This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/G4rPRPH0TevWDN4JhwggPa4i_ew.roa File: G4rPRPH0TevWDN4JhwggPa4i_ew.roa (raw, json) Hash identifier: vucNfqDoD46iq3ADWrbmOLpg+GWhl8NHwQXonzDbGUE= Subject key identifier: 1B:8A:CF:44:F1:F4:4D:EB:D6:0C:DE:09:87:08:20:3D:AE:22:FD:EC Certificate issuer: /CN=b96e8b6d73f2f38548996f66621330a8d7108529 Certificate serial: 019B7A5AE8CADDA0B7F3C4B2D1354EF89E90 Authority key identifier: B9:6E:8B:6D:73:F2:F3:85:48:99:6F:66:62:13:30:A8:D7:10:85:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uW6LbXPy84VImW9mYhMwqNcQhSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/G4rPRPH0TevWDN4JhwggPa4i_ew.roa Signing time: Thu 01 Jan 2026 16:18:56 +0000 ROA not before: Thu 01 Jan 2026 16:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202120 IP address blocks: 185.159.127.0/24 maxlen: 24 185.214.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/uW6LbXPy84VImW9mYhMwqNcQhSk.crl rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/uW6LbXPy84VImW9mYhMwqNcQhSk.mft rsync://rpki.ripe.net/repository/DEFAULT/uW6LbXPy84VImW9mYhMwqNcQhSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:e8:ca:dd:a0:b7:f3:c4:b2:d1:35:4e:f8:9e:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b96e8b6d73f2f38548996f66621330a8d7108529 Validity Not Before: Jan 1 16:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1b8acf44f1f44debd60cde098708203dae22fdec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:29:50:9f:12:6c:6f:cf:bc:f7:89:9c:38:55: 48:f4:68:e3:b7:ce:28:40:a1:52:86:f9:b2:b7:c1: 82:06:62:6e:00:74:5b:ce:02:eb:d5:7d:5c:04:f3: 10:d2:9d:e7:7d:11:ce:5d:16:3c:86:53:de:1a:18: 1a:55:be:9a:67:b5:e8:0e:36:78:0b:1a:03:6a:c8: fc:12:b5:7c:4a:b0:ac:94:df:2b:bd:78:84:cc:fa: c6:28:33:dc:e7:49:d0:d2:b3:43:19:9c:36:07:fe: 00:b9:b6:78:9a:5d:d6:5c:c1:7e:08:fb:a8:c3:83: 86:c2:eb:9e:1c:f2:68:13:04:94:d9:61:74:50:56: c1:49:26:ce:d2:c2:dd:f5:a8:38:d2:c7:d4:98:79: 2b:35:73:c1:80:32:b9:4e:55:b2:96:c1:67:9b:04: 9f:6b:36:d3:be:12:53:88:1b:f4:b3:45:da:79:3c: 54:57:85:d2:c0:b3:78:12:d3:c3:6a:4d:4a:4c:48: 67:ce:2e:2b:76:5a:d6:e4:2c:83:01:53:c5:de:17: 7e:d0:64:17:72:fd:d4:ee:27:0b:d7:15:a2:54:0a: 3e:f5:41:45:81:63:5f:d3:f4:b7:2c:8e:94:2b:c5: 2d:9d:ea:a9:ac:81:17:a6:47:b5:44:1e:ff:7b:eb: e2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:8A:CF:44:F1:F4:4D:EB:D6:0C:DE:09:87:08:20:3D:AE:22:FD:EC X509v3 Authority Key Identifier: keyid:B9:6E:8B:6D:73:F2:F3:85:48:99:6F:66:62:13:30:A8:D7:10:85:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uW6LbXPy84VImW9mYhMwqNcQhSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/G4rPRPH0TevWDN4JhwggPa4i_ew.