This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/gvw5yUDT8VkcGYmB4FemcY9F6Z0.roa File: gvw5yUDT8VkcGYmB4FemcY9F6Z0.roa (raw, json) Hash identifier: qjzJbkJHWatioGBZd8+uDjCJfFJ0vYZMyqtFG/SE1vc= Subject key identifier: 82:FC:39:C9:40:D3:F1:59:1C:19:89:81:E0:57:A6:71:8F:45:E9:9D Certificate issuer: /CN=0620eadb2e1562b4e2e4f480772c36887a777f24 Certificate serial: 019B7DC87838BC1ED6FF63AFF72E6E1A12C8 Authority key identifier: 06:20:EA:DB:2E:15:62:B4:E2:E4:F4:80:77:2C:36:88:7A:77:7F:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/gvw5yUDT8VkcGYmB4FemcY9F6Z0.roa Signing time: Fri 02 Jan 2026 08:17:28 +0000 ROA not before: Fri 02 Jan 2026 08:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42910 IP address blocks: 217.195.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.mft rsync://rpki.ripe.net/repository/DEFAULT/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:78:38:bc:1e:d6:ff:63:af:f7:2e:6e:1a:12:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0620eadb2e1562b4e2e4f480772c36887a777f24 Validity Not Before: Jan 2 08:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82fc39c940d3f1591c198981e057a6718f45e99d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:88:00:97:a4:6e:43:75:a9:fa:db:04:33:f4: 0e:70:48:da:e2:db:7f:9c:30:c9:77:c2:99:93:a5: d7:0c:0e:a3:96:b9:08:ce:d3:9c:ea:96:2f:95:2c: 18:33:83:f9:7b:66:c1:91:b7:78:06:42:6b:95:ae: f1:2e:c0:3e:8f:b3:1c:68:86:07:e6:18:2f:e3:a3: 5f:39:26:20:28:64:48:29:33:5d:01:49:55:7e:5e: 5e:e5:37:a9:6d:ed:2a:ac:f9:82:43:45:6c:7b:1c: 01:c9:cb:9c:eb:b7:09:cc:06:12:d2:31:94:8a:7c: 71:b4:83:4c:3e:82:85:9d:6b:b0:87:9e:f3:48:a7: 3e:9b:92:6d:28:05:69:0b:96:1d:2b:82:a7:c9:75: 8b:31:d2:0b:54:44:06:c4:d2:fb:fb:41:3c:93:36: 43:44:7b:3e:b5:64:59:05:e7:f1:91:5f:b2:1a:a4: 79:de:de:45:6c:a8:ac:ad:26:ed:de:40:03:f6:9a: 19:2c:00:02:9e:24:9d:20:bf:28:d2:86:d0:e0:65: 65:0c:e5:bf:94:38:8c:37:1c:bf:21:11:7b:17:24: e6:02:b1:54:9f:eb:cf:c7:d8:65:d9:8d:39:a1:05: 2b:85:2f:63:f7:76:7b:e7:10:27:70:41:1a:be:26: 86:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:FC:39:C9:40:D3:F1:59:1C:19:89:81:E0:57:A6:71:8F:45:E9:9D X509v3 Authority Key Identifier: keyid:06:20:EA:DB:2E:15:62:B4:E2:E4:F4:80:77:2C:36:88:7A:77:7F:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/gvw5yUDT8VkcGYmB4FemcY9F6Z0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.195.199.0/24 Signature Algorithm: sha256WithRSAEncryption 91:18:37:ee:99:95:0b:34:72:aa:72:3e:55:03:17:17:d5:a6: