This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/8d14d5-869f-47f3-88bd-f7afca5cb034/1/gLMnpAvJYDZgw8CMi1ywBPu8HKA.roa File: gLMnpAvJYDZgw8CMi1ywBPu8HKA.roa (raw, json) Hash identifier: HfvKqfxiDqSfDMKCc4gBb3RHAJZd+tjrpFoCaU5J9O0= Subject key identifier: 80:B3:27:A4:0B:C9:60:36:60:C3:C0:8C:8B:5C:B0:04:FB:BC:1C:A0 Certificate issuer: /CN=397c501e2ff3b0ab534b484c3a928d1f0935d1b1 Certificate serial: 019B9D73DAFC9DDADBD41401455F62D9839B Authority key identifier: 39:7C:50:1E:2F:F3:B0:AB:53:4B:48:4C:3A:92:8D:1F:09:35:D1:B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXxQHi_zsKtTS0hMOpKNHwk10bE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/8d14d5-869f-47f3-88bd-f7afca5cb034/1/gLMnpAvJYDZgw8CMi1ywBPu8HKA.roa Signing time: Thu 08 Jan 2026 11:52:54 +0000 ROA not before: Thu 08 Jan 2026 11:52:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206317 IP address blocks: 155.212.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/8d14d5-869f-47f3-88bd-f7afca5cb034/1/OXxQHi_zsKtTS0hMOpKNHwk10bE.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/8d14d5-869f-47f3-88bd-f7afca5cb034/1/OXxQHi_zsKtTS0hMOpKNHwk10bE.mft rsync://rpki.ripe.net/repository/DEFAULT/OXxQHi_zsKtTS0hMOpKNHwk10bE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9d:73:da:fc:9d:da:db:d4:14:01:45:5f:62:d9:83:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=397c501e2ff3b0ab534b484c3a928d1f0935d1b1 Validity Not Before: Jan 8 11:52:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=80b327a40bc9603660c3c08c8b5cb004fbbc1ca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:61:dc:a8:85:8e:6f:2c:f8:ce:c7:dd:54:ba: a2:bd:fd:50:e2:be:4e:d3:58:36:eb:15:62:aa:26: 29:8e:a3:ba:d6:b1:e4:8a:a7:26:79:b4:d8:f3:7f: 3f:ed:b5:b7:14:9a:c8:0a:5f:b7:b7:85:ef:9d:f7: eb:c4:1d:aa:9c:c8:8c:92:b9:73:f1:62:17:21:c6: 0e:78:d6:35:ea:a3:85:55:f7:3e:43:71:91:6f:91: ed:82:9f:d6:ea:41:90:c2:41:15:a0:f1:d5:ee:e6: 28:af:56:94:eb:43:fb:0d:43:f7:28:f6:42:f3:08: 33:91:a6:aa:e0:39:24:06:01:f8:68:da:9e:16:24: 4b:69:eb:f3:79:06:8c:55:6e:0a:a8:24:1f:48:1d: 1a:b2:eb:28:df:a7:58:b8:d3:bc:e7:1c:e4:18:3c: 6c:26:78:cb:ff:98:b9:9d:a7:83:3e:7c:fa:e1:52: 87:aa:19:53:7d:65:7f:ed:34:1c:3d:45:b8:5c:da: 57:a0:26:a9:cc:3d:19:53:21:a1:41:90:00:03:30: ba:2b:97:53:95:c0:b0:c5:bc:81:c8:98:04:3f:b0: 26:e8:81:2b:56:c4:6c:5d:05:8f:7a:45:e8:d0:be: 80:84:d4:42:85:90:b2:36:f4:01:5a:b0:9b:b3:11: ff:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B3:27:A4:0B:C9:60:36:60:C3:C0:8C:8B:5C:B0:04:FB:BC:1C:A0 X509v3 Authority Key Identifier: keyid:39:7C:50:1E:2F:F3:B0:AB:53:4B:48:4C:3A:92:8D:1F:09:35:D1:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXxQHi_zsKtTS0hMOpKNHwk10bE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/8d14d5-869f-47f3-88bd-f7afca5cb034/1/gLMnpAvJYDZgw8CMi1ywBPu8HKA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/8d14d5-869f-47f3-88bd-f7afca5cb034/1/OXxQHi_zsKtTS0hMOpKNHwk10bE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.212.233.0/24 