This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/G8U_Bva-W1pnOboVvmK15NOFVzY.roa File: G8U_Bva-W1pnOboVvmK15NOFVzY.roa (raw, json) Hash identifier: hEqUdyUWCr6mYmi0iyZcvCuKgETeFL/FCbFk4hUk670= Subject key identifier: 1B:C5:3F:06:F6:BE:5B:5A:67:39:BA:15:BE:62:B5:E4:D3:85:57:36 Certificate issuer: /CN=ff0ddf3fe5772201aff78c24e97f944c3805ff6b Certificate serial: 019B7BA52C9393AF1B8F8EA2D447DA05AA0A Authority key identifier: FF:0D:DF:3F:E5:77:22:01:AF:F7:8C:24:E9:7F:94:4C:38:05:FF:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_w3fP-V3IgGv94wk6X-UTDgF_2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/G8U_Bva-W1pnOboVvmK15NOFVzY.roa Signing time: Thu 01 Jan 2026 22:19:40 +0000 ROA not before: Thu 01 Jan 2026 22:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15433 IP address blocks: 31.193.32.0/21 maxlen: 24 77.242.208.0/20 maxlen: 24 109.235.104.0/21 maxlen: 24 185.45.40.0/22 maxlen: 24 185.45.68.0/22 maxlen: 24 185.86.61.0/24 maxlen: 24 185.86.62.0/24 maxlen: 24 185.86.63.0/24 maxlen: 24 194.183.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/_w3fP-V3IgGv94wk6X-UTDgF_2s.crl rsync://rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/_w3fP-V3IgGv94wk6X-UTDgF_2s.mft rsync://rpki.ripe.net/repository/DEFAULT/_w3fP-V3IgGv94wk6X-UTDgF_2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:2c:93:93:af:1b:8f:8e:a2:d4:47:da:05:aa:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff0ddf3fe5772201aff78c24e97f944c3805ff6b Validity Not Before: Jan 1 22:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1bc53f06f6be5b5a6739ba15be62b5e4d3855736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c2:42:30:21:e9:46:08:9d:86:73:b4:cf:58: 7a:62:ca:fb:e6:84:10:c3:1d:e3:c1:1b:d0:9d:1a: bb:01:fc:75:2c:fc:11:3c:1d:dd:50:5a:bb:cb:4b: 61:fe:d0:29:a8:1b:62:85:bd:ce:28:1a:2b:ec:02: 0c:78:a3:27:e0:3f:73:48:43:48:21:98:48:0d:38: 1d:13:92:cc:34:13:6d:b6:32:7e:0b:1a:97:ff:08: 44:c0:26:26:91:ce:77:84:d2:34:08:a3:5f:14:9c: 51:74:9e:d1:4e:f2:65:f2:37:a7:52:4d:0a:77:fe: 7d:0c:5d:03:1d:f3:a5:8f:52:ce:04:93:cf:31:ce: db:58:62:4f:b7:2d:de:4a:44:f0:93:3d:69:40:61: 7a:d4:06:32:35:35:86:f4:e3:9b:3d:6c:99:2e:d5: d4:1a:8b:50:d9:a2:e8:ed:7c:08:d8:70:71:e7:28: f0:41:97:fb:4c:a3:8f:55:c6:5e:20:0e:23:87:37: 53:4b:d7:44:30:ba:d7:cf:06:0a:7c:63:7b:d0:89: a6:ae:27:f1:8f:4d:5c:51:a6:ae:8a:2b:1c:54:a0: 43:a6:08:b6:65:e2:f1:97:f6:05:b8:cf:56:8f:6a: 2e:22:c3:78:84:59:0d:a0:ed:bf:5e:c0:b8:03:22: 70:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C5:3F:06:F6:BE:5B:5A:67:39:BA:15:BE:62:B5:E4:D3:85:57:36 X509v3 Authority Key Identifier: keyid:FF:0D:DF:3F:E5:77:22:01:AF:F7:8C:24:E9:7F:94:4C:38:05:FF:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_w3fP-V3IgGv94wk6X-UTDgF_2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/G8U_Bva-W1pnOboVvmK15NOFVzY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/_w3fP-V3IgGv94wk6X-UTDgF_2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.193.32.0/21 