This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/SMN2TicHTITFE7SoU6JvilZobIM.roa File: SMN2TicHTITFE7SoU6JvilZobIM.roa (raw, json) Hash identifier: Jgb+gxe0VdXUottoUDRHcVAZQNKtB28hNd2imzpc8AQ= Subject key identifier: 48:C3:76:4E:27:07:4C:84:C5:13:B4:A8:53:A2:6F:8A:56:68:6C:83 Certificate issuer: /CN=5d9ad8899d5bc8549eedd3e59f2d0d62135ccf14 Certificate serial: 019B7EA4D21F638E35A1A037358691A53E8A Authority key identifier: 5D:9A:D8:89:9D:5B:C8:54:9E:ED:D3:E5:9F:2D:0D:62:13:5C:CF:14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZrYiZ1byFSe7dPlny0NYhNczxQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/SMN2TicHTITFE7SoU6JvilZobIM.roa Signing time: Fri 02 Jan 2026 12:18:09 +0000 ROA not before: Fri 02 Jan 2026 12:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60820 IP address blocks: 185.26.214.0/24 maxlen: 24 2a14:4000::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/XZrYiZ1byFSe7dPlny0NYhNczxQ.crl rsync://rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/XZrYiZ1byFSe7dPlny0NYhNczxQ.mft rsync://rpki.ripe.net/repository/DEFAULT/XZrYiZ1byFSe7dPlny0NYhNczxQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:d2:1f:63:8e:35:a1:a0:37:35:86:91:a5:3e:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d9ad8899d5bc8549eedd3e59f2d0d62135ccf14 Validity Not Before: Jan 2 12:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48c3764e27074c84c513b4a853a26f8a56686c83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d5:64:d2:82:1c:3c:6f:c8:10:e1:03:38:be: ca:42:db:d8:db:c5:71:8c:00:1f:3d:1f:8d:e4:b4: 38:9d:22:a3:21:e4:a1:9b:6f:c9:f0:6e:d0:e5:a3: 33:a3:73:41:09:c2:98:82:df:3c:c7:f4:b2:a9:4d: 28:85:88:32:cb:1b:c9:6f:1c:c3:fb:2b:88:87:5b: b5:1b:e0:4f:71:1a:03:7c:41:9d:1b:b3:60:df:7b: 1f:b6:ff:53:0d:e6:0b:43:e9:b4:d4:c5:88:47:8f: 19:31:d9:07:43:60:61:1c:72:21:15:8f:1b:6e:33: e3:20:d5:bb:69:fe:78:8a:52:ef:19:ec:5d:7e:05: 2b:ba:6e:48:18:44:ea:80:d8:7b:a7:ff:e4:4f:e1: 47:ea:01:54:ad:5a:97:a3:e5:f5:0c:1f:4a:30:20: 81:09:3e:3c:86:7f:00:09:83:6f:d6:62:e7:c6:b9: f8:5a:c6:79:2e:68:fc:da:69:d9:43:bc:9b:b1:b7: 9d:79:08:86:a1:a5:a3:e3:5f:cb:7a:4d:34:4e:6b: f5:a7:ff:9c:f1:d2:d0:1d:90:a2:73:dc:7f:32:68: 6e:6f:48:e1:4d:bf:ac:8f:62:67:b8:6b:08:3c:d9: 59:2e:a3:fd:96:33:2d:eb:68:5f:0a:1a:83:4b:b6: 79:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C3:76:4E:27:07:4C:84:C5:13:B4:A8:53:A2:6F:8A:56:68:6C:83 X509v3 Authority Key Identifier: keyid:5D:9A:D8:89:9D:5B:C8:54:9E:ED:D3:E5:9F:2D:0D:62:13:5C:CF:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZrYiZ1byFSe7dPlny0NYhNczxQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/SMN2TicHTITFE7SoU6JvilZobIM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/bcd792-8956-45fe-8534-0931fd3e5bee/1/XZrYiZ1byFSe7dPlny0NYhNczxQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.26.214.0/24 