This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/GnQ9nonV43lnZNoCG-ecdWqOLDk.roa File: GnQ9nonV43lnZNoCG-ecdWqOLDk.roa (raw, json) Hash identifier: 5lmMKt+idSdfaSrOW6fzEjOhALbxhOPcgnKdUuSF0JY= Subject key identifier: 1A:74:3D:9E:89:D5:E3:79:67:64:DA:02:1B:E7:9C:75:6A:8E:2C:39 Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Certificate serial: 019B7AC956AAB46869FB6508F9C4074423D2 Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/GnQ9nonV43lnZNoCG-ecdWqOLDk.roa Signing time: Thu 01 Jan 2026 18:19:33 +0000 ROA not before: Thu 01 Jan 2026 18:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203039 IP address blocks: 45.155.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.mft rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:56:aa:b4:68:69:fb:65:08:f9:c4:07:44:23:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423 Validity Not Before: Jan 1 18:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1a743d9e89d5e3796764da021be79c756a8e2c39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:15:0b:81:11:46:31:58:bf:67:d0:95:18:5c: ac:7f:46:b3:a3:ac:8f:17:b7:b4:c2:2e:76:1a:aa: 75:7e:b4:d2:22:bc:80:0c:2c:cf:80:46:42:3c:92: ba:fa:1e:f1:6a:42:59:8a:ab:3f:c0:8e:52:50:a7: c7:58:9d:7b:fa:5a:bb:f0:96:79:6d:e2:5d:0a:9a: 84:ae:19:33:9a:5a:28:c6:cd:a0:9c:d0:94:9f:3a: d5:04:c4:a0:b9:7e:8f:aa:fb:76:d0:0a:80:bb:be: d2:b7:ff:a2:c2:a6:08:cb:72:b0:6e:d3:e2:47:2d: 17:a5:4d:3c:ac:19:98:03:f0:26:75:a5:9c:ac:db: 33:ef:eb:f2:82:25:53:81:4e:11:01:60:2b:d1:1f: 34:8c:3c:d7:8b:2f:99:72:c0:e9:f5:13:10:6c:04: f7:3d:53:5e:9d:8e:9f:ba:bd:c4:e6:79:0b:00:89: ab:18:c1:16:f3:94:0b:7b:ce:6d:87:2e:30:4b:26: af:73:e9:89:e2:0e:18:eb:e8:c4:20:ae:a3:4c:92: d1:af:37:23:9b:42:03:9a:15:99:4d:e3:9c:e3:35: 8e:79:d1:6f:37:5f:c7:c1:99:b7:e5:cf:66:fc:ae: 42:8a:37:c5:87:0c:26:a3:6e:d8:df:05:4e:2e:29: 7d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:74:3D:9E:89:D5:E3:79:67:64:DA:02:1B:E7:9C:75:6A:8E:2C:39 X509v3 Authority Key Identifier: keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/GnQ9nonV43lnZNoCG-ecdWqOLDk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.155.165.0/24 Signature Algorithm: sha256WithRSAEncryption 13:13:55:40:c5:80:2a:63:68:bd:98:d9:f3:55:04:5d:04:f2: 36:84:df:ad:d1:07:ac:42:1c:b8:04:e5:d5:3a:49:01:ed:26: dd:a1:cb:fd:3a:5f:b7:8b:84:f8:ed:02:c6:56:18:f9:d1:e9: c5:9f:f8:10:d5:7b:b0:9d:98:44:1d:72:3a:1f:b9:22:f5:65: f3:25:5f:5f:1a:79:6b:2e:1d:92:62:f0:6d:36:61:5f:c5:84: 68:e2:b9:26:61:08:04:ad:32:9c:55:dd:33:5d:78:70:9a:68: dc:5b:2e:cc:e7:09:b4:f5:8f:c1:02:8d:3c:d7:57:9a:ee:2a: 27:49:d2:01:f2:a9:e0:80:46:77:40:9a:6d:56:93:7f:f5:c3: c8:eb:49:22:fe:0e:56:24:c0:03:d8:48:35:4a:14:f3:8a:cb: 7f:39:61:62:bc:f3:96:c7:5d:51:64:a8:e2:8a:3d:7c:8e:f5: eb:f7:81:42:31:d2:6e:9d:ef:9e:dd:aa:11:9b:78:65:d7:66: ed:ff:d5:a9:5d:c6:1e:04:b5:9a:aa:43:cc:07:4d:f9:2a:00: 49:25:cb:c6:3d:3c:b6:1d:4e:09:bc:16:f5:e1:e5:36:0c:77: e3:da:91:8f:17:18:66:fe:e6:21:be:bd:a0:ec:a5:3c:3f:10: 53:03:9e:0c -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt6yVaqtGhp+2UI+cQHRCPSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4NjUxYjExOTRmMTJlOThlNzBkM2RhNzhlZmU0ZGQyNDY3 Y2Q0MjMwHhcNMjYwMTAxMTgxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYTc0M2Q5ZTg5ZDVlMzc5Njc2NGRhMDIxYmU3OWM3NTZhOGUyYzM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhULgRFGMVi/Z9CVGFysf0azo6yP F7e0wi52Gqp1frTSIryADCzPgEZCPJK6+h7xakJZiqs/wI5SUKfHWJ17+lq78JZ5 beJdCpqErhkzmlooxs2gnNCUnzrVBMSguX6Pqvt20AqAu77St/+iwqYIy3KwbtPi Ry0XpU08rBmYA/AmdaWcrNsz7+vygiVTgU4RAWAr0R80jDzXiy+ZcsDp9RMQbAT3 PVNenY6fur3E5nkLAImrGMEW85QLe85thy4wSyavc+mJ4g4Y6+jEIK6jTJLRrzcj m0IDmhWZTeOc4zWOedFvN1/HwZm35c9m/K5CijfFhwwmo27Y3wVOLil9wwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFBp0PZ6J1eN5Z2TaAhvnnHVqjiw5MB8GA1UdIwQY MBaAFPhlGxGU8S6Y5w09p47+TdJGfNQjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1HVWJFWlR4THBqbkRUMm5qdjVOMGtaODFDTS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjli LWExYjdjZWVmYTE2Yy8xL0duUTlub25WNDNsblpOb0NHLWVjZFdxT0xEay5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjliLWExYjdjZWVmYTE2 Yy8xLzEtR1ViRVpUeExwam5EVDJuanY1TjBrWjgxQ00uY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtm6Uw DQYJKoZIhvcNAQELBQADggEBABMTVUDFgCpjaL2Y2fNVBF0E8jaE363RB6xCHLgE 5dU6SQHtJt2hy/06X7eLhPjtAsZWGPnR6cWf+BDVe7CdmEQdcjofuSL1ZfMlX18a eWsuHZJi8G02YV/FhGjiuSZhCAStMpxV3TNdeHCaaNxbLsznCbT1j8ECjTzXV5ru KidJ0gHyqeCARndAmm1Wk3/1w8jrSSL+DlYkwAPYSDVKFPOKy385YWK885bHXVFk qOKKPXyO9ev3gUIx0m6d757dqhGbeGXXZu3/1aldxh4EtZqqQ8wHTfkqAEkly8Y9 PLYdTgm8FvXh5TYMd+PakY8XGGb+5iG+vaDspTw/EFMDngw= -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:15 2026 by rpki-client