This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/gQLOSDe6bZCk8wDTKoJn2-ZTmUE.roa File: gQLOSDe6bZCk8wDTKoJn2-ZTmUE.roa (raw, json) Hash identifier: re6Ygf6gSVSu5DzyXUoiaLvQGBgaOtSi43lQvwKzPcs= Subject key identifier: 81:02:CE:48:37:BA:6D:90:A4:F3:00:D3:2A:82:67:DB:E6:53:99:41 Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7 Certificate serial: 019B7F836B3E46746FAE53E1AED9D110700E Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/gQLOSDe6bZCk8wDTKoJn2-ZTmUE.roa Signing time: Fri 02 Jan 2026 16:21:17 +0000 ROA not before: Fri 02 Jan 2026 16:21:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201776 IP address blocks: 31.40.132.0/24 maxlen: 24 31.40.137.0/24 maxlen: 24 31.40.138.0/24 maxlen: 24 31.40.140.0/24 maxlen: 24 31.40.143.0/24 maxlen: 24 31.40.151.0/24 maxlen: 24 31.40.153.0/24 maxlen: 24 31.40.162.0/23 maxlen: 23 31.40.165.0/24 maxlen: 24 31.40.167.0/24 maxlen: 24 31.40.168.0/23 maxlen: 23 31.40.170.0/23 maxlen: 23 31.40.172.0/23 maxlen: 23 31.40.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.mft rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:6b:3e:46:74:6f:ae:53:e1:ae:d9:d1:10:70:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7 Validity Not Before: Jan 2 16:21:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8102ce4837ba6d90a4f300d32a8267dbe6539941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2d:e9:21:c8:7b:aa:79:34:b2:0f:b9:d9:d0: 38:b3:b7:85:99:32:2d:b7:bf:3d:d4:31:7c:11:1e: 8b:95:fa:a0:c2:87:ec:2e:d4:d7:65:6f:87:4d:f4: 9c:d2:8d:13:e0:4f:31:4a:9d:09:12:b0:18:ba:58: 22:b7:f2:88:f3:4a:c8:a0:4a:33:2e:ab:01:fd:3f: cd:fb:75:10:25:1d:42:d3:95:e7:03:36:eb:9a:e2: 16:d1:a8:fc:8a:6e:1e:f4:c8:5b:38:fa:15:f3:aa: 45:50:44:d0:f2:71:16:28:1f:86:f4:8d:3d:5a:50: 96:eb:2b:d7:ad:32:28:91:33:90:9a:31:f9:b7:65: 66:7c:40:29:35:25:ca:23:61:7c:d7:2a:69:33:54: b8:0e:f1:8a:da:d6:84:cd:2b:03:a2:d3:fb:96:5d: 86:0c:89:81:87:bd:d5:ee:a1:03:08:25:58:77:25: 2a:5c:fa:55:e0:67:cb:9b:5c:08:1b:5c:8f:ca:fa: 7e:46:8e:ad:12:e4:f9:1d:f4:e8:81:8c:12:f8:f6: d7:d1:4b:6c:7a:30:c4:12:6e:f9:ad:e4:3c:a4:d9: e2:4a:b7:e3:ef:c7:c5:c5:1f:c4:86:be:50:1c:c2: 08:be:a2:8b:9c:3a:d4:93:91:6c:86:d9:fc:e7:0a: 3d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:02:CE:48:37:BA:6D:90:A4:F3:00:D3:2A:82:67:DB:E6:53:99:41 X509v3 Authority Key Identifier: keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/gQLOSDe6bZCk8wDTKoJn2-ZTmUE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.40.132.0/24 31.40.137.0-31.40.138.255 31.40.140.0/24 31.40.143.0/24 31.40.151.0/24 31.40.153.0/24 