This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/c4e7e9-f6be-41a3-a459-195389330edf/1/GxL1bkGYj5TpwyAPdtxx0FvajMU.roa File: GxL1bkGYj5TpwyAPdtxx0FvajMU.roa (raw, json) Hash identifier: ogZ8BN+BMOpd9w0udeJqFgh7emQe3X29bu9z4US/2NU= Subject key identifier: 1B:12:F5:6E:41:98:8F:94:E9:C3:20:0F:76:DC:71:D0:5B:DA:8C:C5 Certificate issuer: /CN=bf817dc8552df3610ffc45441b3f81464e489dc8 Certificate serial: 019B7E37B4F4C1464563E7BECA79E8167B27 Authority key identifier: BF:81:7D:C8:55:2D:F3:61:0F:FC:45:44:1B:3F:81:46:4E:48:9D:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4F9yFUt82EP_EVEGz-BRk5Incg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/c4e7e9-f6be-41a3-a459-195389330edf/1/GxL1bkGYj5TpwyAPdtxx0FvajMU.roa Signing time: Fri 02 Jan 2026 10:18:58 +0000 ROA not before: Fri 02 Jan 2026 10:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39029 IP address blocks: 195.88.54.0/23 maxlen: 24 2001:67c:21e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/c4e7e9-f6be-41a3-a459-195389330edf/1/v4F9yFUt82EP_EVEGz-BRk5Incg.crl rsync://rpki.ripe.net/repository/DEFAULT/96/c4e7e9-f6be-41a3-a459-195389330edf/1/v4F9yFUt82EP_EVEGz-BRk5Incg.mft rsync://rpki.ripe.net/repository/DEFAULT/v4F9yFUt82EP_EVEGz-BRk5Incg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:b4:f4:c1:46:45:63:e7:be:ca:79:e8:16:7b:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf817dc8552df3610ffc45441b3f81464e489dc8 Validity Not Before: Jan 2 10:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1b12f56e41988f94e9c3200f76dc71d05bda8cc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:78:5c:e8:83:94:34:aa:04:09:36:34:a1:eb: a2:19:e1:b6:ad:a1:18:d6:bf:55:74:c3:a3:20:59: be:26:34:82:7e:ba:16:20:1a:7a:9e:a2:e6:1e:45: f5:20:2b:74:f1:ed:25:2f:ba:66:8f:ce:73:5e:70: 8c:46:7c:32:a2:47:2d:4e:2a:aa:af:2c:de:44:2a: b8:c7:62:5f:4b:0b:33:1e:c6:e2:ca:ec:24:a7:bb: b3:87:af:01:fb:02:5b:4e:81:f1:51:9a:52:ed:87: 82:8c:eb:03:e3:b7:76:c8:21:37:b1:c5:9d:4a:93: b5:6a:41:3a:19:6f:fb:46:bb:44:32:ca:75:bb:29: 2a:77:5c:d6:2a:be:e3:4d:d7:93:ca:b6:e8:11:59: d9:a1:b6:e8:35:c8:f7:37:0a:7e:42:cb:4e:7e:fd: 49:f9:ae:4c:f1:8f:d7:ff:cf:e6:7a:b5:7c:16:55: 47:8b:0d:72:e0:df:17:be:5a:df:d1:9f:e2:14:1c: a7:8c:cb:2a:10:d7:79:f7:cf:00:27:ac:29:5e:70: 2c:20:f7:82:da:28:0b:e0:1b:0e:95:04:45:31:79: bd:bc:a5:34:a6:1d:70:25:ab:3a:96:94:0b:dd:63: 48:5b:37:88:f6:79:e0:83:d0:a3:28:76:9c:0c:e0: 59:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:12:F5:6E:41:98:8F:94:E9:C3:20:0F:76:DC:71:D0:5B:DA:8C:C5 X509v3 Authority Key Identifier: keyid:BF:81:7D:C8:55:2D:F3:61:0F:FC:45:44:1B:3F:81:46:4E:48:9D:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4F9yFUt82EP_EVEGz-BRk5Incg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/c4e7e9-f6be-41a3-a459-195389330edf/1/GxL1bkGYj5TpwyAPdtxx0FvajMU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/96/c4e7e9-f6be-41a3-a459-195389330edf/1/v4F9yFUt82EP_EVEGz-BRk5Incg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.88.54.0/23 