This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/gW5-ilCT-LdirBaZone4mDKQZR8.roa File: gW5-ilCT-LdirBaZone4mDKQZR8.roa (raw, json) Hash identifier: T4nxOzhujGqsnK85PPfC4TSc7SiWX07M/Zi4kIQCtO0= Subject key identifier: 81:6E:7E:8A:50:93:F8:B7:62:AC:16:99:A2:77:B8:98:32:90:65:1F Certificate issuer: /CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce Certificate serial: 019B797F36B2503ABE5D1145B947D5059998 Authority key identifier: 2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/gW5-ilCT-LdirBaZone4mDKQZR8.roa Signing time: Thu 01 Jan 2026 12:18:58 +0000 ROA not before: Thu 01 Jan 2026 12:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203858 IP address blocks: 170.168.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.mft rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:36:b2:50:3a:be:5d:11:45:b9:47:d5:05:99:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce Validity Not Before: Jan 1 12:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=816e7e8a5093f8b762ac1699a277b8983290651f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:b3:c2:07:2f:00:fd:db:b5:78:e9:0d:d0:c7: c7:d8:30:55:17:32:8c:8c:b6:0e:a8:64:45:4b:1c: 7e:27:0f:bd:3f:07:ac:1c:14:8e:11:01:50:64:0b: c5:81:8f:b9:db:a5:4f:10:eb:3f:b1:4b:37:8e:8e: 42:5e:3f:72:ce:bf:12:c0:8c:27:20:36:d1:34:9b: d9:d4:9f:6a:d7:51:6d:1e:aa:d2:c0:52:2b:d9:8a: d5:6f:54:56:3e:d9:14:65:7e:e0:68:07:38:80:d1: e0:9d:22:a9:1c:43:ce:1c:b4:e5:24:d7:62:b3:a4: 32:80:06:92:10:22:fd:b0:1b:a7:92:f7:11:06:88: 86:5a:e1:a6:56:25:b1:e8:ec:92:70:7a:28:db:c8: aa:92:f7:69:ad:65:31:c7:1e:81:78:05:80:71:24: 0a:2a:b6:c4:32:14:78:fc:5d:f1:9f:4c:6d:cd:89: 16:f0:67:be:b3:0e:e1:22:d6:f7:24:28:45:17:9e: 25:47:18:02:4e:a6:58:5b:b1:92:6d:d8:7e:75:0c: 32:d0:43:2a:ec:6a:a1:24:ed:24:d6:31:a0:b7:02: aa:38:bc:57:7d:53:33:b3:c0:78:67:3c:0a:f9:24: 4c:02:3e:3c:b5:25:ed:3b:c2:3d:25:f1:4b:16:5e: d1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:6E:7E:8A:50:93:F8:B7:62:AC:16:99:A2:77:B8:98:32:90:65:1F X509v3 Authority Key Identifier: keyid:2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/gW5-ilCT-LdirBaZone4mDKQZR8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.168.116.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:c3:95:6c:73:4f:48:88:88:84:10:16:6a:3d:e2:35:61:4f: 50:41:89:f1:27:ef:44:7f:c9:b7:fd:9b:47:dd:73:05:c2:0d: 49:05:93:09:4a:35:3b:e1:e9:01:3d:fb:9c:8d:42:3c:3b:c1: 07:b0:d6:f7:06:62:72:48:38:16:35:f9:4b:60:a1:ac:7e:db: 15:e0:f8:43:83:cc:dc:dc:75:e4:5b:f2:c7:69:2f:dd:c7:fb: f5:dc:3e:47:b6:2f:42:cf:3c:c4:1e:e4:6a:e7:ff:6c:26:5a: 39:e3:36:a5:50:36:73:6f:d1:d2:21:96:28:94:c6:26:01:5c: 37:7e:9e:72:39:fc:c0:2b:ab:0e:79:f4:37:47:eb:f2:d1:0c: 14:a9:a1:02:b1:c8:e7:fe:65:e5:fe:0b:e6:10:8e:c3:46:a4: 3b:7e:c9:b5:f8:92:74:72:88:4e:d0:fa:a1:38:25:d6:d6:ca: 10:56:0b:14:b5:b0:4a:7f:db:5e:2f:fd:07:24:0f:21:1f:cc: 17:ef:e3:99:9d:42:ac:57:32:c2:51:9a:6e:40:49:f3:a7:14: cc:bd:75:4a:c5:17:61:0b:ba:69:f5:5e:08:8e:08:29:20:34: d0:c0:d8:70:18:38:bf:20:92:e1:09:18:8f:a4:f0:56:10:d7: f3:ef:eb:7b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fzayUDq+XRFFuUfVBZmYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlNmE4NmU2MmYwY2U5OGUwMmU5ODA4NjlmZjQ0MTRlZTJh MGYwY2UwHhcNMjYwMTAxMTIxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MTZlN2U4YTUwOTNmOGI3NjJhYzE2OTlhMjc3Yjg5ODMyOTA2NTFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjbPCBy8A/du1eOkN0MfH2DBVFzKM jLYOqGRFSxx+Jw+9PwesHBSOEQFQZAvFgY+526VPEOs/sUs3jo5CXj9yzr8SwIwn IDbRNJvZ1J9q11FtHqrSwFIr2YrVb1RWPtkUZX7gaAc4gNHgnSKpHEPOHLTlJNdi s6QygAaSECL9sBunkvcRBoiGWuGmViWx6OyScHoo28iqkvdprWUxxx6BeAWAcSQK KrbEMhR4/F3xn0xtzYkW8Ge+sw7hItb3JChFF54lRxgCTqZYW7GSbdh+dQwy0EMq 7GqhJO0k1jGgtwKqOLxXfVMzs8B4ZzwK+SRMAj48tSXtO8I9JfFLFl7RIwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIFufopQk/i3YqwWmaJ3uJgykGUfMB8GA1UdIwQY MBaAFC5qhuYvDOmOAumAhp/0QU7ioPDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2Et YTY2N2JiNzY1MDYwLzEvZ1c1LWlsQ1QtTGRpckJhWm9uZTRtREtRWlI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2EtYTY2N2JiNzY1MDYw LzEvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqqh0MA0G CSqGSIb3DQEBCwUAA4IBAQA8w5Vsc09IiIiEEBZqPeI1YU9QQYnxJ+9Ef8m3/ZtH 3XMFwg1JBZMJSjU74ekBPfucjUI8O8EHsNb3BmJySDgWNflLYKGsftsV4PhDg8zc 3HXkW/LHaS/dx/v13D5Hti9CzzzEHuRq5/9sJlo54zalUDZzb9HSIZYolMYmAVw3 fp5yOfzAK6sOefQ3R+vy0QwUqaECscjn/mXl/gvmEI7DRqQ7fsm1+JJ0cohO0Pqh OCXW1soQVgsUtbBKf9teL/0HJA8hH8wX7+OZnUKsVzLCUZpuQEnzpxTMvXVKxRdh C7pp9V4IjggpIDTQwNhwGDi/IJLhCRiPpPBWENfz7+t7 -----END CERTIFICATE-----Generated at Sun Jan 25 18:20:52 2026 by rpki-client