This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/GiXGWF3XbNUka_6eZbMkF4lwUUU.roa File: GiXGWF3XbNUka_6eZbMkF4lwUUU.roa (raw, json) Hash identifier: Ghc0ZSrMNmrLcxpN1ogM8Bq5yh44DA/gg5TX6sTsGwk= Subject key identifier: 1A:25:C6:58:5D:D7:6C:D5:24:6B:FE:9E:65:B3:24:17:89:70:51:45 Certificate issuer: /CN=0a7327805df20fb5c1d6f4e89074743caeb24af7 Certificate serial: 019B7E388F6D8D99F3987AFA5283B3810A07 Authority key identifier: 0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/GiXGWF3XbNUka_6eZbMkF4lwUUU.roa Signing time: Fri 02 Jan 2026 10:19:54 +0000 ROA not before: Fri 02 Jan 2026 10:19:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216136 IP address blocks: 194.31.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/CnMngF3yD7XB1vTokHR0PK6ySvc.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/CnMngF3yD7XB1vTokHR0PK6ySvc.mft rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:8f:6d:8d:99:f3:98:7a:fa:52:83:b3:81:0a:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a7327805df20fb5c1d6f4e89074743caeb24af7 Validity Not Before: Jan 2 10:19:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a25c6585dd76cd5246bfe9e65b3241789705145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ed:78:3f:b0:21:aa:50:a6:8a:0a:1e:b9:5c: e1:fb:02:1f:af:7a:19:2e:c6:a1:f6:85:d4:91:fc: b1:36:cd:ee:cd:0c:d3:1e:da:29:0a:93:92:9c:95: 44:1f:07:3f:21:0b:7a:51:65:3a:bc:a8:b9:93:22: 04:e6:d5:2f:e0:8c:77:08:83:e7:64:5a:7a:9d:a5: 17:4b:e9:14:a8:1d:09:4a:fc:b2:49:7b:86:f1:de: 15:7e:5c:8b:df:9a:8a:3c:6b:2c:d1:ec:93:81:1f: 94:57:8a:51:d0:25:08:8f:45:16:f0:d6:03:41:ae: 20:b7:a9:10:cf:ae:a6:b6:bf:1b:06:6c:c0:5c:70: fc:3c:d5:ba:af:9d:c6:97:0f:fb:8c:d8:47:09:f7: 7c:b2:95:7a:15:42:ab:eb:65:65:81:56:51:4a:e6: 9e:b9:4a:20:3e:83:41:d6:51:d1:88:68:db:1a:1b: 13:40:c8:a2:d8:89:b5:15:a9:31:62:c7:5e:3b:9d: 6a:f3:d4:bb:43:c5:e8:c1:6b:bc:f0:58:47:79:8a: 64:e9:fe:c6:99:47:c4:53:11:75:c3:2b:fe:4c:66: 7f:41:b9:81:89:32:4a:45:af:64:d6:de:df:bc:fd: f4:c8:4e:2c:7e:9e:7f:5d:62:90:ee:db:bf:d5:23: 30:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:25:C6:58:5D:D7:6C:D5:24:6B:FE:9E:65:B3:24:17:89:70:51:45 X509v3 Authority Key Identifier: keyid:0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/GiXGWF3XbNUka_6eZbMkF4lwUUU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/CnMngF3yD7XB1vTokHR0PK6ySvc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.31.134.0/24 Signature Algorithm: sha256WithRSAEncryption 48:7e:fe:5f:6c:01:59:2c:ed:58:f2:fa:eb:06:d2:46:ef:6f: c3:ff:b1:a7:ef:44:85:82:d3:fc:75:f9:3d:05:d9:05:03:b6: 63:8b:11:f5:3b:cb:55:e1:93:d8:5e:8b:e5:4a:59:09:02:bd: 19:36:e9:8e:6b:85:d2:81:8f:05:29:13:a7:2a:d4:39:d1:fc: 5b:0f:6a:4a:91:33:4b:0f:66:7a:49:e6:e1:47:00:1c:c7:36: ac:c9:bb:9c:5f:98:76:ff:e8:c8:a8:93:52:02:79:b7:6c:40: 9d:1d:7b:0d:c1:d0:09:34:9f:06:02:f9:e7:19:e5:77:f0:6b: 1c:66:e7:1f:62:2d:4b:9b:11:3b:8d:ff:68:c9:34:83:eb:5f: c0:a6:79:d2:9c:cf:d5:10:de:66:8b:15:30:d1:10:75:ec:cc: 71:f9:24:e8:47:3c:ea:a3:9a:5f:62:d4:1c:84:ef:63:7b:1b: bc:ab:68:ed:ef:6f:08:d5:66:01:0e:05:b6:74:81:84:3b:e6: 0a:49:06:05:bf:60:a5:fb:3b:6e:1d:f3:71:c7:57:0b:0f:48: 27:93:7d:ef:26:87:e2:dd:46:0b:ca:43:c0:d9:ea:eb:59:7b: 56:12:a6:09:e2:7a:14:08:ca:b7:fc:43:7b:62:3e:ba:3d:58: 87:02:4f:24 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OI9tjZnzmHr6UoOzgQoHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhNzMyNzgwNWRmMjBmYjVjMWQ2ZjRlODkwNzQ3NDNjYWVi MjRhZjcwHhcNMjYwMTAyMTAxOTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTI1YzY1ODVkZDc2Y2Q1MjQ2YmZlOWU2NWIzMjQxNzg5NzA1MTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+14P7AhqlCmigoeuVzh+wIfr3oZ Lsah9oXUkfyxNs3uzQzTHtopCpOSnJVEHwc/IQt6UWU6vKi5kyIE5tUv4Ix3CIPn ZFp6naUXS+kUqB0JSvyySXuG8d4VflyL35qKPGss0eyTgR+UV4pR0CUIj0UW8NYD Qa4gt6kQz66mtr8bBmzAXHD8PNW6r53Glw/7jNhHCfd8spV6FUKr62VlgVZRSuae uUogPoNB1lHRiGjbGhsTQMii2Im1FakxYsdeO51q89S7Q8XowWu88FhHeYpk6f7G mUfEUxF1wyv+TGZ/QbmBiTJKRa9k1t7fvP30yE4sfp5/XWKQ7tu/1SMwPwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBolxlhd12zVJGv+nmWzJBeJcFFFMB8GA1UdIwQY MBaAFApzJ4Bd8g+1wdb06JB0dDyuskr3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ25NbmdGM3lEN1hCMXZUb2tIUjBQSzZ5U3ZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS84YjFmYWMtNWEyMS00ODQ4LWE2NmEt MTBiYjQ1NzlkNTI4LzEvR2lYR1dGM1hiTlVrYV82ZVpiTWtGNGx3VVVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS84YjFmYWMtNWEyMS00ODQ4LWE2NmEtMTBiYjQ1NzlkNTI4 LzEvQ25NbmdGM3lEN1hCMXZUb2tIUjBQSzZ5U3ZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwh+GMA0G CSqGSIb3DQEBCwUAA4IBAQBIfv5fbAFZLO1Y8vrrBtJG72/D/7Gn70SFgtP8dfk9 BdkFA7ZjixH1O8tV4ZPYXovlSlkJAr0ZNumOa4XSgY8FKROnKtQ50fxbD2pKkTNL D2Z6SebhRwAcxzasybucX5h2/+jIqJNSAnm3bECdHXsNwdAJNJ8GAvnnGeV38Gsc ZucfYi1LmxE7jf9oyTSD61/ApnnSnM/VEN5mixUw0RB17Mxx+SToRzzqo5pfYtQc hO9jexu8q2jt728I1WYBDgW2dIGEO+YKSQYFv2Cl+ztuHfNxx1cLD0gnk33vJofi 3UYLykPA2errWXtWEqYJ4noUCMq3/EN7Yj66PViHAk8k -----END CERTIFICATE-----Generated at Mon Jan 26 05:43:50 2026 by rpki-client