67:79:3d: 19:fd:9c:16:52:f9:a7:c2:b1:0f:c5:3d:67:10:bd:b4:7c:93: d7:67:21:91:9d:78:4d:c6:1f:89:f6:14:e8:87:a3:e6:b3:44: 29:04:ea:9d:d9:b7:4e:82:bf:67:b4:05:de:fa:ba:90:20:0c: 6b:87:c5:bf:a4:78:2f:1b:0d:ce:ac:01:ee:23:3e:cd:e1:fa: 89:74:97:66 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87MzKqP6RoEhVRtQv0m4NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3MjQxOGYwMDRkNTg0ZjJmZTI2Yzg0MjM1ZTY2YmI2YjI5 NDI3MTgwHhcNMjYwMTAyMDQxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Mjk5YjA1ZGRkNDEzMjlhOWUyMmZkNzY3OTQ0NGNiOTFlNmZhYWIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8HEuRSrdccTsgd+aCVCMV/w1rjia 5WxUVKUwoHsw+y9jvMLy4p4dOVSMU2/VOe2yeruPJ+68g1a1yMAuRnDUqCiu+LBc 816ih4FlPT79lTH2sYuFdbYOun4Tmy0ECDwmZP8o68tx2XM1+BdkNxoeMhOZl41v keo3piz6UoSb6zqnQD/2BSzHaz931JNq2mRr1NbVGp64dDof/CZJr5QAoP+iPrsQ pXz45rPlMulBv2AHoCXZkHw/owwovNXNe7G840kVAvp6Dby8BiAVzX2AuDzvrVqb +gDzD/Qn8Kznp/bcyYizJi3eGPG0+t04ZE53jIHb0BCr7JleVRyq1XejzQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIKZsF3dQTKaniL9dnlETLkeb6qxMB8GA1UdIwQY MBaAFDckGPAE1YTy/ibIQjXma7aylCcYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnlRWThBVFZoUEwtSnNoQ05lWnJ0cktVSnhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy85M2M4NTEtYmFhNi00MTIxLWJjZGQt YTEzNmEzMjg5NWMwLzEvZ3Btd1hkMUJNcHFlSXYxMmVVUk11UjV2cXJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy85M2M4NTEtYmFhNi00MTIxLWJjZGQtYTEzNmEzMjg5NWMw LzEvTnlRWThBVFZoUEwtSnNoQ05lWnJ0cktVSnhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBucLIMA0E AgACMAcDBQMqCk/AMA0GCSqGSIb3DQEBCwUAA4IBAQBEq7EwYF4hoVLXySnFxHY0 khEt+zneazPYIqoROihSxG8NnlhYVFhxAC+Uzl4hIkDvmbmvw4NKCvqMsBOZY1tj BXMFDEnBOaLWnfjqDDdALqqTeXq4BaV1cZ8Cmn9W2As0M7tlhTP7YrXyINuv9jbW XIpygep+w9lc2Bnf5dIxx4tRRIR+0oElPLJORwKGVSrAR96Aftnm4cj4pD6ok3y2 iL95hNgW5Y4aQcz++ewYuwNneT0Z/ZwWUvmnwrEPxT1nEL20fJPXZyGRnXhNxh+J 9hToh6Pms0QpBOqd2bdOgr9ntAXe+rqQIAxrh8W/pHgvGw3OrAHuIz7N4fqJdJdm -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:17 2026 by rpki-client