This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/GL5VyykXWPAGjE-8edI3reSrYmc.roa File: GL5VyykXWPAGjE-8edI3reSrYmc.roa (raw, json) Hash identifier: aCS0HciYzOgDqvC1sJ03DUJprF9z1lNFOR4waS3dPAk= Subject key identifier: 18:BE:55:CB:29:17:58:F0:06:8C:4F:BC:79:D2:37:AD:E4:AB:62:67 Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Certificate serial: 019B7910034EAEE3C0F6BD11F4F5B0EC840C Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/GL5VyykXWPAGjE-8edI3reSrYmc.roa Signing time: Thu 01 Jan 2026 10:17:31 +0000 ROA not before: Thu 01 Jan 2026 10:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203068 IP address blocks: 109.205.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.mft rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:03:4e:ae:e3:c0:f6:bd:11:f4:f5:b0:ec:84:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Validity Not Before: Jan 1 10:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=18be55cb291758f0068c4fbc79d237ade4ab6267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8a:17:bf:c6:45:84:d8:50:23:b2:37:2d:d9: 6f:4c:43:99:48:24:0f:5b:b5:b4:7e:e4:d3:bd:9b: 91:04:1e:7e:81:ff:d2:a3:57:5d:66:17:e8:11:01: d0:fd:34:ec:f5:3d:8c:d8:6a:3c:ba:87:3f:d1:71: d0:54:ce:5a:62:e7:8b:64:fd:41:27:c3:69:48:78: ac:59:84:ab:17:9e:92:f7:81:c6:0d:f0:9a:d6:cd: 23:e8:1d:5e:c2:37:06:0d:d2:ef:24:5a:e2:2d:3c: b9:7c:d8:4d:5d:45:48:c0:f3:58:2a:08:d7:aa:9c: e3:fd:39:45:13:76:78:57:29:7c:c6:5d:af:8f:a0: a1:24:35:84:01:e0:c4:c1:65:69:cd:e0:02:ab:72: 92:be:0c:58:c9:51:a4:d2:53:5e:d0:d8:04:e1:f0: 1a:de:e4:04:14:7b:73:8a:df:a7:88:73:20:6f:ba: db:4c:28:cc:04:77:0f:7c:99:0a:f8:9a:f6:1d:35: 01:69:9a:c4:73:b8:56:44:2d:fd:c8:8b:f8:1e:1b: c8:e0:b6:9b:9c:ce:c0:46:83:63:69:58:0f:a8:ec: aa:e4:02:7b:9b:e7:8b:f8:2b:13:fd:0a:d3:d8:5d: 18:86:d9:a9:5b:ab:98:15:49:8b:da:69:78:53:85: 19:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:BE:55:CB:29:17:58:F0:06:8C:4F:BC:79:D2:37:AD:E4:AB:62:67 X509v3 Authority Key Identifier: keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/GL5VyykXWPAGjE-8edI3reSrYmc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.244.0/24 Signature Algorithm: sha256WithRSAEncryption 57:65:bd:52:ad:7c:b3:07:ce:39:e9:49:de:35:49:6e:bb:05: f4:93:d9:53:78:de:d0:16:32:0a:25:45:9e:d9:58:b1:fd:f4: 5c:4b:b2:cc:9d:43:47:9c:c3:63:f7:9d:dc:6f:fd:91:b9:a1: 3d:3a:eb:59:0e:c4:6e:ac:62:ea:aa:d3:ca:c6:db:1f:4f:37: d7:d6:b0:e0:e4:75:c9:ba:8c:63:83:df:4b:db:0d:68:66:6d: 60:2a:cb:67:26:84:4e:c8:99:3b:22:69:eb:ae:7c:5a:db:61: e8:48:01:5c:c3:0a:cc:ea:e5:9e:60:b7:7e:68:d9:93:52:60: a4:e7:4c:3a:15:6b:1b:c8:88:92:13:e9:ee:4f:55:06:9d:64: d2:0c:50:76:61:bb:43:78:fc:74:8d:eb:e8:92:68:7e:9c:ee: 83:90:c3:eb:90:0e:c1:b5:e2:cb:ce:19:67:be:74:00:84:1c: 55:b5:78:57:70:26:02:5a:e0:62:31:b1:60:07:1a:21:1b:6d: 54:3d:7b:a8:ac:f0:9d:47:c3:0d:cd:9d:68:33:61:f8:73:b4: 69:e0:7b:74:fa:8f:9f:77:e7:2a:6b:d0:f0:e5:bc:39:85:a2: 57:2f:c5:62:58:90:c1:78:24:26:f6:e3:60:95:16:fd:dc:4a: fa:33:25:4f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EANOruPA9r0R9PWw7IQMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmOTNkM2JhMTk3ZjVjZTMwOThiZmE3NzAwYjQzODU0ZWFh ODBlOWUwHhcNMjYwMTAxMTAxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOGJlNTVjYjI5MTc1OGYwMDY4YzRmYmM3OWQyMzdhZGU0YWI2MjY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIoXv8ZFhNhQI7I3LdlvTEOZSCQP W7W0fuTTvZuRBB5+gf/So1ddZhfoEQHQ/TTs9T2M2Go8uoc/0XHQVM5aYueLZP1B J8NpSHisWYSrF56S94HGDfCa1s0j6B1ewjcGDdLvJFriLTy5fNhNXUVIwPNYKgjX qpzj/TlFE3Z4Vyl8xl2vj6ChJDWEAeDEwWVpzeACq3KSvgxYyVGk0lNe0NgE4fAa 3uQEFHtzit+niHMgb7rbTCjMBHcPfJkK+Jr2HTUBaZrEc7hWRC39yIv4HhvI4Lab nM7ARoNjaVgPqOyq5AJ7m+eL+CsT/QrT2F0YhtmpW6uYFUmL2ml4U4UZ8QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBi+VcspF1jwBoxPvHnSN63kq2JnMB8GA1UdIwQY MBaAFC+T07oZf1zjCYv6dwC0OFTqqA6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUt OWU3MWRjMjRhNjgzLzEvR0w1Vnl5a1hXUEFHakUtOGVkSTNyZVNyWW1jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUtOWU3MWRjMjRhNjgz LzEvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbc30MA0G CSqGSIb3DQEBCwUAA4IBAQBXZb1SrXyzB8456UneNUluuwX0k9lTeN7QFjIKJUWe 2Vix/fRcS7LMnUNHnMNj953cb/2RuaE9OutZDsRurGLqqtPKxtsfTzfX1rDg5HXJ uoxjg99L2w1oZm1gKstnJoROyJk7Imnrrnxa22HoSAFcwwrM6uWeYLd+aNmTUmCk 50w6FWsbyIiSE+nuT1UGnWTSDFB2YbtDePx0jevokmh+nO6DkMPrkA7BteLLzhln vnQAhBxVtXhXcCYCWuBiMbFgBxohG21UPXuorPCdR8MNzZ1oM2H4c7Rp4Ht0+o+f d+cqa9Dw5bw5haJXL8ViWJDBeCQm9uNglRb93Er6MyVP -----END CERTIFICATE-----Generated at Sun Jan 25 15:02:33 2026 by rpki-client