This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2a3ccc-293c-41da-ad16-1b99fd09763e/1/ghpA5fCdi4-vZdLYzD8KSMnNUUQ.roa File: ghpA5fCdi4-vZdLYzD8KSMnNUUQ.roa (raw, json) Hash identifier: z5taojLfDf55uPGabR8q/HQ0BFw+j/KvT8vFcA5Y8Zg= Subject key identifier: 82:1A:40:E5:F0:9D:8B:8F:AF:65:D2:D8:CC:3F:0A:48:C9:CD:51:44 Certificate issuer: /CN=34e40348463c60ce9fc694060a37f4683093f045 Certificate serial: 019B7C11B479F378E0640391BCD670052434 Authority key identifier: 34:E4:03:48:46:3C:60:CE:9F:C6:94:06:0A:37:F4:68:30:93:F0:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NOQDSEY8YM6fxpQGCjf0aDCT8EU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2a3ccc-293c-41da-ad16-1b99fd09763e/1/ghpA5fCdi4-vZdLYzD8KSMnNUUQ.roa Signing time: Fri 02 Jan 2026 00:18:13 +0000 ROA not before: Fri 02 Jan 2026 00:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6730 IP address blocks: 193.104.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2a3ccc-293c-41da-ad16-1b99fd09763e/1/NOQDSEY8YM6fxpQGCjf0aDCT8EU.crl rsync://rpki.ripe.net/repository/DEFAULT/20/2a3ccc-293c-41da-ad16-1b99fd09763e/1/NOQDSEY8YM6fxpQGCjf0aDCT8EU.mft rsync://rpki.ripe.net/repository/DEFAULT/NOQDSEY8YM6fxpQGCjf0aDCT8EU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:b4:79:f3:78:e0:64:03:91:bc:d6:70:05:24:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34e40348463c60ce9fc694060a37f4683093f045 Validity Not Before: Jan 2 00:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=821a40e5f09d8b8faf65d2d8cc3f0a48c9cd5144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:19:5a:19:c1:5a:6f:4b:a1:f8:ae:21:07:21: 71:f8:2b:1d:30:8c:1c:ac:56:03:9c:16:2f:a9:8c: 5d:1b:9b:fa:2a:6f:8c:b8:35:91:07:a0:48:16:01: 3c:0e:c6:6d:f8:98:90:85:a2:bf:ba:ec:41:70:c8: 5d:0a:a7:1c:b9:f8:3f:9a:a5:b9:4b:ba:7a:24:6a: 92:01:14:e6:b2:6a:72:aa:55:2f:c9:62:e6:41:8e: 86:c2:37:a8:2c:9c:48:54:b8:d4:c0:9f:7b:c5:53: bf:ec:93:b0:b3:9e:f1:8d:41:a6:e5:35:57:7b:ac: f4:70:94:6e:54:c1:e2:5a:56:43:bd:74:ae:53:b9: cc:2b:38:72:a3:a2:88:6b:a1:74:53:9f:3d:bf:56: b1:3e:76:24:ed:35:71:52:48:c0:fb:3a:ae:74:1b: f3:fa:c2:d1:f4:1c:b8:f4:79:22:d2:8d:3c:c1:7b: 9c:07:f5:d6:63:7b:9d:80:c6:e7:3d:33:c9:a0:23: d7:8f:ab:e7:98:26:34:92:a0:80:2e:30:95:20:61: 7f:20:c3:f5:1b:29:a0:db:3f:ea:87:5e:75:d5:39: 31:b8:61:02:a8:69:c5:07:c9:60:28:d1:d8:61:97: c6:c8:08:a3:26:51:2c:de:21:f6:a5:80:cd:bf:bf: 71:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:1A:40:E5:F0:9D:8B:8F:AF:65:D2:D8:CC:3F:0A:48:C9:CD:51:44 X509v3 Authority Key Identifier: keyid:34:E4:03:48:46:3C:60:CE:9F:C6:94:06:0A:37:F4:68:30:93:F0:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NOQDSEY8YM6fxpQGCjf0aDCT8EU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2a3ccc-293c-41da-ad16-1b99fd09763e/1/ghpA5fCdi4-vZdLYzD8KSMnNUUQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2a3ccc-293c-41da-ad16-1b99fd09763e/1/NOQDSEY8YM6fxpQGCjf0aDCT8EU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.104.167.0/24 