This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/5335e2-1598-4822-8227-8353aa40baeb/1/sGfgaW1LiewBhrOBJvsdriioaTU.roa File: sGfgaW1LiewBhrOBJvsdriioaTU.roa (raw, json) Hash identifier: op9iNN949E3VNzRYyQTY+5GgLdt3CTSRD0WZrCE+fbE= Subject key identifier: B0:67:E0:69:6D:4B:89:EC:01:86:B3:81:26:FB:1D:AE:28:A8:69:35 Certificate issuer: /CN=e38f10a2c792d0d365678a36ca7f7f1409ca3afd Certificate serial: 019B7F15982AF55CF82A48DB15BF6C9A3F4D Authority key identifier: E3:8F:10:A2:C7:92:D0:D3:65:67:8A:36:CA:7F:7F:14:09:CA:3A:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/448QoseS0NNlZ4o2yn9_FAnKOv0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/5335e2-1598-4822-8227-8353aa40baeb/1/sGfgaW1LiewBhrOBJvsdriioaTU.roa Signing time: Fri 02 Jan 2026 14:21:20 +0000 ROA not before: Fri 02 Jan 2026 14:21:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64472 IP address blocks: 185.162.180.0/23 maxlen: 23 185.162.182.0/24 maxlen: 24 2a0a:9000::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/5335e2-1598-4822-8227-8353aa40baeb/1/448QoseS0NNlZ4o2yn9_FAnKOv0.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/5335e2-1598-4822-8227-8353aa40baeb/1/448QoseS0NNlZ4o2yn9_FAnKOv0.mft rsync://rpki.ripe.net/repository/DEFAULT/448QoseS0NNlZ4o2yn9_FAnKOv0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:98:2a:f5:5c:f8:2a:48:db:15:bf:6c:9a:3f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e38f10a2c792d0d365678a36ca7f7f1409ca3afd Validity Not Before: Jan 2 14:21:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b067e0696d4b89ec0186b38126fb1dae28a86935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:fa:de:ca:14:b3:52:a1:df:8d:7b:a4:38:dd: a3:ae:5d:93:6e:84:77:84:dc:0c:6c:7a:5c:66:95: 10:a2:5f:bc:33:a6:83:0b:c7:4e:7d:62:c2:e1:49: 80:89:e6:bd:41:81:7b:de:86:5f:d1:59:43:48:80: 07:8e:7f:aa:15:ec:b5:ad:93:f6:03:00:55:c6:0b: 01:dd:52:1f:5d:16:bb:d7:3d:89:06:00:13:1f:c7: 4a:52:26:fc:49:0e:3e:fc:81:25:12:3f:8a:a9:1a: b3:8e:52:cf:1c:d0:ab:09:1e:67:f3:6e:8c:f1:5f: 1c:41:c2:9b:af:b7:62:5b:49:51:d6:2a:dc:5a:58: 4e:6b:b4:5c:f0:44:64:da:70:8d:d7:d6:02:73:e3: 10:cc:99:99:84:92:3d:71:63:63:ba:54:69:ba:61: a7:65:7b:46:ec:10:c3:3d:9e:41:66:2d:63:6b:f0: 51:fb:80:1f:bf:f6:6a:27:24:08:82:66:cf:e5:82: 87:8b:23:12:3a:04:67:72:0b:94:b0:76:84:4c:66: 9d:aa:82:94:89:ed:42:39:09:38:df:47:30:1a:9a: e8:34:8e:39:07:3f:e8:84:2f:34:58:b7:f4:46:aa: 02:16:ad:21:70:7f:63:15:aa:cd:84:b0:87:b0:23: 3b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:67:E0:69:6D:4B:89:EC:01:86:B3:81:26:FB:1D:AE:28:A8:69:35 X509v3 Authority Key Identifier: keyid:E3:8F:10:A2:C7:92:D0:D3:65:67:8A:36:CA:7F:7F:14:09:CA:3A:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/448QoseS0NNlZ4o2yn9_FAnKOv0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5335e2-1598-4822-8227-8353aa40baeb/1/sGfgaW1LiewBhrOBJvsdriioaTU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5335e2-1598-4822-8227-8353aa40baeb/1/448QoseS0NNlZ4o2yn9_FAnKOv0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.162.180.0-185.162.182.255 