This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/gnB4DwAgCjyQcWFzJEdE7GWr73o.roa File: gnB4DwAgCjyQcWFzJEdE7GWr73o.roa (raw, json) Hash identifier: HW/BGej/dJUcVDYCwLRVJHa3/FSej9vAGH4VzbSF+To= Subject key identifier: 82:70:78:0F:00:20:0A:3C:90:71:61:73:24:47:44:EC:65:AB:EF:7A Certificate issuer: /CN=c7983b3a9758fcbe78733d9155aed266c882a23c Certificate serial: 019B76EB3B275804D28C11868F384987BF5A Authority key identifier: C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/gnB4DwAgCjyQcWFzJEdE7GWr73o.roa Signing time: Thu 01 Jan 2026 00:18:06 +0000 ROA not before: Thu 01 Jan 2026 00:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16342 IP address blocks: 31.182.0.0/15 maxlen: 18 77.237.0.0/19 maxlen: 19 85.89.160.0/20 maxlen: 20 85.89.176.0/20 maxlen: 20 185.67.216.0/22 maxlen: 22 185.67.216.0/24 maxlen: 24 185.67.217.0/24 maxlen: 24 185.67.218.0/24 maxlen: 24 185.67.219.0/24 maxlen: 24 217.113.224.0/20 maxlen: 20 2a03:af80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/x5g7OpdY_L54cz2RVa7SZsiCojw.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/x5g7OpdY_L54cz2RVa7SZsiCojw.mft rsync://rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:3b:27:58:04:d2:8c:11:86:8f:38:49:87:bf:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c7983b3a9758fcbe78733d9155aed266c882a23c Validity Not Before: Jan 1 00:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8270780f00200a3c90716173244744ec65abef7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:82:57:b9:4e:a5:84:3f:1d:b3:7d:10:e4:bb: 33:9d:0b:3b:c6:f2:68:45:6f:4c:6a:52:bd:72:74: ff:08:82:02:f9:63:7c:0b:b5:aa:89:2e:0c:54:02: 83:c8:2a:c7:e4:b9:4d:79:d9:a2:fa:33:ae:33:c0: 0c:68:4c:4d:48:bd:53:bc:a9:43:f5:21:36:f6:ca: 71:b9:e0:a9:2e:51:1b:e5:13:a6:0e:1e:b4:03:ce: 54:38:43:e3:0a:44:54:35:1c:ad:2c:29:ba:bf:d6: 44:99:de:8c:2d:85:4f:f2:86:11:91:da:d6:fe:d7: 06:fa:e7:1c:28:ac:4a:9b:3e:30:8d:d0:6d:9d:db: 47:db:5f:81:02:6a:72:5b:ec:c4:0a:10:43:bb:52: f5:71:7b:3f:af:dc:f8:09:00:4a:47:f0:68:fc:be: 84:ab:9d:00:49:82:97:31:5a:7d:4c:d9:e3:37:9d: d0:9f:04:38:a1:12:10:89:a0:a1:a3:53:1b:b1:44: 56:f7:b8:03:35:5b:dd:a2:77:e6:f9:bf:2b:6a:ce: d1:ce:5c:7d:cf:b5:d4:fe:9e:7e:27:ef:b0:e2:c6: ce:eb:ce:49:c4:6f:05:bb:68:7f:67:e7:8c:20:ac: 0b:e6:a7:74:5d:bd:2f:c8:0e:3b:dd:03:be:3d:7a: cc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:70:78:0F:00:20:0A:3C:90:71:61:73:24:47:44:EC:65:AB:EF:7A X509v3 Authority Key Identifier: keyid:C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/gnB4DwAgCjyQcWFzJEdE7GWr73o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/x5g7OpdY_L54cz2RVa7SZsiCojw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.182.0.0/15 77.237.0.0/19 