Signature Algorithm: sha256WithRSAEncryption b9:ce:d6:a3:db:b7:2a:dd:d4:52:5b:25:6d:64:1c:8b:c8:99: f3:16:80:e9:b8:3f:83:2d:a5:f9:64:03:c8:b5:b1:2b:be:d0: c0:b9:39:c3:a9:55:1f:e6:d6:a5:10:0e:0c:68:b2:56:69:1a: 00:af:1d:b2:0c:20:cc:70:be:7d:e0:31:25:16:b0:f3:f3:ad: 6d:1a:38:e7:1e:bc:20:de:da:dc:4d:86:bb:f4:8c:a3:85:04: 8f:66:b3:aa:af:ba:ae:10:c9:e6:5e:99:93:2f:c0:bd:fe:c9: 57:81:d5:e3:91:f6:3d:90:6e:1d:58:52:b1:53:08:02:27:ad: 19:1b:de:ed:2d:b0:dd:27:49:38:df:7d:ef:c7:c3:05:99:8e: a5:ed:b0:f8:c0:b2:ec:f7:8c:7a:77:7d:e1:12:dc:70:73:a4: 25:2a:63:44:82:52:49:58:1d:3c:7a:07:3d:1a:0a:5d:95:93: f1:7f:07:e2:80:d3:85:b1:d5:e6:81:7b:4d:fe:6d:fc:64:c1: 7e:47:9b:6f:94:fb:06:64:26:ae:98:1d:e8:34:bf:3f:01:95: 9e:e6:e2:3f:c1:5f:7f:e4:b8:77:6a:16:d4:02:1a:36:77:13: 91:21:36:63:74:0b:5a:34:8c:36:3b:6d:d2:e3:84:a7:8e:c8: 56:45:84:55 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EbR583jgZAORvNZwBSQ0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ZTQwMzQ4NDYzYzYwY2U5ZmM2OTQwNjBhMzdmNDY4MzA5 M2YwNDUwHhcNMjYwMTAyMDAxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MjFhNDBlNWYwOWQ4YjhmYWY2NWQyZDhjYzNmMGE0OGM5Y2Q1MTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRlaGcFab0uh+K4hByFx+CsdMIwc rFYDnBYvqYxdG5v6Km+MuDWRB6BIFgE8DsZt+JiQhaK/uuxBcMhdCqccufg/mqW5 S7p6JGqSARTmsmpyqlUvyWLmQY6GwjeoLJxIVLjUwJ97xVO/7JOws57xjUGm5TVX e6z0cJRuVMHiWlZDvXSuU7nMKzhyo6KIa6F0U589v1axPnYk7TVxUkjA+zqudBvz +sLR9By49Hki0o08wXucB/XWY3udgMbnPTPJoCPXj6vnmCY0kqCALjCVIGF/IMP1 Gymg2z/qh1511TkxuGECqGnFB8lgKNHYYZfGyAijJlEs3iH2pYDNv79xUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIIaQOXwnYuPr2XS2Mw/CkjJzVFEMB8GA1UdIwQY MBaAFDTkA0hGPGDOn8aUBgo39Ggwk/BFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTk9RRFNFWThZTTZmeHBRR0NqZjBhRENUOEVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yYTNjY2MtMjkzYy00MWRhLWFkMTYt MWI5OWZkMDk3NjNlLzEvZ2hwQTVmQ2RpNC12WmRMWXpEOEtTTW5OVVVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC8yYTNjY2MtMjkzYy00MWRhLWFkMTYtMWI5OWZkMDk3NjNl LzEvTk9RRFNFWThZTTZmeHBRR0NqZjBhRENUOEVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWinMA0G CSqGSIb3DQEBCwUAA4IBAQC5ztaj27cq3dRSWyVtZByLyJnzFoDpuD+DLaX5ZAPI tbErvtDAuTnDqVUf5talEA4MaLJWaRoArx2yDCDMcL594DElFrDz861tGjjnHrwg 3trcTYa79IyjhQSPZrOqr7quEMnmXpmTL8C9/slXgdXjkfY9kG4dWFKxUwgCJ60Z G97tLbDdJ0k4333vx8MFmY6l7bD4wLLs94x6d33hEtxwc6QlKmNEglJJWB08egc9 GgpdlZPxfwfigNOFsdXmgXtN/m38ZMF+R5tvlPsGZCaumB3oNL8/AZWe5uI/wV9/ 5Lh3ahbUAho2dxORITZjdAtaNIw2O23S44SnjshWRYRV -----END CERTIFICATE-----Generated at Sun Jan 25 21:39:51 2026 by rpki-client