This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/gkqFAdULp-MSlNo8ljKdmzxNnW8.roa File: gkqFAdULp-MSlNo8ljKdmzxNnW8.roa (raw, json) Hash identifier: MUtCuN0kNobHKk0C/st+dCMUhmlNlDPz4Sloa+o6ysc= Subject key identifier: 82:4A:85:01:D5:0B:A7:E3:12:94:DA:3C:96:32:9D:9B:3C:4D:9D:6F Certificate issuer: /CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8 Certificate serial: 019B7E3903BEA831CC17B71534B40A42FF1D Authority key identifier: E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/gkqFAdULp-MSlNo8ljKdmzxNnW8.roa Signing time: Fri 02 Jan 2026 10:20:24 +0000 ROA not before: Fri 02 Jan 2026 10:20:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16246 IP address blocks: 77.87.232.0/21 maxlen: 21 78.108.144.0/21 maxlen: 21 78.108.152.0/21 maxlen: 21 82.150.160.0/19 maxlen: 19 86.63.192.0/19 maxlen: 19 91.197.116.0/22 maxlen: 22 92.240.160.0/19 maxlen: 19 94.74.192.0/18 maxlen: 18 95.143.128.0/20 maxlen: 20 176.98.96.0/20 maxlen: 20 178.17.96.0/20 maxlen: 20 185.15.252.0/22 maxlen: 22 188.175.0.0/16 maxlen: 16 213.180.32.0/19 maxlen: 19 2a02:350::/29 maxlen: 29 2a03:b4c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:03:be:a8:31:cc:17:b7:15:34:b4:0a:42:ff:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8 Validity Not Before: Jan 2 10:20:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=824a8501d50ba7e31294da3c96329d9b3c4d9d6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1e:a7:91:ba:2d:4a:cc:36:2e:2f:b1:3f:e1: 54:d1:d4:54:44:f9:ad:f6:d4:ae:79:3b:e2:d0:de: 5d:28:2a:4a:51:7e:f5:18:44:05:7a:3f:01:5d:2d: 2f:ac:c8:60:2c:8f:ca:5f:36:4c:21:d1:e5:20:69: a5:5d:49:73:04:78:24:21:30:f3:d5:a8:0e:60:92: 24:ca:2a:2c:24:76:cf:e0:bb:d6:65:56:df:b1:2e: df:b1:6b:51:f9:6a:fe:83:b2:64:72:24:9e:ba:21: 0f:5f:0b:25:b1:3f:3f:52:48:1e:af:fd:ee:91:32: 08:cf:f8:4d:27:c8:04:f1:bf:42:0f:a0:05:22:aa: f0:27:b0:92:0e:91:e4:4d:32:9e:be:74:b9:a0:56: 15:a9:ea:76:ff:a7:af:c3:b1:2f:a4:34:cf:50:3b: 17:33:78:13:6f:8f:34:e4:fc:cf:08:a4:13:c2:f9: 6f:d7:d4:9a:27:9d:0d:bc:3c:e5:dd:c2:49:6c:02: 48:ef:78:12:6b:a0:99:59:f6:b0:a5:83:ee:ef:2d: ca:98:ef:62:a7:58:16:07:90:13:13:08:06:fa:ae: d5:96:1e:d8:51:55:47:ab:05:f1:bf:64:d3:f0:3c: d0:1d:c7:20:c0:54:d7:61:91:52:91:19:82:ae:c0: 41:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:4A:85:01:D5:0B:A7:E3:12:94:DA:3C:96:32:9D:9B:3C:4D:9D:6F X509v3 Authority Key Identifier: keyid:E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/gkqFAdULp-MSlNo8ljKdmzxNnW8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.87.232.0/21 78.108.144.0/20 82.150.160.0/19 86.63.192.0/19 91.197.116.0/22 92.240.160.0/19 94.74.192.0/18 95.143.128.0/20 176.98.96.0/20 178.17.96.0/20 185.15.252.0/22 188.175.0.0/16 213.180.32.0/19 IPv6: 2a02:350::/29 