IPv6: 2a14:4000::/29 Signature Algorithm: sha256WithRSAEncryption 64:c8:53:a8:47:3a:95:fa:d2:80:d3:43:01:d0:4e:c3:35:09: ca:86:86:2b:6b:a3:91:9a:e0:6d:02:4d:c4:48:fd:14:f1:ed: 05:af:dd:40:0e:f5:3e:76:3e:56:57:1b:a8:8a:b2:01:5a:e1: 7d:b8:3f:03:9f:01:75:03:07:4a:45:b8:34:b9:9e:fd:b2:27: 95:da:da:1a:8d:48:ab:23:da:f6:46:fb:67:99:ec:87:b7:ff: a4:1f:95:f6:f7:61:fa:0f:dc:bd:8d:de:86:ce:ea:e8:12:c8: 1b:d2:cc:c3:12:4b:82:21:b2:a2:34:ed:a2:cb:d9:cc:4b:64: c9:d4:dd:16:cd:43:aa:aa:cc:e7:95:4d:8d:08:35:fd:06:55: 57:0f:a1:68:21:c8:bb:90:1b:9c:70:12:7d:52:12:1c:db:3c: 91:5f:b9:40:37:df:e9:df:9c:d8:61:8a:bc:98:af:c6:b1:4f: d3:3d:23:f6:71:b6:17:8e:f4:f6:b3:9e:62:a3:5c:eb:df:b1: c5:b7:20:79:2a:73:34:6c:9d:06:51:66:0d:de:7e:16:aa:26: c7:93:e5:68:a0:fd:d4:e8:60:0e:93:5e:61:d2:49:a1:1e:a9: ea:f4:c6:d4:29:0c:73:c0:c4:4f:15:cc:e0:b9:1a:95:48:4e: 80:42:c7:95 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pNIfY441oaA3NYaRpT6KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkOWFkODg5OWQ1YmM4NTQ5ZWVkZDNlNTlmMmQwZDYyMTM1 Y2NmMTQwHhcNMjYwMTAyMTIxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OGMzNzY0ZTI3MDc0Yzg0YzUxM2I0YTg1M2EyNmY4YTU2Njg2YzgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29Vk0oIcPG/IEOEDOL7KQtvY28Vx jAAfPR+N5LQ4nSKjIeShm2/J8G7Q5aMzo3NBCcKYgt88x/SyqU0ohYgyyxvJbxzD +yuIh1u1G+BPcRoDfEGdG7Ng33sftv9TDeYLQ+m01MWIR48ZMdkHQ2BhHHIhFY8b bjPjINW7af54ilLvGexdfgUrum5IGETqgNh7p//kT+FH6gFUrVqXo+X1DB9KMCCB CT48hn8ACYNv1mLnxrn4WsZ5Lmj82mnZQ7ybsbedeQiGoaWj41/Lek00Tmv1p/+c 8dLQHZCic9x/Mmhub0jhTb+sj2JnuGsIPNlZLqP9ljMt62hfChqDS7Z5DQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFEjDdk4nB0yExRO0qFOib4pWaGyDMB8GA1UdIwQY MBaAFF2a2ImdW8hUnu3T5Z8tDWITXM8UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFpyWWlaMWJ5RlNlN2RQbG55ME5ZaE5jenhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9iY2Q3OTItODk1Ni00NWZlLTg1MzQt MDkzMWZkM2U1YmVlLzEvU01OMlRpY0hUSVRGRTdTb1U2SnZpbFpvYklNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZS9iY2Q3OTItODk1Ni00NWZlLTg1MzQtMDkzMWZkM2U1YmVl LzEvWFpyWWlaMWJ5RlNlN2RQbG55ME5ZaE5jenhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuRrWMA0E AgACMAcDBQMqFEAAMA0GCSqGSIb3DQEBCwUAA4IBAQBkyFOoRzqV+tKA00MB0E7D NQnKhoYra6ORmuBtAk3ESP0U8e0Fr91ADvU+dj5WVxuoirIBWuF9uD8DnwF1AwdK Rbg0uZ79sieV2toajUirI9r2RvtnmeyHt/+kH5X292H6D9y9jd6GzuroEsgb0szD EkuCIbKiNO2iy9nMS2TJ1N0WzUOqqsznlU2NCDX9BlVXD6FoIci7kBuccBJ9UhIc 2zyRX7lAN9/p35zYYYq8mK/GsU/TPSP2cbYXjvT2s55io1zr37HFtyB5KnM0bJ0G UWYN3n4WqibHk+VooP3U6GAOk15h0kmhHqnq9MbUKQxzwMRPFczguRqVSE6AQseV -----END CERTIFICATE-----Generated at Mon Jan 12 09:20:36 2026 by rpki-client