This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/GYWpw6vqAnYBnzElgVgQ2fhPW4k.roa File: GYWpw6vqAnYBnzElgVgQ2fhPW4k.roa (raw, json) Hash identifier: tX4UOIe4dqtmRxULZsRN/4d+47lV3wJ0eJpQCCqgcr0= Subject key identifier: 19:85:A9:C3:AB:EA:02:76:01:9F:31:25:81:58:10:D9:F8:4F:5B:89 Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1 Certificate serial: 019B7F15C014FC94C97D334B98AF4C2D3691 Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/GYWpw6vqAnYBnzElgVgQ2fhPW4k.roa Signing time: Fri 02 Jan 2026 14:21:30 +0000 ROA not before: Fri 02 Jan 2026 14:21:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202997 IP address blocks: 195.235.24.0/24 maxlen: 24 195.235.25.0/24 maxlen: 24 195.235.26.0/24 maxlen: 24 195.235.27.0/24 maxlen: 24 195.235.28.0/24 maxlen: 24 195.235.29.0/24 maxlen: 24 195.235.30.0/24 maxlen: 24 195.235.168.0/24 maxlen: 24 195.235.169.0/24 maxlen: 24 195.235.228.0/24 maxlen: 24 195.235.229.0/24 maxlen: 24 195.235.230.0/24 maxlen: 24 195.235.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.mft rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c0:14:fc:94:c9:7d:33:4b:98:af:4c:2d:36:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1 Validity Not Before: Jan 2 14:21:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1985a9c3abea0276019f3125815810d9f84f5b89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:b0:a7:9c:35:95:d9:e0:d4:84:7b:53:32:da: da:34:fa:46:29:c5:75:1e:04:16:4a:c1:df:97:80: 34:c7:da:ea:00:e8:6e:f9:5a:7c:b4:8a:a4:68:06: c1:e1:de:9e:2b:3e:4f:13:65:66:98:be:58:be:dd: 95:ba:bb:52:6c:a0:fd:ac:66:f1:96:49:dd:44:57: 7b:9a:a6:5a:b0:99:15:70:ae:38:5f:2e:f1:33:e3: bd:02:f7:b8:7b:11:4b:84:69:ee:bc:11:76:54:b2: 44:f6:75:42:50:17:30:a9:f0:3c:7f:2f:99:d5:01: de:39:9c:94:db:62:2f:47:1e:9e:ec:25:1d:4f:f9: 6c:33:8d:f1:9e:77:51:d0:50:9e:74:78:60:bb:94: a1:ec:a7:aa:24:ab:62:03:db:8c:19:f4:b9:2c:4d: e6:cd:75:f2:e8:1a:7c:c2:85:df:96:fb:02:f6:a7: ff:e2:8d:1b:b2:c4:a8:c9:e5:2d:6b:ce:2f:76:af: 4a:75:48:48:03:34:82:14:89:c8:41:4f:2b:90:d4: db:00:52:d6:64:8f:d8:67:f2:7e:3a:7f:85:94:17: e5:85:01:89:24:9a:a9:79:0e:3d:c3:de:b5:22:24: 56:21:44:36:b7:07:ca:8a:2a:79:36:e8:9d:4f:68: 20:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:85:A9:C3:AB:EA:02:76:01:9F:31:25:81:58:10:D9:F8:4F:5B:89 X509v3 Authority Key Identifier: keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/GYWpw6vqAnYBnzElgVgQ2fhPW4k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.235.24.0-195.235.30.255 195.235.168.0/23 195.235.228.0/22 Signature Algorithm: sha256WithRSAEncryption bd:82:2a:8d:06:1b:80:ac:f9:94:bd:dc:6d:f6:9c:c1:7d:67: cb:9b:11:ae:1f:9f:c8:cf:2d:64:d1:60:4c:c7:41:96:43:50: 55:32:38:99:02:a6:1e:da:38:4e:68:1a:07:de:29:cc:64:01: 0e:87:1f:c7:8e:c0:3b:e0:6a:ed:f7:1c:d0:0f:e7:e5:66:0f: 11:cc:cf:3d:d2:2d:69:01:18:f1:c9:29:41:eb:63:0d:f1:d2: 28:e7:0d:ba:a1:f9:e5:a9:9c:75:56:d1:4c:04:34:7b:f8:54: 69:6f:31:5c:f0:bd:c1:95:9c:69:78:ec:e1:11:13:00:b6:ad: 64:14:b3:22:f0:0a:58:33:8c:7e:24:91:6d:a6:f8:83:ec:79: 2c:94:7d:ce:4f:3e:08:57:a2:5a:68:ec:77:42:35:cf:34:69: 6a:4d:ba:20:a1:0e:6e:5d:5b:c7:93:77:2b:9d:47:82:41:65: 65:13:51:15:87:28:c0:9e:bb:23:09:46:4c:6a:e7:98:d3:44: c4:1e:bb:4d:19:cc:8a:d5:f2:d8:a6:03:71:d7:be:5a:e9:0a: 33:56:5f:1f:76:05:40:dd:b1:92:c5:6b:5c:2b:c8:bb:f9:41: 61:ee:6c:29:84:a6:c3:71:16:77:3b:16:b3:c7:3a:64:78:41: 99:c8:50:61 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZt/FcAU/JTJfTNLmK9MLTaRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5 NjdkYTEwHhcNMjYwMTAyMTQyMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOTg1YTljM2FiZWEwMjc2MDE5ZjMxMjU4MTU4MTBkOWY4NGY1Yjg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA97CnnDWV2eDUhHtTMtraNPpGKcV1 HgQWSsHfl4A0x9rqAOhu+Vp8tIqkaAbB4d6eKz5PE2VmmL5Yvt2VurtSbKD9rGbx lkndRFd7mqZasJkVcK44Xy7xM+O9Ave4exFLhGnuvBF2VLJE9nVCUBcwqfA8fy+Z 1QHeOZyU22IvRx6e7CUdT/lsM43xnndR0FCedHhgu5Sh7KeqJKtiA9uMGfS5LE3m zXXy6Bp8woXflvsC9qf/4o0bssSoyeUta84vdq9KdUhIAzSCFInIQU8rkNTbAFLW ZI/YZ/J+On+FlBflhQGJJJqpeQ49w961IiRWIUQ2twfKiip5NuidT2ggRQIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFBmFqcOr6gJ2AZ8xJYFYENn4T1uJMB8GA1UdIwQY MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt NGJhMmY4ZjFmODNiLzEvR1lXcHc2dnFBbllCbnpFbGdWZ1EyZmhQVzRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBAPD6xgD BADD6x4DBAHD66gDBALD6+QwDQYJKoZIhvcNAQELBQADggEBAL2CKo0GG4Cs+ZS9 3G32nMF9Z8ubEa4fn8jPLWTRYEzHQZZDUFUyOJkCph7aOE5oGgfeKcxkAQ6HH8eO wDvgau33HNAP5+VmDxHMzz3SLWkBGPHJKUHrYw3x0ijnDbqh+eWpnHVW0UwENHv4 VGlvMVzwvcGVnGl47OEREwC2rWQUsyLwClgzjH4kkW2m+IPseSyUfc5PPghXolpo 7HdCNc80aWpNuiChDm5dW8eTdyudR4JBZWUTURWHKMCeuyMJRkxq55jTRMQeu00Z zIrV8timA3HXvlrpCjNWXx92BUDdsZLFa1wryLv5QWHubCmEpsNxFnc7FrPHOmR4 QZnIUGE= -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:05 2026 by rpki-client