This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/Gsh7wu04p9ODvC2NV_A1Roh2Qd8.roa File: Gsh7wu04p9ODvC2NV_A1Roh2Qd8.roa (raw, json) Hash identifier: kD9fJwgoxSXQISK6GThZF24PkPBOrX99sD40C0cTkOU= Subject key identifier: 1A:C8:7B:C2:ED:38:A7:D3:83:BC:2D:8D:57:F0:35:46:88:76:41:DF Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506 Certificate serial: 019B77C711D037A3D64BB24719FFD1A2BF49 Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/Gsh7wu04p9ODvC2NV_A1Roh2Qd8.roa Signing time: Thu 01 Jan 2026 04:18:13 +0000 ROA not before: Thu 01 Jan 2026 04:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28771 IP address blocks: 2a01:190:167b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.mft rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:11:d0:37:a3:d6:4b:b2:47:19:ff:d1:a2:bf:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506 Validity Not Before: Jan 1 04:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ac87bc2ed38a7d383bc2d8d57f03546887641df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:99:f7:a1:87:5b:92:13:39:b0:74:0d:8b:a9: 53:68:58:26:de:f4:13:35:5f:5a:76:f2:7f:fa:bf: 4c:27:57:f7:49:56:e3:fd:fd:36:d9:b7:64:83:86: aa:6e:f8:10:cf:aa:b5:e7:d5:09:a8:5a:19:49:6c: 8e:19:f2:8f:7d:98:15:68:56:14:5c:c3:a2:1e:2b: dc:1c:b9:70:1f:60:c0:fa:16:cd:ab:30:35:e5:9b: d1:d1:6a:53:e7:3e:38:2f:95:86:6b:0d:24:ff:bb: 45:92:b9:6a:32:8d:f3:ef:f8:f1:71:ee:bd:32:ef: e3:f3:75:8e:17:a9:c6:30:0d:73:0c:4a:fb:1c:6b: 05:82:42:73:39:8e:23:ef:e2:bf:63:fc:0f:20:29: 00:87:d6:8e:16:de:80:d7:d6:fc:e1:e1:58:6b:cc: 0f:de:84:70:20:ea:88:a3:9f:e7:ce:e2:eb:f0:f2: 59:a8:f9:d9:66:be:b7:88:b5:84:56:e0:e6:dc:23: 71:18:23:8b:00:51:5c:36:bb:2d:72:49:ad:c4:d2: 6c:da:ab:57:d9:11:be:d8:a4:55:21:eb:de:21:c3: 52:1b:b0:ac:91:6b:26:cb:c5:28:6b:b3:40:3c:01: 92:43:93:ab:a6:d6:66:30:67:a7:4a:87:2d:df:cb: 9b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C8:7B:C2:ED:38:A7:D3:83:BC:2D:8D:57:F0:35:46:88:76:41:DF X509v3 Authority Key Identifier: keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/Gsh7wu04p9ODvC2NV_A1Roh2Qd8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:190:167b::/48 Signature Algorithm: sha256WithRSAEncryption c2:77:a5:d5:8d:28:f6:37:f6:64:34:1a:67:ab:ba:86:ae:2a: 09:d9:f0:48:df:25:75:53:02:6d:d5:f2:d0:1a:51:b2:3c:42: 04:4d:9a:ad:d0:78:1e:26:bf:72:ac:9f:ee:70:7e:bb:13:1b: 92:35:2c:eb:78:b9:b0:0a:4d:6e:3b:d6:ba:0b:9e:b5:8a:25: 77:84:5f:95:65:79:7b:ca:7e:07:aa:8d:37:80:2c:3d:29:a8: 2b:86:40:64:9e:a8:74:7c:ac:e4:95:0b:54:44:76:e3:e1:2b: 20:1f:4b:52:dd:c2:3d:03:a4:b6:34:66:c5:ad:38:5d:63:2a: 43:3e:71:36:31:2d:6a:b8:2c:53:69:0f:7e:b3:4d:52:18:39: d3:0d:b0:c9:0d:23:40:45:98:2a:96:9b:61:77:c7:2f:67:08: ec:d5:73:8a:fb:5f:3a:b6:4a:f8:d9:43:ba:ad:bf:06:cb:f6: 7c:00:70:0e:33:49:a7:d4:ba:58:7b:b1:36:10:bb:d8:78:0c: 97:a9:ad:52:4e:2b:70:34:4e:9e:d0:c5:a1:e2:eb:3f:fc:65: 1c:8c:79:94:08:4e:76:28:d1:66:89:6b:5c:c9:34:c3:a5:19: 68:69:86:70:a0:26:a5:ee:65:12:17:ab:97:6d:6f:3e:f9:4a: 55:43:3d:f3 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3xxHQN6PWS7JHGf/Ror9JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2NzNkODQ5YjdkNTA0NzM3NmQ1N2U2Zjc5NmYwMDE4Yjcw YjQ1MDYwHhcNMjYwMTAxMDQxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYWM4N2JjMmVkMzhhN2QzODNiYzJkOGQ1N2YwMzU0Njg4NzY0MWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmpn3oYdbkhM5sHQNi6lTaFgm3vQT NV9advJ/+r9MJ1f3SVbj/f022bdkg4aqbvgQz6q159UJqFoZSWyOGfKPfZgVaFYU XMOiHivcHLlwH2DA+hbNqzA15ZvR0WpT5z44L5WGaw0k/7tFkrlqMo3z7/jxce69 Mu/j83WOF6nGMA1zDEr7HGsFgkJzOY4j7+K/Y/wPICkAh9aOFt6A19b84eFYa8wP 3oRwIOqIo5/nzuLr8PJZqPnZZr63iLWEVuDm3CNxGCOLAFFcNrstckmtxNJs2qtX 2RG+2KRVIeveIcNSG7CskWsmy8Uoa7NAPAGSQ5OrptZmMGenSoct38ubYwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFBrIe8LtOKfTg7wtjVfwNUaIdkHfMB8GA1UdIwQY MBaAFNZz2Em31QRzdtV+b3lvABi3C0UGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMW5QWVNiZlZCSE4yMVg1dmVXOEFHTGNMUlFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8yZWNlNjItMWQ4Yy00NTBjLTkxZTgt OGVlYjc1N2NmNTQ1LzEvR3NoN3d1MDRwOU9EdkMyTlZfQTFSb2gyUWQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS8yZWNlNjItMWQ4Yy00NTBjLTkxZTgtOGVlYjc1N2NmNTQ1 LzEvMW5QWVNiZlZCSE4yMVg1dmVXOEFHTGNMUlFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEBkBZ7 MA0GCSqGSIb3DQEBCwUAA4IBAQDCd6XVjSj2N/ZkNBpnq7qGrioJ2fBI3yV1UwJt 1fLQGlGyPEIETZqt0HgeJr9yrJ/ucH67ExuSNSzreLmwCk1uO9a6C561iiV3hF+V ZXl7yn4Hqo03gCw9KagrhkBknqh0fKzklQtURHbj4SsgH0tS3cI9A6S2NGbFrThd YypDPnE2MS1quCxTaQ9+s01SGDnTDbDJDSNARZgqlpthd8cvZwjs1XOK+186tkr4 2UO6rb8Gy/Z8AHAOM0mn1LpYe7E2ELvYeAyXqa1STitwNE6e0MWh4us//GUcjHmU CE52KNFmiWtcyTTDpRloaYZwoCal7mUSF6uXbW8++UpVQz3z -----END CERTIFICATE-----Generated at Mon Jan 26 02:43:59 2026 by rpki-client