This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/GUtmTasoYg9vC_X6TeYo5LqnthI.roa File: GUtmTasoYg9vC_X6TeYo5LqnthI.roa (raw, json) Hash identifier: h4pcOYZGVhmcTnXyyDF08GhSsY9jTxf6Vxsbll0E63Y= Subject key identifier: 19:4B:66:4D:AB:28:62:0F:6F:0B:F5:FA:4D:E6:28:E4:BA:A7:B6:12 Certificate issuer: /CN=de23f18c576d6fa609133533c0d0e38d7732c652 Certificate serial: 019B7BA367A609ADD3241FEB7B10E0E2D18E Authority key identifier: DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/GUtmTasoYg9vC_X6TeYo5LqnthI.roa Signing time: Thu 01 Jan 2026 22:17:44 +0000 ROA not before: Thu 01 Jan 2026 22:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214008 IP address blocks: 64.190.21.0/24 maxlen: 24 2001:67c:f44::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:67:a6:09:ad:d3:24:1f:eb:7b:10:e0:e2:d1:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de23f18c576d6fa609133533c0d0e38d7732c652 Validity Not Before: Jan 1 22:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=194b664dab28620f6f0bf5fa4de628e4baa7b612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7f:12:e0:bc:cc:b0:1c:6c:7c:e5:d9:48:a4: 4c:8c:95:8e:db:8d:05:25:96:c1:f2:df:62:00:e0: 2b:91:31:d2:23:3f:f0:3b:ee:2c:18:9e:94:15:00: aa:85:cd:a1:3f:67:94:81:db:10:c3:17:8c:f2:1c: 24:6a:35:10:05:b6:a1:1e:ec:01:49:4d:30:42:08: dc:dc:a1:b9:a4:b9:08:8e:74:cc:9c:a5:40:49:4d: 19:1c:b1:dc:ec:33:f8:5f:aa:a0:83:7c:2a:5b:98: 9e:c8:da:77:f7:b8:1f:f6:27:9e:9a:b5:3a:50:47: a0:1b:8f:58:33:f1:22:2b:d0:6b:78:7f:77:b8:b2: b1:33:8b:60:5a:2d:6c:88:f6:d9:3f:9d:e4:8d:b9: 2d:53:b5:4e:84:58:c5:31:de:31:b8:39:2d:d3:86: 0e:62:1a:e8:a1:3e:2c:09:44:3e:10:fa:f3:32:3d: f7:11:49:19:a3:de:7c:c2:41:8a:f9:a9:1c:2c:48: 6b:5a:75:64:92:95:78:6e:b4:ac:e4:67:47:a2:3f: 0d:e6:4c:6b:a4:5f:bc:22:e4:4f:c5:f2:99:a5:6f: e4:53:b5:ba:94:1d:ad:f3:54:2e:06:a6:8b:39:cc: ab:b2:93:b1:34:4e:fd:85:a7:60:7c:e8:84:e0:d4: 4e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:4B:66:4D:AB:28:62:0F:6F:0B:F5:FA:4D:E6:28:E4:BA:A7:B6:12 X509v3 Authority Key Identifier: keyid:DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/GUtmTasoYg9vC_X6TeYo5LqnthI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.190.21.0/24 IPv6: 2001:67c:f44::/48 Signature Algorithm: sha256WithRSAEncryption 14:e8:ce:2c:ab:c6:75:5e:a6:7c:c1:a1:c8:e7:a2:33:22:ac: dd:39:d4:63:a8:18:3c:e1:94:01:a0:f0:1d:a8:c0:6b:23:b2: d4:43:61:d9:74:ea:22:c7:23:fd:0d:b8:28:0e:e4:6d:65:a1: 