This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gsMfu9IoyUcpeyNVN347orH0JjM.roa File: gsMfu9IoyUcpeyNVN347orH0JjM.roa (raw, json) Hash identifier: cFup9eBYp2wfH1OvPSrbw3uumITv2BJOGnVILpOsnBA= Subject key identifier: 82:C3:1F:BB:D2:28:C9:47:29:7B:23:55:37:7E:3B:A2:B1:F4:26:33 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84A3764C7BEB33D7852A4973F9E302 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gsMfu9IoyUcpeyNVN347orH0JjM.roa Signing time: Fri 02 Jan 2026 16:22:37 +0000 ROA not before: Fri 02 Jan 2026 16:22:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43047 IP address blocks: 95.47.102.0/24 maxlen: 24 146.120.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:a3:76:4c:7b:eb:33:d7:85:2a:49:73:f9:e3:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82c31fbbd228c947297b2355377e3ba2b1f42633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2c:da:4a:ac:97:ed:1a:9d:0d:49:68:75:4a: fb:09:bd:29:05:44:1d:54:ac:0a:35:e5:5b:37:11: bd:f7:4d:82:56:a1:8b:d8:83:99:e3:b1:ec:8d:47: 67:76:1d:c1:33:a5:74:fd:c0:8a:65:5a:65:9f:cf: 0e:69:5b:89:07:3f:fd:a7:4b:f5:f0:25:d4:5e:53: a1:a1:1c:45:2f:e1:91:9a:8e:24:5c:1e:41:d8:e3: 43:57:75:f3:49:fb:30:0c:b9:d9:09:11:32:05:a6: ab:ea:ee:f1:d4:34:1e:76:59:a3:bc:9c:e5:73:bb: 4f:48:8f:b8:16:f5:fb:16:38:52:37:d4:74:3b:db: 99:fc:f9:c2:cd:8e:e6:a0:cc:b2:7a:77:8b:1c:1c: 46:c8:8d:85:b9:e1:5c:f2:80:b3:7c:94:0e:1b:6d: a4:3c:aa:97:24:36:40:c5:d1:d0:88:a4:5f:7e:ac: bc:fa:d0:a3:02:50:60:ff:92:c4:5a:9b:64:1a:21: fa:d9:6b:57:d2:33:3c:e7:95:30:4c:01:d5:0b:03: cf:f6:2d:07:65:59:a3:5b:5d:75:60:09:2d:91:a4: 24:6a:ca:65:5c:11:24:56:c1:6a:58:03:b4:b7:02: 6f:c1:df:8d:67:96:39:de:82:52:86:b0:46:9b:34: 8f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C3:1F:BB:D2:28:C9:47:29:7B:23:55:37:7E:3B:A2:B1:F4:26:33 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gsMfu9IoyUcpeyNVN347orH0JjM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.47.102.0/24 146.120.225.0/24 Signature Algorithm: sha256WithRSAEncryption b1:f0:68:7d:9d:77:4b:17:8f:e9:bb:87:b7:29:e9:32:0f:6b: f6:16:1d:61:00:bc:38:62:73:3d:72:35:77:8d:51:0b:b6:81: d2:1b:ac:3a:0f:75:e4:82:31:41:e6:80:b0:c1:96:19:d5:f0: ba:68:eb:93:59:ad:94:4c:13:ea:cc:1a:bb:92:66:31:67:e4: 0f:2c:e9:b0:48:f8:62:0c:1b:fc:4e:22:8e:08:47:18:9c:a9: c5:ed:35:3b:bb:21:59:59:f3:ce:4a:5d:11:f5:27:90:35:ab: 18:84:c1:ed:e5:42:06:a5:95:be:cf:2d:b5:11:f1:0d:73:39: 40:93:5d:51:e1:60:e5:f3:ba:3e:ff:df:e6:f7:51:89:f2:32: a6:d9:08:0b:0f:f6:88:de:11:1c:9e:25:04:97:81:a2:10:96: fa:2b:28:4c:74:f4:4f:ce:cc:5f:38:8c:5b:5b:8b:1f:36:84: fc:9c:39:6b:a8:25:45:25:f9:05:69:f7:b4:84:d2:e8:99:bc: cb:91:49:17:fc:d0:d6:64:d6:00:fd:4c:17:4b:64:3e:3c:95: ec:6f:24:43:14:83:54:03:7e:2b:52:4b:03:9a:50:af:4f:a7: dd:c7:9f:61:fe:f2:51:c7:8d:55:b8:7a:7a:06:eb:2c:fb:a9: 0b:83:da:d8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hKN2THvrM9eFKklz+eMCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MmMzMWZiYmQyMjhjOTQ3Mjk3YjIzNTUzNzdlM2JhMmIxZjQyNjMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0CzaSqyX7RqdDUlodUr7Cb0pBUQd VKwKNeVbNxG9902CVqGL2IOZ47HsjUdndh3BM6V0/cCKZVpln88OaVuJBz/9p0v1 8CXUXlOhoRxFL+GRmo4kXB5B2ONDV3XzSfswDLnZCREyBaar6u7x1DQedlmjvJzl c7tPSI+4FvX7FjhSN9R0O9uZ/PnCzY7moMyyeneLHBxGyI2FueFc8oCzfJQOG22k PKqXJDZAxdHQiKRffqy8+tCjAlBg/5LEWptkGiH62WtX0jM855UwTAHVCwPP9i0H ZVmjW111YAktkaQkasplXBEkVsFqWAO0twJvwd+NZ5Y53oJShrBGmzSPyQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFILDH7vSKMlHKXsjVTd+O6Kx9CYzMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvZ3NNZnU5SW95VWNwZXlOVk4zNDdvckgwSmpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXy9mAwQA knjhMA0GCSqGSIb3DQEBCwUAA4IBAQCx8Gh9nXdLF4/pu4e3KekyD2v2Fh1hALw4 YnM9cjV3jVELtoHSG6w6D3XkgjFB5oCwwZYZ1fC6aOuTWa2UTBPqzBq7kmYxZ+QP LOmwSPhiDBv8TiKOCEcYnKnF7TU7uyFZWfPOSl0R9SeQNasYhMHt5UIGpZW+zy21 EfENczlAk11R4WDl87o+/9/m91GJ8jKm2QgLD/aI3hEcniUEl4GiEJb6KyhMdPRP zsxfOIxbW4sfNoT8nDlrqCVFJfkFafe0hNLombzLkUkX/NDWZNYA/UwXS2Q+PJXs byRDFINUA34rUksDmlCvT6fdx59h/vJRx41VuHp6Buss+6kLg9rY -----END CERTIFICATE-----Generated at Sun Jan 25 16:27:37 2026 by rpki-client