This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/gdALt1EsV4NvlgV2yxYIdca1ayo.roa File: gdALt1EsV4NvlgV2yxYIdca1ayo.roa (raw, json) Hash identifier: 1BHCRTj4G0aKa1OuMorpbkBpZTlNNcuSVgMkG/YEguo= Subject key identifier: 81:D0:0B:B7:51:2C:57:83:6F:96:05:76:CB:16:08:75:C6:B5:6B:2A Certificate issuer: /CN=459602d7af7c348c95ab11edd6132056753eabb9 Certificate serial: 019B7EA6E52CC673A824DDF64A89A7DCD900 Authority key identifier: 45:96:02:D7:AF:7C:34:8C:95:AB:11:ED:D6:13:20:56:75:3E:AB:B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RZYC1698NIyVqxHt1hMgVnU-q7k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/gdALt1EsV4NvlgV2yxYIdca1ayo.roa Signing time: Fri 02 Jan 2026 12:20:25 +0000 ROA not before: Fri 02 Jan 2026 12:20:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215724 IP address blocks: 2a14:7f00::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/RZYC1698NIyVqxHt1hMgVnU-q7k.crl rsync://rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/RZYC1698NIyVqxHt1hMgVnU-q7k.mft rsync://rpki.ripe.net/repository/DEFAULT/RZYC1698NIyVqxHt1hMgVnU-q7k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:e5:2c:c6:73:a8:24:dd:f6:4a:89:a7:dc:d9:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=459602d7af7c348c95ab11edd6132056753eabb9 Validity Not Before: Jan 2 12:20:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=81d00bb7512c57836f960576cb160875c6b56b2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a5:24:96:a2:ef:47:c4:b3:84:cc:94:05:fb: 7c:f8:84:28:06:cc:3f:d6:71:88:a3:fd:c3:de:29: 36:e2:0c:52:dd:cb:65:38:6b:92:d4:3e:40:86:f7: e9:55:e9:9a:bd:d0:73:a4:88:a0:e3:aa:41:0b:c9: ed:d7:f5:b1:60:9e:9e:fe:8e:d8:91:dd:a4:a0:1a: 40:87:83:db:6e:55:fd:fc:8f:c0:f9:d3:61:f2:29: 44:66:7e:af:09:8a:fc:f2:a4:49:5c:51:21:81:1d: ad:8d:b4:92:fe:a1:a9:5e:83:03:86:f8:57:69:0f: 84:87:e3:b1:8b:12:4d:8c:2f:04:9d:c6:74:20:08: 33:0d:5c:eb:13:0a:f0:93:a2:a4:8b:7a:b2:56:72: a1:40:1c:a1:fe:53:63:d1:d5:3c:26:32:ac:fa:a5: 7d:d0:2e:80:ba:b3:a3:62:76:9b:20:50:52:3d:ae: 9e:27:40:64:84:c9:03:b2:d8:b2:ad:c4:64:1c:4c: a5:38:a1:37:ef:a2:cd:70:fd:bc:6d:9b:64:05:75: 14:34:94:92:62:0b:ef:9b:3a:40:f1:ed:e0:37:58: a9:b0:e3:a1:ed:b3:9e:0b:14:79:15:c4:67:b7:6e: 42:c0:fe:cc:3a:8f:85:35:00:2e:6b:c6:55:09:68: 33:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D0:0B:B7:51:2C:57:83:6F:96:05:76:CB:16:08:75:C6:B5:6B:2A X509v3 Authority Key Identifier: keyid:45:96:02:D7:AF:7C:34:8C:95:AB:11:ED:D6:13:20:56:75:3E:AB:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RZYC1698NIyVqxHt1hMgVnU-q7k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/gdALt1EsV4NvlgV2yxYIdca1ayo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/40862c-93af-4b26-825e-656c162fb24e/1/RZYC1698NIyVqxHt1hMgVnU-q7k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7f00::/29 