This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/951b18-5244-4b2b-a22d-ed5f00c95067/1/gb5xNbtAgkWQqXbG8T17bUVHmq0.roa File: gb5xNbtAgkWQqXbG8T17bUVHmq0.roa (raw, json) Hash identifier: /1dOfhZa9TVQea6+UHGzLpaS8/QWnu27TA27EyKf3K4= Subject key identifier: 81:BE:71:35:BB:40:82:45:90:A9:76:C6:F1:3D:7B:6D:45:47:9A:AD Certificate issuer: /CN=20fa4eddb21f0901923c189f41e8f5c749a65829 Certificate serial: 019B7AC84E04510FF93A73B98E2F3FEA4FC2 Authority key identifier: 20:FA:4E:DD:B2:1F:09:01:92:3C:18:9F:41:E8:F5:C7:49:A6:58:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPpO3bIfCQGSPBifQej1x0mmWCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/951b18-5244-4b2b-a22d-ed5f00c95067/1/gb5xNbtAgkWQqXbG8T17bUVHmq0.roa Signing time: Thu 01 Jan 2026 18:18:26 +0000 ROA not before: Thu 01 Jan 2026 18:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43317 IP address blocks: 94.242.0.0/23 maxlen: 23 2a00:1838::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/951b18-5244-4b2b-a22d-ed5f00c95067/1/IPpO3bIfCQGSPBifQej1x0mmWCk.crl rsync://rpki.ripe.net/repository/DEFAULT/74/951b18-5244-4b2b-a22d-ed5f00c95067/1/IPpO3bIfCQGSPBifQej1x0mmWCk.mft rsync://rpki.ripe.net/repository/DEFAULT/IPpO3bIfCQGSPBifQej1x0mmWCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:4e:04:51:0f:f9:3a:73:b9:8e:2f:3f:ea:4f:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20fa4eddb21f0901923c189f41e8f5c749a65829 Validity Not Before: Jan 1 18:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=81be7135bb40824590a976c6f13d7b6d45479aad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5c:e5:f4:34:57:aa:ad:29:9b:fc:da:4e:20: 8f:d3:b6:91:93:46:e5:d3:f3:23:8e:fc:d0:45:4b: bd:4c:6c:67:93:b3:63:87:32:10:5d:23:2a:12:f6: f2:e3:4b:b8:13:d4:59:1b:15:fb:a0:b7:18:77:3f: d1:df:72:08:59:d7:13:02:9c:29:b7:77:5b:fa:55: c8:9e:2b:01:09:a0:33:d5:16:17:9b:50:e4:b9:29: a8:f0:47:36:61:ec:3c:cc:32:8f:e9:26:ba:eb:8c: 7c:18:e8:d3:09:0b:ba:53:27:2a:20:21:61:0b:d8: a3:eb:d7:c7:d3:7e:93:ec:92:50:e3:ae:1c:60:4c: 79:02:08:a6:62:84:e3:d4:74:12:0a:53:50:4b:4b: 56:c2:97:6e:62:93:5f:29:fa:e5:a0:af:9b:f1:36: 7c:83:03:ac:bd:67:2b:37:84:77:83:7f:36:0b:cd: 41:d7:fd:71:aa:1b:c9:74:7c:5b:bc:4b:72:a7:cc: 04:16:b2:40:de:56:78:70:01:ee:52:37:cb:ca:51: 5b:41:9c:4f:17:f4:b8:6c:e5:5d:5e:6c:4a:f3:a5: f0:c3:19:26:a8:3b:4e:02:f7:ec:10:1d:a8:ff:90: 08:2e:95:85:71:56:7d:5a:77:fa:4d:3a:77:db:9b: 50:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:BE:71:35:BB:40:82:45:90:A9:76:C6:F1:3D:7B:6D:45:47:9A:AD X509v3 Authority Key Identifier: keyid:20:FA:4E:DD:B2:1F:09:01:92:3C:18:9F:41:E8:F5:C7:49:A6:58:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPpO3bIfCQGSPBifQej1x0mmWCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/951b18-5244-4b2b-a22d-ed5f00c95067/1/gb5xNbtAgkWQqXbG8T17bUVHmq0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/951b18-5244-4b2b-a22d-ed5f00c95067/1/IPpO3bIfCQGSPBifQej1x0mmWCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.242.0.0/23 