This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/GICLEj3ymdfbxLRaQ1STYZ1HQm0.roa File: GICLEj3ymdfbxLRaQ1STYZ1HQm0.roa (raw, json) Hash identifier: R8hNe/xkDTsv6hzz2dGuX7HG2B9Hsj+cN7gQT4HGaWo= Subject key identifier: 18:80:8B:12:3D:F2:99:D7:DB:C4:B4:5A:43:54:93:61:9D:47:42:6D Certificate issuer: /CN=c65a1da1cb1c920ae2f9b748270fded8737a9184 Certificate serial: 019B79EC4D3652004EC8D10D6A7BE3FDD949 Authority key identifier: C6:5A:1D:A1:CB:1C:92:0A:E2:F9:B7:48:27:0F:DE:D8:73:7A:91:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xlodocsckgri-bdIJw_e2HN6kYQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/GICLEj3ymdfbxLRaQ1STYZ1HQm0.roa Signing time: Thu 01 Jan 2026 14:18:08 +0000 ROA not before: Thu 01 Jan 2026 14:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62300 IP address blocks: 37.44.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/xlodocsckgri-bdIJw_e2HN6kYQ.crl rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/xlodocsckgri-bdIJw_e2HN6kYQ.mft rsync://rpki.ripe.net/repository/DEFAULT/xlodocsckgri-bdIJw_e2HN6kYQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:4d:36:52:00:4e:c8:d1:0d:6a:7b:e3:fd:d9:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c65a1da1cb1c920ae2f9b748270fded8737a9184 Validity Not Before: Jan 1 14:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=18808b123df299d7dbc4b45a435493619d47426d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9a:e1:00:03:f0:53:30:5b:57:2d:cf:65:0c: 00:d8:74:9a:38:ed:4b:16:17:cf:79:9a:e3:e8:2e: ae:bd:f9:c4:7c:7b:f6:3a:96:0c:64:1e:e9:d1:51: d3:1d:1b:70:66:26:35:e1:06:1e:79:71:95:02:e5: 0a:dc:15:52:5a:a4:ae:18:0a:c2:13:ec:1a:5c:0f: 0f:5d:63:59:0a:aa:91:9d:59:6a:f0:00:c0:36:55: 42:4d:2f:02:36:9b:b0:40:da:87:50:e2:23:74:d3: 11:8b:c6:0c:8c:1b:19:d1:fd:4b:72:28:b2:14:7b: 0d:fe:5b:5e:1c:bd:a3:f5:02:62:f6:98:b0:71:40: 69:bf:72:4c:6b:11:e6:01:a0:8e:aa:3e:0e:19:de: f9:ac:d5:62:34:c8:03:32:e7:3f:1f:84:40:e4:7f: 2d:36:50:0b:0f:6c:14:3c:bf:94:55:a2:5d:c2:1c: 37:c8:5b:ab:e4:e9:a5:f4:42:71:68:f7:34:b5:22: 12:62:7d:08:7d:65:2e:f9:1a:87:81:57:3d:66:0d: ef:e9:88:fd:59:08:a9:dc:4f:1a:6a:54:c1:a9:d4: 3d:a8:c5:9d:73:11:44:26:50:6b:6a:61:97:45:18: d4:ef:98:51:f7:50:32:b1:9a:a7:89:fb:2c:29:d1: e8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:80:8B:12:3D:F2:99:D7:DB:C4:B4:5A:43:54:93:61:9D:47:42:6D X509v3 Authority Key Identifier: keyid:C6:5A:1D:A1:CB:1C:92:0A:E2:F9:B7:48:27:0F:DE:D8:73:7A:91:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xlodocsckgri-bdIJw_e2HN6kYQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/GICLEj3ymdfbxLRaQ1STYZ1HQm0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/xlodocsckgri-bdIJw_e2HN6kYQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.44.199.0/24 