This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/GDslLxW-h-nXEnMMIkfH4mIcFXE.roa File: GDslLxW-h-nXEnMMIkfH4mIcFXE.roa (raw, json) Hash identifier: gyYQGm9rpXV8IzfS/kLtlucuwYM3L83iTmDufGmG5Ao= Subject key identifier: 18:3B:25:2F:15:BE:87:E9:D7:12:73:0C:22:47:C7:E2:62:1C:15:71 Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Certificate serial: 019AB9E441F3E7A780E2F3366933E5974AD3 Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/GDslLxW-h-nXEnMMIkfH4mIcFXE.roa Signing time: Tue 25 Nov 2025 07:22:15 +0000 ROA not before: Tue 25 Nov 2025 07:22:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 29226 IP address blocks: 2a09:a501::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b9:e4:41:f3:e7:a7:80:e2:f3:36:69:33:e5:97:4a:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Validity Not Before: Nov 25 07:22:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=183b252f15be87e9d712730c2247c7e2621c1571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8f:cd:40:ba:ee:1f:59:d5:cb:56:b9:97:60: f5:d0:c2:ee:58:45:c7:de:fb:23:47:2f:aa:2f:b2: 81:8d:92:0f:4e:8c:88:7f:f4:da:ba:1e:b0:71:63: f2:b8:06:0a:3d:ef:c5:46:30:fb:0c:31:8f:1f:49: 20:24:2c:48:b1:2f:79:c8:61:d4:96:82:53:8e:db: 98:62:80:82:00:a4:73:d3:00:5d:88:a1:ee:da:8f: 95:ee:68:5a:51:bd:d7:ec:b4:1f:6d:b3:16:42:ba: 22:34:44:fc:6c:c7:7d:7c:f0:20:77:f3:6a:db:d1: da:82:50:7b:3c:a5:d4:fd:28:df:67:f1:c0:4c:69: 1d:3c:f4:6d:fe:1b:cc:45:4a:d0:88:4e:14:a9:46: ce:5d:3c:73:57:ce:54:d1:54:8e:2a:1e:fa:c4:ff: 77:99:ee:9d:2e:63:f3:c6:5c:10:6c:1e:af:35:dc: 49:5d:53:62:fd:f4:88:20:e7:4b:6b:bd:9e:2a:70: 13:dd:aa:e7:bc:af:b1:be:bf:b6:d0:28:e3:53:30: f7:d2:41:b6:eb:90:76:64:84:cd:51:c6:3d:06:fd: eb:40:fa:d2:8a:73:6c:af:3e:e7:53:7a:70:0a:34: 1e:14:36:39:7f:e6:17:e6:6e:30:e8:16:09:b9:2b: f6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3B:25:2F:15:BE:87:E9:D7:12:73:0C:22:47:C7:E2:62:1C:15:71 X509v3 Authority Key Identifier: keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/GDslLxW-h-nXEnMMIkfH4mIcFXE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:a501::/32 Signature Algorithm: sha256WithRSAEncryption 4f:62:16:96:a0:d1:6f:c0:71:fd:c6:3e:72:00:16:67:98:98: 92:d6:1d:0d:0b:1f:d9:5a:0a:bf:5b:9c:77:e8:a5:ab:2c:2a: a0:c8:70:ba:14:22:94:cb:cc:18:66:15:75:a8:22:8e:82:ad: 0d:f4:22:e8:a0:01:9b:5c:aa:e0:ec:93:7e:c6:c7:00:7c:6c: 17:f6:f5:cb:71:69:27:50:66:db:c1:3f:24:6c:2c:c1:8a:37: 79:8c:e2:f8:b8:17:72:44:0e:32:ca:c7:5b:69:bb:75:60:ed: a9:15:bb:05:19:da:1e:5c:93:aa:67:71:86:1b:c7:d2:7b:29: 55:a9:f4:26:8c:d0:ba:ea:7d:90:01:04:35:42:c4:cb:1e:02: 1d:e4:6a:92:05:f4:99:5e:f2:30:1b:46:8b:1e:6f:c8:3b:e2: 22:0d:d1:ac:e1:fa:2f:76:42:d7:bd:84:a8:20:23:83:61:7e: d4:3b:ab:d4:7b:bd:90:4f:c6:77:dc:ca:93:08:c8:1e:5b:4b: 3b:ba:ed:11:41:9c:60:06:2b:79:df:66:47:fb:53:f8:43:ae: 86:7e:66:08:ac:46:ac:c1:2e:a2:97:14:c7:81:67:d0:25:11: 40:90:77:24:55:27:c5:96:59:8e:5f:0c:71:12:de:8a:7b:25: 80:e4:fd:b2 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZq55EHz56eA4vM2aTPll0rTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx ODhlYTcwHhcNMjUxMTI1MDcyMjE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODNiMjUyZjE1YmU4N2U5ZDcxMjczMGMyMjQ3YzdlMjYyMWMxNTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAno/NQLruH1nVy1a5l2D10MLuWEXH 3vsjRy+qL7KBjZIPToyIf/Tauh6wcWPyuAYKPe/FRjD7DDGPH0kgJCxIsS95yGHU loJTjtuYYoCCAKRz0wBdiKHu2o+V7mhaUb3X7LQfbbMWQroiNET8bMd9fPAgd/Nq 29HaglB7PKXU/SjfZ/HATGkdPPRt/hvMRUrQiE4UqUbOXTxzV85U0VSOKh76xP93 me6dLmPzxlwQbB6vNdxJXVNi/fSIIOdLa72eKnAT3arnvK+xvr+20CjjUzD30kG2 65B2ZITNUcY9Bv3rQPrSinNsrz7nU3pwCjQeFDY5f+YX5m4w6BYJuSv29wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFBg7JS8Vvofp1xJzDCJHx+JiHBVxMB8GA1UdIwQY MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt ZTU3NjhkNmIxODJjLzEvR0RzbEx4Vy1oLW5YRW5NTUlrZkg0bUljRlhFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgmlATAN BgkqhkiG9w0BAQsFAAOCAQEAT2IWlqDRb8Bx/cY+cgAWZ5iYktYdDQsf2VoKv1uc d+ilqywqoMhwuhQilMvMGGYVdagijoKtDfQi6KABm1yq4OyTfsbHAHxsF/b1y3Fp J1Bm28E/JGwswYo3eYzi+LgXckQOMsrHW2m7dWDtqRW7BRnaHlyTqmdxhhvH0nsp Van0JozQuup9kAEENULEyx4CHeRqkgX0mV7yMBtGix5vyDviIg3RrOH6L3ZC172E qCAjg2F+1Dur1Hu9kE/Gd9zKkwjIHltLO7rtEUGcYAYred9mR/tT+EOuhn5mCKxG rMEuopcUx4Fn0CURQJB3JFUnxZZZjl8McRLeinslgOT9sg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:48:26 2025 by rpki-client