85.89.160.0/19 185.67.216.0/22 217.113.224.0/20 IPv6: 2a03:af80::/29 Signature Algorithm: sha256WithRSAEncryption 3c:08:26:ae:e4:e8:9d:fb:2e:1a:6a:e7:5a:8f:91:1a:ce:4e: bb:32:fc:b0:e3:ab:f2:74:f5:c8:21:ba:58:ad:7b:a4:0c:33: 2a:f9:8a:68:8b:e9:60:61:34:01:1f:85:99:f5:fc:ec:dc:3f: 29:f2:9f:57:64:e7:39:71:5b:5c:da:ff:0d:50:76:65:d5:dd: 2a:eb:62:73:7a:8a:37:25:19:fb:61:32:1b:bf:5c:4a:69:52: 84:45:9d:52:94:46:5a:71:e8:ac:37:5e:8e:8d:25:45:bf:b9: 28:7c:cb:99:cc:0f:80:ba:e1:36:e0:a8:47:f7:42:62:b2:84: 84:f9:dc:ca:c7:7a:8b:15:c7:a5:64:46:f6:23:61:fb:f2:26: df:a2:fb:f8:ce:37:e7:59:f9:d3:68:0d:ae:21:3f:41:6d:d0: 15:8a:60:55:4f:7d:36:bb:26:17:66:12:59:b3:a4:a1:3c:c6: 37:e4:44:3d:30:4e:bd:83:cb:b9:6c:fa:40:28:de:81:72:40: a8:1e:f3:3e:d3:9b:c2:86:14:82:4c:ab:2d:ab:3a:6a:99:f0: 81:2c:91:5b:36:82:37:fb:8d:82:8d:5a:ba:89:e9:ac:1a:be: 04:45:01:05:d3:2f:6b:b8:44:bc:9c:69:1b:be:b8:83:bd:84: 49:c3:db:85 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt26zsnWATSjBGGjzhJh79aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3OTgzYjNhOTc1OGZjYmU3ODczM2Q5MTU1YWVkMjY2Yzg4 MmEyM2MwHhcNMjYwMTAxMDAxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MjcwNzgwZjAwMjAwYTNjOTA3MTYxNzMyNDQ3NDRlYzY1YWJlZjdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6IJXuU6lhD8ds30Q5LsznQs7xvJo RW9MalK9cnT/CIIC+WN8C7WqiS4MVAKDyCrH5LlNedmi+jOuM8AMaExNSL1TvKlD 9SE29spxueCpLlEb5ROmDh60A85UOEPjCkRUNRytLCm6v9ZEmd6MLYVP8oYRkdrW /tcG+uccKKxKmz4wjdBtndtH21+BAmpyW+zEChBDu1L1cXs/r9z4CQBKR/Bo/L6E q50ASYKXMVp9TNnjN53QnwQ4oRIQiaCho1MbsURW97gDNVvdonfm+b8ras7Rzlx9 z7XU/p5+J++w4sbO685JxG8Fu2h/Z+eMIKwL5qd0Xb0vyA473QO+PXrMBwIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFIJweA8AIAo8kHFhcyRHROxlq+96MB8GA1UdIwQY MBaAFMeYOzqXWPy+eHM9kVWu0mbIgqI8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDVnN09wZFlfTDU0Y3oyUlZhN1Nac2lDb2p3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84MTFkMTYtYjUxMy00N2VkLTllNzEt MjM4NDA1ZjJjZGU5LzEvZ25CNER3QWdDanlRY1dGekpFZEU3R1dyNzNvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC84MTFkMTYtYjUxMy00N2VkLTllNzEtMjM4NDA1ZjJjZGU5 LzEveDVnN09wZFlfTDU0Y3oyUlZhN1Nac2lDb2p3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAjBAIAATAdAwMBH7YDBAVN 7QADBAVVWaADBAK5Q9gDBATZceAwDQQCAAIwBwMFAyoDr4AwDQYJKoZIhvcNAQEL BQADggEBADwIJq7k6J37Lhpq51qPkRrOTrsy/LDjq/J09cghulite6QMMyr5imiL 6WBhNAEfhZn1/OzcPynyn1dk5zlxW1za/w1QdmXV3SrrYnN6ijclGfthMhu/XEpp UoRFnVKURlpx6Kw3Xo6NJUW/uSh8y5nMD4C64TbgqEf3QmKyhIT53MrHeosVx6Vk RvYjYfvyJt+i+/jON+dZ+dNoDa4hP0Ft0BWKYFVPfTa7JhdmElmzpKE8xjfkRD0w Tr2Dy7ls+kAo3oFyQKge8z7Tm8KGFIJMqy2rOmqZ8IEskVs2gjf7jYKNWrqJ6awa vgRFAQXTL2u4RLycaRu+uIO9hEnD24U= -----END CERTIFICATE-----Generated at Mon Jan 26 02:24:18 2026 by rpki-client