This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/gTn5FRcz1WjHbFIUzmESIJRxMLs.roa File: gTn5FRcz1WjHbFIUzmESIJRxMLs.roa (raw, json) Hash identifier: 3+4+41QBJiY0s+CghRUoKRon+yDRu0Zt5Sbg75kXtZc= Subject key identifier: 81:39:F9:15:17:33:D5:68:C7:6C:52:14:CE:61:12:20:94:71:30:BB Certificate issuer: /CN=cbf23be1115f022aa269d9cea439bb8b492307e2 Certificate serial: 019B7C11D0380DBE9CDA0BDAD7575CEC6D6A Authority key identifier: CB:F2:3B:E1:11:5F:02:2A:A2:69:D9:CE:A4:39:BB:8B:49:23:07:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_I74RFfAiqiadnOpDm7i0kjB-I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/gTn5FRcz1WjHbFIUzmESIJRxMLs.roa Signing time: Fri 02 Jan 2026 00:18:20 +0000 ROA not before: Fri 02 Jan 2026 00:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3549 IP address blocks: 185.64.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/y_I74RFfAiqiadnOpDm7i0kjB-I.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/y_I74RFfAiqiadnOpDm7i0kjB-I.mft rsync://rpki.ripe.net/repository/DEFAULT/y_I74RFfAiqiadnOpDm7i0kjB-I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:d0:38:0d:be:9c:da:0b:da:d7:57:5c:ec:6d:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbf23be1115f022aa269d9cea439bb8b492307e2 Validity Not Before: Jan 2 00:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8139f9151733d568c76c5214ce611220947130bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a4:dc:30:34:15:b9:f3:0f:82:c1:18:9d:47: 26:f3:dd:9a:b0:0c:3a:c0:a5:31:f3:a0:70:b6:42: 15:c4:3a:c6:df:56:e1:ed:f0:ce:7f:ca:91:b1:09: 38:6b:b3:ac:28:35:5a:f3:a6:34:70:2d:aa:e5:f8: 14:10:a2:84:58:a2:4f:57:ea:9c:b2:e5:af:5d:21: 0c:78:0a:31:05:4c:ae:a1:74:73:3d:6a:e8:9b:7e: 69:22:9d:33:d9:ca:2b:bf:d3:f2:10:6e:1e:4c:1c: c8:5b:78:8a:f3:1a:d4:1c:f0:de:db:c5:d4:3b:db: 1d:76:b5:a7:ba:75:71:e9:5b:63:21:d9:5d:94:c8: 4f:73:e7:36:bd:c8:5c:e6:eb:2b:9d:4d:f0:f8:93: d4:4f:41:37:52:54:82:2c:ae:a1:31:7a:b2:83:a3: b0:59:a4:8a:da:9f:60:28:b6:6f:60:1f:9e:bc:ed: ee:e5:59:c5:23:82:5b:e6:01:d6:2c:81:c6:d1:b8: 64:22:f9:50:12:fa:e5:76:1f:55:5d:eb:69:12:cd: a4:44:ab:4e:1e:89:15:cb:57:96:27:1f:df:9e:e0: 60:89:af:17:40:81:6f:b7:db:89:9b:6f:4b:90:ea: 1e:b7:b9:3c:5a:27:85:72:a9:b4:18:4c:88:75:67: 6b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:39:F9:15:17:33:D5:68:C7:6C:52:14:CE:61:12:20:94:71:30:BB X509v3 Authority Key Identifier: keyid:CB:F2:3B:E1:11:5F:02:2A:A2:69:D9:CE:A4:39:BB:8B:49:23:07:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_I74RFfAiqiadnOpDm7i0kjB-I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/gTn5FRcz1WjHbFIUzmESIJRxMLs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/56313f-ec4e-4c1c-b388-be3252ac4980/1/y_I74RFfAiqiadnOpDm7i0kjB-I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.64.252.0/22 