This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/GWpLZTUJGEVrd-2Kx1-8KQelfBQ.roa File: GWpLZTUJGEVrd-2Kx1-8KQelfBQ.roa (raw, json) Hash identifier: XEil5EQouHS7Pi+DjPJi6H4SvK82Cqfn0n7c1wQAZUU= Subject key identifier: 19:6A:4B:65:35:09:18:45:6B:77:ED:8A:C7:5F:BC:29:07:A5:7C:14 Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af Certificate serial: 019A77F998B0F19C8950CED31379C869BBCA Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/GWpLZTUJGEVrd-2Kx1-8KQelfBQ.roa Signing time: Wed 12 Nov 2025 12:10:37 +0000 ROA not before: Wed 12 Nov 2025 12:10:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 208989 IP address blocks: 45.12.8.0/22 maxlen: 22 2a10:7140::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:77:f9:98:b0:f1:9c:89:50:ce:d3:13:79:c8:69:bb:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af Validity Not Before: Nov 12 12:10:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=196a4b65350918456b77ed8ac75fbc2907a57c14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e0:ae:7c:0a:3c:cd:8c:f7:9a:d7:c8:8c:55: 36:4f:7c:3a:d2:54:41:8c:e3:22:a1:1c:04:22:2b: 9d:8a:90:a5:a2:3b:ed:09:6e:84:73:ff:92:1e:95: bf:d4:94:99:48:9c:69:97:3f:8d:47:dc:e4:b7:9a: f0:98:62:b7:9d:8b:b6:cf:98:89:07:55:96:59:9e: 82:e4:a9:b6:c2:60:ab:0d:63:d6:bb:77:4a:7e:19: 21:d4:8d:75:1c:eb:f9:10:b0:d0:d0:e9:bc:2c:82: ad:1d:ed:24:f8:a1:02:9a:34:af:9c:03:2a:de:9c: 3a:e3:11:62:e7:fb:48:b6:0f:8c:bb:10:50:54:73: cd:d9:ee:63:21:a2:72:c6:47:67:b6:25:44:0b:a0: e9:40:ef:bf:9b:28:15:af:7f:76:41:36:d3:25:48: 60:54:0c:3b:39:91:1f:55:f6:5f:dd:7d:a2:dc:2e: 4f:2e:88:59:1a:47:f1:74:86:62:e3:26:1a:ed:24: ac:69:ae:ac:e7:04:31:20:0c:2d:97:b3:cb:fa:d6: 00:72:4e:61:2c:72:d8:b6:24:54:78:55:f2:f9:cb: cd:4d:85:e1:1b:fe:c4:76:23:11:1c:32:91:0d:eb: 68:ff:71:3b:f3:3d:65:e0:80:3a:6f:3a:cd:81:5b: fe:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:6A:4B:65:35:09:18:45:6B:77:ED:8A:C7:5F:BC:29:07:A5:7C:14 X509v3 Authority Key Identifier: keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/GWpLZTUJGEVrd-2Kx1-8KQelfBQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.12.8.0/22 IPv6: 2a10:7140::/29 Signature Algorithm: sha256WithRSAEncryption 97:9d:50:b8:23:5a:32:68:5b:a4:57:05:d1:55:82:e8:c9:82: bc:1e:e4:8a:94:97:21:6f:ed:32:5a:13:53:99:49:26:f8:11: 0b:18:32:fa:26:52:31:f8:39:70:d2:54:77:2f:f9:9e:2c:40: eb:32:09:b7:c9:74:9a:00:26:3b:15:a3:85:99:a8:de:83:e8: a3:ee:13:cb:a0:c3:6f:70:1d:94:0a:0b:d8:d0:91:cc:1f:50: 8f:cd:4b:24:a6:be:e7:37:7a:85:eb:6d:fb:72:a1:12:3a:1f: 75:6f:46:81:bd:14:ed:eb:fe:a8:fc:ee:a1:8e:77:02:d9:ba: 8b:00:61:45:97:cd:33:a9:0f:2b:da:bc:16:50:1d:ef:70:16: 58:92:63:50:61:12:94:b7:da:f5:cb:5a:f1:30:17:43:79:ec: 78:a2:fa:19:9d:39:29:ce:b5:73:ef:3e:b1:48:07:5f:98:49: 59:e8:38:fc:3d:cd:e9:a4:2e:32:b0:5b:2f:1f:80:ec:6b:56: f7:e0:93:9a:6b:19:bf:3d:68:5f:38:04:81:b6:53:77:50:e3: 64:0a:19:d5:be:57:7a:44:75:48:6b:96:c6:7d:cb:cd:34:6f: 08:20:52:3c:f4:8c:04:1b:14:cf:83:94:93:64:0c:cf:0f:c2: 38:c9:b2:8e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZp3+Ziw8ZyJUM7TE3nIabvKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyMzJkNDRkOWUwOGM4NzNkYjM1YzAyMTUxY2E0NGFlNTRi NGI4YWYwHhcNMjUxMTEyMTIxMDM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOTZhNGI2NTM1MDkxODQ1NmI3N2VkOGFjNzVmYmMyOTA3YTU3YzE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+CufAo8zYz3mtfIjFU2T3w60lRB jOMioRwEIiudipClojvtCW6Ec/+SHpW/1JSZSJxplz+NR9zkt5rwmGK3nYu2z5iJ B1WWWZ6C5Km2wmCrDWPWu3dKfhkh1I11HOv5ELDQ0Om8LIKtHe0k+KECmjSvnAMq 3pw64xFi5/tItg+MuxBQVHPN2e5jIaJyxkdntiVEC6DpQO+/mygVr392QTbTJUhg VAw7OZEfVfZf3X2i3C5PLohZGkfxdIZi4yYa7SSsaa6s5wQxIAwtl7PL+tYAck5h LHLYtiRUeFXy+cvNTYXhG/7EdiMRHDKRDeto/3E78z1l4IA6bzrNgVv+EQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBlqS2U1CRhFa3ftisdfvCkHpXwUMB8GA1UdIwQY MBaAFFIy1E2eCMhz2zXAIVHKRK5UtLivMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWpMVVRaNEl5SFBiTmNBaFVjcEVybFMwdUs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi84YjQwMGQtMWU4ZS00MGRhLWIxZDYt YTY1NDFjZWIxZTQzLzEvR1dwTFpUVUpHRVZyZC0yS3gxLThLUWVsZkJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi84YjQwMGQtMWU4ZS00MGRhLWIxZDYtYTY1NDFjZWIxZTQz LzEvVWpMVVRaNEl5SFBiTmNBaFVjcEVybFMwdUs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLQwIMA0E AgACMAcDBQMqEHFAMA0GCSqGSIb3DQEBCwUAA4IBAQCXnVC4I1oyaFukVwXRVYLo yYK8HuSKlJchb+0yWhNTmUkm+BELGDL6JlIx+Dlw0lR3L/meLEDrMgm3yXSaACY7 FaOFmajeg+ij7hPLoMNvcB2UCgvY0JHMH1CPzUskpr7nN3qF6237cqESOh91b0aB vRTt6/6o/O6hjncC2bqLAGFFl80zqQ8r2rwWUB3vcBZYkmNQYRKUt9r1y1rxMBdD eex4ovoZnTkpzrVz7z6xSAdfmElZ6Dj8Pc3ppC4ysFsvH4Dsa1b34JOaaxm/PWhf OASBtlN3UONkChnVvld6RHVIa5bGfcvNNG8IIFI89IwEGxTPg5STZAzPD8I4ybKO -----END CERTIFICATE-----Generated at Sat Dec 6 17:17:49 2025 by rpki-client