IPv6: 2a0a:9000::/29 Signature Algorithm: sha256WithRSAEncryption 65:23:2c:7c:1c:f6:8c:6d:93:f6:d4:fe:4e:94:2d:bf:db:91: 52:82:57:33:df:3f:22:b7:38:17:90:84:ac:b8:e3:13:6b:da: 6b:17:64:e7:67:45:3a:c7:83:bb:60:8d:9c:f1:cd:34:80:62: de:51:52:2e:bc:e8:31:8a:85:9f:80:81:c2:bc:99:5e:a9:7e: 5c:ae:e9:d7:cd:08:6a:5c:42:ff:04:a9:3c:ec:12:c9:cb:9e: 61:79:e1:8c:8e:9e:29:dd:f2:f6:73:59:61:e0:5d:94:00:75: ee:2a:fb:a7:06:a0:5d:8c:22:da:92:5c:81:38:f9:ca:bb:9e: 4f:1c:84:80:f6:be:50:b0:2e:5d:35:57:72:1e:31:8e:51:8c: 61:63:f5:f9:d8:a8:0a:07:af:6e:cb:8c:65:1e:d7:b6:ff:d6: 20:76:54:d9:d7:97:38:4c:22:1d:c7:ac:61:cc:5e:6c:82:c1: 5b:6a:97:ae:bf:f6:29:fb:a2:5b:4f:35:28:e9:a1:fa:59:15: c9:a5:ae:99:bf:d0:dc:b4:51:d8:f4:36:5d:d2:19:60:51:2c: fe:56:7a:fb:5c:6d:8a:aa:98:8f:f9:25:26:0c:7d:9e:eb:57: d8:06:32:57:3c:21:23:e1:0b:83:2d:f5:36:70:7f:c5:96:bf: b8:fd:bb:af -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt/FZgq9Vz4KkjbFb9smj9NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzOGYxMGEyYzc5MmQwZDM2NTY3OGEzNmNhN2Y3ZjE0MDlj YTNhZmQwHhcNMjYwMTAyMTQyMTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDY3ZTA2OTZkNGI4OWVjMDE4NmIzODEyNmZiMWRhZTI4YTg2OTM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9/reyhSzUqHfjXukON2jrl2TboR3 hNwMbHpcZpUQol+8M6aDC8dOfWLC4UmAiea9QYF73oZf0VlDSIAHjn+qFey1rZP2 AwBVxgsB3VIfXRa71z2JBgATH8dKUib8SQ4+/IElEj+KqRqzjlLPHNCrCR5n826M 8V8cQcKbr7diW0lR1ircWlhOa7Rc8ERk2nCN19YCc+MQzJmZhJI9cWNjulRpumGn ZXtG7BDDPZ5BZi1ja/BR+4Afv/ZqJyQIgmbP5YKHiyMSOgRncguUsHaETGadqoKU ie1COQk430cwGproNI45Bz/ohC80WLf0RqoCFq0hcH9jFarNhLCHsCM7cQIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFLBn4GltS4nsAYazgSb7Ha4oqGk1MB8GA1UdIwQY MBaAFOOPEKLHktDTZWeKNsp/fxQJyjr9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDQ4UW9zZVMwTk5sWjRvMnluOV9GQW5LT3YwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi81MzM1ZTItMTU5OC00ODIyLTgyMjct ODM1M2FhNDBiYWViLzEvc0dmZ2FXMUxpZXdCaHJPQkp2c2RyaWlvYVRVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi81MzM1ZTItMTU5OC00ODIyLTgyMjctODM1M2FhNDBiYWVi LzEvNDQ4UW9zZVMwTk5sWjRvMnluOV9GQW5LT3YwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAUBAIAATAOMAwDBAK5orQD BAC5orYwDQQCAAIwBwMFAyoKkAAwDQYJKoZIhvcNAQELBQADggEBAGUjLHwc9oxt k/bU/k6ULb/bkVKCVzPfPyK3OBeQhKy44xNr2msXZOdnRTrHg7tgjZzxzTSAYt5R Ui686DGKhZ+AgcK8mV6pflyu6dfNCGpcQv8EqTzsEsnLnmF54YyOnind8vZzWWHg XZQAde4q+6cGoF2MItqSXIE4+cq7nk8chID2vlCwLl01V3IeMY5RjGFj9fnYqAoH r27LjGUe17b/1iB2VNnXlzhMIh3HrGHMXmyCwVtql66/9in7oltPNSjpofpZFcml rpm/0Ny0Udj0Nl3SGWBRLP5WevtcbYqqmI/5JSYMfZ7rV9gGMlc8ISPhC4Mt9TZw f8WWv7j9u68= -----END CERTIFICATE-----Generated at Sat Jan 10 04:20:35 2026 by rpki-client