cc:1a:2e:67:13:ad:95:63:fd:5d:1a:86:18:f9:1a:6b:13:ec: 49:63:9e:4c:2e:86:49:21:21:24:37:0e:d7:65:b9:82:72:2f: 31:d6:90:f0:e0:15:7f:0d:c0:ef:4b:0d:3c:ec:ed:60:cc:11: 23:2f:0d:27:ef:3f:a2:73:01:54:a9:06:46:c1:ae:4d:a8:f8: a9:17:8c:aa:05:3c:f9:ed:49:60:8e:b3:9f:b3:9e:ab:62:ed: d0:e2:35:d1:70:00:35:48:9c:0a:7d:d3:aa:35:13:64:65:26: ef:99:16:8c:2d:d5:50:8d:6e:0a:0f:3d:c7:73:9e:b3:b2:56: 0b:f4:02:91:63:fb:67:4c:92:e2:39:fc:25:73:72:91:00:3b: 1f:0d:a8:e4:f1:dc:da:87:a3:e9:46:a6:f7:c2:d5:a5:65:8f: 60:b9:9a:e6:e8:23:fc:29:e5:25:02:e7:4a:ca:fe:e8:c3:a0: 95:6e:03:f4:6b:b1:a7:fe:46:fd:10:f8:d8:ef:da:45:6a:13: 6e:fb:fe:f4:db:21:34:76:38:46:fa:ac:47:a7:f7:36:f4:41: ad:df:45:06:1b:0e:45:28:7b:e1:b5:7a:ee:e0:9e:ca:c1:13: ff:29:d3:5c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yHg4vB7W/2Ov9y5uGhLIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MjBlYWRiMmUxNTYyYjRlMmU0ZjQ4MDc3MmMzNjg4N2E3 NzdmMjQwHhcNMjYwMTAyMDgxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MmZjMzljOTQwZDNmMTU5MWMxOTg5ODFlMDU3YTY3MThmNDVlOTlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApogAl6RuQ3Wp+tsEM/QOcEja4tt/ nDDJd8KZk6XXDA6jlrkIztOc6pYvlSwYM4P5e2bBkbd4BkJrla7xLsA+j7McaIYH 5hgv46NfOSYgKGRIKTNdAUlVfl5e5Tepbe0qrPmCQ0VsexwBycuc67cJzAYS0jGU inxxtINMPoKFnWuwh57zSKc+m5JtKAVpC5YdK4KnyXWLMdILVEQGxNL7+0E8kzZD RHs+tWRZBefxkV+yGqR53t5FbKisrSbt3kAD9poZLAACniSdIL8o0obQ4GVlDOW/ lDiMNxy/IRF7FyTmArFUn+vPx9hl2Y05oQUrhS9j93Z75xAncEEaviaGuQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIL8OclA0/FZHBmJgeBXpnGPRemdMB8GA1UdIwQY MBaAFAYg6tsuFWK04uT0gHcsNoh6d38kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmlEcTJ5NFZZclRpNVBTQWR5dzJpSHAzZnlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9jYzhiZmEtMmIxMy00Njc0LWE5ODQt YTVmZGI1NzBmZTlhLzEvZ3Z3NXlVRFQ4VmtjR1ltQjRGZW1jWTlGNlowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9jYzhiZmEtMmIxMy00Njc0LWE5ODQtYTVmZGI1NzBmZTlh LzEvQmlEcTJ5NFZZclRpNVBTQWR5dzJpSHAzZnlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2cPHMA0G CSqGSIb3DQEBCwUAA4IBAQCRGDfumZULNHKqcj5VAxcX1abMGi5nE62VY/1dGoYY +RprE+xJY55MLoZJISEkNw7XZbmCci8x1pDw4BV/DcDvSw087O1gzBEjLw0n7z+i cwFUqQZGwa5NqPipF4yqBTz57UlgjrOfs56rYu3Q4jXRcAA1SJwKfdOqNRNkZSbv mRaMLdVQjW4KDz3Hc56zslYL9AKRY/tnTJLiOfwlc3KRADsfDajk8dzah6PpRqb3 wtWlZY9guZrm6CP8KeUlAudKyv7ow6CVbgP0a7Gn/kb9EPjY79pFahNu+/702yE0 djhG+qxHp/c29EGt30UGGw5FKHvhtXru4J7KwRP/KdNc -----END CERTIFICATE-----Generated at Sun Jan 25 22:12:36 2026 by rpki-client