This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/gR_nj3KnhXU_3ijLA5gL5yTqRVo.roa File: gR_nj3KnhXU_3ijLA5gL5yTqRVo.roa (raw, json) Hash identifier: yYO83gea+RX6tvgJTdvweHxx3nR1Y0pwKFCRPMjHc2I= Subject key identifier: 81:1F:E7:8F:72:A7:85:75:3F:DE:28:CB:03:98:0B:E7:24:EA:45:5A Certificate issuer: /CN=efa5b62347a1b64cea49a2ab3ab4983c34861fb2 Certificate serial: 019AEEC4069F81399B1EA74CFCFE44D7483B Authority key identifier: EF:A5:B6:23:47:A1:B6:4C:EA:49:A2:AB:3A:B4:98:3C:34:86:1F:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/76W2I0ehtkzqSaKrOrSYPDSGH7I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/gR_nj3KnhXU_3ijLA5gL5yTqRVo.roa Signing time: Fri 05 Dec 2025 13:46:55 +0000 ROA not before: Fri 05 Dec 2025 13:46:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 48300 IP address blocks: 188.137.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/76W2I0ehtkzqSaKrOrSYPDSGH7I.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/76W2I0ehtkzqSaKrOrSYPDSGH7I.mft rsync://rpki.ripe.net/repository/DEFAULT/76W2I0ehtkzqSaKrOrSYPDSGH7I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ee:c4:06:9f:81:39:9b:1e:a7:4c:fc:fe:44:d7:48:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=efa5b62347a1b64cea49a2ab3ab4983c34861fb2 Validity Not Before: Dec 5 13:46:55 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=811fe78f72a785753fde28cb03980be724ea455a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1a:47:43:1b:5f:a6:7c:72:e6:d0:f6:20:90: fe:b5:79:1b:31:c1:9a:fc:3c:80:45:0c:f3:9c:65: 81:51:c7:17:dd:b6:24:39:be:03:1b:5d:cc:b6:42: ba:da:12:1f:97:4f:2a:ff:59:3d:99:17:ef:d5:82: f9:04:e5:77:64:78:6f:12:d7:71:d2:e3:d3:29:a2: 77:2e:44:9d:d0:6d:d1:67:cb:cd:02:a9:84:11:f0: 69:3a:d3:6a:10:2f:8a:f5:e4:8f:8f:bc:57:c7:e8: a7:7a:99:3d:27:1a:a8:67:b2:45:40:15:c0:bb:e6: 3d:68:26:df:40:d2:47:72:3d:9b:8f:70:dc:f3:1a: cf:ed:0a:94:11:f3:d8:d9:61:ad:33:a4:56:17:48: 42:e7:29:eb:42:1b:57:62:d0:f1:a5:fb:84:33:ac: 7d:af:4b:33:51:49:63:b0:e6:c9:b8:16:b7:12:40: 9b:b5:8f:96:98:3d:86:5b:3f:28:fc:bf:6f:aa:31: 04:0d:89:a7:6c:1a:77:52:20:bf:9a:78:6e:51:8e: 0f:15:69:a5:3d:52:59:64:e1:5e:f8:4f:ef:4a:42: c2:98:12:e5:e9:3b:2e:32:30:09:ed:f1:d1:a3:0a: b7:00:18:7e:13:ba:cd:58:ac:24:de:b7:8c:ec:c0: 3d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1F:E7:8F:72:A7:85:75:3F:DE:28:CB:03:98:0B:E7:24:EA:45:5A X509v3 Authority Key Identifier: keyid:EF:A5:B6:23:47:A1:B6:4C:EA:49:A2:AB:3A:B4:98:3C:34:86:1F:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/76W2I0ehtkzqSaKrOrSYPDSGH7I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/gR_nj3KnhXU_3ijLA5gL5yTqRVo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/76W2I0ehtkzqSaKrOrSYPDSGH7I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.137.158.0/24 