IPv6: 2001:67c:21e0::/48 Signature Algorithm: sha256WithRSAEncryption 45:8e:b5:ad:8a:e5:19:4b:bf:28:9f:64:0d:40:91:ed:78:a1: 34:87:47:f4:fe:08:62:10:5a:d4:0b:b4:ae:6a:b3:aa:5f:58: 0e:4f:3d:3e:c1:37:ca:0a:e6:61:62:93:24:da:f0:e7:60:bd: ef:6a:b6:b6:43:d0:df:ea:b8:e7:88:c6:2c:44:8d:5b:37:7c: c2:1b:72:02:2e:0b:ff:54:65:d5:21:b0:6d:7d:a0:20:94:46: f6:82:41:12:26:11:7a:19:60:dc:86:40:5f:41:de:7f:54:26: 39:5b:37:3e:74:2a:b2:4a:7d:b0:48:9a:6a:d9:a6:d5:00:fd: 79:0d:25:11:5e:ee:79:bc:21:fc:bc:f3:42:dc:62:43:0a:62: fc:ca:b7:6c:3a:2a:65:09:6f:7d:51:4f:c2:5b:95:25:d8:4a: 53:19:54:20:37:3a:a7:28:76:6e:98:27:47:f1:f2:49:e1:86: 7f:b0:97:76:2f:ca:07:27:93:c2:1f:3d:7b:fb:07:41:c8:7d: 01:8f:8e:1f:51:55:53:5c:e9:dd:b8:25:60:eb:84:be:5a:30: a4:1c:82:d5:60:34:09:f9:67:d2:43:8d:bc:61:64:65:e9:50: 7d:01:ac:84:e9:cb:a4:6a:ca:ee:01:59:56:2a:4e:af:78:b6: e3:9c:ef:b7 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+N7T0wUZFY+e+ynnoFnsnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmODE3ZGM4NTUyZGYzNjEwZmZjNDU0NDFiM2Y4MTQ2NGU0 ODlkYzgwHhcNMjYwMTAyMTAxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYjEyZjU2ZTQxOTg4Zjk0ZTljMzIwMGY3NmRjNzFkMDViZGE4Y2M1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXhc6IOUNKoECTY0oeuiGeG2raEY 1r9VdMOjIFm+JjSCfroWIBp6nqLmHkX1ICt08e0lL7pmj85zXnCMRnwyokctTiqq ryzeRCq4x2JfSwszHsbiyuwkp7uzh68B+wJbToHxUZpS7YeCjOsD47d2yCE3scWd SpO1akE6GW/7RrtEMsp1uykqd1zWKr7jTdeTyrboEVnZobboNcj3Nwp+QstOfv1J +a5M8Y/X/8/merV8FlVHiw1y4N8Xvlrf0Z/iFBynjMsqENd5988AJ6wpXnAsIPeC 2igL4BsOlQRFMXm9vKU0ph1wJas6lpQL3WNIWzeI9nngg9CjKHacDOBZawIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFBsS9W5BmI+U6cMgD3bccdBb2ozFMB8GA1UdIwQY MBaAFL+BfchVLfNhD/xFRBs/gUZOSJ3IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjRGOXlGVXQ4MkVQX0VWRUd6LUJSazVJbmNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni9jNGU3ZTktZjZiZS00MWEzLWE0NTkt MTk1Mzg5MzMwZWRmLzEvR3hMMWJrR1lqNVRwd3lBUGR0eHgwRnZhak1VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ni9jNGU3ZTktZjZiZS00MWEzLWE0NTktMTk1Mzg5MzMwZWRm LzEvdjRGOXlGVXQ4MkVQX0VWRUd6LUJSazVJbmNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBw1g2MA8E AgACMAkDBwAgAQZ8IeAwDQYJKoZIhvcNAQELBQADggEBAEWOta2K5RlLvyifZA1A ke14oTSHR/T+CGIQWtQLtK5qs6pfWA5PPT7BN8oK5mFikyTa8Odgve9qtrZD0N/q uOeIxixEjVs3fMIbcgIuC/9UZdUhsG19oCCURvaCQRImEXoZYNyGQF9B3n9UJjlb Nz50KrJKfbBImmrZptUA/XkNJRFe7nm8Ify880LcYkMKYvzKt2w6KmUJb31RT8Jb lSXYSlMZVCA3Oqcodm6YJ0fx8knhhn+wl3Yvygcnk8IfPXv7B0HIfQGPjh9RVVNc 6d24JWDrhL5aMKQcgtVgNAn5Z9JDjbxhZGXpUH0BrITpy6Rqyu4BWVYqTq94tuOc 77c= -----END CERTIFICATE-----Generated at Mon Jan 26 08:40:19 2026 by rpki-client