This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/gjHfWoEHc9QTn6Mvq7ZDpa1HWi0.roa File: gjHfWoEHc9QTn6Mvq7ZDpa1HWi0.roa (raw, json) Hash identifier: qlBolvwxAE3Oa4lo8khdT9eAg5j/fv2rE6rmykA9rEE= Subject key identifier: 82:31:DF:5A:81:07:73:D4:13:9F:A3:2F:AB:B6:43:A5:AD:47:5A:2D Certificate issuer: /CN=ab27ed1cea4321c49c3ca10f3affafdbdad532c2 Certificate serial: 019B7C80D198FBA5D59FF9EF96B1B175D30E Authority key identifier: AB:27:ED:1C:EA:43:21:C4:9C:3C:A1:0F:3A:FF:AF:DB:DA:D5:32:C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qyftHOpDIcScPKEPOv-v29rVMsI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/gjHfWoEHc9QTn6Mvq7ZDpa1HWi0.roa Signing time: Fri 02 Jan 2026 02:19:35 +0000 ROA not before: Fri 02 Jan 2026 02:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202870 IP address blocks: 5.152.128.0/22 maxlen: 24 45.3.56.0/22 maxlen: 24 45.133.154.0/23 maxlen: 24 103.129.61.0/24 maxlen: 24 104.167.28.0/22 maxlen: 24 185.55.208.0/22 maxlen: 24 185.152.44.0/22 maxlen: 24 2a07:7e80::/29 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/qyftHOpDIcScPKEPOv-v29rVMsI.crl rsync://rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/qyftHOpDIcScPKEPOv-v29rVMsI.mft rsync://rpki.ripe.net/repository/DEFAULT/qyftHOpDIcScPKEPOv-v29rVMsI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:d1:98:fb:a5:d5:9f:f9:ef:96:b1:b1:75:d3:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab27ed1cea4321c49c3ca10f3affafdbdad532c2 Validity Not Before: Jan 2 02:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8231df5a810773d4139fa32fabb643a5ad475a2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8d:a2:1b:af:7e:5d:06:46:6b:76:d2:97:22: 57:2d:f2:e0:f8:72:bd:a2:40:d2:59:68:27:6a:8d: 12:bd:b4:eb:07:fa:eb:19:0b:00:54:4b:09:16:09: a2:b9:60:73:29:3e:3a:25:b7:9f:dd:03:2d:45:3f: dc:a0:ed:39:23:8a:69:5e:fd:05:00:ca:36:fe:c0: ce:e4:e5:9a:d5:66:51:15:cb:2a:86:47:fa:35:39: e2:21:10:1b:59:66:36:8e:82:85:1c:b3:47:d2:fe: f0:dc:3f:7e:20:a6:e9:f5:9b:2d:5c:fe:fa:8e:50: b3:72:35:f4:49:20:b4:e9:45:77:25:8b:14:3d:5d: 49:f4:9e:8c:01:56:b8:a1:05:bb:82:c1:9a:4d:10: 97:58:d4:20:ce:51:f7:e1:eb:c8:4a:fc:77:0e:fa: 87:f4:1b:d6:2e:86:fe:4a:43:ff:1e:74:de:e2:b7: 83:d7:3b:23:43:f5:fb:ad:3b:16:26:2a:f1:7c:7b: 44:ee:8d:38:36:dc:84:c0:7c:85:98:48:89:30:78: cb:bc:c5:28:cd:08:b1:53:fc:35:8a:42:b2:18:fe: 73:30:19:6b:83:45:1d:1b:86:3a:e5:cd:f5:34:e5: ce:0f:bf:09:aa:b3:e1:93:d3:b1:93:f4:4a:dc:74: a7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:31:DF:5A:81:07:73:D4:13:9F:A3:2F:AB:B6:43:A5:AD:47:5A:2D X509v3 Authority Key Identifier: keyid:AB:27:ED:1C:EA:43:21:C4:9C:3C:A1:0F:3A:FF:AF:DB:DA:D5:32:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qyftHOpDIcScPKEPOv-v29rVMsI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/gjHfWoEHc9QTn6Mvq7ZDpa1HWi0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/865490-78e7-43b4-b2fd-1d0bf5208f90/1/qyftHOpDIcScPKEPOv-v29rVMsI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.152.128.0/22 