This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/87a863-da6f-4981-9378-b2cd4e58100e/1/gMde_Z2AYAfDjgfQgADaIVzJfHA.roa File: gMde_Z2AYAfDjgfQgADaIVzJfHA.roa (raw, json) Hash identifier: ohh0Sm+ArlanntYsQ32zJOzQvbfP0sXTcTAxiE+zWSU= Subject key identifier: 80:C7:5E:FD:9D:80:60:07:C3:8E:07:D0:80:00:DA:21:5C:C9:7C:70 Certificate issuer: /CN=91b3f5d6f43e83071fa77e6d3ebbb79352f961b5 Certificate serial: 019B79ECB5C120E6F8673E432109EBDDDE0F Authority key identifier: 91:B3:F5:D6:F4:3E:83:07:1F:A7:7E:6D:3E:BB:B7:93:52:F9:61:B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kbP11vQ-gwcfp35tPru3k1L5YbU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/87a863-da6f-4981-9378-b2cd4e58100e/1/gMde_Z2AYAfDjgfQgADaIVzJfHA.roa Signing time: Thu 01 Jan 2026 14:18:34 +0000 ROA not before: Thu 01 Jan 2026 14:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209835 IP address blocks: 2.59.232.0/22 maxlen: 22 2.59.232.0/24 maxlen: 24 2.59.233.0/24 maxlen: 24 2.59.234.0/24 maxlen: 24 2.59.235.0/24 maxlen: 24 2a09:fc40::/29 maxlen: 48 2a09:fc40:1::/48 maxlen: 48 2a09:fc40:2::/48 maxlen: 48 2a09:fc40:3::/48 maxlen: 48 2a09:fc40:4::/48 maxlen: 48 2a09:fc40:5::/48 maxlen: 48 2a09:fc40:6::/48 maxlen: 48 2a09:fc40:7::/48 maxlen: 48 2a09:fc40:8::/48 maxlen: 48 2a09:fc40:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/87a863-da6f-4981-9378-b2cd4e58100e/1/kbP11vQ-gwcfp35tPru3k1L5YbU.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/87a863-da6f-4981-9378-b2cd4e58100e/1/kbP11vQ-gwcfp35tPru3k1L5YbU.mft rsync://rpki.ripe.net/repository/DEFAULT/kbP11vQ-gwcfp35tPru3k1L5YbU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:b5:c1:20:e6:f8:67:3e:43:21:09:eb:dd:de:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91b3f5d6f43e83071fa77e6d3ebbb79352f961b5 Validity Not Before: Jan 1 14:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=80c75efd9d806007c38e07d08000da215cc97c70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:78:42:2d:23:44:e7:4b:50:a7:e0:1b:64:6f: 4c:50:03:cf:e3:48:26:b7:28:f3:b0:21:94:26:12: 52:99:1b:4a:71:35:0d:8b:9d:d0:e6:94:59:02:96: 0b:0e:45:53:2c:fc:8b:47:37:eb:80:53:1a:c8:c4: 15:e0:14:62:30:a1:0b:00:01:5c:9b:67:9b:98:e9: d5:12:35:41:e7:4e:d9:3b:8e:04:20:2d:79:8d:a3: eb:db:f9:b3:dc:ce:5f:78:b1:bc:53:ee:16:55:cb: 80:06:dc:4f:2d:a6:95:4d:f0:90:be:0e:34:50:87: 1a:a1:9d:0a:cb:68:e9:50:ee:08:f7:b2:9e:1a:31: 57:b7:ca:df:2d:81:e2:e5:c4:5a:9f:13:65:43:cd: 14:11:5a:2b:b1:f6:71:9c:35:7c:da:f6:75:6f:40: c8:95:4a:6a:44:5a:a6:97:a8:f2:c9:bc:b4:65:81: c8:c8:0c:b7:a1:ca:c5:70:b2:59:db:89:54:11:86: a4:c4:65:03:07:65:69:45:60:29:e4:18:d1:b1:40: ef:5b:a0:d4:b6:54:b8:1f:ae:3b:b7:63:a5:bd:03: a9:ce:80:0f:94:62:df:85:81:06:8e:ce:83:54:c0: 28:dd:b5:7d:49:de:73:33:ec:44:30:d9:bb:5a:9d: b6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:C7:5E:FD:9D:80:60:07:C3:8E:07:D0:80:00:DA:21:5C:C9:7C:70 X509v3 Authority Key Identifier: keyid:91:B3:F5:D6:F4:3E:83:07:1F:A7:7E:6D:3E:BB:B7:93:52:F9:61:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kbP11vQ-gwcfp35tPru3k1L5YbU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/87a863-da6f-4981-9378-b2cd4e58100e/1/gMde_Z2AYAfDjgfQgADaIVzJfHA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/87a863-da6f-4981-9378-b2cd4e58100e/1/kbP11vQ-gwcfp35tPru3k1L5YbU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.59.232.0/22 IPv6: 2a09:fc40::/29 Signature Algorithm: sha256WithRSAEncryption 98:56:14:d4:e4:b9:14:9a:60:62:8b:60:68:5b:d9:fb:78:e3: 6e:0c:1e:d8:33:4e:f0:b4:75:c3:07:f8:88:3b:18:83:2b:53: eb:94:db:df:09:98:cc:bc:6d:fb:08:37:c2:50:fe:60:96:74: 93:95:d1:81:f4:8a:4e:8a:c5:25:9e:de:17:be:e2:84:27:67: 2f:be:67:fe:f9:cd:36:87:fe:d9:7d:b5:70:49:9b:b4:1a:37: f5:45:5c:32:12:32:02:fb:fd:68:c8:19:5c:2e:10:d0:da:e6: 9c:9e:5e:d3:22:84:a7:10:9c:4d:b2:89:ee:e8:90:f0:fb:86: fc:e1:a7:ed:d5:54:cb:77:53:d1:8a:12:72:ca:dd:ac:d7:18: 6a:07:50:10:ef:98:b1:ff:49:68:61:40:bc:94:65:4e:0a:12: 71:f9:11:9a:0e:f4:1c:c2:fc:3a:15:5d:66:51:97:87:aa:6c: ae:84:0a:dc:93:0a:bd:b0:22:6c:10:34:b4:0b:b0:1f:5a:6e: 6d:8a:6a:dd:df:a5:3c:12:f6:1d:e7:de:c5:1b:1e:b9:d0:f6: 5a:06:5e:fe:38:0e:f1:08:c8:18:c9:36:7b:13:c3:71:e9:e7: 1a:50:e6:19:20:ee:7f:87:74:da:56:5c:bb:52:46:a8:85:9d: 3c:b0:61:17 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57LXBIOb4Zz5DIQnr3d4PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxYjNmNWQ2ZjQzZTgzMDcxZmE3N2U2ZDNlYmJiNzkzNTJm OTYxYjUwHhcNMjYwMTAxMTQxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MGM3NWVmZDlkODA2MDA3YzM4ZTA3ZDA4MDAwZGEyMTVjYzk3YzcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXhCLSNE50tQp+AbZG9MUAPP40gm tyjzsCGUJhJSmRtKcTUNi53Q5pRZApYLDkVTLPyLRzfrgFMayMQV4BRiMKELAAFc m2ebmOnVEjVB507ZO44EIC15jaPr2/mz3M5feLG8U+4WVcuABtxPLaaVTfCQvg40 UIcaoZ0Ky2jpUO4I97KeGjFXt8rfLYHi5cRanxNlQ80UEVorsfZxnDV82vZ1b0DI lUpqRFqml6jyyby0ZYHIyAy3ocrFcLJZ24lUEYakxGUDB2VpRWAp5BjRsUDvW6DU tlS4H647t2OlvQOpzoAPlGLfhYEGjs6DVMAo3bV9Sd5zM+xEMNm7Wp22ZQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIDHXv2dgGAHw44H0IAA2iFcyXxwMB8GA1UdIwQY MBaAFJGz9db0PoMHH6d+bT67t5NS+WG1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2JQMTF2US1nd2NmcDM1dFBydTNrMUw1WWJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS84N2E4NjMtZGE2Zi00OTgxLTkzNzgt YjJjZDRlNTgxMDBlLzEvZ01kZV9aMkFZQWZEamdmUWdBRGFJVnpKZkhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS84N2E4NjMtZGE2Zi00OTgxLTkzNzgtYjJjZDRlNTgxMDBl LzEva2JQMTF2US1nd2NmcDM1dFBydTNrMUw1WWJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCAjvoMA0E AgACMAcDBQMqCfxAMA0GCSqGSIb3DQEBCwUAA4IBAQCYVhTU5LkUmmBii2BoW9n7 eONuDB7YM07wtHXDB/iIOxiDK1PrlNvfCZjMvG37CDfCUP5glnSTldGB9IpOisUl nt4XvuKEJ2cvvmf++c02h/7ZfbVwSZu0Gjf1RVwyEjIC+/1oyBlcLhDQ2uacnl7T IoSnEJxNsonu6JDw+4b84aft1VTLd1PRihJyyt2s1xhqB1AQ75ix/0loYUC8lGVO ChJx+RGaDvQcwvw6FV1mUZeHqmyuhArckwq9sCJsEDS0C7AfWm5timrd36U8EvYd 597FGx650PZaBl7+OA7xCMgYyTZ7E8Nx6ecaUOYZIO5/h3TaVly7UkaohZ08sGEX -----END CERTIFICATE-----Generated at Sun Jan 25 15:11:39 2026 by rpki-client