Signature Algorithm: sha256WithRSAEncryption 15:47:c9:7d:c3:10:9d:57:03:fd:29:71:26:a7:ad:f0:52:84: 2e:02:29:f5:0b:06:45:94:fa:3a:0e:6b:83:a4:61:6a:0e:c7: 38:03:17:c7:4e:5d:a5:a1:62:87:03:98:52:a0:ab:c2:6e:1c: c1:97:b5:31:c9:11:12:5b:c9:ca:0e:04:f8:04:d7:da:ed:b7: bb:63:b4:e4:8b:87:2d:3f:fc:3d:e3:2e:1d:2f:a9:10:c5:cf: 4c:5a:75:cb:33:87:83:cb:4f:e8:bf:62:76:aa:5d:03:c2:5b: 4e:77:fe:63:7e:66:97:a0:16:b0:2a:6d:9a:41:ff:3a:ea:d9: d4:99:8e:c6:b3:7f:ea:f7:d3:fd:ef:4d:17:ea:f3:a5:52:28: b3:b1:82:4c:22:e3:f7:3a:22:d4:46:dd:b1:50:54:0d:83:4c: 36:95:49:58:2b:80:c2:db:f9:c9:b7:7f:a3:79:4a:49:54:60: 85:b6:69:68:5f:db:65:55:6c:67:86:85:19:b9:ea:30:88:4c: ef:ed:00:10:f0:14:4f:3f:02:9d:b4:4e:ae:bb:2e:3f:a4:67: 1a:d2:85:9b:0c:4e:d3:ca:a5:65:44:60:68:fc:45:a0:25:b2: 49:cc:5c:ca:74:78:40:b3:8f:ab:7f:52:fb:5c:e3:2d:29:59: dc:f3:07:e0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZudc9r8ndrb1BQBRV9i2YObMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5N2M1MDFlMmZmM2IwYWI1MzRiNDg0YzNhOTI4ZDFmMDkz NWQxYjEwHhcNMjYwMTA4MTE1MjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MGIzMjdhNDBiYzk2MDM2NjBjM2MwOGM4YjVjYjAwNGZiYmMxY2EwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA22HcqIWObyz4zsfdVLqivf1Q4r5O 01g26xViqiYpjqO61rHkiqcmebTY838/7bW3FJrICl+3t4XvnffrxB2qnMiMkrlz 8WIXIcYOeNY16qOFVfc+Q3GRb5Htgp/W6kGQwkEVoPHV7uYor1aU60P7DUP3KPZC 8wgzkaaq4DkkBgH4aNqeFiRLaevzeQaMVW4KqCQfSB0asuso36dYuNO85xzkGDxs JnjL/5i5naeDPnz64VKHqhlTfWV/7TQcPUW4XNpXoCapzD0ZUyGhQZAAAzC6K5dT lcCwxbyByJgEP7Am6IErVsRsXQWPekXo0L6AhNRChZCyNvQBWrCbsxH/FQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFICzJ6QLyWA2YMPAjItcsAT7vBygMB8GA1UdIwQY MBaAFDl8UB4v87CrU0tITDqSjR8JNdGxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1h4UUhpX3pzS3RUUzBoTU9wS05Id2sxMGJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC84ZDE0ZDUtODY5Zi00N2YzLTg4YmQt ZjdhZmNhNWNiMDM0LzEvZ0xNbnBBdkpZRFpndzhDTWkxeXdCUHU4SEtBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC84ZDE0ZDUtODY5Zi00N2YzLTg4YmQtZjdhZmNhNWNiMDM0 LzEvT1h4UUhpX3pzS3RUUzBoTU9wS05Id2sxMGJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAm9TpMA0G CSqGSIb3DQEBCwUAA4IBAQAVR8l9wxCdVwP9KXEmp63wUoQuAin1CwZFlPo6DmuD pGFqDsc4AxfHTl2loWKHA5hSoKvCbhzBl7UxyRESW8nKDgT4BNfa7be7Y7Tki4ct P/w94y4dL6kQxc9MWnXLM4eDy0/ov2J2ql0DwltOd/5jfmaXoBawKm2aQf866tnU mY7Gs3/q99P9700X6vOlUiizsYJMIuP3OiLURt2xUFQNg0w2lUlYK4DC2/nJt3+j eUpJVGCFtmloX9tlVWxnhoUZueowiEzv7QAQ8BRPPwKdtE6uuy4/pGca0oWbDE7T yqVlRGBo/EWgJbJJzFzKdHhAs4+rf1L7XOMtKVnc8wfg -----END CERTIFICATE-----Generated at Sun Jan 25 22:28:59 2026 by rpki-client