Signature Algorithm: sha256WithRSAEncryption 79:f5:f3:db:61:c3:8f:bf:e7:36:39:01:a5:6b:0c:ba:f9:e4: 97:e7:a3:31:77:61:d8:07:62:e5:b6:73:f4:a6:71:94:03:48: 5a:24:15:96:b6:bc:99:fe:b7:bf:ec:cd:3c:3a:39:29:53:b4: ff:5c:d9:b4:0f:b9:f1:e6:cb:3a:5c:c8:ff:c0:d9:fd:87:fd: 6a:62:47:9f:2f:a8:fb:ac:6d:62:69:d4:4f:b0:f1:30:11:73: fd:25:86:36:1d:9f:08:63:d3:86:6d:f2:9b:c0:36:77:2d:74: d5:b5:0e:b8:a1:a2:e5:e8:fb:8e:c0:f4:1e:90:08:98:be:a1: 8c:8d:83:cf:6a:da:a3:6c:fc:6b:b7:e2:e2:f3:9c:1a:05:50: 7d:d0:0f:8f:b3:9c:9b:ca:2a:ff:34:69:12:eb:a3:43:17:c3: c8:a0:da:09:81:3e:a6:91:79:2c:47:18:07:2a:a7:3a:2e:b5: e1:02:b9:3a:cd:2b:c5:ae:6c:b3:ab:e1:61:a5:66:34:09:32: aa:f3:71:2f:52:ef:3d:da:e0:29:d2:75:a2:ec:95:d7:42:88: ee:ec:aa:a6:b2:47:d9:f2:8e:6c:cb:18:17:be:82:a1:91:e1: 3e:80:85:1d:bd:54:f1:fa:22:96:5d:af:a2:f6:a2:70:71:21: 82:2a:46:1f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EdA4Db6c2gva11dc7G1qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiZjIzYmUxMTE1ZjAyMmFhMjY5ZDljZWE0MzliYjhiNDky MzA3ZTIwHhcNMjYwMTAyMDAxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MTM5ZjkxNTE3MzNkNTY4Yzc2YzUyMTRjZTYxMTIyMDk0NzEzMGJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvKTcMDQVufMPgsEYnUcm892asAw6 wKUx86BwtkIVxDrG31bh7fDOf8qRsQk4a7OsKDVa86Y0cC2q5fgUEKKEWKJPV+qc suWvXSEMeAoxBUyuoXRzPWrom35pIp0z2corv9PyEG4eTBzIW3iK8xrUHPDe28XU O9sddrWnunVx6VtjIdldlMhPc+c2vchc5usrnU3w+JPUT0E3UlSCLK6hMXqyg6Ow WaSK2p9gKLZvYB+evO3u5VnFI4Jb5gHWLIHG0bhkIvlQEvrldh9VXetpEs2kRKtO HokVy1eWJx/fnuBgia8XQIFvt9uJm29LkOoet7k8WieFcqm0GEyIdWdrrQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIE5+RUXM9Vox2xSFM5hEiCUcTC7MB8GA1UdIwQY MBaAFMvyO+ERXwIqomnZzqQ5u4tJIwfiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveV9JNzRSRmZBaXFpYWRuT3BEbTdpMGtqQi1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi81NjMxM2YtZWM0ZS00YzFjLWIzODgt YmUzMjUyYWM0OTgwLzEvZ1RuNUZSY3oxV2pIYkZJVXptRVNJSlJ4TUxzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi81NjMxM2YtZWM0ZS00YzFjLWIzODgtYmUzMjUyYWM0OTgw LzEveV9JNzRSRmZBaXFpYWRuT3BEbTdpMGtqQi1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuUD8MA0G CSqGSIb3DQEBCwUAA4IBAQB59fPbYcOPv+c2OQGlawy6+eSX56Mxd2HYB2LltnP0 pnGUA0haJBWWtryZ/re/7M08OjkpU7T/XNm0D7nx5ss6XMj/wNn9h/1qYkefL6j7 rG1iadRPsPEwEXP9JYY2HZ8IY9OGbfKbwDZ3LXTVtQ64oaLl6PuOwPQekAiYvqGM jYPPatqjbPxrt+Li85waBVB90A+Ps5ybyir/NGkS66NDF8PIoNoJgT6mkXksRxgH Kqc6LrXhArk6zSvFrmyzq+FhpWY0CTKq83EvUu892uAp0nWi7JXXQoju7KqmskfZ 8o5syxgXvoKhkeE+gIUdvVTx+iKWXa+i9qJwcSGCKkYf -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:24 2026 by rpki-client