This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/GYXVPChjE0NPSEdDhucM44Q05y0.roa File: GYXVPChjE0NPSEdDhucM44Q05y0.roa (raw, json) Hash identifier: Aj116UIxTV5UX+R+IJJ14L/FveXnD0nSIlVBqSjnPM4= Subject key identifier: 19:85:D5:3C:28:63:13:43:4F:48:47:43:86:E7:0C:E3:84:34:E7:2D Certificate issuer: /CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2 Certificate serial: 019B791044C306B8E61410F5D88C5865B683 Authority key identifier: F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/GYXVPChjE0NPSEdDhucM44Q05y0.roa Signing time: Thu 01 Jan 2026 10:17:47 +0000 ROA not before: Thu 01 Jan 2026 10:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2119 IP address blocks: 195.177.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:44:c3:06:b8:e6:14:10:f5:d8:8c:58:65:b6:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2 Validity Not Before: Jan 1 10:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1985d53c286313434f48474386e70ce38434e72d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a0:62:3c:1e:bf:e1:6d:41:95:38:74:eb:2c: b0:2d:cc:5c:68:6a:92:ca:21:d6:82:b8:a1:2d:dd: 03:c5:76:9a:c0:3b:f1:43:31:33:4d:39:37:a3:ff: 86:b0:98:84:03:d4:fe:74:62:30:29:24:81:4b:93: 1d:aa:3b:2c:10:ad:19:b2:15:ae:da:b4:d0:e6:87: 27:fc:7e:3e:67:75:b6:a5:11:34:48:ac:cb:82:00: 1d:46:52:81:f5:ca:4d:91:53:8c:b4:a9:3c:ca:e2: ef:c1:5d:f4:76:5e:4c:c9:66:7d:88:62:84:56:76: 10:b0:cf:a0:32:80:a9:bc:a4:50:65:de:ff:ca:42: c7:b3:47:4a:56:13:be:7e:65:98:55:9c:ef:1a:40: 9a:4e:c2:a9:cc:d2:c3:be:96:3e:79:45:ec:74:d9: f7:a5:9b:aa:a9:e2:b7:49:68:77:cf:60:e9:15:08: 77:62:29:ec:a3:ba:ba:4f:70:9c:70:0e:94:6f:ab: e1:93:23:18:16:2e:49:db:c5:77:0e:19:f4:1b:44: ca:c4:cd:ef:ba:de:aa:a2:99:80:b6:14:5d:c8:54: 5c:60:35:71:48:ef:f2:3c:39:aa:6f:63:e8:41:1c: f9:e1:4d:29:79:f5:86:4c:73:ff:3b:06:db:6f:9f: 5d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:85:D5:3C:28:63:13:43:4F:48:47:43:86:E7:0C:E3:84:34:E7:2D X509v3 Authority Key Identifier: keyid:F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/GYXVPChjE0NPSEdDhucM44Q05y0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.177.98.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:84:20:04:fa:ef:a0:4e:6f:8b:67:cb:29:2f:4c:16:90:d6: 2c:36:f3:9c:97:a6:33:9b:0c:c3:b6:8d:86:88:0d:2f:3e:44: 54:fe:8a:84:48:71:f0:ee:28:af:b8:2d:70:f9:f2:4c:4e:e2: 13:12:5a:74:d3:a9:9d:c9:c9:30:e2:d5:e0:cc:bd:7d:9a:06: f1:7d:0a:a4:08:52:99:8e:03:9d:db:f7:d5:67:59:4c:f0:a9: 92:3a:d3:04:05:7c:16:0e:7f:24:94:46:08:f7:99:aa:63:d8: 42:b5:ac:2d:26:9e:30:cf:f6:ef:e4:89:49:de:4d:48:db:89: fa:06:9d:c3:1e:a8:86:a4:f0:db:37:38:a5:d2:4d:1b:ec:24: b5:64:84:d2:19:f8:df:10:82:67:d3:50:26:33:c1:da:d3:3d: 58:fa:a8:be:d7:6d:8b:a8:ad:53:b6:1c:4a:23:1d:b2:07:be: 5f:c8:a4:98:6d:6b:94:44:a7:18:a4:60:a9:be:77:ee:0b:2a: 0b:eb:50:79:81:f8:89:fc:f4:03:47:e8:ad:fe:a2:c4:f9:59: 56:c7:73:73:64:53:72:70:25:70:32:1a:2b:f9:e5:0f:6f:cb: d8:97:db:bd:bb:ea:a9:02:6e:ec:80:0c:cd:18:3f:02:d8:74: 0b:6b:30:25 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EETDBrjmFBD12IxYZbaDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwZmIwZDBiZTI5NmRjMWI3MTlkMjQ0MGZiNmFkOWM3NWQw OGUyZTIwHhcNMjYwMTAxMTAxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOTg1ZDUzYzI4NjMxMzQzNGY0ODQ3NDM4NmU3MGNlMzg0MzRlNzJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvKBiPB6/4W1BlTh06yywLcxcaGqS yiHWgrihLd0DxXaawDvxQzEzTTk3o/+GsJiEA9T+dGIwKSSBS5MdqjssEK0ZshWu 2rTQ5ocn/H4+Z3W2pRE0SKzLggAdRlKB9cpNkVOMtKk8yuLvwV30dl5MyWZ9iGKE VnYQsM+gMoCpvKRQZd7/ykLHs0dKVhO+fmWYVZzvGkCaTsKpzNLDvpY+eUXsdNn3 pZuqqeK3SWh3z2DpFQh3Yinso7q6T3CccA6Ub6vhkyMYFi5J28V3Dhn0G0TKxM3v ut6qopmAthRdyFRcYDVxSO/yPDmqb2PoQRz54U0pefWGTHP/Owbbb59dkwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBmF1TwoYxNDT0hHQ4bnDOOENOctMB8GA1UdIwQY MBaAFPD7DQviltwbcZ0kQPtq2cddCOLiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOFBzTkMtS1czQnR4blNSQS0yclp4MTBJNHVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8zZGVkZjYtM2VjNy00YjQwLWFkYWEt YzBlMjc4NzM2Yzg4LzEvR1lYVlBDaGpFME5QU0VkRGh1Y000NFEwNXkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8zZGVkZjYtM2VjNy00YjQwLWFkYWEtYzBlMjc4NzM2Yzg4 LzEvOFBzTkMtS1czQnR4blNSQS0yclp4MTBJNHVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7FiMA0G CSqGSIb3DQEBCwUAA4IBAQCKhCAE+u+gTm+LZ8spL0wWkNYsNvOcl6YzmwzDto2G iA0vPkRU/oqESHHw7iivuC1w+fJMTuITElp006mdyckw4tXgzL19mgbxfQqkCFKZ jgOd2/fVZ1lM8KmSOtMEBXwWDn8klEYI95mqY9hCtawtJp4wz/bv5IlJ3k1I24n6 Bp3DHqiGpPDbNzil0k0b7CS1ZITSGfjfEIJn01AmM8Ha0z1Y+qi+122LqK1TthxK Ix2yB75fyKSYbWuURKcYpGCpvnfuCyoL61B5gfiJ/PQDR+it/qLE+VlWx3NzZFNy cCVwMhor+eUPb8vYl9u9u+qpAm7sgAzNGD8C2HQLazAl -----END CERTIFICATE-----Generated at Sun Jan 25 15:13:32 2026 by rpki-client