77.242.208.0/20 109.235.104.0/21 185.45.40.0/22 185.45.68.0/22 185.86.61.0-185.86.63.255 194.183.64.0/19 Signature Algorithm: sha256WithRSAEncryption 9b:57:cf:6f:cd:de:8e:89:da:51:0f:33:26:c9:a2:ee:12:ac: c1:b9:68:1c:42:b4:5b:78:43:11:9d:26:69:31:55:53:ff:1f: bd:5e:3f:13:dd:25:f7:f6:9c:c2:fd:0c:80:72:b8:0e:21:50: d0:66:b3:d2:05:fa:19:47:57:ee:a8:50:63:8a:84:79:6b:72: 99:9d:35:9e:1a:f6:0b:7d:c8:fe:aa:a3:33:35:96:c4:4c:0d: ca:f8:bc:d3:cf:8d:1d:cf:d0:56:40:a0:46:7a:34:e7:7b:43: 9c:7b:38:58:ea:38:dd:80:4c:d1:8a:30:8d:30:0f:f3:39:14: 61:98:98:67:07:16:b0:4e:9e:58:1f:05:22:ee:d6:24:45:25: 6a:c6:4a:fa:10:bf:a0:29:58:65:04:4e:82:22:cc:54:a3:e4: 62:52:20:c8:4f:30:40:65:63:dc:42:92:3e:b7:dc:82:91:f1: f0:af:f2:ca:fc:75:00:5a:c8:ad:f6:73:3a:b1:67:68:4f:8b: 1b:70:70:ae:e7:40:f5:24:02:36:0e:bb:cb:9f:95:47:74:07: 7b:3e:b0:54:60:b0:0d:82:67:8f:5a:b1:68:4c:e4:4f:a1:64: 13:4e:4b:ca:19:ce:89:dc:60:a5:40:ef:f9:10:3f:8e:dc:97: 37:45:71:b8 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgISAZt7pSyTk68bj46i1EfaBaoKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmMGRkZjNmZTU3NzIyMDFhZmY3OGMyNGU5N2Y5NDRjMzgw NWZmNmIwHhcNMjYwMTAxMjIxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYmM1M2YwNmY2YmU1YjVhNjczOWJhMTViZTYyYjVlNGQzODU1NzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA68JCMCHpRgidhnO0z1h6Ysr75oQQ wx3jwRvQnRq7Afx1LPwRPB3dUFq7y0th/tApqBtihb3OKBor7AIMeKMn4D9zSENI IZhIDTgdE5LMNBNttjJ+CxqX/whEwCYmkc53hNI0CKNfFJxRdJ7RTvJl8jenUk0K d/59DF0DHfOlj1LOBJPPMc7bWGJPty3eSkTwkz1pQGF61AYyNTWG9OObPWyZLtXU GotQ2aLo7XwI2HBx5yjwQZf7TKOPVcZeIA4jhzdTS9dEMLrXzwYKfGN70Immrifx j01cUaauiiscVKBDpgi2ZeLxl/YFuM9Wj2ouIsN4hFkNoO2/XsC4AyJwBQIDAQAB o4ICNTCCAjEwHQYDVR0OBBYEFBvFPwb2vltaZzm6Fb5iteTThVc2MB8GA1UdIwQY MBaAFP8N3z/ldyIBr/eMJOl/lEw4Bf9rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3czZlAtVjNJZ0d2OTR3azZYLVVURGdGXzJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9jNDU1YmQtYjgyNS00OTAxLTgzODEt MDRkMTI0N2U1ZDBhLzEvRzhVX0J2YS1XMXBuT2JvVnZtSzE1Tk9GVnpZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9jNDU1YmQtYjgyNS00OTAxLTgzODEtMDRkMTI0N2U1ZDBh LzEvX3czZlAtVjNJZ0d2OTR3azZYLVVURGdGXzJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQDH8EgAwQE TfLQAwQDbetoAwQCuS0oAwQCuS1EMAwDBAC5Vj0DBAa5VgADBAXCt0AwDQYJKoZI hvcNAQELBQADggEBAJtXz2/N3o6J2lEPMybJou4SrMG5aBxCtFt4QxGdJmkxVVP/ H71ePxPdJff2nML9DIByuA4hUNBms9IF+hlHV+6oUGOKhHlrcpmdNZ4a9gt9yP6q ozM1lsRMDcr4vNPPjR3P0FZAoEZ6NOd7Q5x7OFjqON2ATNGKMI0wD/M5FGGYmGcH FrBOnlgfBSLu1iRFJWrGSvoQv6ApWGUEToIizFSj5GJSIMhPMEBlY9xCkj633IKR 8fCv8sr8dQBayK32czqxZ2hPixtwcK7nQPUkAjYOu8uflUd0B3s+sFRgsA2CZ49a sWhM5E+hZBNOS8oZzoncYKVA7/kQP47clzdFcbg= -----END CERTIFICATE-----Generated at Mon Jan 26 03:58:14 2026 by rpki-client