This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/sbWj3cDEvspo2pzFM90qmBN7XGY.roa File: sbWj3cDEvspo2pzFM90qmBN7XGY.roa (raw, json) Hash identifier: ZCuFftw5Wl2QKtDaCFVmcabJrAkBRibR6g/1SyLs2gs= Subject key identifier: B1:B5:A3:DD:C0:C4:BE:CA:68:DA:9C:C5:33:DD:2A:98:13:7B:5C:66 Certificate issuer: /CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c Certificate serial: 019B7CEE69B58077C69AC1AED4DD172B8C85 Authority key identifier: A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/sbWj3cDEvspo2pzFM90qmBN7XGY.roa Signing time: Fri 02 Jan 2026 04:19:17 +0000 ROA not before: Fri 02 Jan 2026 04:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39232 IP address blocks: 37.26.0.0/18 maxlen: 18 37.26.0.0/19 maxlen: 19 37.26.32.0/19 maxlen: 19 109.239.16.0/20 maxlen: 20 109.239.16.0/21 maxlen: 21 109.239.24.0/21 maxlen: 21 185.80.172.0/22 maxlen: 22 185.80.172.0/23 maxlen: 23 185.80.174.0/23 maxlen: 23 217.25.16.0/20 maxlen: 20 217.25.16.0/21 maxlen: 21 217.25.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.mft rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:69:b5:80:77:c6:9a:c1:ae:d4:dd:17:2b:8c:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3c963d1a11d00d384adedf9bb86e53849a9b18c Validity Not Before: Jan 2 04:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b1b5a3ddc0c4beca68da9cc533dd2a98137b5c66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bc:ab:dd:ed:49:1f:89:41:a6:96:5b:05:17: 7d:2b:d0:d9:2a:5a:51:e3:c6:24:6f:5c:ef:4e:e4: b1:eb:c5:45:07:65:86:63:d2:d1:5b:a0:45:9a:40: 37:4e:6a:80:75:de:5a:82:a9:64:2b:e7:7f:4b:f3: 9f:bd:76:98:a2:63:ee:40:6e:ef:37:13:9b:7d:a2: 1b:82:2b:b7:e5:e2:54:8f:90:3b:0f:67:3b:31:6d: 58:b6:e0:63:41:2c:9b:aa:28:39:b2:24:11:93:b7: c8:6c:63:3a:17:a6:34:78:9e:92:56:e2:4a:6a:1e: 41:f6:bc:06:e0:4f:cd:78:ba:ca:37:69:f4:16:42: 15:24:ec:b6:04:2b:7b:9b:96:74:79:e1:ed:ab:07: 58:54:fa:37:60:48:ed:3e:ea:0c:71:9b:e5:ed:71: 4c:f5:bd:1f:df:85:cc:03:e0:93:e8:5d:4e:d0:2f: 45:f1:7b:80:f6:e0:b2:55:48:ee:56:9d:89:59:25: 29:25:1e:5d:57:43:6f:c0:07:13:e3:46:ca:26:f6: cb:56:72:8c:e3:eb:a6:36:70:ce:d4:1a:d1:73:7b: 1c:d5:88:41:09:aa:06:27:c6:82:fe:16:6a:d7:e0: f8:2f:39:eb:32:b1:87:39:6c:ef:55:ed:e5:8a:d4: 94:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:B5:A3:DD:C0:C4:BE:CA:68:DA:9C:C5:33:DD:2A:98:13:7B:5C:66 X509v3 Authority Key Identifier: keyid:A3:C9:63:D1:A1:1D:00:D3:84:AD:ED:F9:BB:86:E5:38:49:A9:B1:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8lj0aEdANOEre35u4blOEmpsYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/sbWj3cDEvspo2pzFM90qmBN7XGY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fc52a0-e0f7-480b-ba7d-1042ea8e3bfb/1/o8lj0aEdANOEre35u4blOEmpsYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.26.0.0/18 