This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/8b906b-9c1d-45d9-86ba-c7fe62227df3/1/GljtY0R1J1ByOdSoq7cvOo-xQ8U.roa File: GljtY0R1J1ByOdSoq7cvOo-xQ8U.roa (raw, json) Hash identifier: Fqs7S4w69EF6ZT+aB+xuRmBdIVTZ/4rbTRRyrV/zgKA= Subject key identifier: 1A:58:ED:63:44:75:27:50:72:39:D4:A8:AB:B7:2F:3A:8F:B1:43:C5 Certificate issuer: /CN=985ae6c59c35e460387daebcfb866f8a1ebb3686 Certificate serial: 019B7D5CE431A11176AB65EC7A8304ACC833 Authority key identifier: 98:5A:E6:C5:9C:35:E4:60:38:7D:AE:BC:FB:86:6F:8A:1E:BB:36:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFrmxZw15GA4fa68-4Zvih67NoY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/8b906b-9c1d-45d9-86ba-c7fe62227df3/1/GljtY0R1J1ByOdSoq7cvOo-xQ8U.roa Signing time: Fri 02 Jan 2026 06:19:58 +0000 ROA not before: Fri 02 Jan 2026 06:19:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61026 IP address blocks: 82.196.16.0/21 maxlen: 24 91.232.187.0/24 maxlen: 24 185.9.22.0/23 maxlen: 24 185.20.40.0/22 maxlen: 22 185.20.40.0/24 maxlen: 24 185.20.41.0/24 maxlen: 24 185.20.42.0/24 maxlen: 24 185.20.43.0/24 maxlen: 24 193.38.35.0/24 maxlen: 24 2a04:1500::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/8b906b-9c1d-45d9-86ba-c7fe62227df3/1/mFrmxZw15GA4fa68-4Zvih67NoY.crl rsync://rpki.ripe.net/repository/DEFAULT/41/8b906b-9c1d-45d9-86ba-c7fe62227df3/1/mFrmxZw15GA4fa68-4Zvih67NoY.mft rsync://rpki.ripe.net/repository/DEFAULT/mFrmxZw15GA4fa68-4Zvih67NoY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:e4:31:a1:11:76:ab:65:ec:7a:83:04:ac:c8:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=985ae6c59c35e460387daebcfb866f8a1ebb3686 Validity Not Before: Jan 2 06:19:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a58ed63447527507239d4a8abb72f3a8fb143c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f0:f7:72:94:6f:7d:24:19:80:6a:84:2e:20: 20:04:cd:dc:4d:e7:a7:e8:a0:df:85:e3:1e:df:76: b0:87:81:e1:13:ab:c7:b5:cd:91:1c:15:75:e3:07: 2c:59:82:cd:5e:f0:e4:24:f5:74:7e:93:b8:65:92: b6:e4:b2:05:61:3b:3f:41:4e:a7:e5:9f:b1:ab:22: 6d:7a:3e:5f:fb:24:4e:98:bb:59:77:87:09:07:4c: be:6e:e4:a4:a4:d0:a7:0d:22:38:4a:48:4d:8a:7c: 7f:27:df:b8:d0:19:68:4a:b9:20:08:a7:34:53:b1: 08:09:68:36:9c:e7:e5:f6:1e:2e:99:04:fb:c6:bf: fa:33:3e:6d:1b:8b:67:8e:c9:2b:8d:93:bf:38:61: a0:0b:57:b9:c9:40:35:09:cf:09:26:84:57:ef:12: b9:3c:8c:52:50:8f:c1:ca:45:b1:d9:dc:4a:2a:b9: 0d:70:ab:c0:7f:72:e6:7f:b2:ad:b5:5f:8c:d1:5d: 61:6a:67:e8:98:50:14:0c:f4:0f:b1:d9:d6:06:c6: 5e:2e:c8:de:01:0b:bf:4f:16:77:77:81:ae:b1:11: 81:69:c8:0c:2e:bc:bc:a9:e3:f6:a5:e5:ab:62:1e: 12:45:74:6f:73:cd:94:94:6c:9d:99:d0:17:f5:8c: 8c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:58:ED:63:44:75:27:50:72:39:D4:A8:AB:B7:2F:3A:8F:B1:43:C5 X509v3 Authority Key Identifier: keyid:98:5A:E6:C5:9C:35:E4:60:38:7D:AE:BC:FB:86:6F:8A:1E:BB:36:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFrmxZw15GA4fa68-4Zvih67NoY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8b906b-9c1d-45d9-86ba-c7fe62227df3/1/GljtY0R1J1ByOdSoq7cvOo-xQ8U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8b906b-9c1d-45d9-86ba-c7fe62227df3/1/mFrmxZw15GA4fa68-4Zvih67NoY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.196.16.0/21 91.232.187.0/24 185.9.22.0/23 185.20.40.0/22 193.38.35.0/24 IPv6: 2a04:1500::/29 Signature Algorithm: sha256WithRSAEncryption 52:98:3d:8d:2a:19:35:cd:f0:dd:22:31:6b:f2:ac:b0:a7:ec: 96:6b:21:df:5f:9d:43:62:06:ef:80:05:40:22:d2:43:f5:52: d2:41:c3:02:47:c0:b3:d6:b0:cf:e7:a7:db:8e:28:01:22:21: ef:ed:45:09:ea:c3:89:ba:21:e7:33:1c:e9:64:f2:27:99:83: 7d:34:ca:b8:aa:ca:5f:1d:c8:39:c5:0d:0c:4f:76:22:18:2b: 35:65:0f:bb:ee:86:cb:f9:bc:65:bc:a6:c1:14:25:49:23:8e: 33:29:32:c7:6e:f9:42:2f:36:19:c4:78:8a:5e:11:94:67:08: 89:27:86:50:55:b8:a6:89:b4:27:dd:bd:6a:b2:62:97:6f:d6: f4:51:27:d0:c5:4c:57:a6:f1:67:77:2b:23:14:98:b5:b1:25: 21:ca:d8:5e:ab:95:9f:12:cc:18:d4:f3:d7:38:46:15:8f:7a: b9:af:51:4a:20:b4:ed:fd:df:f9:b9:d5:5a:da:e1:66:9c:f3: 44:b6:47:d7:21:db:7e:7f:68:5f:1d:99:73:5c:0a:cd:49:8c: 40:22:f2:1f:73:b5:6b:f8:06:7c:cc:cf:fa:0d:15:8c:87:22: bd:ea:c7:34:ce:38:f0:1d:86:b8:01:06:05:7b:65:fd:9c:b6: 06:ed:7d:05 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt9XOQxoRF2q2XseoMErMgzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4NWFlNmM1OWMzNWU0NjAzODdkYWViY2ZiODY2ZjhhMWVi YjM2ODYwHhcNMjYwMTAyMDYxOTU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTU4ZWQ2MzQ0NzUyNzUwNzIzOWQ0YThhYmI3MmYzYThmYjE0M2M1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxPD3cpRvfSQZgGqELiAgBM3cTeen 6KDfheMe33awh4HhE6vHtc2RHBV14wcsWYLNXvDkJPV0fpO4ZZK25LIFYTs/QU6n 5Z+xqyJtej5f+yROmLtZd4cJB0y+buSkpNCnDSI4SkhNinx/J9+40BloSrkgCKc0 U7EICWg2nOfl9h4umQT7xr/6Mz5tG4tnjskrjZO/OGGgC1e5yUA1Cc8JJoRX7xK5 PIxSUI/BykWx2dxKKrkNcKvAf3Lmf7KttV+M0V1hamfomFAUDPQPsdnWBsZeLsje AQu/TxZ3d4GusRGBacgMLry8qeP2peWrYh4SRXRvc82UlGydmdAX9YyMMQIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFBpY7WNEdSdQcjnUqKu3LzqPsUPFMB8GA1UdIwQY MBaAFJha5sWcNeRgOH2uvPuGb4oeuzaGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUZybXhadzE1R0E0ZmE2OC00WnZpaDY3Tm9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS84YjkwNmItOWMxZC00NWQ5LTg2YmEt YzdmZTYyMjI3ZGYzLzEvR2xqdFkwUjFKMUJ5T2RTb3E3Y3ZPby14UThVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS84YjkwNmItOWMxZC00NWQ5LTg2YmEtYzdmZTYyMjI3ZGYz LzEvbUZybXhadzE1R0E0ZmE2OC00WnZpaDY3Tm9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQDUsQQAwQA W+i7AwQBuQkWAwQCuRQoAwQAwSYjMA0EAgACMAcDBQMqBBUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSmD2NKhk1zfDdIjFr8qywp+yWayHfX51DYgbvgAVAItJD9VLSQcMC R8Cz1rDP56fbjigBIiHv7UUJ6sOJuiHnMxzpZPInmYN9NMq4qspfHcg5xQ0MT3Yi GCs1ZQ+77obL+bxlvKbBFCVJI44zKTLHbvlCLzYZxHiKXhGUZwiJJ4ZQVbimibQn 3b1qsmKXb9b0USfQxUxXpvFndysjFJi1sSUhytheq5WfEswY1PPXOEYVj3q5r1FK ILTt/d/5udVa2uFmnPNEtkfXIdt+f2hfHZlzXArNSYxAIvIfc7Vr+AZ8zM/6DRWM hyK96sc0zjjwHYa4AQYFe2X9nLYG7X0F -----END CERTIFICATE-----Generated at Mon Jan 26 07:09:59 2026 by rpki-client