This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/1-GMVzwMDxSiYZaD7figfVQ0BMo8.roa File: 1-GMVzwMDxSiYZaD7figfVQ0BMo8.roa (raw, json) Hash identifier: 6cucZyQkv8Clqp8Dmj2mB2zHAVxhCmtUwPlqKFCqEpw= Subject key identifier: F8:63:15:CF:03:03:C5:28:98:65:A0:FB:7E:28:1F:55:0D:01:32:8F Certificate issuer: /CN=53c0e2078e4f3eba5f879503fdd809c383bb7628 Certificate serial: 019B79ED173E58457052104EEEA3DBEF037D Authority key identifier: 53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/1-GMVzwMDxSiYZaD7figfVQ0BMo8.roa Signing time: Thu 01 Jan 2026 14:18:59 +0000 ROA not before: Thu 01 Jan 2026 14:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396982 IP address blocks: 217.169.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:17:3e:58:45:70:52:10:4e:ee:a3:db:ef:03:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53c0e2078e4f3eba5f879503fdd809c383bb7628 Validity Not Before: Jan 1 14:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f86315cf0303c5289865a0fb7e281f550d01328f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:69:16:d8:a6:45:c6:e6:71:82:8f:3a:e7:a2: 28:2e:f0:b7:08:f8:80:01:9c:a5:50:02:4e:9b:4e: 7a:fd:7f:27:72:72:ed:92:4c:8a:b2:54:4a:35:43: ca:2f:cb:f7:a3:e4:07:9c:86:b0:51:41:97:c1:dc: 03:b5:b6:39:cd:43:d9:50:5e:ed:4b:71:1c:8b:fa: 4c:a4:0a:7a:5d:bd:e9:51:ea:e3:25:78:41:ed:2c: 9c:3c:03:c2:3c:ab:37:e7:d2:25:c4:4f:8f:2b:63: be:92:eb:a4:17:71:07:c2:3f:22:80:9f:10:d7:1a: 22:2b:fa:24:9b:37:cb:43:79:6c:0b:0d:b3:28:21: 3d:60:52:a5:4d:3d:56:57:2d:3e:08:c8:ad:43:1d: b5:09:22:84:0e:c9:6e:89:6e:85:90:f4:d4:9e:80: 61:be:de:a6:b6:38:47:9e:2f:d0:8b:ca:ea:7b:bf: 31:28:47:7a:74:2b:5d:ee:68:58:ed:27:29:cc:63: 18:95:b2:a3:d6:72:2a:59:3a:a9:4e:8e:a9:aa:93: 50:30:6d:36:d2:4f:1c:b2:d3:0b:7a:0e:92:23:29: 7a:b9:cb:05:24:37:f0:e1:01:b0:09:42:fd:0d:4a: 1f:a3:20:e4:95:d5:4c:fc:fa:78:63:78:90:df:72: d5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:63:15:CF:03:03:C5:28:98:65:A0:FB:7E:28:1F:55:0D:01:32:8F X509v3 Authority Key Identifier: keyid:53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/1-GMVzwMDxSiYZaD7figfVQ0BMo8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.169.118.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:fd:67:c7:90:49:66:a6:4e:63:a2:e8:34:2f:6b:5c:ba:73: dc:38:c2:7a:ef:fa:e2:77:c3:a8:06:71:8a:9f:01:55:b7:70: 5f:a0:63:68:31:35:33:29:87:80:63:3e:90:94:bd:01:8c:29: 31:31:b2:c7:5c:f5:a3:f8:1f:ba:cd:81:b3:4c:51:cc:86:b5: 49:87:38:89:c3:71:e0:ca:13:22:9d:df:d2:35:9b:af:35:1f: 8c:6f:2e:f9:1e:86:be:3c:5b:69:10:81:3d:3d:08:5e:18:0d: 9d:4b:e0:8f:b8:8b:2c:be:e7:e4:de:aa:37:db:89:5b:aa:24: 8b:88:d6:02:72:57:84:d8:15:99:a3:66:6a:50:0e:40:f6:fc: 4a:e5:92:28:7d:7a:35:cb:99:d4:66:40:45:ad:50:e7:f3:9d: 74:6e:d9:09:89:42:fa:68:29:04:b4:8a:2a:e1:2a:34:3d:22: 27:12:59:88:8a:9d:23:c3:37:f1:97:80:76:2b:31:f7:5d:24: 3c:76:38:df:3e:eb:ad:05:46:83:74:3e:16:44:3a:75:c0:35: 1c:ae:e7:5c:c8:28:98:95:5d:d5:89:e7:6f:45:d8:bd:68:4d: b1:f2:80:03:ac:0f:04:60:90:b7:e5:d7:c1:10:fc:ad:75:be: 03:f7:ae:e5 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt57Rc+WEVwUhBO7qPb7wN9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYzBlMjA3OGU0ZjNlYmE1Zjg3OTUwM2ZkZDgwOWMzODNi Yjc2MjgwHhcNMjYwMTAxMTQxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmODYzMTVjZjAzMDNjNTI4OTg2NWEwZmI3ZTI4MWY1NTBkMDEzMjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmWkW2KZFxuZxgo8656IoLvC3CPiA AZylUAJOm056/X8ncnLtkkyKslRKNUPKL8v3o+QHnIawUUGXwdwDtbY5zUPZUF7t S3Eci/pMpAp6Xb3pUerjJXhB7SycPAPCPKs359IlxE+PK2O+kuukF3EHwj8igJ8Q 1xoiK/okmzfLQ3lsCw2zKCE9YFKlTT1WVy0+CMitQx21CSKEDsluiW6FkPTUnoBh vt6mtjhHni/Qi8rqe78xKEd6dCtd7mhY7ScpzGMYlbKj1nIqWTqpTo6pqpNQMG02 0k8cstMLeg6SIyl6ucsFJDfw4QGwCUL9DUofoyDkldVM/Pp4Y3iQ33LVIQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFPhjFc8DA8UomGWg+34oH1UNATKPMB8GA1UdIwQY MBaAFFPA4geOTz66X4eVA/3YCcODu3YoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVThEaUI0NVBQcnBmaDVVRF9kZ0p3NE83ZGlnLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iMzY2MzYtMzMwNi00NDhmLThlY2Yt NTY0ODJiMzkwNjc4LzEvMS1HTVZ6d01EeFNpWVphRDdmaWdmVlEwQk1vOC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZDIvYjM2NjM2LTMzMDYtNDQ4Zi04ZWNmLTU2NDgyYjM5MDY3 OC8xL1U4RGlCNDVQUHJwZmg1VURfZGdKdzRPN2RpZy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANmpdjAN BgkqhkiG9w0BAQsFAAOCAQEAav1nx5BJZqZOY6LoNC9rXLpz3DjCeu/64nfDqAZx ip8BVbdwX6BjaDE1MymHgGM+kJS9AYwpMTGyx1z1o/gfus2Bs0xRzIa1SYc4icNx 4MoTIp3f0jWbrzUfjG8u+R6GvjxbaRCBPT0IXhgNnUvgj7iLLL7n5N6qN9uJW6ok i4jWAnJXhNgVmaNmalAOQPb8SuWSKH16NcuZ1GZARa1Q5/OddG7ZCYlC+mgpBLSK KuEqND0iJxJZiIqdI8M38ZeAdisx910kPHY43z7rrQVGg3Q+FkQ6dcA1HK7nXMgo mJVd1Ynnb0XYvWhNsfKAA6wPBGCQt+XXwRD8rXW+A/eu5Q== -----END CERTIFICATE-----Generated at Fri Jan 2 00:37:25 2026 by rpki-client