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/uW6LbXPy84VImW9mYhMwqNcQhSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.159.127.0/24 185.214.128.0/22 Signature Algorithm: sha256WithRSAEncryption 45:2d:8a:f9:77:d2:1e:f6:95:4e:8f:2c:06:46:fa:55:05:db: 89:7f:30:2b:0e:f6:c0:0a:96:64:65:12:82:ea:da:04:06:8b: 58:b2:01:33:aa:7d:11:26:e2:53:87:61:c5:a3:78:fa:50:83: 1d:80:05:31:80:f1:19:19:ee:d6:e4:3c:ba:67:3d:90:a6:40: cd:5b:78:e3:a5:6a:cd:a5:25:b7:31:84:af:30:66:18:02:b4: 7c:a2:92:d1:6e:2a:f4:09:d7:1d:b0:82:3f:33:f3:99:9f:00: 5a:33:29:98:6f:2d:af:02:4e:d9:e5:c9:63:ca:f9:b9:7d:dc: 2a:8e:c3:ef:07:b9:aa:4e:dd:40:5f:63:38:3c:30:60:9b:8a: 97:a9:be:6b:bf:62:d6:7b:c7:c8:85:2f:e4:3f:95:14:10:50: df:28:8b:da:8b:f5:a4:df:76:50:1a:35:13:5e:92:00:1a:50: 6e:10:01:f3:30:19:45:5b:77:bc:68:66:22:da:90:cb:c4:0c: 79:60:15:6c:2c:74:ff:80:f8:6a:72:53:fc:28:6d:ce:fb:3d: 84:14:1a:31:53:17:73:d3:3f:4d:2d:90:f4:6f:78:5a:cf:ec: e9:7d:fe:ce:2f:fe:70:2c:f4:54:68:92:44:ea:b9:a4:54:8e: 8e:1c:80:60 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6WujK3aC388Sy0TVO+J6QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5NmU4YjZkNzNmMmYzODU0ODk5NmY2NjYyMTMzMGE4ZDcx MDg1MjkwHhcNMjYwMTAxMTYxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYjhhY2Y0NGYxZjQ0ZGViZDYwY2RlMDk4NzA4MjAzZGFlMjJmZGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArClQnxJsb8+894mcOFVI9Gjjt84o QKFShvmyt8GCBmJuAHRbzgLr1X1cBPMQ0p3nfRHOXRY8hlPeGhgaVb6aZ7XoDjZ4 CxoDasj8ErV8SrCslN8rvXiEzPrGKDPc50nQ0rNDGZw2B/4AubZ4ml3WXMF+CPuo w4OGwuueHPJoEwSU2WF0UFbBSSbO0sLd9ag40sfUmHkrNXPBgDK5TlWylsFnmwSf azbTvhJTiBv0s0XaeTxUV4XSwLN4EtPDak1KTEhnzi4rdlrW5CyDAVPF3hd+0GQX cv3U7icL1xWiVAo+9UFFgWNf0/S3LI6UK8UtneqprIEXpke1RB7/e+viIwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBuKz0Tx9E3r1gzeCYcIID2uIv3sMB8GA1UdIwQY MBaAFLlui21z8vOFSJlvZmITMKjXEIUpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVc2TGJYUHk4NFZJbVc5bVloTXdxTmNRaFNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9jMTRhNjItYWE2YS00ODZkLWI5ZTYt YmMwMDQ2NDllZTk5LzEvRzRyUFJQSDBUZXZXRE40Smh3Z2dQYTRpX2V3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS9jMTRhNjItYWE2YS00ODZkLWI5ZTYtYmMwMDQ2NDllZTk5 LzEvdVc2TGJYUHk4NFZJbVc5bVloTXdxTmNRaFNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuZ9/AwQC udaAMA0GCSqGSIb3DQEBCwUAA4IBAQBFLYr5d9Ie9pVOjywGRvpVBduJfzArDvbA CpZkZRKC6toEBotYsgEzqn0RJuJTh2HFo3j6UIMdgAUxgPEZGe7W5Dy6Zz2QpkDN W3jjpWrNpSW3MYSvMGYYArR8opLRbir0CdcdsII/M/OZnwBaMymYby2vAk7Z5clj yvm5fdwqjsPvB7mqTt1AX2M4PDBgm4qXqb5rv2LWe8fIhS/kP5UUEFDfKIvai/Wk 33ZQGjUTXpIAGlBuEAHzMBlFW3e8aGYi2pDLxAx5YBVsLHT/gPhqclP8KG3O+z2E FBoxUxdz0z9NLZD0b3haz+zpff7OL/5wLPRUaJJE6rmkVI6OHIBg -----END CERTIFICATE-----Generated at Mon Jan 26 10:23:29 2026 by rpki-client