This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/gUdY2erPeb1g9W6savD1JzNiZTI.roa File: gUdY2erPeb1g9W6savD1JzNiZTI.roa (raw, json) Hash identifier: ZtpsX5ltcTgJ2//g7WuYjIUxAyqjaVv+tM6A33Rlx2w= Subject key identifier: 81:47:58:D9:EA:CF:79:BD:60:F5:6E:AC:6A:F0:F5:27:33:62:65:32 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B78346867A72240C42A97AB1C5FCC36AB Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/gUdY2erPeb1g9W6savD1JzNiZTI.roa Signing time: Thu 01 Jan 2026 06:17:39 +0000 ROA not before: Thu 01 Jan 2026 06:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49862 IP address blocks: 194.103.21.0/24 maxlen: 24 2a01:280:3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:68:67:a7:22:40:c4:2a:97:ab:1c:5f:cc:36:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=814758d9eacf79bd60f56eac6af0f52733626532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:32:ca:3c:d3:3b:d2:ac:17:cf:2e:6b:56:55: f7:6e:2d:25:1d:8c:56:87:b7:45:55:08:a4:a4:38: b7:22:40:0e:be:e0:97:39:72:17:16:d4:e3:cc:22: 55:85:48:d1:8e:6e:39:96:2e:86:3a:c5:0b:53:8b: 38:db:97:3b:ca:2a:a4:86:7a:13:a6:d5:8f:60:30: 6a:48:bf:b0:fd:6c:40:e1:f5:09:ef:ab:02:9a:dd: bc:e0:fc:ae:5d:d9:eb:24:65:7e:c2:0c:39:2d:8e: 63:de:2e:a5:00:c8:d4:14:48:72:00:35:0b:45:2e: 28:a9:1d:b8:7d:af:da:c9:6b:e5:d8:3c:65:af:a1: 3b:c9:50:07:29:57:bf:9e:95:d8:76:bd:59:ca:60: 20:c0:47:b6:e3:c3:89:ce:14:fc:ef:a4:0a:ff:0b: 87:ef:e7:92:55:51:b3:99:77:12:3e:24:e1:cc:1a: 7e:a7:bc:0f:53:35:e1:d7:3b:31:ce:18:74:be:61: 24:19:71:cc:4f:f4:93:1d:77:08:80:22:21:25:d3: af:de:fe:7a:52:61:64:4b:9b:72:83:51:f6:7d:94: 33:35:94:f4:e9:47:9f:b0:94:2d:b3:7b:c1:c7:ff: 14:5d:98:58:39:a6:ba:40:91:0f:bb:5c:e0:ed:46: 1d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:47:58:D9:EA:CF:79:BD:60:F5:6E:AC:6A:F0:F5:27:33:62:65:32 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/gUdY2erPeb1g9W6savD1JzNiZTI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.103.21.0/24 IPv6: 2a01:280:3c0::/48 Signature Algorithm: sha256WithRSAEncryption 73:e9:1b:0a:23:2a:bb:d1:81:2c:95:57:34:21:6b:97:93:cd: 79:c0:3c:bc:fe:3f:51:8b:a5:c4:33:72:7c:c5:62:de:0e:d1: bc:c1:76:e1:78:54:f5:4c:17:0f:aa:10:d6:3c:aa:6f:8c:1a: 24:a0:41:6d:27:ae:64:3f:51:59:4d:55:33:68:9a:9f:8e:e2: 00:49:49:4e:f2:56:66:6c:e8:dc:b5:95:31:7b:4d:d7:6f:cf: 49:6a:a3:25:e7:ba:2d:c1:c4:9a:42:ca:81:f1:36:64:a3:02: 22:f7:de:0a:df:d8:40:2f:e1:6a:42:82:a8:fc:e1:d9:eb:18: e5:c5:ee:71:ba:62:e7:b7:85:67:e8:0f:d4:83:c0:95:12:12: a8:40:41:3e:a7:6e:ab:bd:69:2f:d1:b3:ae:4d:89:af:a7:69: ee:55:f7:ff:5a:41:90:8a:bf:c0:31:9f:b2:2b:59:31:8c:bf: 77:b7:7a:b3:ac:b7:6a:fa:28:9b:9a:75:c1:31:52:f5:9a:53: ac:e2:2c:e2:ad:7e:7b:1f:42:2b:83:13:31:6d:74:53:9c:b1: 6d:7a:86:6a:ba:76:09:7e:4f:f3:8a:23:f1:27:d9:69:4a:76: aa:96:24:52:60:bc:6a:60:ed:60:f5:bc:20:1e:1d:1e:51:0d: 5b:47:1a:42 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4NGhnpyJAxCqXqxxfzDarMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MTQ3NThkOWVhY2Y3OWJkNjBmNTZlYWM2YWYwZjUyNzMzNjI2NTMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+TLKPNM70qwXzy5rVlX3bi0lHYxW h7dFVQikpDi3IkAOvuCXOXIXFtTjzCJVhUjRjm45li6GOsULU4s425c7yiqkhnoT ptWPYDBqSL+w/WxA4fUJ76sCmt284PyuXdnrJGV+wgw5LY5j3i6lAMjUFEhyADUL RS4oqR24fa/ayWvl2Dxlr6E7yVAHKVe/npXYdr1ZymAgwEe248OJzhT876QK/wuH 7+eSVVGzmXcSPiThzBp+p7wPUzXh1zsxzhh0vmEkGXHMT/STHXcIgCIhJdOv3v56 UmFkS5tyg1H2fZQzNZT06UefsJQts3vBx/8UXZhYOaa6QJEPu1zg7UYdlwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFIFHWNnqz3m9YPVurGrw9SczYmUyMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvZ1VkWTJlclBlYjFnOVc2c2F2RDFKek5pWlRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwmcVMA8E AgACMAkDBwAqAQKAA8AwDQYJKoZIhvcNAQELBQADggEBAHPpGwojKrvRgSyVVzQh a5eTzXnAPLz+P1GLpcQzcnzFYt4O0bzBduF4VPVMFw+qENY8qm+MGiSgQW0nrmQ/ UVlNVTNomp+O4gBJSU7yVmZs6Ny1lTF7Tddvz0lqoyXnui3BxJpCyoHxNmSjAiL3 3grf2EAv4WpCgqj84dnrGOXF7nG6Yue3hWfoD9SDwJUSEqhAQT6nbqu9aS/Rs65N ia+nae5V9/9aQZCKv8Axn7IrWTGMv3e3erOst2r6KJuadcExUvWaU6ziLOKtfnsf QiuDEzFtdFOcsW16hmq6dgl+T/OKI/En2WlKdqqWJFJgvGpg7WD1vCAeHR5RDVtH GkI= -----END CERTIFICATE-----Generated at Sun Jan 25 11:01:31 2026 by rpki-client