Signature Algorithm: sha256WithRSAEncryption 41:72:71:ee:89:12:19:fd:1e:84:f1:5a:bc:20:c9:70:b6:11: 62:a2:53:06:53:44:1a:34:08:d7:5f:04:d9:26:c5:97:bf:a7: 76:8a:44:59:da:7b:f1:f3:c8:6f:ef:5e:5b:8e:3d:c9:32:7c: 77:03:4e:13:58:89:5a:b6:83:fd:b5:03:29:f9:2f:85:0d:6c: 6a:7a:7d:59:6f:a6:d6:2d:88:6f:48:61:7b:83:30:de:e5:51: 69:8e:61:e9:0b:62:1a:e1:17:b8:b7:dd:43:fe:ad:b0:6f:41: 30:0a:d3:38:ba:b8:47:1c:42:30:93:4d:42:a1:13:d3:6e:9a: 6d:3d:fe:f6:39:0e:31:db:d6:6c:c2:f4:65:49:b1:2a:c0:51: 77:cd:bc:5f:a3:5d:83:e2:1a:d4:89:72:a6:45:1f:64:fd:0c: b1:b4:35:cf:27:3e:f7:b2:40:48:6c:e4:a5:ac:19:1a:32:10: 82:ed:f6:46:57:cb:31:fb:7d:4f:cb:28:e0:47:7d:41:41:df: 5b:7a:ac:b0:64:13:0f:03:4c:c0:47:70:07:09:4a:07:78:24: 58:36:c1:55:f1:36:b3:77:64:da:0a:11:d0:85:62:a5:92:25: 26:79:ca:3f:03:6b:54:de:e5:51:63:7f:34:68:97:73:f3:16: 52:fd:9b:f6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZruxAafgTmbHqdM/P5E10g7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmYTViNjIzNDdhMWI2NGNlYTQ5YTJhYjNhYjQ5ODNjMzQ4 NjFmYjIwHhcNMjUxMjA1MTM0NjU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MTFmZTc4ZjcyYTc4NTc1M2ZkZTI4Y2IwMzk4MGJlNzI0ZWE0NTVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxpHQxtfpnxy5tD2IJD+tXkbMcGa /DyARQzznGWBUccX3bYkOb4DG13MtkK62hIfl08q/1k9mRfv1YL5BOV3ZHhvEtdx 0uPTKaJ3LkSd0G3RZ8vNAqmEEfBpOtNqEC+K9eSPj7xXx+inepk9JxqoZ7JFQBXA u+Y9aCbfQNJHcj2bj3Dc8xrP7QqUEfPY2WGtM6RWF0hC5ynrQhtXYtDxpfuEM6x9 r0szUUljsObJuBa3EkCbtY+WmD2GWz8o/L9vqjEEDYmnbBp3UiC/mnhuUY4PFWml PVJZZOFe+E/vSkLCmBLl6TsuMjAJ7fHRowq3ABh+E7rNWKwk3reM7MA98wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIEf549yp4V1P94oywOYC+ck6kVaMB8GA1UdIwQY MBaAFO+ltiNHobZM6kmiqzq0mDw0hh+yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzZXMkkwZWh0a3pxU2FLck9yU1lQRFNHSDdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yNGRiMjEtZWZiOS00MDdlLTk2YWQt MDEzZDJhMTFjMGE1LzEvZ1JfbmozS25oWFVfM2lqTEE1Z0w1eVRxUlZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8yNGRiMjEtZWZiOS00MDdlLTk2YWQtMDEzZDJhMTFjMGE1 LzEvNzZXMkkwZWh0a3pxU2FLck9yU1lQRFNHSDdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvImeMA0G CSqGSIb3DQEBCwUAA4IBAQBBcnHuiRIZ/R6E8Vq8IMlwthFiolMGU0QaNAjXXwTZ JsWXv6d2ikRZ2nvx88hv715bjj3JMnx3A04TWIlatoP9tQMp+S+FDWxqen1Zb6bW LYhvSGF7gzDe5VFpjmHpC2Ia4Re4t91D/q2wb0EwCtM4urhHHEIwk01CoRPTbppt Pf72OQ4x29ZswvRlSbEqwFF3zbxfo12D4hrUiXKmRR9k/QyxtDXPJz73skBIbOSl rBkaMhCC7fZGV8sx+31PyyjgR31BQd9beqywZBMPA0zAR3AHCUoHeCRYNsFV8Taz d2TaChHQhWKlkiUmeco/A2tU3uVRY380aJdz8xZS/Zv2 -----END CERTIFICATE-----Generated at Sat Dec 6 20:14:38 2025 by rpki-client