45.3.56.0/22 45.133.154.0/23 103.129.61.0/24 104.167.28.0/22 185.55.208.0/22 185.152.44.0/22 IPv6: 2a07:7e80::/29 Signature Algorithm: sha256WithRSAEncryption 72:fb:96:1c:6f:de:c4:53:3c:fc:98:8d:43:2b:8b:69:b1:40: d0:16:e1:81:33:da:ba:25:82:1b:fd:d8:bf:8a:1a:0d:e6:71: ee:61:6d:1c:69:c6:08:83:ca:21:06:b8:9d:77:53:ff:6a:1b: dc:0c:32:ec:61:1f:22:89:3c:af:37:77:8d:c5:b8:16:7b:74: 51:2d:77:74:99:d8:05:6e:aa:3d:17:88:ab:88:0d:84:ac:fc: 87:71:db:22:47:f8:ab:6f:3e:38:c5:38:b2:0c:1d:9a:14:e4: 96:f0:04:51:03:22:9b:82:a7:ce:45:44:af:16:b2:52:2f:4e: 40:80:e4:2a:be:37:c7:c7:22:3b:bd:87:dd:52:0d:5e:3e:ed: e0:8d:03:f4:da:fb:72:e5:cd:5f:7f:ee:69:ca:33:22:fa:69: 02:b2:e8:95:8d:3c:a2:78:14:f6:cc:fc:44:62:3d:8f:36:d7: 11:5a:87:9d:4a:f0:f7:03:91:6c:83:eb:36:37:73:7a:0c:1c: 1f:f1:41:ee:b9:80:ff:a5:4c:2e:ff:8a:20:8f:ca:f2:91:a5: bd:ae:4c:b4:90:ba:f1:7a:72:ea:62:d8:71:7e:56:5d:a3:be: dc:51:f5:6b:10:18:76:cd:cf:95:4f:af:fe:50:c6:55:77:41: f0:1a:6a:ea -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt8gNGY+6XVn/nvlrGxddMOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMjdlZDFjZWE0MzIxYzQ5YzNjYTEwZjNhZmZhZmRiZGFk NTMyYzIwHhcNMjYwMTAyMDIxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MjMxZGY1YTgxMDc3M2Q0MTM5ZmEzMmZhYmI2NDNhNWFkNDc1YTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm42iG69+XQZGa3bSlyJXLfLg+HK9 okDSWWgnao0SvbTrB/rrGQsAVEsJFgmiuWBzKT46Jbef3QMtRT/coO05I4ppXv0F AMo2/sDO5OWa1WZRFcsqhkf6NTniIRAbWWY2joKFHLNH0v7w3D9+IKbp9ZstXP76 jlCzcjX0SSC06UV3JYsUPV1J9J6MAVa4oQW7gsGaTRCXWNQgzlH34evISvx3DvqH 9BvWLob+SkP/HnTe4reD1zsjQ/X7rTsWJirxfHtE7o04NtyEwHyFmEiJMHjLvMUo zQixU/w1ikKyGP5zMBlrg0UdG4Y65c31NOXOD78JqrPhk9Oxk/RK3HSnUwIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFIIx31qBB3PUE5+jL6u2Q6WtR1otMB8GA1UdIwQY MBaAFKsn7RzqQyHEnDyhDzr/r9va1TLCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXlmdEhPcERJY1NjUEtFUE92LXYyOXJWTXNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi84NjU0OTAtNzhlNy00M2I0LWIyZmQt MWQwYmY1MjA4ZjkwLzEvZ2pIZldvRUhjOVFUbjZNdnE3WkRwYTFIV2kwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi84NjU0OTAtNzhlNy00M2I0LWIyZmQtMWQwYmY1MjA4Zjkw LzEvcXlmdEhPcERJY1NjUEtFUE92LXYyOXJWTXNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQCBZiAAwQC LQM4AwQBLYWaAwQAZ4E9AwQCaKccAwQCuTfQAwQCuZgsMA0EAgACMAcDBQMqB36A MA0GCSqGSIb3DQEBCwUAA4IBAQBy+5Ycb97EUzz8mI1DK4tpsUDQFuGBM9q6JYIb /di/ihoN5nHuYW0cacYIg8ohBridd1P/ahvcDDLsYR8iiTyvN3eNxbgWe3RRLXd0 mdgFbqo9F4iriA2ErPyHcdsiR/irbz44xTiyDB2aFOSW8ARRAyKbgqfORUSvFrJS L05AgOQqvjfHxyI7vYfdUg1ePu3gjQP02vty5c1ff+5pyjMi+mkCsuiVjTyieBT2 zPxEYj2PNtcRWoedSvD3A5Fsg+s2N3N6DBwf8UHuuYD/pUwu/4ogj8rykaW9rky0 kLrxenLqYthxflZdo77cUfVrEBh2zc+VT6/+UMZVd0HwGmrq -----END CERTIFICATE-----Generated at Mon Jan 26 15:18:56 2026 by rpki-client