IPv6: 2a00:1838::/32 Signature Algorithm: sha256WithRSAEncryption 70:51:7a:3d:c1:ea:ec:cc:de:b1:44:fc:d0:71:d0:10:f8:73: 1a:7f:83:c1:b6:86:de:de:7a:a0:bc:bb:a4:3f:ad:1f:6f:e5: cf:95:69:b4:bf:2b:42:f9:0b:25:22:b5:8d:ed:03:83:7b:4b: b3:05:b1:97:98:e4:e8:af:69:09:37:fd:aa:71:47:79:b5:83: d7:45:96:33:d9:bb:15:fe:f2:1b:ef:6c:3d:65:6e:0b:01:f8: e7:f6:da:99:17:81:41:f9:56:d7:48:a4:1b:d1:63:6f:e6:37: b2:eb:62:ad:15:13:8f:42:29:f4:ce:dd:57:4d:f1:c6:7e:a4: 84:c5:f3:36:55:74:fe:05:a1:9d:35:2d:58:5e:04:ce:ea:a4: bb:1f:97:49:a0:c1:56:3f:49:6c:e5:01:99:a3:6e:09:b8:4f: 3b:96:1b:12:ce:56:fb:18:e4:e0:0d:fe:30:5f:55:fb:7e:91: 1b:89:3c:1d:24:68:54:43:7b:be:ec:09:2c:96:e6:41:c4:b3: 0a:4a:5f:23:4e:57:10:40:a1:88:d8:83:14:21:cd:b5:22:91: 33:fa:f6:40:dc:8a:ad:73:1d:8e:7c:99:b0:4a:4b:11:44:e0: f4:1e:56:83:b4:37:d9:5b:55:f2:2c:2c:63:70:a2:39:6e:ac: ea:fa:b8:d0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6yE4EUQ/5OnO5ji8/6k/CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZmE0ZWRkYjIxZjA5MDE5MjNjMTg5ZjQxZThmNWM3NDlh NjU4MjkwHhcNMjYwMTAxMTgxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MWJlNzEzNWJiNDA4MjQ1OTBhOTc2YzZmMTNkN2I2ZDQ1NDc5YWFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslzl9DRXqq0pm/zaTiCP07aRk0bl 0/MjjvzQRUu9TGxnk7NjhzIQXSMqEvby40u4E9RZGxX7oLcYdz/R33IIWdcTApwp t3db+lXInisBCaAz1RYXm1DkuSmo8Ec2Yew8zDKP6Sa664x8GOjTCQu6UycqICFh C9ij69fH036T7JJQ464cYEx5AgimYoTj1HQSClNQS0tWwpduYpNfKfrloK+b8TZ8 gwOsvWcrN4R3g382C81B1/1xqhvJdHxbvEtyp8wEFrJA3lZ4cAHuUjfLylFbQZxP F/S4bOVdXmxK86XwwxkmqDtOAvfsEB2o/5AILpWFcVZ9Wnf6TTp325tQTQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIG+cTW7QIJFkKl2xvE9e21FR5qtMB8GA1UdIwQY MBaAFCD6Tt2yHwkBkjwYn0Ho9cdJplgpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVBwTzNiSWZDUUdTUEJpZlFlajF4MG1tV0NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC85NTFiMTgtNTI0NC00YjJiLWEyMmQt ZWQ1ZjAwYzk1MDY3LzEvZ2I1eE5idEFna1dRcVhiRzhUMTdiVVZIbXEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC85NTFiMTgtNTI0NC00YjJiLWEyMmQtZWQ1ZjAwYzk1MDY3 LzEvSVBwTzNiSWZDUUdTUEJpZlFlajF4MG1tV0NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBXvIAMA0E AgACMAcDBQAqABg4MA0GCSqGSIb3DQEBCwUAA4IBAQBwUXo9werszN6xRPzQcdAQ +HMaf4PBtobe3nqgvLukP60fb+XPlWm0vytC+QslIrWN7QODe0uzBbGXmOTor2kJ N/2qcUd5tYPXRZYz2bsV/vIb72w9ZW4LAfjn9tqZF4FB+VbXSKQb0WNv5jey62Kt FROPQin0zt1XTfHGfqSExfM2VXT+BaGdNS1YXgTO6qS7H5dJoMFWP0ls5QGZo24J uE87lhsSzlb7GOTgDf4wX1X7fpEbiTwdJGhUQ3u+7AksluZBxLMKSl8jTlcQQKGI 2IMUIc21IpEz+vZA3Iqtcx2OfJmwSksRROD0HlaDtDfZW1XyLCxjcKI5bqzq+rjQ -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:11 2026 by rpki-client