This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/gq-wS1-FKcHhFx26F3VsD_Kp72Y.roa File: gq-wS1-FKcHhFx26F3VsD_Kp72Y.roa (raw, json) Hash identifier: TF4H2aT6JRXNsprJBLWhkIJdEFblvAAuKU3lRYmbao8= Subject key identifier: 82:AF:B0:4B:5F:85:29:C1:E1:17:1D:BA:17:75:6C:0F:F2:A9:EF:66 Certificate issuer: /CN=d703642076d27e252fa90bf1a4296f8bcd9d0cf1 Certificate serial: 019B791101679982DE97C40D718060678C36 Authority key identifier: D7:03:64:20:76:D2:7E:25:2F:A9:0B:F1:A4:29:6F:8B:CD:9D:0C:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/gq-wS1-FKcHhFx26F3VsD_Kp72Y.roa Signing time: Thu 01 Jan 2026 10:18:36 +0000 ROA not before: Thu 01 Jan 2026 10:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197248 IP address blocks: 77.221.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/1wNkIHbSfiUvqQvxpClvi82dDPE.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/1wNkIHbSfiUvqQvxpClvi82dDPE.mft rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:01:67:99:82:de:97:c4:0d:71:80:60:67:8c:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d703642076d27e252fa90bf1a4296f8bcd9d0cf1 Validity Not Before: Jan 1 10:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82afb04b5f8529c1e1171dba17756c0ff2a9ef66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:10:e0:db:1f:14:a2:48:72:b4:ab:21:02:6b: 91:fb:bc:e7:af:34:d5:90:31:2f:bb:b9:01:60:9a: 71:7b:80:5d:01:ff:13:c5:6e:e0:6a:13:d4:cc:5a: 4e:cf:4b:c5:84:16:62:a5:9a:24:ff:9d:2c:d3:85: 3e:16:ad:d9:d1:12:d7:dd:22:e2:22:4f:24:dd:32: 7d:d1:dd:87:9c:97:50:32:c3:f5:bb:19:47:64:ee: 2a:ae:3b:52:5e:f0:1a:c9:91:c3:3d:cb:94:6d:20: fb:d1:99:0d:b3:3a:07:67:6f:50:d9:15:ac:93:80: fc:a1:ff:1b:5c:d3:b8:73:e2:a3:12:67:aa:4a:78: be:40:b0:9d:1c:29:bf:d4:6f:f5:42:ca:61:78:ae: 64:ae:26:26:45:a4:eb:61:b5:ee:85:54:8d:5b:15: 20:17:c4:8a:9a:fd:ca:94:95:af:2d:1f:24:5d:9f: 23:bf:e4:4b:16:5b:d7:15:cf:0e:d3:81:f6:de:04: 54:9e:42:77:43:f2:1f:29:7d:fc:31:bd:81:7b:c5: 75:bd:b3:a3:ab:69:fd:46:0e:59:95:0a:63:69:93: 0b:ea:c0:da:f2:86:8c:fa:72:97:f9:a4:2d:02:84: 3b:f1:df:fb:cf:4f:bb:31:71:44:02:c9:ee:0c:60: ef:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:AF:B0:4B:5F:85:29:C1:E1:17:1D:BA:17:75:6C:0F:F2:A9:EF:66 X509v3 Authority Key Identifier: keyid:D7:03:64:20:76:D2:7E:25:2F:A9:0B:F1:A4:29:6F:8B:CD:9D:0C:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/gq-wS1-FKcHhFx26F3VsD_Kp72Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/1wNkIHbSfiUvqQvxpClvi82dDPE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.221.51.0/24 Signature Algorithm: sha256WithRSAEncryption 43:aa:73:95:fd:72:7e:ea:5d:67:5b:17:73:51:e4:5f:83:21: 3e:d7:9a:ad:0e:c0:27:f7:ea:3d:35:10:9d:ec:5c:4f:95:63: f5:9f:ba:dc:aa:b5:3b:a9:41:9e:e1:e9:8c:c1:67:b9:b0:40: 49:a8:9a:25:f4:0e:a2:03:07:91:57:c0:d4:fc:f4:4f:7b:69: 88:ef:86:2b:8e:9e:50:cc:0b:5b:42:51:c9:1d:15:e1:26:44: 5e:f5:d3:e9:c7:04:47:8c:e3:be:0f:b5:d2:12:3f:e0:a0:41: 28:1b:df:45:ef:3f:6f:bd:f2:1a:7b:fe:3b:26:79:74:b8:7b: e4:ee:cd:31:e9:93:7e:29:bc:68:eb:8d:d1:32:55:1e:38:f6: 88:5b:6a:fc:bf:a8:49:d8:58:9d:9a:ea:5b:38:67:39:f9:20: c4:24:e5:55:96:15:1d:c4:cc:dc:9e:fc:06:76:3f:0a:65:cd: dc:4e:c4:26:45:00:d9:6a:21:05:80:4c:a8:88:15:7d:1f:8a: 44:19:5a:85:48:b3:1f:c3:bf:4b:ff:de:24:26:c1:be:4e:25: dd:26:1c:b9:73:f1:7a:e0:6e:e8:e0:24:0c:bf:6d:73:de:63: 4d:fb:ab:d0:2a:c8:7b:84:11:6b:3c:e1:b2:8b:50:df:e5:d4: ea:39:cf:63 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EQFnmYLel8QNcYBgZ4w2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3MDM2NDIwNzZkMjdlMjUyZmE5MGJmMWE0Mjk2ZjhiY2Q5 ZDBjZjEwHhcNMjYwMTAxMTAxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MmFmYjA0YjVmODUyOWMxZTExNzFkYmExNzc1NmMwZmYyYTllZjY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRDg2x8UokhytKshAmuR+7znrzTV kDEvu7kBYJpxe4BdAf8TxW7gahPUzFpOz0vFhBZipZok/50s04U+Fq3Z0RLX3SLi Ik8k3TJ90d2HnJdQMsP1uxlHZO4qrjtSXvAayZHDPcuUbSD70ZkNszoHZ29Q2RWs k4D8of8bXNO4c+KjEmeqSni+QLCdHCm/1G/1QspheK5kriYmRaTrYbXuhVSNWxUg F8SKmv3KlJWvLR8kXZ8jv+RLFlvXFc8O04H23gRUnkJ3Q/IfKX38Mb2Be8V1vbOj q2n9Rg5ZlQpjaZML6sDa8oaM+nKX+aQtAoQ78d/7z0+7MXFEAsnuDGDvkwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIKvsEtfhSnB4Rcduhd1bA/yqe9mMB8GA1UdIwQY MBaAFNcDZCB20n4lL6kL8aQpb4vNnQzxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXdOa0lIYlNmaVV2cVF2eHBDbHZpODJkRFBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8zODEzNmMtZGI1MS00ZjcwLWFkOGIt NjU0NTA1YTJkMDQ1LzEvZ3Etd1MxLUZLY0hoRngyNkYzVnNEX0twNzJZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8zODEzNmMtZGI1MS00ZjcwLWFkOGItNjU0NTA1YTJkMDQ1 LzEvMXdOa0lIYlNmaVV2cVF2eHBDbHZpODJkRFBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATd0zMA0G CSqGSIb3DQEBCwUAA4IBAQBDqnOV/XJ+6l1nWxdzUeRfgyE+15qtDsAn9+o9NRCd 7FxPlWP1n7rcqrU7qUGe4emMwWe5sEBJqJol9A6iAweRV8DU/PRPe2mI74Yrjp5Q zAtbQlHJHRXhJkRe9dPpxwRHjOO+D7XSEj/goEEoG99F7z9vvfIae/47Jnl0uHvk 7s0x6ZN+Kbxo643RMlUeOPaIW2r8v6hJ2FidmupbOGc5+SDEJOVVlhUdxMzcnvwG dj8KZc3cTsQmRQDZaiEFgEyoiBV9H4pEGVqFSLMfw79L/94kJsG+TiXdJhy5c/F6 4G7o4CQMv21z3mNN+6vQKsh7hBFrPOGyi1Df5dTqOc9j -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:21 2026 by rpki-client