109.239.16.0/20 185.80.172.0/22 217.25.16.0/20 Signature Algorithm: sha256WithRSAEncryption 04:90:aa:02:51:6a:0c:3a:8d:00:27:d2:e7:50:a7:97:b5:cb: 5e:b7:c6:d3:89:5e:8c:4a:bb:cb:14:07:b6:8d:20:d6:7d:67: 22:bc:21:49:4b:64:47:dc:3c:98:e1:b0:aa:b0:6f:80:89:2b: 36:d5:0f:d7:73:30:7c:9b:39:23:05:7a:25:e5:84:34:5a:b5: a0:5d:cb:67:0e:5f:06:f7:c5:2b:54:5b:d8:6f:22:da:0e:a0: 63:a1:3d:b5:4b:b3:b8:49:90:75:13:e3:ab:aa:a1:a5:26:64: 5b:f6:f3:aa:9d:4c:86:37:e2:78:42:97:44:00:e8:be:ae:46: 1b:fd:0f:3c:7e:45:0c:8f:a1:f9:7a:9d:fe:25:da:7d:bd:2e: 49:27:a9:d1:5b:e2:cd:eb:28:a5:9a:85:e6:6d:52:1b:47:1c: d3:d2:3a:67:b1:d7:ff:28:8e:1b:a4:06:93:cf:2e:eb:b4:69: 75:9a:63:96:12:36:75:ca:2b:9b:0d:c1:de:32:cf:16:f5:82: f4:99:2a:51:b4:28:14:27:1e:21:e9:1c:07:0f:5e:54:19:1b: 2f:72:34:34:d0:0f:68:53:1c:87:b3:8e:08:82:73:62:dc:29: ee:a8:e8:10:f2:c3:3e:0c:c5:f7:00:ce:5c:d0:9e:16:aa:e9: 39:bd:7d:40 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt87mm1gHfGmsGu1N0XK4yFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzYzk2M2QxYTExZDAwZDM4NGFkZWRmOWJiODZlNTM4NDlh OWIxOGMwHhcNMjYwMTAyMDQxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMWI1YTNkZGMwYzRiZWNhNjhkYTljYzUzM2RkMmE5ODEzN2I1YzY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmLyr3e1JH4lBppZbBRd9K9DZKlpR 48Ykb1zvTuSx68VFB2WGY9LRW6BFmkA3TmqAdd5agqlkK+d/S/OfvXaYomPuQG7v NxObfaIbgiu35eJUj5A7D2c7MW1YtuBjQSybqig5siQRk7fIbGM6F6Y0eJ6SVuJK ah5B9rwG4E/NeLrKN2n0FkIVJOy2BCt7m5Z0eeHtqwdYVPo3YEjtPuoMcZvl7XFM 9b0f34XMA+CT6F1O0C9F8XuA9uCyVUjuVp2JWSUpJR5dV0NvwAcT40bKJvbLVnKM 4+umNnDO1BrRc3sc1YhBCaoGJ8aC/hZq1+D4LznrMrGHOWzvVe3litSUpQIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFLG1o93AxL7KaNqcxTPdKpgTe1xmMB8GA1UdIwQY MBaAFKPJY9GhHQDThK3t+buG5ThJqbGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzhsajBhRWRBTk9FcmUzNXU0YmxPRW1wc1l3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9mYzUyYTAtZTBmNy00ODBiLWJhN2Qt MTA0MmVhOGUzYmZiLzEvc2JXajNjREV2c3BvMnB6Rk05MHFtQk43WEdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9mYzUyYTAtZTBmNy00ODBiLWJhN2QtMTA0MmVhOGUzYmZi LzEvbzhsajBhRWRBTk9FcmUzNXU0YmxPRW1wc1l3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQGJRoAAwQE be8QAwQCuVCsAwQE2RkQMA0GCSqGSIb3DQEBCwUAA4IBAQAEkKoCUWoMOo0AJ9Ln UKeXtctet8bTiV6MSrvLFAe2jSDWfWcivCFJS2RH3DyY4bCqsG+AiSs21Q/XczB8 mzkjBXol5YQ0WrWgXctnDl8G98UrVFvYbyLaDqBjoT21S7O4SZB1E+OrqqGlJmRb 9vOqnUyGN+J4QpdEAOi+rkYb/Q88fkUMj6H5ep3+Jdp9vS5JJ6nRW+LN6yilmoXm bVIbRxzT0jpnsdf/KI4bpAaTzy7rtGl1mmOWEjZ1yiubDcHeMs8W9YL0mSpRtCgU Jx4h6RwHD15UGRsvcjQ00A9oUxyHs44IgnNi3CnuqOgQ8sM+DMX3AM5c0J4Wquk5 vX1A -----END CERTIFICATE-----Generated at Mon Jan 12 00:48:00 2026 by rpki-client