Signature Algorithm: sha256WithRSAEncryption 35:70:ac:46:32:8f:4a:fc:7f:5a:b5:3e:21:b8:3c:29:aa:5a: c6:f5:77:5c:47:41:09:44:ea:11:9e:83:04:75:9b:57:ca:77: c2:42:4c:a0:96:eb:22:0f:4e:c7:22:2f:39:8c:ba:d6:04:17: e9:41:35:bc:51:12:c7:bd:21:0a:73:0d:5e:4d:4d:ff:7a:1b: 1c:fb:79:ef:1d:ce:a9:aa:8c:69:32:70:d4:ff:07:cf:d5:4e: 92:b9:8d:39:e5:77:5a:56:26:0c:65:79:20:9c:a9:10:82:b5: 4f:f0:79:1d:0e:93:a1:58:48:59:40:ae:c5:c8:6a:06:11:26: 08:6a:75:16:6f:1c:20:bb:4e:57:b1:a7:03:c5:a1:7a:22:74: f5:b8:c6:c7:61:8f:e1:7f:1e:4c:cb:da:e7:03:78:14:e7:59: f0:25:90:d3:d1:83:35:90:1b:e7:3b:53:89:6a:06:ab:60:d2: 35:f2:ae:22:b1:6e:a8:60:69:cd:ae:8a:19:23:a3:d6:a9:30: 41:cd:bc:59:87:57:e9:66:df:bc:31:25:0d:db:c9:3e:c5:c3: 41:5f:d5:bc:65:6e:00:00:47:16:0d:d6:fb:4c:46:a7:b1:98: 12:6b:2a:96:52:2b:36:14:f5:c5:0a:44:df:2a:ca:ae:af:bc: e5:12:ad:ff -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57E02UgBOyNENanvj/dlJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NWExZGExY2IxYzkyMGFlMmY5Yjc0ODI3MGZkZWQ4NzM3 YTkxODQwHhcNMjYwMTAxMTQxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODgwOGIxMjNkZjI5OWQ3ZGJjNGI0NWE0MzU0OTM2MTlkNDc0MjZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZrhAAPwUzBbVy3PZQwA2HSaOO1L FhfPeZrj6C6uvfnEfHv2OpYMZB7p0VHTHRtwZiY14QYeeXGVAuUK3BVSWqSuGArC E+waXA8PXWNZCqqRnVlq8ADANlVCTS8CNpuwQNqHUOIjdNMRi8YMjBsZ0f1Lciiy FHsN/lteHL2j9QJi9piwcUBpv3JMaxHmAaCOqj4OGd75rNViNMgDMuc/H4RA5H8t NlALD2wUPL+UVaJdwhw3yFur5Oml9EJxaPc0tSISYn0IfWUu+RqHgVc9Zg3v6Yj9 WQip3E8aalTBqdQ9qMWdcxFEJlBramGXRRjU75hR91AysZqnifssKdHoXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBiAixI98pnX28S0WkNUk2GdR0JtMB8GA1UdIwQY MBaAFMZaHaHLHJIK4vm3SCcP3thzepGEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGxvZG9jc2NrZ3JpLWJkSUp3X2UySE42a1lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS80ZjU0YjQtMDA5Zi00NmNlLTlhYzAt MzZiYWM4ZDkxZTJlLzEvR0lDTEVqM3ltZGZieExSYVExU1RZWjFIUW0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS80ZjU0YjQtMDA5Zi00NmNlLTlhYzAtMzZiYWM4ZDkxZTJl LzEveGxvZG9jc2NrZ3JpLWJkSUp3X2UySE42a1lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJSzHMA0G CSqGSIb3DQEBCwUAA4IBAQA1cKxGMo9K/H9atT4huDwpqlrG9XdcR0EJROoRnoME dZtXynfCQkyglusiD07HIi85jLrWBBfpQTW8URLHvSEKcw1eTU3/ehsc+3nvHc6p qoxpMnDU/wfP1U6SuY055XdaViYMZXkgnKkQgrVP8HkdDpOhWEhZQK7FyGoGESYI anUWbxwgu05XsacDxaF6InT1uMbHYY/hfx5My9rnA3gU51nwJZDT0YM1kBvnO1OJ agarYNI18q4isW6oYGnNrooZI6PWqTBBzbxZh1fpZt+8MSUN28k+xcNBX9W8ZW4A AEcWDdb7TEansZgSayqWUis2FPXFCkTfKsqur7zlEq3/ -----END CERTIFICATE-----Generated at Sun Jan 25 14:31:01 2026 by rpki-client