This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/sGlKPZsq_kBnIcmC4jJKq4QZ1VA.roa File: sGlKPZsq_kBnIcmC4jJKq4QZ1VA.roa (raw, json) Hash identifier: iOgZ+9MieJrs7p0qDVzl8joxzBwHIKp+gS9dVYnlDS4= Subject key identifier: B0:69:4A:3D:9B:2A:FE:40:67:21:C9:82:E2:32:4A:AB:84:19:D5:50 Certificate issuer: /CN=e1a21f85f9bf17c020987ea1320d3d63c55ae489 Certificate serial: 019B76EBA050856E8918F46F379574C13985 Authority key identifier: E1:A2:1F:85:F9:BF:17:C0:20:98:7E:A1:32:0D:3D:63:C5:5A:E4:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/sGlKPZsq_kBnIcmC4jJKq4QZ1VA.roa Signing time: Thu 01 Jan 2026 00:18:31 +0000 ROA not before: Thu 01 Jan 2026 00:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202803 IP address blocks: 185.154.44.0/22 maxlen: 24 185.154.44.0/23 maxlen: 23 185.154.46.0/23 maxlen: 23 193.138.120.0/23 maxlen: 23 193.138.120.0/24 maxlen: 24 193.138.121.0/24 maxlen: 24 2a0b:5ac0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.mft rsync://rpki.ripe.net/repository/DEFAULT/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:a0:50:85:6e:89:18:f4:6f:37:95:74:c1:39:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1a21f85f9bf17c020987ea1320d3d63c55ae489 Validity Not Before: Jan 1 00:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0694a3d9b2afe406721c982e2324aab8419d550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bd:c1:ab:b5:3a:e5:fe:d8:1a:b1:a1:07:13: 93:be:5f:f8:68:56:ef:4d:69:ab:47:25:46:67:f1: b8:4e:8c:3d:35:f0:7b:bb:be:37:f5:89:4d:da:1e: 3a:1f:b1:85:a0:3a:ee:45:87:c7:d0:c1:e6:0d:28: 8b:25:8e:16:99:db:18:c2:b0:e8:f2:25:2f:69:06: 43:af:84:75:57:f5:e5:43:3d:84:44:f2:75:75:6e: 15:fe:08:a0:74:22:fa:03:19:c7:8b:49:cd:5f:58: f5:72:07:9d:c3:5a:f9:fe:55:c4:2e:a1:43:71:81: 78:93:06:9f:22:21:37:82:cf:6b:59:de:b0:1a:69: 43:7d:b3:92:c3:9c:d0:5e:55:91:a5:69:29:b2:a1: 57:8b:04:99:a5:15:7c:5b:53:8c:3c:45:ec:90:54: 5d:63:0c:04:5f:16:a8:a0:18:30:6d:c7:99:50:21: df:0a:84:4b:67:8e:59:8b:7e:aa:3f:90:ea:20:6b: 32:4d:6c:fb:9f:77:25:81:a7:ba:1e:b3:b0:04:d1: 8e:13:40:7e:0e:9a:44:6f:ee:76:16:24:8c:55:d0: c6:2b:4e:26:41:40:ac:44:f6:17:45:01:53:49:d6: d3:0e:38:5f:0d:67:14:bb:eb:88:08:fa:54:ba:eb: 25:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:69:4A:3D:9B:2A:FE:40:67:21:C9:82:E2:32:4A:AB:84:19:D5:50 X509v3 Authority Key Identifier: keyid:E1:A2:1F:85:F9:BF:17:C0:20:98:7E:A1:32:0D:3D:63:C5:5A:E4:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/sGlKPZsq_kBnIcmC4jJKq4QZ1VA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.154.44.0/22 193.138.120.0/23 IPv6: 2a0b:5ac0::/29 Signature