This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/GIHrVIViJFcoMcRYSuQORanWhE0.roa File: GIHrVIViJFcoMcRYSuQORanWhE0.roa (raw, json) Hash identifier: Xw1YJyhBQX1BH/gd6wFdXzyzKUO+qJJ2rPYoYPjD3gc= Subject key identifier: 18:81:EB:54:85:62:24:57:28:31:C4:58:4A:E4:0E:45:A9:D6:84:4D Certificate issuer: /CN=38203463eb944b25c65135ca47bdbdab646f3984 Certificate serial: 019B7B366ACAFB663E6076B75F1FE0437B27 Authority key identifier: 38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/GIHrVIViJFcoMcRYSuQORanWhE0.roa Signing time: Thu 01 Jan 2026 20:18:42 +0000 ROA not before: Thu 01 Jan 2026 20:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50389 IP address blocks: 2a00:8860:300::/40 maxlen: 64 2a00:8861:300::/40 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:6a:ca:fb:66:3e:60:76:b7:5f:1f:e0:43:7b:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38203463eb944b25c65135ca47bdbdab646f3984 Validity Not Before: Jan 1 20:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1881eb54856224572831c4584ae40e45a9d6844d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:96:a5:54:0a:70:89:17:4e:e0:ef:20:89:ac: 8d:3c:a9:6f:bf:cb:75:ea:6f:2d:fa:90:65:53:26: d9:b0:a7:87:e2:bb:20:be:14:2b:61:c2:e5:47:6a: 09:85:fc:b9:f6:73:34:c4:91:99:af:95:d8:ff:c7: 85:73:a4:f5:dd:9e:cf:83:42:92:37:e5:b4:4c:6e: 82:c2:ba:cc:0d:13:71:2f:6f:b9:39:cc:1b:b2:1d: c5:49:ee:3a:f1:a0:fe:7d:6c:6f:e1:f1:c0:e8:43: ef:79:50:6a:c8:45:80:a8:62:c3:2c:c6:25:52:5e: a5:88:d9:e4:06:27:c9:36:9d:d3:48:a0:63:3f:3a: 19:8a:07:04:e0:5e:9b:17:66:43:4c:92:7f:09:73: 00:43:1a:b1:d6:64:20:4b:8a:53:77:b7:d4:27:82: 55:d2:f7:9b:40:e2:06:e9:60:05:de:d5:38:91:c4: e5:b6:f9:63:28:f6:6f:7a:aa:e9:15:b4:5a:a7:0e: cb:f3:28:8d:ff:b5:47:00:0c:e4:68:43:f9:15:e8: 39:8e:86:46:ac:ab:2a:98:c2:93:25:44:c7:e9:1f: 1f:cd:d0:19:57:ec:3d:17:00:09:ba:73:0e:83:e4: 32:58:58:6f:f2:55:a7:51:aa:fb:f9:e5:8d:c4:ae: 41:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:81:EB:54:85:62:24:57:28:31:C4:58:4A:E4:0E:45:A9:D6:84:4D X509v3 Authority Key Identifier: keyid:38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/GIHrVIViJFcoMcRYSuQORanWhE0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:8860:300::/40 2a00:8861:300::/40 Signature Algorithm: sha256WithRSAEncryption 76:1f:3f:14:0f:93:2c:4a:23:ca:e2:bd:c3:55:1c:1c:54:f0: ed:f3:44:6c:2f:bc:5d:f7:04:ae:7e:05:48:9d:73:7e:8e:64: ae:bf:6a:b8:6f:a9:e7:b4:13:ff:d4:53:c7:c0:dc:f5:1d:84: c5:a6:a7:db:a9:a9:63:c2:8a:7f:1b:96:d7:f0:74:c6:35:78: 7b:ae:35:37:d6:68:a6:29:a7:24:6f:68:b0:2a:fb:c6:96:9e: a8:10:61:8b:57:c1:a7:9c:bc:82:05:e6:28:fa:4d:9f:33:e5: 54:06:ef:5a:09:52:02:7d:5b:ef:c7:26:6b:1d:46:eb:96:ae: 8b:44:8e:ac:30:a4:2f:81:6e:b3:6c:31:d5:cb:b7:82:c9:45: 98:1c:6c:22:0b:33:29:d1:44:ad:87:78:57:6a:e9:0d:6a:f1: 0a:a1:20:91:8e:db:30:0c:a1:31:9c:41:47:14:48:bd:b8:72: b0:14:53:2c:60:80:d8:b6:51:ee:7b:6d:89:92:6a:b6:63:e8: b0:80:90:15:04:86:93:21:93:2f:45:7f:75:24:d5:fe:ac:92: f0:36:28:3f:5c:26:07:1a:9a:ea:fa:f9:2f:75:5b:1a:15:de: af:a4:5a:b5:63:57:dc:dc:51:36:6b:6d:b4:16:2c:c2:e3:56: c3:13:0c:05 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt7NmrK+2Y+YHa3Xx/gQ3snMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MjAzNDYzZWI5NDRiMjVjNjUxMzVjYTQ3YmRiZGFiNjQ2 ZjM5ODQwHhcNMjYwMTAxMjAxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODgxZWI1NDg1NjIyNDU3MjgzMWM0NTg0YWU0MGU0NWE5ZDY4NDRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJalVApwiRdO4O8giayNPKlvv8t1 6m8t+pBlUybZsKeH4rsgvhQrYcLlR2oJhfy59nM0xJGZr5XY/8eFc6T13Z7Pg0KS N+W0TG6CwrrMDRNxL2+5Ocwbsh3FSe468aD+fWxv4fHA6EPveVBqyEWAqGLDLMYl Ul6liNnkBifJNp3TSKBjPzoZigcE4F6bF2ZDTJJ/CXMAQxqx1mQgS4pTd7fUJ4JV 0vebQOIG6WAF3tU4kcTltvljKPZveqrpFbRapw7L8yiN/7VHAAzkaEP5Feg5joZG rKsqmMKTJUTH6R8fzdAZV+w9FwAJunMOg+QyWFhv8lWnUar7+eWNxK5BFwIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFBiB61SFYiRXKDHEWErkDkWp1oRNMB8GA1UdIwQY MBaAFDggNGPrlEslxlE1yke9vatkbzmEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0NBMFktdVVTeVhHVVRYS1I3MjlxMlJ2T1lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8wYTI5ODQtYTg2OS00NDBkLWI1Nzgt NTg5MzUxNzliOTg1LzEvR0lIclZJVmlKRmNvTWNSWVN1UU9SYW5XaEUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi8wYTI5ODQtYTg2OS00NDBkLWI1NzgtNTg5MzUxNzliOTg1 LzEvT0NBMFktdVVTeVhHVVRYS1I3MjlxMlJ2T1lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYAKgCIYAMD BgAqAIhhAzANBgkqhkiG9w0BAQsFAAOCAQEAdh8/FA+TLEojyuK9w1UcHFTw7fNE bC+8XfcErn4FSJ1zfo5krr9quG+p57QT/9RTx8Dc9R2Exaan26mpY8KKfxuW1/B0 xjV4e641N9ZopimnJG9osCr7xpaeqBBhi1fBp5y8ggXmKPpNnzPlVAbvWglSAn1b 78cmax1G65aui0SOrDCkL4Fus2wx1cu3gslFmBxsIgszKdFErYd4V2rpDWrxCqEg kY7bMAyhMZxBRxRIvbhysBRTLGCA2LZR7nttiZJqtmPosICQFQSGkyGTL0V/dSTV /qyS8DYoP1wmBxqa6vr5L3VbGhXer6RatWNX3NxRNmtttBYswuNWwxMMBQ== -----END CERTIFICATE-----Generated at Mon Jan 26 02:14:08 2026 by rpki-client