Signature Algorithm: sha256WithRSAEncryption a5:c7:e2:ee:fa:c7:93:f5:0b:b9:2d:6f:c0:cf:19:e5:2b:5d: c9:93:63:24:c1:26:e9:ff:f4:9a:cc:7a:f7:67:f3:50:c5:58: 62:a0:4c:24:ac:83:ab:80:53:e5:9b:d2:2e:3a:9d:43:2c:a5: 38:20:40:1f:74:2b:45:f6:85:75:dc:c6:ce:70:38:cc:5a:7b: c1:54:9a:94:14:09:a2:09:f0:15:04:0c:54:b9:03:ba:0d:ef: 63:66:eb:c9:1f:79:ed:9f:28:f9:dd:6d:80:b1:68:ea:e6:92: fa:61:d8:c0:f2:60:e8:77:1d:be:35:a5:16:18:da:98:99:69: 4f:f5:87:0c:29:24:ce:ff:ed:db:33:80:95:4c:19:9b:61:1e: 94:67:ad:07:1d:5a:66:cf:30:0a:a9:15:d8:54:0a:ee:80:e7: a9:eb:8c:a4:f0:a5:28:68:d2:13:39:78:a2:5c:70:fe:1c:1b: 85:53:f4:ca:98:47:f2:26:f4:fc:ea:91:68:91:c2:8c:3c:bb: 86:83:e3:9b:d6:8d:87:a9:08:0d:ab:d8:0a:47:3d:46:05:bf: 75:6c:80:0e:76:7e:5b:4d:88:d1:3e:8d:39:c6:48:31:7b:76: 7d:ea:ca:87:42:11:cb:9d:0c:e4:8f:75:ed:ad:a4:9d:33:18: 82:4f:79:f0 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+puUsxnOoJN32Somn3NkAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1OTYwMmQ3YWY3YzM0OGM5NWFiMTFlZGQ2MTMyMDU2NzUz ZWFiYjkwHhcNMjYwMTAyMTIyMDI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MWQwMGJiNzUxMmM1NzgzNmY5NjA1NzZjYjE2MDg3NWM2YjU2YjJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6UklqLvR8SzhMyUBft8+IQoBsw/ 1nGIo/3D3ik24gxS3ctlOGuS1D5AhvfpVemavdBzpIig46pBC8nt1/WxYJ6e/o7Y kd2koBpAh4PbblX9/I/A+dNh8ilEZn6vCYr88qRJXFEhgR2tjbSS/qGpXoMDhvhX aQ+Eh+OxixJNjC8EncZ0IAgzDVzrEwrwk6Kki3qyVnKhQByh/lNj0dU8JjKs+qV9 0C6AurOjYnabIFBSPa6eJ0BkhMkDstiyrcRkHEylOKE376LNcP28bZtkBXUUNJSS YgvvmzpA8e3gN1ipsOOh7bOeCxR5FcRnt25CwP7MOo+FNQAua8ZVCWgz8wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFIHQC7dRLFeDb5YFdssWCHXGtWsqMB8GA1UdIwQY MBaAFEWWAtevfDSMlasR7dYTIFZ1Pqu5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlpZQzE2OThOSXlWcXhIdDFoTWdWblUtcTdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi80MDg2MmMtOTNhZi00YjI2LTgyNWUt NjU2YzE2MmZiMjRlLzEvZ2RBTHQxRXNWNE52bGdWMnl4WUlkY2ExYXlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi80MDg2MmMtOTNhZi00YjI2LTgyNWUtNjU2YzE2MmZiMjRl LzEvUlpZQzE2OThOSXlWcXhIdDFoTWdWblUtcTdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhR/ADAN BgkqhkiG9w0BAQsFAAOCAQEApcfi7vrHk/ULuS1vwM8Z5StdyZNjJMEm6f/0msx6 92fzUMVYYqBMJKyDq4BT5ZvSLjqdQyylOCBAH3QrRfaFddzGznA4zFp7wVSalBQJ ognwFQQMVLkDug3vY2bryR957Z8o+d1tgLFo6uaS+mHYwPJg6HcdvjWlFhjamJlp T/WHDCkkzv/t2zOAlUwZm2EelGetBx1aZs8wCqkV2FQK7oDnqeuMpPClKGjSEzl4 olxw/hwbhVP0yphH8ib0/OqRaJHCjDy7hoPjm9aNh6kIDavYCkc9RgW/dWyADnZ+ W02I0T6NOcZIMXt2ferKh0IRy50M5I917a2knTMYgk958A== -----END CERTIFICATE-----Generated at Sun Jan 25 14:21:17 2026 by rpki-client