Algorithm: sha256WithRSAEncryption 37:f6:f6:75:6a:06:44:0b:95:5d:9a:fb:b7:1e:4a:c5:82:f5: 0e:ef:a2:1d:1b:6e:6c:1b:f9:53:5b:9c:9a:fd:07:ee:e1:5c: c6:69:56:e3:af:7e:62:fd:ef:0d:88:f3:4e:3f:ff:21:58:94: 92:8e:c1:ee:e8:dd:03:c4:19:e5:42:2c:a5:8b:77:0d:06:8c: 1b:56:88:d3:98:46:5e:36:3e:31:32:38:f6:10:4a:c7:b5:e8: 0d:6c:df:e5:71:b4:0f:1f:6b:f9:a0:94:30:71:96:4d:3d:16: bd:f3:03:ee:24:9c:53:6b:3b:9d:b8:f0:75:4f:3a:83:de:31: 90:ce:12:5c:ad:f0:f6:b4:1a:25:c4:b0:df:78:00:7d:a7:41: d1:ed:df:41:74:66:1a:2b:65:0e:ed:84:83:f2:78:8f:c1:8f: ff:12:69:d1:70:74:92:40:f8:a1:fb:0c:b7:c8:a4:af:61:ce: 18:51:30:93:a3:d5:47:f4:6b:9a:ee:b9:14:83:ac:ab:64:ca: ca:95:fd:c1:6a:0b:1a:ba:c8:ce:31:5e:a9:8f:87:71:13:b9: a7:24:89:57:6d:98:1a:bc:5d:6d:f8:88:29:1b:82:e7:dc:11: 98:96:e3:d9:16:f1:d6:40:f2:06:35:10:8a:68:b6:b9:ef:9f: 50:93:40:b8 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt266BQhW6JGPRvN5V0wTmFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxYTIxZjg1ZjliZjE3YzAyMDk4N2VhMTMyMGQzZDYzYzU1 YWU0ODkwHhcNMjYwMTAxMDAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDY5NGEzZDliMmFmZTQwNjcyMWM5ODJlMjMyNGFhYjg0MTlkNTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApb3Bq7U65f7YGrGhBxOTvl/4aFbv TWmrRyVGZ/G4Tow9NfB7u7439YlN2h46H7GFoDruRYfH0MHmDSiLJY4WmdsYwrDo 8iUvaQZDr4R1V/XlQz2ERPJ1dW4V/gigdCL6AxnHi0nNX1j1cgedw1r5/lXELqFD cYF4kwafIiE3gs9rWd6wGmlDfbOSw5zQXlWRpWkpsqFXiwSZpRV8W1OMPEXskFRd YwwEXxaooBgwbceZUCHfCoRLZ45Zi36qP5DqIGsyTWz7n3clgae6HrOwBNGOE0B+ DppEb+52FiSMVdDGK04mQUCsRPYXRQFTSdbTDjhfDWcUu+uICPpUuusliwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFLBpSj2bKv5AZyHJguIySquEGdVQMB8GA1UdIwQY MBaAFOGiH4X5vxfAIJh+oTINPWPFWuSJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGFJZmhmbV9GOEFnbUg2aE1nMDlZOFZhNUlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi81MzIwOGQtNmMzMS00ZTEyLWFhMjUt ODYyNjg0ZWNlYjQ2LzEvc0dsS1Bac3Ffa0JuSWNtQzRqSktxNFFaMVZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi81MzIwOGQtNmMzMS00ZTEyLWFhMjUtODYyNjg0ZWNlYjQ2 LzEvNGFJZmhmbV9GOEFnbUg2aE1nMDlZOFZhNUlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuZosAwQB wYp4MA0EAgACMAcDBQMqC1rAMA0GCSqGSIb3DQEBCwUAA4IBAQA39vZ1agZEC5Vd mvu3HkrFgvUO76IdG25sG/lTW5ya/Qfu4VzGaVbjr35i/e8NiPNOP/8hWJSSjsHu 6N0DxBnlQiyli3cNBowbVojTmEZeNj4xMjj2EErHtegNbN/lcbQPH2v5oJQwcZZN PRa98wPuJJxTazuduPB1TzqD3jGQzhJcrfD2tBolxLDfeAB9p0HR7d9BdGYaK2UO 7YSD8niPwY//EmnRcHSSQPih+wy3yKSvYc4YUTCTo9VH9Gua7rkUg6yrZMrKlf3B agsausjOMV6pj4dxE7mnJIlXbZgavF1t+IgpG4Ln3BGYluPZFvHWQPIGNRCKaLa5 759Qk0C4 -----END CERTIFICATE-----Generated at Mon Jan 12 03:11:35 2026 by rpki-client