2a03:b4c0::/32 Signature Algorithm: sha256WithRSAEncryption 8e:35:a8:e5:ef:33:7b:43:1a:3e:09:cb:f1:ae:2c:38:92:ee: bb:73:50:09:9a:d6:88:a2:3f:4b:bd:bc:8d:db:32:fe:f9:25: e7:94:a2:d1:68:a6:65:23:82:15:0e:00:2c:04:ad:df:7c:88: e3:f0:4f:c9:05:22:6d:ca:62:40:6e:58:24:25:d8:28:74:d0: 3f:d5:b4:8d:3b:b0:95:e4:3f:3b:0a:64:05:24:fc:81:8b:a2: a3:39:02:c0:ff:e1:1d:bd:fa:f6:70:bd:71:ef:77:ed:e8:a5: 68:3a:a3:57:d2:25:f3:93:a2:f9:96:79:05:f4:14:04:dd:3b: 50:ee:aa:c8:46:59:92:6e:ab:64:fd:6c:bd:ea:05:fc:88:4b: 5d:56:39:e0:97:19:fd:05:f8:c3:f2:8a:6c:1e:6c:b2:b4:ef: 3d:40:02:0c:2f:77:6f:3a:6d:c5:09:76:1a:c3:03:e1:e6:68: c1:59:e7:76:8d:20:c6:a4:70:b2:df:40:57:c2:15:f2:a5:74: 57:2e:bf:13:cf:65:6a:09:b1:04:a8:19:c1:33:b7:67:8a:e3: 0c:26:cd:c4:46:7d:b7:cc:e7:26:2d:c4:c7:f7:9c:4a:6a:e7: a7:02:6e:25:22:65:1e:90:b2:3e:3c:4e:e9:a2:ea:66:ac:b8: 4c:b7:e6:8d -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgISAZt+OQO+qDHMF7cVNLQKQv8dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ZDZjNmU4YmNlZDQwYmQwMzJkMTc3MThjMWIxZTM5YWU4 NDFhZTgwHhcNMjYwMTAyMTAyMDI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MjRhODUwMWQ1MGJhN2UzMTI5NGRhM2M5NjMyOWQ5YjNjNGQ5ZDZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvx6nkbotSsw2Li+xP+FU0dRURPmt 9tSueTvi0N5dKCpKUX71GEQFej8BXS0vrMhgLI/KXzZMIdHlIGmlXUlzBHgkITDz 1agOYJIkyiosJHbP4LvWZVbfsS7fsWtR+Wr+g7JkciSeuiEPXwslsT8/Ukger/3u kTIIz/hNJ8gE8b9CD6AFIqrwJ7CSDpHkTTKevnS5oFYVqep2/6evw7EvpDTPUDsX M3gTb4805PzPCKQTwvlv19SaJ50NvDzl3cJJbAJI73gSa6CZWfawpYPu7y3KmO9i p1gWB5ATEwgG+q7Vlh7YUVVHqwXxv2TT8DzQHccgwFTXYZFSkRmCrsBBJQIDAQAB o4ICZjCCAmIwHQYDVR0OBBYEFIJKhQHVC6fjEpTaPJYynZs8TZ1vMB8GA1UdIwQY MBaAFOXWxui87UC9Ay0XcYwbHjmuhBroMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWRiRzZMenRRTDBETFJkeGpCc2VPYTZFR3VnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wODk0ZjctZTI0ZC00NzI4LThjYWQt YmQyNDliNjI1Nzk3LzEvZ2txRkFkVUxwLU1TbE5vOGxqS2RtenhOblc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8wODk0ZjctZTI0ZC00NzI4LThjYWQtYmQyNDliNjI1Nzk3 LzEvNWRiRzZMenRRTDBETFJkeGpCc2VPYTZFR3VnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHwGCCsGAQUFBwEHAQH/BG0wazBTBAIAATBNAwQDTVfoAwQE TmyQAwQFUpagAwQFVj/AAwQCW8V0AwQFXPCgAwQGXkrAAwQEX4+AAwQEsGJgAwQE shFgAwQCuQ/8AwMAvK8DBAXVtCAwFAQCAAIwDgMFAyoCA1ADBQAqA7TAMA0GCSqG SIb3DQEBCwUAA4IBAQCONajl7zN7Qxo+Ccvxriw4ku67c1AJmtaIoj9LvbyN2zL+ +SXnlKLRaKZlI4IVDgAsBK3ffIjj8E/JBSJtymJAblgkJdgodNA/1bSNO7CV5D87 CmQFJPyBi6KjOQLA/+Edvfr2cL1x73ft6KVoOqNX0iXzk6L5lnkF9BQE3TtQ7qrI RlmSbqtk/Wy96gX8iEtdVjnglxn9BfjD8opsHmyytO89QAIML3dvOm3FCXYawwPh 5mjBWed2jSDGpHCy30BXwhXypXRXLr8Tz2VqCbEEqBnBM7dniuMMJs3ERn23zOcm LcTH95xKauenAm4lImUekLI+PE7poupmrLhMt+aN -----END CERTIFICATE-----Generated at Sun Jan 25 22:17:12 2026 by rpki-client