This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/GElj9icCt-w2mx3YliBHFVCYPPg.roa File: GElj9icCt-w2mx3YliBHFVCYPPg.roa (raw, json) Hash identifier: PirS1DKcgnSFMhly0KbVf5RAZaqtFd0hZcWS32fEx7s= Subject key identifier: 18:49:63:F6:27:02:B7:EC:36:9B:1D:D8:96:20:47:15:50:98:3C:F8 Certificate issuer: /CN=65a665b90069bd71850602e7400c529793269e39 Certificate serial: 019B7F13C0798A03030FCD81DF51547CB109 Authority key identifier: 65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/GElj9icCt-w2mx3YliBHFVCYPPg.roa Signing time: Fri 02 Jan 2026 14:19:19 +0000 ROA not before: Fri 02 Jan 2026 14:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215633 IP address blocks: 2a09:2b80:1::/48 maxlen: 48 2a09:2b80:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.mft rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:c0:79:8a:03:03:0f:cd:81:df:51:54:7c:b1:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65a665b90069bd71850602e7400c529793269e39 Validity Not Before: Jan 2 14:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=184963f62702b7ec369b1dd89620471550983cf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7d:13:1e:b5:6f:6c:c6:e0:82:cd:ef:43:17: aa:f0:71:90:4d:26:87:ca:59:e7:ee:12:ff:f3:2b: 4a:23:1d:6f:ca:cd:e1:94:09:31:b9:0f:d4:7c:1a: c7:1b:47:e6:58:80:0f:53:d4:c5:16:6d:10:c9:1c: c0:1f:b8:c4:7c:bf:7f:8e:39:b5:0e:5e:7d:33:99: 0b:6f:b4:9c:ec:5a:fb:da:66:c3:f9:b3:2e:ca:ca: 66:89:bc:d9:68:e5:4d:23:7b:4a:5e:9c:6f:3e:a0: ee:4f:3a:a6:03:e9:4d:7d:db:76:72:14:5a:e2:62: 0f:15:b3:29:24:cb:48:af:fa:c3:4f:72:81:99:3d: 3a:cd:63:49:72:85:c7:89:8d:39:d7:be:7c:c8:99: e0:e4:ac:0b:37:21:c9:59:1b:9f:a5:84:bb:b4:e9: d6:35:91:d7:a3:2f:58:de:3b:35:11:77:1d:1a:39: 85:0b:74:f6:10:37:57:c5:bb:17:f3:71:56:49:9e: 6a:e1:a7:e2:87:ba:4a:c9:b8:77:f2:27:2b:b0:0f: 67:af:05:40:51:69:bc:f9:0e:53:cf:0a:2c:39:5b: 98:5f:c0:65:9b:c8:62:a0:43:97:a0:31:21:9f:2c: a0:5e:60:2b:16:f1:27:ef:26:eb:02:f9:0f:29:47: ec:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:49:63:F6:27:02:B7:EC:36:9B:1D:D8:96:20:47:15:50:98:3C:F8 X509v3 Authority Key Identifier: keyid:65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/GElj9icCt-w2mx3YliBHFVCYPPg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:2b80:1::/48 2a09:2b80:11::/48 Signature Algorithm: sha256WithRSAEncryption 29:0f:17:08:ed:4f:a5:52:39:0f:0e:dd:a6:7b:67:74:63:93: f3:da:24:d4:8c:b4:01:ad:11:d5:ca:28:41:df:19:8e:6f:f2: e4:af:31:05:63:b8:8b:3c:75:4c:8c:98:a6:7c:d3:eb:e3:02: a4:41:4f:5f:9d:d2:24:0d:da:7c:1b:f1:0b:c6:ce:e0:d9:8b: fa:91:9b:1f:ad:8b:81:21:ae:18:99:cb:45:b8:ca:84:ef:3d: ab:ff:4d:e7:12:b9:6f:e8:8e:23:9e:b0:bd:9a:84:a5:ab:28: bf:8a:83:8a:46:20:4e:4b:cc:9d:6b:53:79:d7:6b:df:fa:7f: b8:4c:95:ee:62:70:a6:97:ea:56:bd:e9:5b:c3:07:53:9f:d9: c7:0d:20:67:bc:b0:a0:36:c3:4d:66:d3:6d:2b:80:d0:ed:19: 15:60:07:48:39:aa:58:7e:88:e4:e2:f5:3e:99:81:b6:c7:79: a9:e7:88:d3:8e:33:ae:5f:79:bf:79:d3:fd:0f:e2:50:b2:d1: eb:b9:72:97:04:62:28:94:d6:5a:47:99:66:7b:6a:33:dc:2b: 8f:cf:1f:3d:9d:2e:1f:6c:13:9a:e9:3d:1f:54:95:0a:5a:46: 60:91:dd:f6:e6:75:be:c9:14:9d:0b:65:a0:7a:a2:4c:04:5d: 60:bb:ff:39 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt/E8B5igMDD82B31FUfLEJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1YTY2NWI5MDA2OWJkNzE4NTA2MDJlNzQwMGM1Mjk3OTMy NjllMzkwHhcNMjYwMTAyMTQxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODQ5NjNmNjI3MDJiN2VjMzY5YjFkZDg5NjIwNDcxNTUwOTgzY2Y4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwX0THrVvbMbggs3vQxeq8HGQTSaH ylnn7hL/8ytKIx1vys3hlAkxuQ/UfBrHG0fmWIAPU9TFFm0QyRzAH7jEfL9/jjm1 Dl59M5kLb7Sc7Fr72mbD+bMuyspmibzZaOVNI3tKXpxvPqDuTzqmA+lNfdt2chRa 4mIPFbMpJMtIr/rDT3KBmT06zWNJcoXHiY051758yJng5KwLNyHJWRufpYS7tOnW NZHXoy9Y3js1EXcdGjmFC3T2EDdXxbsX83FWSZ5q4afih7pKybh38icrsA9nrwVA UWm8+Q5TzwosOVuYX8Blm8hioEOXoDEhnyygXmArFvEn7ybrAvkPKUfsPQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFBhJY/YnArfsNpsd2JYgRxVQmDz4MB8GA1UdIwQY MBaAFGWmZbkAab1xhQYC50AMUpeTJp45MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmFabHVRQnB2WEdGQmdMblFBeFNsNU1tbmprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lNmQ4ODAtMzkwMy00YTExLWJhMjct Yzk0NTdlYzgxMTUxLzEvR0VsajlpY0N0LXcybXgzWWxpQkhGVkNZUFBnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9lNmQ4ODAtMzkwMy00YTExLWJhMjctYzk0NTdlYzgxMTUx LzEvWmFabHVRQnB2WEdGQmdMblFBeFNsNU1tbmprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgkrgAAB AwcAKgkrgAARMA0GCSqGSIb3DQEBCwUAA4IBAQApDxcI7U+lUjkPDt2me2d0Y5Pz 2iTUjLQBrRHVyihB3xmOb/LkrzEFY7iLPHVMjJimfNPr4wKkQU9fndIkDdp8G/EL xs7g2Yv6kZsfrYuBIa4YmctFuMqE7z2r/03nErlv6I4jnrC9moSlqyi/ioOKRiBO S8yda1N512vf+n+4TJXuYnCml+pWvelbwwdTn9nHDSBnvLCgNsNNZtNtK4DQ7RkV YAdIOapYfojk4vU+mYG2x3mp54jTjjOuX3m/edP9D+JQstHruXKXBGIolNZaR5lm e2oz3CuPzx89nS4fbBOa6T0fVJUKWkZgkd325nW+yRSdC2WgeqJMBF1gu/85 -----END CERTIFICATE-----Generated at Sun Jan 25 22:32:01 2026 by rpki-client