This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Gbr_5R5m53ehnvwxgjFAFJRCNBE.roa File: Gbr_5R5m53ehnvwxgjFAFJRCNBE.roa (raw, json) Hash identifier: qxSoG4kOBFVowfuPrHHSNm4QzK6VSQPgNcZGUO4yJ6M= Subject key identifier: 19:BA:FF:E5:1E:66:E7:77:A1:9E:FC:31:82:31:40:14:94:42:34:11 Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B7B358CAD989B4EB74AA3E29E26566F8B Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Gbr_5R5m53ehnvwxgjFAFJRCNBE.roa Signing time: Thu 01 Jan 2026 20:17:45 +0000 ROA not before: Thu 01 Jan 2026 20:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213629 IP address blocks: 2a14:67c1:a010::/44 maxlen: 48 2a14:67c5::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:8c:ad:98:9b:4e:b7:4a:a3:e2:9e:26:56:6f:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 1 20:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=19baffe51e66e777a19efc318231401494423411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:62:b3:f6:33:4b:61:ae:af:94:ae:3b:0d:aa: ef:88:d2:67:69:a4:b8:b1:e2:ab:44:7f:04:f2:b3: 9b:c0:53:59:ea:65:1f:a7:82:a1:04:80:4b:7f:41: 08:3a:95:3e:8a:62:1f:29:e4:f8:d5:8b:3f:45:b5: 12:8b:1b:3b:bb:1c:1a:61:02:e5:cc:38:53:b3:68: 42:bd:cc:b9:7d:11:00:fd:43:c2:a3:87:91:f1:b1: d0:a9:99:f2:de:92:13:2d:4a:1b:4d:3b:54:d8:cb: 85:91:5d:f8:45:90:50:7c:fe:e5:3a:40:44:c4:8f: f4:12:4d:78:ca:c8:90:42:e2:93:32:43:42:30:d4: 54:06:11:0b:bb:10:c2:05:f6:1f:2f:6c:cf:56:2b: 7f:ec:10:33:7c:31:23:df:cb:ad:fd:5b:bb:b2:af: 4e:02:5c:d9:07:d8:0e:2c:46:97:1f:78:42:86:b6: c8:1d:69:5e:10:29:4a:6d:44:8a:f6:36:bd:8a:20: ea:93:ec:5f:45:1b:a7:05:e5:1d:e1:5d:58:99:d3: 82:d8:cb:7c:d3:73:f5:38:cf:6e:6e:9f:9f:fa:f3: 4b:49:b5:8c:f4:0f:41:44:06:a2:ef:dc:dd:a5:ed: ff:d6:15:ca:d4:11:34:d9:47:2e:89:e6:71:bd:71: 33:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:BA:FF:E5:1E:66:E7:77:A1:9E:FC:31:82:31:40:14:94:42:34:11 X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Gbr_5R5m53ehnvwxgjFAFJRCNBE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c1:a010::/44 2a14:67c5::/32 Signature Algorithm: sha256WithRSAEncryption c0:e4:41:4f:f1:4f:17:b8:ab:9d:6b:26:37:35:54:3b:0d:80: f2:8c:84:63:04:1f:57:1d:13:02:2f:80:c2:c7:2b:dc:a1:cf: 0c:94:6d:1e:80:0f:4b:1f:cf:a1:47:29:19:98:de:a8:45:dc: e2:0c:9c:5c:e0:25:84:c2:06:6d:fc:ab:63:bc:5d:d7:c4:3d: 9c:f4:aa:48:a8:0a:1b:44:8e:e3:0d:0b:47:da:c1:23:06:f1: d4:8c:2d:ab:87:9a:aa:3e:e1:79:e3:0f:a2:fa:c1:0b:bd:56: c4:7c:81:8b:cc:0c:57:11:7f:5c:d0:38:f5:c1:aa:d5:aa:56: d6:5f:bf:fa:ef:7c:63:e1:05:32:83:90:7d:13:45:43:af:1c: 3d:24:43:6e:87:c5:27:1e:3a:dd:4e:df:18:86:77:57:6b:b8: 6d:3e:c4:64:02:c6:e5:30:88:06:8e:43:a7:3e:54:39:55:fc: f6:18:d4:69:11:67:25:1f:b7:44:6d:18:a4:54:cd:7f:68:ec: a5:5c:84:6a:11:31:de:1e:74:33:43:a7:10:d5:0c:dc:b4:4c: d2:c0:8e:30:ec:b3:fc:af:c8:74:25:4e:e4:5a:e7:ae:de:32: fe:3d:b3:70:55:be:25:90:9a:07:06:6a:5b:cf:a9:7c:3e:01: 73:df:de:31 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt7NYytmJtOt0qj4p4mVm+LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTAxMjAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOWJhZmZlNTFlNjZlNzc3YTE5ZWZjMzE4MjMxNDAxNDk0NDIzNDExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWKz9jNLYa6vlK47DarviNJnaaS4 seKrRH8E8rObwFNZ6mUfp4KhBIBLf0EIOpU+imIfKeT41Ys/RbUSixs7uxwaYQLl zDhTs2hCvcy5fREA/UPCo4eR8bHQqZny3pITLUobTTtU2MuFkV34RZBQfP7lOkBE xI/0Ek14ysiQQuKTMkNCMNRUBhELuxDCBfYfL2zPVit/7BAzfDEj38ut/Vu7sq9O AlzZB9gOLEaXH3hChrbIHWleEClKbUSK9ja9iiDqk+xfRRunBeUd4V1YmdOC2Mt8 03P1OM9ubp+f+vNLSbWM9A9BRAai79zdpe3/1hXK1BE02UcuieZxvXEz3QIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFBm6/+UeZud3oZ78MYIxQBSUQjQRMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvR2JyXzVSNW01M2VobnZ3eGdqRkFGSlJDTkJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwcEKhRnwaAQ AwUAKhRnxTANBgkqhkiG9w0BAQsFAAOCAQEAwORBT/FPF7irnWsmNzVUOw2A8oyE YwQfVx0TAi+Awscr3KHPDJRtHoAPSx/PoUcpGZjeqEXc4gycXOAlhMIGbfyrY7xd 18Q9nPSqSKgKG0SO4w0LR9rBIwbx1Iwtq4eaqj7heeMPovrBC71WxHyBi8wMVxF/ XNA49cGq1apW1l+/+u98Y+EFMoOQfRNFQ68cPSRDbofFJx463U7fGIZ3V2u4bT7E ZALG5TCIBo5Dpz5UOVX89hjUaRFnJR+3RG0YpFTNf2jspVyEahEx3h50M0OnENUM 3LRM0sCOMOyz/K/IdCVO5Frnrt4y/j2zcFW+JZCaBwZqW8+pfD4Bc9/eMQ== -----END CERTIFICATE-----Generated at Sun Jan 25 12:06:01 2026 by rpki-client