This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/gHLVZow0TCP27IV8p4e0ipEtwlI.roa File: gHLVZow0TCP27IV8p4e0ipEtwlI.roa (raw, json) Hash identifier: +XJTiF5hG3w12uymqeo+y8bQ0vAFK8xE+IY2Y+fKCb8= Subject key identifier: 80:72:D5:66:8C:34:4C:23:F6:EC:85:7C:A7:87:B4:8A:91:2D:C2:52 Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e Certificate serial: 019B7AC7E808F823A6E481AB4DC56D35F78A Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/gHLVZow0TCP27IV8p4e0ipEtwlI.roa Signing time: Thu 01 Jan 2026 18:17:59 +0000 ROA not before: Thu 01 Jan 2026 18:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1147 IP address blocks: 145.98.0.0/21 maxlen: 24 145.127.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.mft rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:e8:08:f8:23:a6:e4:81:ab:4d:c5:6d:35:f7:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e Validity Not Before: Jan 1 18:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8072d5668c344c23f6ec857ca787b48a912dc252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:87:5c:7e:64:38:f1:85:c5:48:0b:94:5e:fc: 61:45:da:91:c3:55:0e:d4:a8:16:7a:26:57:e9:a2: 61:c4:89:cd:e0:21:ab:9d:23:0f:04:8b:d4:2a:c7: a8:7a:38:d6:86:4a:62:be:2c:37:34:91:e5:93:a0: 8d:d7:f0:0e:56:40:bc:0b:4c:96:ed:08:32:74:a1: f2:88:28:03:72:59:41:be:52:47:18:06:77:b7:30: c5:b7:84:94:0c:49:df:1c:d0:65:64:01:61:24:c9: 5d:9b:e2:fa:65:69:90:05:38:77:10:ca:de:61:b9: cf:62:d8:34:5a:5a:19:ea:1f:ff:74:0b:87:d9:a0: c1:86:e1:e1:01:2e:5c:43:46:5f:ac:2e:3f:43:04: ba:2a:37:c5:87:15:8a:4a:eb:ec:eb:36:6b:f3:9c: 21:ee:25:ea:7b:ee:d4:35:42:d6:48:d6:da:94:01: f1:80:20:5b:4c:c2:8d:f3:86:cd:f7:a1:01:0f:1c: b3:fc:8a:9e:cb:73:b6:c1:53:5b:47:06:d2:86:c1: 0a:2d:f8:f3:bd:ae:76:80:9c:cc:15:43:44:3d:02: 87:15:9f:c3:37:3f:99:20:38:21:ce:4d:d9:a5:d5: b1:2b:f9:a9:77:d2:a6:4a:fa:0a:2c:ea:ab:d7:d0: 78:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:72:D5:66:8C:34:4C:23:F6:EC:85:7C:A7:87:B4:8A:91:2D:C2:52 X509v3 Authority Key Identifier: keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/gHLVZow0TCP27IV8p4e0ipEtwlI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.98.0.0/21 145.127.128.0/17 Signature Algorithm: sha256WithRSAEncryption 8d:db:fd:60:72:5a:5b:d6:21:32:c1:c4:77:3d:60:b7:ad:1c: bf:46:1c:33:f0:41:d4:0d:9d:1e:92:6e:4f:8f:3c:54:79:e2: 3a:0c:e0:0e:10:c8:c1:65:7f:3b:9c:cd:72:bb:31:e6:e4:ab: ec:44:6c:cc:62:77:0d:27:51:1f:60:07:7c:51:13:2d:ea:af: 1b:1b:43:0c:7f:f8:55:3c:35:3f:00:4e:ca:47:eb:c6:7e:4b: cc:03:f0:0f:14:e1:e4:87:7d:24:f5:d5:34:d0:35:df:38:04: 1a:f4:04:36:d0:9a:40:8a:cd:5d:2e:87:73:23:f8:56:77:5f: ed:88:dc:58:f4:16:df:d6:bd:ff:e1:60:fd:61:4d:15:d4:ec: 54:4c:08:34:1e:e6:27:da:dc:1d:e9:af:64:dc:af:90:d2:54: cc:94:19:fe:04:a8:10:87:a3:f6:18:e1:26:f1:d3:ef:a4:d9: c2:22:29:07:7e:4c:4f:8f:95:3a:fe:f7:2f:12:40:7b:74:59: 62:d2:2d:70:1e:69:58:73:10:e6:9b:ac:b7:ff:2c:9b:c5:1b: 00:36:b1:e9:7b:75:67:63:b3:b9:e8:51:36:b0:82:d7:01:03: d1:c2:d6:ab:a3:18:d2:0c:7f:60:18:f1:e5:cf:7f:56:34:e4: 9b:c9:6a:69 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6x+gI+COm5IGrTcVtNfeKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NzNkYjE3Nzk1ZDJiZjFiNGI1MzQ1YzViMjkzOTBkYmFm NDUyM2UwHhcNMjYwMTAxMTgxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MDcyZDU2NjhjMzQ0YzIzZjZlYzg1N2NhNzg3YjQ4YTkxMmRjMjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYdcfmQ48YXFSAuUXvxhRdqRw1UO 1KgWeiZX6aJhxInN4CGrnSMPBIvUKseoejjWhkpiviw3NJHlk6CN1/AOVkC8C0yW 7QgydKHyiCgDcllBvlJHGAZ3tzDFt4SUDEnfHNBlZAFhJMldm+L6ZWmQBTh3EMre YbnPYtg0WloZ6h//dAuH2aDBhuHhAS5cQ0ZfrC4/QwS6KjfFhxWKSuvs6zZr85wh 7iXqe+7UNULWSNbalAHxgCBbTMKN84bN96EBDxyz/Iqey3O2wVNbRwbShsEKLfjz va52gJzMFUNEPQKHFZ/DNz+ZIDghzk3ZpdWxK/mpd9KmSvoKLOqr19B4+wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIBy1WaMNEwj9uyFfKeHtIqRLcJSMB8GA1UdIwQY MBaAFBdz2xd5XSvxtLU0XFspOQ269FI+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYt NTQ4NjFmMjMyNDlkLzEvZ0hMVlpvdzBUQ1AyN0lWOHA0ZTBpcEV0d2xJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYtNTQ4NjFmMjMyNDlk LzEvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDkWIAAwQH kX+AMA0GCSqGSIb3DQEBCwUAA4IBAQCN2/1gclpb1iEywcR3PWC3rRy/Rhwz8EHU DZ0ekm5PjzxUeeI6DOAOEMjBZX87nM1yuzHm5KvsRGzMYncNJ1EfYAd8URMt6q8b G0MMf/hVPDU/AE7KR+vGfkvMA/APFOHkh30k9dU00DXfOAQa9AQ20JpAis1dLodz I/hWd1/tiNxY9Bbf1r3/4WD9YU0V1OxUTAg0HuYn2twd6a9k3K+Q0lTMlBn+BKgQ h6P2GOEm8dPvpNnCIikHfkxPj5U6/vcvEkB7dFli0i1wHmlYcxDmm6y3/yybxRsA NrHpe3VnY7O56FE2sILXAQPRwtaroxjSDH9gGPHlz39WNOSbyWpp -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:54 2026 by rpki-client