This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f3c8e8-c5bc-4211-a9ac-4f9112ede968/1/GsIUpdelbYjW9He0Trh2nn-nCJo.roa File: GsIUpdelbYjW9He0Trh2nn-nCJo.roa (raw, json) Hash identifier: W1f0OAwWbcszk++2k0xC55ekezko1dir/Xe9czNGlw0= Subject key identifier: 1A:C2:14:A5:D7:A5:6D:88:D6:F4:77:B4:4E:B8:76:9E:7F:A7:08:9A Certificate issuer: /CN=dbe0ca7c1e0e8a1c7ad02d0bb828b41188ae5243 Certificate serial: 019B797DD59D52F1CE1C9253F0B6D6A658B9 Authority key identifier: DB:E0:CA:7C:1E:0E:8A:1C:7A:D0:2D:0B:B8:28:B4:11:88:AE:52:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-DKfB4Oihx60C0LuCi0EYiuUkM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f3c8e8-c5bc-4211-a9ac-4f9112ede968/1/GsIUpdelbYjW9He0Trh2nn-nCJo.roa Signing time: Thu 01 Jan 2026 12:17:28 +0000 ROA not before: Thu 01 Jan 2026 12:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45014 IP address blocks: 80.93.160.0/20 maxlen: 24 84.246.152.0/21 maxlen: 24 92.60.96.0/20 maxlen: 24 159.253.56.0/21 maxlen: 24 185.18.32.0/24 maxlen: 24 185.184.236.0/22 maxlen: 22 194.150.252.0/23 maxlen: 24 217.172.128.0/20 maxlen: 24 2a00:1a90::/32 maxlen: 48 2a02:cb0::/32 maxlen: 40 2a03:f2c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f3c8e8-c5bc-4211-a9ac-4f9112ede968/1/2-DKfB4Oihx60C0LuCi0EYiuUkM.crl rsync://rpki.ripe.net/repository/DEFAULT/55/f3c8e8-c5bc-4211-a9ac-4f9112ede968/1/2-DKfB4Oihx60C0LuCi0EYiuUkM.mft rsync://rpki.ripe.net/repository/DEFAULT/2-DKfB4Oihx60C0LuCi0EYiuUkM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:d5:9d:52:f1:ce:1c:92:53:f0:b6:d6:a6:58:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbe0ca7c1e0e8a1c7ad02d0bb828b41188ae5243 Validity Not Before: Jan 1 12:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ac214a5d7a56d88d6f477b44eb8769e7fa7089a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:50:d6:b7:8f:f4:e5:04:27:68:6e:18:d7:08: e9:4d:fa:57:b5:47:9f:c0:b6:28:c4:4c:6c:78:45: d6:8a:4e:68:bb:6d:1f:bd:92:d2:13:27:72:df:37: 93:4f:50:b8:86:e5:93:ab:fe:35:ff:da:70:2e:7c: 2f:ef:79:ef:e8:ab:f5:7e:eb:d7:44:91:9b:47:22: ba:1e:28:68:c0:e4:50:16:ba:c1:22:21:38:22:d9: ed:ee:9c:9b:28:e0:0f:d9:1c:a0:0d:27:df:ca:e7: d8:0a:d2:3f:ee:70:42:3e:84:38:be:42:c3:35:8f: 85:3f:8d:c5:3d:aa:46:28:33:67:8f:3a:a5:9a:a9: 77:bc:0e:b7:56:7b:08:2d:38:ff:67:2d:5f:0b:ce: 64:19:ea:40:f9:ca:68:65:07:b4:b3:f0:a9:84:36: b8:26:1d:91:40:9e:5d:ca:aa:20:15:3d:bb:8c:b4: dc:36:26:8e:4e:3b:6f:a7:26:7f:43:9c:d7:df:24: f5:ea:4a:02:ff:1b:8f:f8:cb:23:9c:16:ca:9b:89: 49:0b:2f:1e:7a:6b:f2:66:1f:dc:06:97:16:e2:b1: c4:b2:b5:5e:53:79:0d:65:ac:18:68:20:d5:9e:bf: 47:47:50:3e:8c:a4:26:f3:02:e5:1a:61:c7:ee:08: 46:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C2:14:A5:D7:A5:6D:88:D6:F4:77:B4:4E:B8:76:9E:7F:A7:08:9A X509v3 Authority Key Identifier: keyid:DB:E0:CA:7C:1E:0E:8A:1C:7A:D0:2D:0B:B8:28:B4:11:88:AE:52:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-DKfB4Oihx60C0LuCi0EYiuUkM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f3c8e8-c5bc-4211-a9ac-4f9112ede968/1/GsIUpdelbYjW9He0Trh2nn-nCJo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f3c8e8-c5bc-4211-a9ac-4f9112ede968/1/2-DKfB4Oihx60C0LuCi0EYiuUkM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.93.160.0/20 