7f:fc:37:36:d5:d9:12:98:3f:47:4d:f9:f0:56:74:b1:e7:c8: 83:0b:6b:20:e1:27:01:7f:55:77:37:06:96:cc:a4:31:86:34: 98:b1:49:86:40:d5:25:3f:31:a5:59:9b:fe:d7:8a:4f:b4:bd: cc:b8:e5:00:10:97:03:6c:49:38:f9:5b:ee:d7:6c:b3:c9:2a: af:58:18:17:40:d1:1e:f9:35:46:bd:5f:5b:68:bb:9e:bf:63: c5:2b:da:d8:63:f2:4f:0f:a2:b4:2a:e4:b3:82:c2:f9:47:88: 75:71:ee:6d:6e:e5:cd:8f:54:c2:e4:79:d0:9b:e7:b2:0a:44: bb:97:22:c9:b6:be:92:36:63:d0:76:dd:b9:a7:c7:49:01:f4: a0:f5:84:c5:84:08:63:48:9e:34:18:23:b2:44:4f:53:f9:3c: 88:d6:2a:a2:4a:61:5e:2e:28:f1:ae:a9:b7:c7:b7:a0:9d:cb: 99:cf:07:07:8b:f5:dd:f9:b3:05:e6:2f:25:40:de:61:52:91: a7:c1:53:de -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7o2emCa3TJB/rexDg4tGOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMjNmMThjNTc2ZDZmYTYwOTEzMzUzM2MwZDBlMzhkNzcz MmM2NTIwHhcNMjYwMTAxMjIxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOTRiNjY0ZGFiMjg2MjBmNmYwYmY1ZmE0ZGU2MjhlNGJhYTdiNjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2H8S4LzMsBxsfOXZSKRMjJWO240F JZbB8t9iAOArkTHSIz/wO+4sGJ6UFQCqhc2hP2eUgdsQwxeM8hwkajUQBbahHuwB SU0wQgjc3KG5pLkIjnTMnKVASU0ZHLHc7DP4X6qgg3wqW5ieyNp397gf9ieemrU6 UEegG49YM/EiK9BreH93uLKxM4tgWi1siPbZP53kjbktU7VOhFjFMd4xuDkt04YO YhrooT4sCUQ+EPrzMj33EUkZo958wkGK+akcLEhrWnVkkpV4brSs5GdHoj8N5kxr pF+8IuRPxfKZpW/kU7W6lB2t81QuBqaLOcyrspOxNE79hadgfOiE4NRO6QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFBlLZk2rKGIPbwv1+k3mKOS6p7YSMB8GA1UdIwQY MBaAFN4j8YxXbW+mCRM1M8DQ4413MsZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2lQeGpGZHRiNllKRXpVendORGpqWGN5eGxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi85OGM1ZDktZTJiZS00OTNiLTg2NTct NWU4NjAwNmUyMGFlLzEvR1V0bVRhc29ZZzl2Q19YNlRlWW81THFudGhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi85OGM1ZDktZTJiZS00OTNiLTg2NTctNWU4NjAwNmUyMGFl LzEvM2lQeGpGZHRiNllKRXpVendORGpqWGN5eGxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAQL4VMA8E AgACMAkDBwAgAQZ8D0QwDQYJKoZIhvcNAQELBQADggEBABToziyrxnVepnzBocjn ojMirN051GOoGDzhlAGg8B2owGsjstRDYdl06iLHI/0NuCgO5G1loX/8NzbV2RKY P0dN+fBWdLHnyIMLayDhJwF/VXc3BpbMpDGGNJixSYZA1SU/MaVZm/7Xik+0vcy4 5QAQlwNsSTj5W+7XbLPJKq9YGBdA0R75NUa9X1tou56/Y8Ur2thj8k8PorQq5LOC wvlHiHVx7m1u5c2PVMLkedCb57IKRLuXIsm2vpI2Y9B23bmnx0kB9KD1hMWECGNI njQYI7JET1P5PIjWKqJKYV4uKPGuqbfHt6Cdy5nPBweL9d35swXmLyVA3mFSkafB U94= -----END CERTIFICATE-----Generated at Sun Jan 11 18:13:07 2026 by rpki-client