This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/GdbR_idqMFPPvTnMDLo84FSRLLE.roa File: GdbR_idqMFPPvTnMDLo84FSRLLE.roa (raw, json) Hash identifier: 9wA72fFqTL25Susq0KJt1IgIugCWrwoBtcIiJv1WM5U= Subject key identifier: 19:D6:D1:FE:27:6A:30:53:CF:BD:39:CC:0C:BA:3C:E0:54:91:2C:B1 Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d Certificate serial: 019B7C8061D71885E7D6E41CB1E50B7C694E Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/GdbR_idqMFPPvTnMDLo84FSRLLE.roa Signing time: Fri 02 Jan 2026 02:19:07 +0000 ROA not before: Fri 02 Jan 2026 02:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216300 IP address blocks: 94.159.112.0/24 maxlen: 24 94.159.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.mft rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 08:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:61:d7:18:85:e7:d6:e4:1c:b1:e5:0b:7c:69:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d Validity Not Before: Jan 2 02:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=19d6d1fe276a3053cfbd39cc0cba3ce054912cb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:73:64:a2:47:f7:a4:11:71:d3:1a:8c:70:7e: 66:9c:74:ad:08:97:a7:0e:f7:52:35:a5:62:b9:b9: 8a:f7:ea:a8:28:eb:76:93:e1:a5:8e:56:8e:ef:ff: 4e:de:59:a7:e0:a8:27:83:d8:87:d5:6b:54:54:19: 5b:17:b4:6b:24:f5:40:6f:52:20:df:c6:b7:50:29: c6:02:d7:76:65:4a:a8:c8:d1:f8:a4:22:1a:d3:85: 46:73:66:e4:f8:5e:eb:77:0d:62:fc:0a:bb:8a:39: 11:64:66:c8:12:d2:02:00:15:e7:cb:84:41:4f:a7: 4c:36:e9:35:5e:75:c5:59:14:c3:29:14:cf:96:db: fe:00:43:13:ad:cb:79:20:8b:2b:53:c5:23:2b:e9: 9b:f3:c6:68:11:54:5c:76:c1:2a:2c:36:cb:14:8e: e5:f5:2b:b5:44:40:12:a8:b5:be:b4:6a:96:ad:e5: ab:10:ee:9f:93:96:91:92:30:53:69:c0:58:c7:95: 7f:43:76:14:4b:78:60:34:1c:bf:4b:ba:63:df:23: c6:a6:b9:fd:ef:95:53:15:cc:4f:25:24:c0:8e:3a: d4:9e:67:ee:d0:9f:0f:60:cd:55:b4:ac:ff:d8:4e: d6:2e:b6:91:21:07:f7:80:da:06:ba:da:bf:ed:7a: 45:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D6:D1:FE:27:6A:30:53:CF:BD:39:CC:0C:BA:3C:E0:54:91:2C:B1 X509v3 Authority Key Identifier: keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/GdbR_idqMFPPvTnMDLo84FSRLLE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.159.112.0/24 94.159.114.0/24 Signature Algorithm: sha256WithRSAEncryption ca:f2:37:b8:d8:f7:6f:74:72:46:9e:a5:55:2f:8a:5b:da:90: 80:74:5b:75:51:06:63:e3:e9:7d:6e:0b:ab:d5:61:67:82:ba: 6e:45:4e:d1:c6:fd:49:fa:78:24:c4:e2:5b:20:d2:3d:39:b6: 43:43:c7:42:a6:c4:43:cd:01:e9:e4:f9:9f:46:5f:93:aa:7c: fe:68:5a:83:4e:6a:e5:bb:06:b0:8e:2c:57:df:e1:94:64:4d: 85:3c:50:07:5e:53:2e:8b:f3:cb:0e:44:ae:e5:ce:a2:28:c1: 18:a2:8a:32:32:ae:27:eb:97:14:71:14:6f:1f:52:15:5f:74: fe:f0:57:d8:21:e4:f6:86:69:71:53:9c:9a:1a:a7:1d:30:15: 40:87:f1:96:fe:bd:9e:43:26:85:f4:68:2b:9c:b1:c1:56:0b: 60:14:01:e0:9c:41:31:10:3b:f9:fb:c6:73:41:11:73:91:ff: 29:d1:82:d0:ab:23:94:9b:4d:f8:dd:e8:14:c8:a0:84:cd:0f: 31:66:21:69:88:4e:ca:7f:37:0d:8c:93:6d:cd:5a:ca:3e:af: 11:4a:1f:05:a5:b2:8b:7e:e5:cd:54:ed:bc:45:f6:48:c2:18: 9b:72:b4:a8:7c:ea:a5:fb:a7:5e:39:02:4c:4b:df:fa:05:1b: 94:03:d1:a4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gGHXGIXn1uQcseULfGlOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5N2FlNzU5MmNhNTI0OTFkYzE2NmEzMGZlMTQ3N2Q3MTJi ZDQ2NWQwHhcNMjYwMTAyMDIxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOWQ2ZDFmZTI3NmEzMDUzY2ZiZDM5Y2MwY2JhM2NlMDU0OTEyY2IxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnNkokf3pBFx0xqMcH5mnHStCJen DvdSNaViubmK9+qoKOt2k+GljlaO7/9O3lmn4Kgng9iH1WtUVBlbF7RrJPVAb1Ig 38a3UCnGAtd2ZUqoyNH4pCIa04VGc2bk+F7rdw1i/Aq7ijkRZGbIEtICABXny4RB T6dMNuk1XnXFWRTDKRTPltv+AEMTrct5IIsrU8UjK+mb88ZoEVRcdsEqLDbLFI7l 9Su1REASqLW+tGqWreWrEO6fk5aRkjBTacBYx5V/Q3YUS3hgNBy/S7pj3yPGprn9 75VTFcxPJSTAjjrUnmfu0J8PYM1VtKz/2E7WLraRIQf3gNoGutq/7XpFqQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBnW0f4najBTz705zAy6POBUkSyxMB8GA1UdIwQY MBaAFCl651kspSSR3BZqMP4Ud9cSvUZdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1hybldTeWxKSkhjRm1vd19oUjMxeEs5UmwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS80OGUxZTgtMzI4ZC00ZjgyLTkzOTgt MzkxMGE1OWExMTIxLzEvR2RiUl9pZHFNRlBQdlRuTURMbzg0RlNSTExFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS80OGUxZTgtMzI4ZC00ZjgyLTkzOTgtMzkxMGE1OWExMTIx LzEvS1hybldTeWxKSkhjRm1vd19oUjMxeEs5UmwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXp9wAwQA Xp9yMA0GCSqGSIb3DQEBCwUAA4IBAQDK8je42PdvdHJGnqVVL4pb2pCAdFt1UQZj 4+l9bgur1WFngrpuRU7Rxv1J+ngkxOJbINI9ObZDQ8dCpsRDzQHp5PmfRl+Tqnz+ aFqDTmrluwawjixX3+GUZE2FPFAHXlMui/PLDkSu5c6iKMEYoooyMq4n65cUcRRv H1IVX3T+8FfYIeT2hmlxU5yaGqcdMBVAh/GW/r2eQyaF9GgrnLHBVgtgFAHgnEEx EDv5+8ZzQRFzkf8p0YLQqyOUm0343egUyKCEzQ8xZiFpiE7KfzcNjJNtzVrKPq8R Sh8FpbKLfuXNVO28RfZIwhibcrSofOql+6deOQJMS9/6BRuUA9Gk -----END CERTIFICATE-----Generated at Sun Jan 25 18:20:52 2026 by rpki-client