84.246.152.0/21 92.60.96.0/20 159.253.56.0/21 185.18.32.0/24 185.184.236.0/22 194.150.252.0/23 217.172.128.0/20 IPv6: 2a00:1a90::/32 2a02:cb0::/32 2a03:f2c0::/32 Signature Algorithm: sha256WithRSAEncryption 0f:aa:d4:5c:10:fa:d3:4e:e9:67:e0:ed:62:b7:5f:d4:d5:6a: 9e:68:bb:71:40:aa:7c:ea:b8:c1:01:5e:5f:20:94:00:da:b9: 16:5c:86:88:a4:61:9c:df:a1:3e:67:82:00:96:0c:09:94:0c: 22:23:da:66:94:46:5b:83:1a:3e:d1:a5:2e:bf:40:02:40:fd: 35:6f:54:28:18:a2:37:72:22:0b:e7:04:75:af:b9:a4:e6:d2: 2a:a7:d2:02:27:c6:5f:4a:7b:f9:b4:b1:ff:a2:c2:1f:77:9c: 21:01:54:23:04:ed:2c:5a:f7:ef:fa:a3:33:c7:b3:a1:38:16: 68:94:20:bc:ff:90:66:bd:48:b1:51:99:a6:c0:ca:ef:d6:3e: 0e:48:dc:af:eb:4d:a1:e9:0c:4c:b9:37:19:b4:ec:8d:53:d3: 40:91:7d:ac:b3:08:e4:85:bf:d6:69:0e:1e:88:7a:f0:c4:b3: 73:2d:2c:8d:a4:bd:0b:53:31:fc:9d:47:d9:9c:98:8d:39:1a: 3d:3e:9d:fd:2f:5d:1a:1b:c6:54:13:52:8e:08:6e:59:90:47: 92:92:ed:30:fb:51:39:2b:70:20:97:59:19:eb:41:91:8e:88: 03:60:a9:f4:9e:02:b4:76:e3:32:f4:de:cd:80:b5:b8:fa:69: 1e:00:9c:38 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgISAZt5fdWdUvHOHJJT8LbWpli5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZTBjYTdjMWUwZThhMWM3YWQwMmQwYmI4MjhiNDExODhh ZTUyNDMwHhcNMjYwMTAxMTIxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYWMyMTRhNWQ3YTU2ZDg4ZDZmNDc3YjQ0ZWI4NzY5ZTdmYTcwODlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1DWt4/05QQnaG4Y1wjpTfpXtUef wLYoxExseEXWik5ou20fvZLSEydy3zeTT1C4huWTq/41/9pwLnwv73nv6Kv1fuvX RJGbRyK6HihowORQFrrBIiE4Itnt7pybKOAP2RygDSffyufYCtI/7nBCPoQ4vkLD NY+FP43FPapGKDNnjzqlmql3vA63VnsILTj/Zy1fC85kGepA+cpoZQe0s/CphDa4 Jh2RQJ5dyqogFT27jLTcNiaOTjtvpyZ/Q5zX3yT16koC/xuP+MsjnBbKm4lJCy8e emvyZh/cBpcW4rHEsrVeU3kNZawYaCDVnr9HR1A+jKQm8wLlGmHH7ghGCQIDAQAB o4ICUDCCAkwwHQYDVR0OBBYEFBrCFKXXpW2I1vR3tE64dp5/pwiaMB8GA1UdIwQY MBaAFNvgynweDoocetAtC7gotBGIrlJDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMi1ES2ZCNE9paHg2MEMwTHVDaTBFWWl1VWtNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9mM2M4ZTgtYzViYy00MjExLWE5YWMt NGY5MTEyZWRlOTY4LzEvR3NJVXBkZWxiWWpXOUhlMFRyaDJubi1uQ0pvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9mM2M4ZTgtYzViYy00MjExLWE5YWMtNGY5MTEyZWRlOTY4 LzEvMi1ES2ZCNE9paHg2MEMwTHVDaTBFWWl1VWtNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTA2BAIAATAwAwQEUF2gAwQD VPaYAwQEXDxgAwQDn/04AwQAuRIgAwQCubjsAwQBwpb8AwQE2ayAMBsEAgACMBUD BQAqABqQAwUAKgIMsAMFACoD8sAwDQYJKoZIhvcNAQELBQADggEBAA+q1FwQ+tNO 6Wfg7WK3X9TVap5ou3FAqnzquMEBXl8glADauRZchoikYZzfoT5nggCWDAmUDCIj 2maURluDGj7RpS6/QAJA/TVvVCgYojdyIgvnBHWvuaTm0iqn0gInxl9Ke/m0sf+i wh93nCEBVCME7Sxa9+/6ozPHs6E4FmiUILz/kGa9SLFRmabAyu/WPg5I3K/rTaHp DEy5Nxm07I1T00CRfayzCOSFv9ZpDh6IevDEs3MtLI2kvQtTMfydR9mcmI05Gj0+ nf0vXRobxlQTUo4IblmQR5KS7TD7UTkrcCCXWRnrQZGOiANgqfSeArR24zL03s2A tbj6aR4AnDg= -----END CERTIFICATE-----Generated at Sun Jan 25 21:05:24 2026 by rpki-client