31.40.162.0/23 31.40.165.0/24 31.40.167.0-31.40.173.255 31.40.178.0/23 Signature Algorithm: sha256WithRSAEncryption 10:ee:69:a6:ba:67:84:38:27:ab:37:91:a1:92:25:9b:1d:f8: 8c:3e:04:c1:53:21:88:ba:bb:4b:c0:d8:95:c2:0f:1b:c8:d8: fd:ce:f9:a8:3a:7f:4c:bd:48:2d:cd:0a:2d:8b:1b:0e:3c:cf: 3c:89:25:cd:7d:eb:6f:47:e2:4b:54:57:89:c1:a8:1c:57:e7: ae:b2:57:7d:e7:15:dc:d9:d8:13:c4:2e:ca:8b:f6:18:3f:c8: 96:4e:6b:a4:0b:33:90:5a:a4:7c:0b:d2:4e:50:62:9d:2e:a7: da:e9:4a:b9:19:35:97:b0:d4:8b:a8:fa:fe:53:39:bd:22:01: d4:b4:3b:f6:c2:02:ff:41:e7:19:e5:6a:64:cc:15:ec:41:c9: 53:ea:55:5b:a7:9b:3b:3e:1e:24:4f:e8:01:d9:77:bc:f5:e1: 1c:b7:fb:fc:0c:2a:38:4d:26:b5:b2:2c:49:b4:b3:b9:69:cc: 07:c1:2d:c6:3b:ef:a5:5e:b3:ba:95:6c:f4:3a:74:e8:a4:3f: d2:e6:4b:93:da:69:48:0b:f0:db:3e:c2:6f:22:03:9f:2a:c5: f4:a3:fb:f6:bc:e5:fd:eb:b4:8e:c1:15:8f:a7:a7:35:d6:ae: 6a:0d:34:1c:77:82:58:fc:f2:41:14:f9:c7:71:c8:fa:c7:33: 30:aa:57:51 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgISAZt/g2s+RnRvrlPhrtnREHAOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYWY1YzJlNWVkYzE5NzgzNGQwN2YzNDU5NjJiMDc0NWJl ZTY2ZDcwHhcNMjYwMTAyMTYyMTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MTAyY2U0ODM3YmE2ZDkwYTRmMzAwZDMyYTgyNjdkYmU2NTM5OTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1y3pIch7qnk0sg+52dA4s7eFmTIt t7891DF8ER6LlfqgwofsLtTXZW+HTfSc0o0T4E8xSp0JErAYulgit/KI80rIoEoz LqsB/T/N+3UQJR1C05XnAzbrmuIW0aj8im4e9MhbOPoV86pFUETQ8nEWKB+G9I09 WlCW6yvXrTIokTOQmjH5t2VmfEApNSXKI2F81yppM1S4DvGK2taEzSsDotP7ll2G DImBh73V7qEDCCVYdyUqXPpV4GfLm1wIG1yPyvp+Ro6tEuT5HfTogYwS+PbX0Uts ejDEEm75reQ8pNniSrfj78fFxR/Ehr5QHMIIvqKLnDrUk5Fshtn85wo9FQIDAQAB o4ICTzCCAkswHQYDVR0OBBYEFIECzkg3um2QpPMA0yqCZ9vmU5lBMB8GA1UdIwQY MBaAFB6vXC5e3Bl4NNB/NFlisHRb7mbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODIt NGEzNGMxYmJhYjJiLzEvZ1FMT1NEZTZiWkNrOHdEVEtvSm4yLVpUbVVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODItNGEzNGMxYmJhYjJi LzEvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGUGCCsGAQUFBwEHAQH/BFYwVDBSBAIAATBMAwQAHyiEMAwD BAAfKIkDBAAfKIoDBAAfKIwDBAAfKI8DBAAfKJcDBAAfKJkDBAEfKKIDBAAfKKUw DAMEAB8opwMEAR8orAMEAR8osjANBgkqhkiG9w0BAQsFAAOCAQEAEO5pprpnhDgn qzeRoZIlmx34jD4EwVMhiLq7S8DYlcIPG8jY/c75qDp/TL1ILc0KLYsbDjzPPIkl zX3rb0fiS1RXicGoHFfnrrJXfecV3NnYE8Quyov2GD/Ilk5rpAszkFqkfAvSTlBi nS6n2ulKuRk1l7DUi6j6/lM5vSIB1LQ79sIC/0HnGeVqZMwV7EHJU+pVW6ebOz4e JE/oAdl3vPXhHLf7/AwqOE0mtbIsSbSzuWnMB8EtxjvvpV6zupVs9Dp06KQ/0uZL k9ppSAvw2z7CbyIDnyrF9KP79rzl/eu0jsEVj6enNdauag00HHeCWPzyQRT5x3HI +sczMKpXUQ== -----END CERTIFICATE-----Generated at Mon Jan 26 04:38:53 2026 by rpki-client