This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/Gz0_KsyuxF_Mtua-1HhemOuZcQg.roa File: Gz0_KsyuxF_Mtua-1HhemOuZcQg.roa (raw, json) Hash identifier: IbzaI7YpmiRgkQae6jLRwhProyJ2PzVbvEcbQ3Zj2TA= Subject key identifier: 1B:3D:3F:2A:CC:AE:C4:5F:CC:B6:E6:BE:D4:78:5E:98:EB:99:71:08 Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a Certificate serial: 019B77C6DB02C975D4CD1A8D080FEB11A412 Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/Gz0_KsyuxF_Mtua-1HhemOuZcQg.roa Signing time: Thu 01 Jan 2026 04:17:59 +0000 ROA not before: Thu 01 Jan 2026 04:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216319 IP address blocks: 85.28.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.mft rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:db:02:c9:75:d4:cd:1a:8d:08:0f:eb:11:a4:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a Validity Not Before: Jan 1 04:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1b3d3f2accaec45fccb6e6bed4785e98eb997108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f2:96:c1:25:60:4c:ef:99:4d:b3:ba:83:25: 15:1a:34:c0:99:a3:be:c4:64:cf:66:75:eb:85:dd: 65:af:e1:cb:dd:f5:ac:63:1f:10:6d:c5:ab:a9:e8: d1:e2:e4:53:2b:05:f7:dc:42:db:6c:d9:29:85:fa: fc:65:4d:1f:6f:91:1b:59:24:df:09:00:e2:8e:d5: dc:8b:4c:25:70:a3:f9:0e:4e:61:98:89:c4:c2:8f: 93:38:20:c3:e2:2a:b8:c0:c3:e6:33:e2:2f:0c:e5: 74:0c:ab:9d:54:70:64:7e:41:80:7b:31:8c:7a:44: 49:62:7d:ac:ba:a4:8f:44:2d:b8:54:72:01:c2:53: 01:f5:69:89:db:ee:e1:6b:56:25:b3:be:3f:6c:37: e7:35:e6:4b:65:29:08:d5:c1:29:59:44:d8:1f:aa: cb:c1:a3:bb:a0:c1:54:00:93:a3:3e:c6:f6:d3:c9: 27:f7:2f:86:17:11:cf:13:22:49:af:23:e7:0a:61: 82:19:7e:05:81:02:ed:41:8c:bf:03:2a:d5:ac:3f: 57:f5:5b:6c:5e:c8:d8:29:32:bc:7b:b9:9d:07:4b: 74:14:dc:0e:27:bd:6a:75:e8:75:6b:80:1e:00:46: de:21:47:23:5e:c9:af:32:00:8d:29:65:e8:6c:a3: 64:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:3D:3F:2A:CC:AE:C4:5F:CC:B6:E6:BE:D4:78:5E:98:EB:99:71:08 X509v3 Authority Key Identifier: keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/Gz0_KsyuxF_Mtua-1HhemOuZcQg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.28.47.0/24 Signature Algorithm: sha256WithRSAEncryption b9:96:ea:90:0d:52:43:13:19:06:2c:3d:c9:d1:c6:76:52:86: ee:c3:01:5a:68:95:f6:09:78:40:a2:61:4b:7d:a1:53:ed:ea: bb:fd:c1:4a:eb:84:ec:18:68:92:33:67:c0:84:84:db:3c:6f: 27:b1:ee:26:c2:b5:9e:b7:bc:e2:f6:b9:44:7e:d5:bb:e0:a7: 9a:f2:22:b9:e2:67:21:08:08:d8:89:9d:15:f3:90:8f:7a:59: a6:ec:ef:69:03:7f:c7:1e:5b:6b:46:2f:67:88:bb:a9:d2:94: 0e:0e:2c:20:ad:ea:db:79:d4:92:37:88:c2:e4:10:98:24:a9: d4:36:4d:15:b4:e1:c1:b1:42:31:df:13:5f:33:f5:70:7f:88: 07:2a:ea:58:7f:ac:99:86:07:ab:12:69:8b:ab:a6:76:f6:78: 1b:f1:a3:d4:c5:6a:7e:8e:0d:4f:a9:4a:2b:46:0a:54:15:c7: b9:3c:7a:da:ad:2d:30:88:89:b3:79:2e:df:c9:28:6b:4e:51: 04:df:36:14:f9:f2:2d:c4:7b:7d:65:81:db:92:b4:50:d3:0e: de:db:55:e8:1d:6e:db:46:2b:1b:9f:8b:67:2f:08:97:6a:43: ca:e5:77:bd:ea:1f:65:6d:42:bc:e8:57:fb:dc:3e:22:5e:ff: 32:27:7b:39 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xtsCyXXUzRqNCA/rEaQSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZjM0NGE2M2RjYjcwZTg5MDU3ZGViOGUyNzYxZGM0NTE2 NTg4MWEwHhcNMjYwMTAxMDQxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYjNkM2YyYWNjYWVjNDVmY2NiNmU2YmVkNDc4NWU5OGViOTk3MTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvKWwSVgTO+ZTbO6gyUVGjTAmaO+ xGTPZnXrhd1lr+HL3fWsYx8QbcWrqejR4uRTKwX33ELbbNkphfr8ZU0fb5EbWSTf CQDijtXci0wlcKP5Dk5hmInEwo+TOCDD4iq4wMPmM+IvDOV0DKudVHBkfkGAezGM ekRJYn2suqSPRC24VHIBwlMB9WmJ2+7ha1Yls74/bDfnNeZLZSkI1cEpWUTYH6rL waO7oMFUAJOjPsb208kn9y+GFxHPEyJJryPnCmGCGX4FgQLtQYy/AyrVrD9X9Vts XsjYKTK8e7mdB0t0FNwOJ71qdeh1a4AeAEbeIUcjXsmvMgCNKWXobKNkiwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBs9PyrMrsRfzLbmvtR4XpjrmXEIMB8GA1UdIwQY MBaAFCLzRKY9y3DokFfeuOJ2HcRRZYgaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXZORXBqM0xjT2lRVjk2NDRuWWR4RkZsaUJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi81MzYwZTctZjAyYS00NzM3LTk5Yzct ZmViYjY0YjVlMTY0LzEvR3owX0tzeXV4Rl9NdHVhLTFIaGVtT3VaY1FnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi81MzYwZTctZjAyYS00NzM3LTk5YzctZmViYjY0YjVlMTY0 LzEvSXZORXBqM0xjT2lRVjk2NDRuWWR4RkZsaUJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVRwvMA0G CSqGSIb3DQEBCwUAA4IBAQC5luqQDVJDExkGLD3J0cZ2UobuwwFaaJX2CXhAomFL faFT7eq7/cFK64TsGGiSM2fAhITbPG8nse4mwrWet7zi9rlEftW74Kea8iK54mch CAjYiZ0V85CPelmm7O9pA3/HHltrRi9niLup0pQODiwgrerbedSSN4jC5BCYJKnU Nk0VtOHBsUIx3xNfM/Vwf4gHKupYf6yZhgerEmmLq6Z29ngb8aPUxWp+jg1PqUor RgpUFce5PHrarS0wiImzeS7fyShrTlEE3zYU+fItxHt9ZYHbkrRQ0w7e21XoHW7b Risbn4tnLwiXakPK5Xe96h9lbUK86Ff73D4iXv8yJ3s5 -----END CERTIFICATE-----Generated at Sun Jan 25 16:28:08 2026 by rpki-client