This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/2b195e-0aba-47d4-8e3b-ad32ef49d419/1/gNzUmUgQXk7G4YryRBrkTshiOLY.roa File: gNzUmUgQXk7G4YryRBrkTshiOLY.roa (raw, json) Hash identifier: jrGbKzoOn481FO6Gv/dBrgR8DcLBCJ5w3uT6Yvsqj0U= Subject key identifier: 80:DC:D4:99:48:10:5E:4E:C6:E1:8A:F2:44:1A:E4:4E:C8:62:38:B6 Certificate issuer: /CN=74a59b7fb4e034f67775f2875efbfc9eff247e8e Certificate serial: 019B7D5AEA6FE48F0D55B6FEBAF24CDBC788 Authority key identifier: 74:A5:9B:7F:B4:E0:34:F6:77:75:F2:87:5E:FB:FC:9E:FF:24:7E:8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dKWbf7TgNPZ3dfKHXvv8nv8kfo4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/2b195e-0aba-47d4-8e3b-ad32ef49d419/1/gNzUmUgQXk7G4YryRBrkTshiOLY.roa Signing time: Fri 02 Jan 2026 06:17:48 +0000 ROA not before: Fri 02 Jan 2026 06:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210318 IP address blocks: 94.156.75.0/24 maxlen: 24 185.37.232.0/24 maxlen: 24 185.37.232.26/32 maxlen: 32 185.37.232.27/32 maxlen: 32 185.37.232.29/32 maxlen: 32 185.37.232.252/32 maxlen: 32 185.37.233.0/24 maxlen: 24 185.37.234.0/24 maxlen: 24 185.37.235.0/24 maxlen: 24 185.37.235.2/32 maxlen: 32 194.55.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/2b195e-0aba-47d4-8e3b-ad32ef49d419/1/dKWbf7TgNPZ3dfKHXvv8nv8kfo4.crl rsync://rpki.ripe.net/repository/DEFAULT/65/2b195e-0aba-47d4-8e3b-ad32ef49d419/1/dKWbf7TgNPZ3dfKHXvv8nv8kfo4.mft rsync://rpki.ripe.net/repository/DEFAULT/dKWbf7TgNPZ3dfKHXvv8nv8kfo4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:ea:6f:e4:8f:0d:55:b6:fe:ba:f2:4c:db:c7:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74a59b7fb4e034f67775f2875efbfc9eff247e8e Validity Not Before: Jan 2 06:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=80dcd49948105e4ec6e18af2441ae44ec86238b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:59:a1:1a:9b:0c:ec:3a:37:3f:ef:c3:5f:24: f0:e7:a5:fb:aa:e6:af:01:8d:4e:27:37:1d:bc:49: 19:5a:d8:f2:c8:ad:b3:d2:f1:d0:2c:75:f5:bb:0d: 59:02:c0:95:1b:cd:57:ca:90:76:87:76:a1:2a:86: c5:99:43:43:49:8a:86:e9:06:c4:d9:f9:6b:3e:7e: 47:2a:07:a1:87:68:ad:81:eb:ef:18:a3:7e:47:e4: 85:c9:04:c2:5e:d0:79:9a:84:3b:aa:54:3f:9a:ea: 8b:58:0c:75:a0:6d:a7:95:d2:9a:11:1f:27:c2:a6: 0a:01:c5:29:92:49:4d:54:fa:ce:8c:7c:a4:e9:30: 7e:7c:e0:73:5b:e2:1c:58:bd:7e:56:41:31:b0:ca: fc:f1:b3:39:a1:6b:ee:c2:2e:e6:98:64:42:e9:3f: c2:f3:b2:ad:39:f1:93:98:e0:0d:98:93:cf:0b:69: 67:cd:19:b7:52:d3:ba:05:6e:25:29:22:c9:59:0c: c4:f4:64:18:1a:53:d0:73:df:66:35:17:83:0c:73: b9:aa:37:e5:59:5c:98:41:e1:b4:e2:05:3f:3e:46: 94:6e:47:eb:b1:d4:a1:57:91:42:78:fb:e8:40:a6: 81:bb:6f:bb:18:d8:eb:81:0f:df:4a:62:00:3b:9a: bf:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:DC:D4:99:48:10:5E:4E:C6:E1:8A:F2:44:1A:E4:4E:C8:62:38:B6 X509v3 Authority Key Identifier: keyid:74:A5:9B:7F:B4:E0:34:F6:77:75:F2:87:5E:FB:FC:9E:FF:24:7E:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dKWbf7TgNPZ3dfKHXvv8nv8kfo4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2b195e-0aba-47d4-8e3b-ad32ef49d419/1/gNzUmUgQXk7G4YryRBrkTshiOLY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2b195e-0aba-47d4-8e3b-ad32ef49d419/1/dKWbf7TgNPZ3dfKHXvv8nv8kfo4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.156.75.0/24 185.37.232.0/22 194.55.187.0/24 Signature Algorithm: sha256WithRSAEncryption 13:24:51:6b:8d:6f:5f:aa:bd:82:ca:f2:63:b4:62:bd:6f:bd: f1:5a:b2:79:df:79:60:25:1c:9f:c5:d0:18:f2:54:32:9d:91: e1:52:8e:54:2c:60:5a:fb:2e:c1:35:f9:82:33:c1:35:ca:36: 32:cd:68:26:33:86:69:99:11:d9:87:cc:9e:76:3c:e5:70:bb: a3:45:46:1d:b2:b0:1b:88:63:37:1f:9d:d4:2b:91:51:e4:69: b8:f3:b7:96:9d:f3:f4:a4:cf:57:83:cc:5d:6c:6f:02:fd:2b: c8:1b:79:ec:ea:7c:32:97:2b:86:74:4e:65:27:92:ab:27:b8: 94:ee:1d:86:c9:7b:0a:98:8d:a5:bc:95:6e:6d:26:0f:d3:26: d8:7a:1f:cc:32:b5:f9:ba:c5:05:ec:fc:8e:f9:7f:38:8f:cb: 84:6f:bf:fc:36:88:c8:4d:68:8e:a4:90:62:99:26:fd:10:eb: 24:22:0b:74:62:cc:0d:83:24:c4:e7:4e:9c:c7:2e:e1:2d:07: b0:c1:eb:76:f5:1f:85:fd:19:1d:bb:cb:d1:7c:0f:35:16:f1: 3f:51:5e:6c:a8:3a:de:4c:1b:f2:57:e7:7b:79:b6:92:6d:80: c3:4e:63:8e:42:eb:be:c9:69:89:c4:63:ae:87:b4:a6:c4:d6: 17:d7:1d:69 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt9Wupv5I8NVbb+uvJM28eIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0YTU5YjdmYjRlMDM0ZjY3Nzc1ZjI4NzVlZmJmYzllZmYy NDdlOGUwHhcNMjYwMTAyMDYxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MGRjZDQ5OTQ4MTA1ZTRlYzZlMThhZjI0NDFhZTQ0ZWM4NjIzOGI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVmhGpsM7Do3P+/DXyTw56X7quav AY1OJzcdvEkZWtjyyK2z0vHQLHX1uw1ZAsCVG81XypB2h3ahKobFmUNDSYqG6QbE 2flrPn5HKgehh2itgevvGKN+R+SFyQTCXtB5moQ7qlQ/muqLWAx1oG2nldKaER8n wqYKAcUpkklNVPrOjHyk6TB+fOBzW+IcWL1+VkExsMr88bM5oWvuwi7mmGRC6T/C 87KtOfGTmOANmJPPC2lnzRm3UtO6BW4lKSLJWQzE9GQYGlPQc99mNReDDHO5qjfl WVyYQeG04gU/PkaUbkfrsdShV5FCePvoQKaBu2+7GNjrgQ/fSmIAO5q/JwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFIDc1JlIEF5OxuGK8kQa5E7IYji2MB8GA1UdIwQY MBaAFHSlm3+04DT2d3Xyh177/J7/JH6OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEtXYmY3VGdOUFozZGZLSFh2djhudjhrZm80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8yYjE5NWUtMGFiYS00N2Q0LThlM2It YWQzMmVmNDlkNDE5LzEvZ056VW1VZ1FYazdHNFlyeVJCcmtUc2hpT0xZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8yYjE5NWUtMGFiYS00N2Q0LThlM2ItYWQzMmVmNDlkNDE5 LzEvZEtXYmY3VGdOUFozZGZLSFh2djhudjhrZm80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAXpxLAwQC uSXoAwQAwje7MA0GCSqGSIb3DQEBCwUAA4IBAQATJFFrjW9fqr2CyvJjtGK9b73x WrJ533lgJRyfxdAY8lQynZHhUo5ULGBa+y7BNfmCM8E1yjYyzWgmM4ZpmRHZh8ye djzlcLujRUYdsrAbiGM3H53UK5FR5Gm487eWnfP0pM9Xg8xdbG8C/SvIG3ns6nwy lyuGdE5lJ5KrJ7iU7h2GyXsKmI2lvJVubSYP0ybYeh/MMrX5usUF7PyO+X84j8uE b7/8NojITWiOpJBimSb9EOskIgt0YswNgyTE506cxy7hLQewwet29R+F/Rkdu8vR fA81FvE/UV5sqDreTBvyV+d7ebaSbYDDTmOOQuu+yWmJxGOuh7SmxNYX1x1p -----END CERTIFICATE-----Generated at Mon Jan 26 09:25:11 2026 by rpki-client