This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/GPARjx2ZxhQqTtNn65Snhq2SRBM.roa File: GPARjx2ZxhQqTtNn65Snhq2SRBM.roa (raw, json) Hash identifier: iFl6vsK7DKYRc2OFr/+vSmDa2xBaBqQHLPAij1YJ5g8= Subject key identifier: 18:F0:11:8F:1D:99:C6:14:2A:4E:D3:67:EB:94:A7:86:AD:92:44:13 Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5 Certificate serial: 019BCC0E78DB8AF7721746AF3D247039602F Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/GPARjx2ZxhQqTtNn65Snhq2SRBM.roa Signing time: Sat 17 Jan 2026 13:04:19 +0000 ROA not before: Sat 17 Jan 2026 13:04:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202615 IP address blocks: 2a14:42c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:cc:0e:78:db:8a:f7:72:17:46:af:3d:24:70:39:60:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5 Validity Not Before: Jan 17 13:04:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=18f0118f1d99c6142a4ed367eb94a786ad924413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:29:62:d7:52:17:33:66:d2:03:0d:96:10:fe: 85:e4:a1:bf:14:4b:c0:1a:f7:1c:03:86:32:c5:b3: 4a:09:49:23:42:0d:d5:a4:e7:99:15:83:f1:7b:68: 35:3a:43:6b:d2:26:08:32:3f:68:0d:4c:09:a9:7e: 3b:82:ad:17:70:27:5b:c7:0f:c5:4f:b6:d1:3b:ac: bc:45:05:50:64:b9:42:c7:09:f4:0e:9a:f4:fd:a2: 58:50:79:7e:b3:e4:dc:ba:fe:75:ac:87:0b:96:73: 12:96:38:58:19:8f:1f:22:74:5d:7f:ba:49:c5:5f: de:5f:15:d6:88:40:b0:93:b1:34:f4:b3:7b:e6:3e: 8d:a6:1e:de:31:22:c4:2b:4e:6f:9e:08:00:f1:88: 17:57:6b:c9:e4:6d:ae:53:1b:7a:9a:f7:14:cb:b6: 5c:30:cc:a1:4b:c2:e9:fc:f9:1d:82:10:9f:0f:a6: 16:7b:5a:9d:86:04:86:19:88:83:cd:96:f2:d7:91: 18:48:f6:31:a1:31:1f:e8:a4:cc:70:a2:63:a9:ee: 61:05:b0:12:5c:a1:1a:b8:93:0f:18:f8:28:84:77: 75:ba:8e:5a:75:9d:fd:25:20:b1:3a:e9:2c:c0:cb: cc:da:40:bc:1e:07:31:3b:7c:7b:be:a5:e0:da:d2: b9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:F0:11:8F:1D:99:C6:14:2A:4E:D3:67:EB:94:A7:86:AD:92:44:13 X509v3 Authority Key Identifier: keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/GPARjx2ZxhQqTtNn65Snhq2SRBM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:42c0::/29 Signature Algorithm: sha256WithRSAEncryption 09:e4:52:8e:2f:ae:c6:45:29:e9:6c:81:ab:54:97:08:a4:c7: 3a:9d:20:24:33:c9:da:64:07:f9:ea:e1:49:3d:1c:bf:ca:07: ae:d1:e7:a9:93:0e:1d:a9:c7:23:93:3b:c1:2a:6c:dc:a0:cf: e1:62:13:21:1e:06:50:74:42:53:52:a9:dc:bc:f7:da:9c:c8: 8e:a5:d5:53:7d:a6:02:65:a3:b2:44:15:7d:28:e0:c6:11:96: e0:4a:70:74:33:65:5e:33:ea:9a:cd:28:2d:83:e5:a9:24:48: 15:2a:f1:32:3d:1a:9a:be:bf:54:65:35:7b:66:12:4c:85:51: 06:fa:19:1f:95:9f:93:38:64:93:55:3d:f2:bd:14:08:6e:a8: c2:50:79:83:ef:50:20:f5:d5:83:12:c1:03:c2:e2:d9:44:7a: fe:2e:aa:f7:74:97:32:26:13:c4:3e:11:3f:8c:11:4b:5c:c7: a8:d5:33:de:2b:9c:bb:fe:98:16:db:f9:22:83:43:c5:1c:06: 88:a0:16:df:49:08:05:60:20:6f:53:f7:d6:4c:9b:aa:47:77: dd:40:d0:d6:15:b6:68:65:5f:2c:4f:df:41:98:25:86:8c:b8: b0:2a:b2:3b:36:fe:11:91:d6:9d:63:ce:ac:a3:71:73:2e:f3: 60:80:ab:a3 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZvMDnjbivdyF0avPSRwOWAvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMTQxMTJkMDVlOWQ4NzYxNDlkMjc3OGQ0OGVkYWFhMzI0 ZGIwYTUwHhcNMjYwMTE3MTMwNDE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOGYwMTE4ZjFkOTljNjE0MmE0ZWQzNjdlYjk0YTc4NmFkOTI0NDEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSli11IXM2bSAw2WEP6F5KG/FEvA GvccA4YyxbNKCUkjQg3VpOeZFYPxe2g1OkNr0iYIMj9oDUwJqX47gq0XcCdbxw/F T7bRO6y8RQVQZLlCxwn0Dpr0/aJYUHl+s+Tcuv51rIcLlnMSljhYGY8fInRdf7pJ xV/eXxXWiECwk7E09LN75j6Nph7eMSLEK05vnggA8YgXV2vJ5G2uUxt6mvcUy7Zc MMyhS8Lp/PkdghCfD6YWe1qdhgSGGYiDzZby15EYSPYxoTEf6KTMcKJjqe5hBbAS XKEauJMPGPgohHd1uo5adZ39JSCxOukswMvM2kC8HgcxO3x7vqXg2tK5pQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFBjwEY8dmcYUKk7TZ+uUp4atkkQTMB8GA1UdIwQY MBaAFE8UES0F6dh2FJ0neNSO2qoyTbClMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUt YmFmYmRmYzgxMzJhLzEvR1BBUmp4Mlp4aFFxVHRObjY1U25ocTJTUkJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUtYmFmYmRmYzgxMzJh LzEvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhRCwDAN BgkqhkiG9w0BAQsFAAOCAQEACeRSji+uxkUp6WyBq1SXCKTHOp0gJDPJ2mQH+erh ST0cv8oHrtHnqZMOHanHI5M7wSps3KDP4WITIR4GUHRCU1Kp3Lz32pzIjqXVU32m AmWjskQVfSjgxhGW4EpwdDNlXjPqms0oLYPlqSRIFSrxMj0amr6/VGU1e2YSTIVR BvoZH5Wfkzhkk1U98r0UCG6owlB5g+9QIPXVgxLBA8Li2UR6/i6q93SXMiYTxD4R P4wRS1zHqNUz3iucu/6YFtv5IoNDxRwGiKAW30kIBWAgb1P31kybqkd33UDQ1hW2 aGVfLE/fQZglhoy4sCqyOzb+EZHWnWPOrKNxcy7zYICrow== -----END CERTIFICATE-----Generated at Sun Jan 25 13:01:50 2026 by rpki-client