This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/sGL3GvA6bz-CfI4xQ6r3LdapbZw.roa File: sGL3GvA6bz-CfI4xQ6r3LdapbZw.roa (raw, json) Hash identifier: /c4CnIQqo8KlcZB09vMgKk1fNUUk44Et9DKfFTImwE4= Subject key identifier: B0:62:F7:1A:F0:3A:6F:3F:82:7C:8E:31:43:AA:F7:2D:D6:A9:6D:9C Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B1936F1FE6A3A34341039C4A4786DF56D Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/sGL3GvA6bz-CfI4xQ6r3LdapbZw.roa Signing time: Sat 13 Dec 2025 19:36:29 +0000 ROA not before: Sat 13 Dec 2025 19:36:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215355 IP address blocks: 2a14:67c0:100::/40 maxlen: 48 2a14:67c0:110::/44 maxlen: 48 2a14:67c0:298::/48 maxlen: 48 2a14:67c0:300::/40 maxlen: 48 2a14:67c0:600::/48 maxlen: 48 2a14:67c0:601::/48 maxlen: 48 2a14:67c0:1000::/40 maxlen: 48 2a14:67c0:1000::/48 maxlen: 48 2a14:67c0:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 22:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:36:f1:fe:6a:3a:34:34:10:39:c4:a4:78:6d:f5:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Dec 13 19:36:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=b062f71af03a6f3f827c8e3143aaf72dd6a96d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:44:cf:e8:71:c1:d5:67:08:e7:90:43:b1:2a: b5:34:2a:5b:9d:ac:d6:81:46:9c:13:c7:cb:ef:3a: dd:30:50:a1:97:11:e6:d5:b2:15:5a:9e:3f:ca:79: 70:12:78:38:55:8c:87:fb:a6:13:27:00:4a:ff:ed: 98:fb:37:ee:fa:f9:a7:7d:5f:ee:dd:b2:1e:fa:45: 47:1d:1e:1f:fc:55:e2:19:46:9d:6d:f0:b1:bb:6a: cd:0c:d6:8c:99:52:5f:83:e6:e2:b6:a3:1b:39:f8: c9:ca:74:ea:82:dd:90:7f:1c:1f:aa:14:0a:9a:93: 06:76:d6:3e:73:fe:7e:15:81:0b:b8:e3:bf:2e:b4: 51:30:1b:70:9f:a7:38:69:fa:00:90:f6:27:d3:70: 2c:bd:5b:0d:f9:12:94:83:d5:fa:1e:3f:d6:98:ca: 64:08:b9:44:dd:ba:6d:22:ed:a2:09:d4:39:5b:2f: 71:7e:17:3a:19:72:c8:88:2a:68:e1:dd:fd:44:55: db:1a:60:4c:ed:de:3c:9a:64:4b:b8:27:a0:3b:6d: 26:45:40:10:5f:b7:93:51:60:af:2e:7c:0c:3f:d7: aa:34:73:1f:05:ce:b4:ce:cb:0c:7d:f1:3e:e3:58: bc:13:a7:9c:40:a1:b2:24:ab:2c:be:d1:af:18:43: 9d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:62:F7:1A:F0:3A:6F:3F:82:7C:8E:31:43:AA:F7:2D:D6:A9:6D:9C X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/sGL3GvA6bz-CfI4xQ6r3LdapbZw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c0:100::/40 2a14:67c0:298::/48 2a14:67c0:300::/40 2a14:67c0:600::/47 2a14:67c0:1000::/40 Signature Algorithm: sha256WithRSAEncryption ba:29:a0:c6:26:00:33:10:6b:b6:e4:be:39:ea:49:c9:47:9d: 41:d7:8c:ea:92:07:99:44:05:41:f1:6f:13:75:01:76:51:46: be:1c:3e:e3:67:40:69:76:3d:d1:5f:b3:2d:2d:d9:00:b6:27: 4c:f7:73:a7:d5:04:7b:4a:d3:4e:c6:18:c8:78:43:17:26:72: 22:c0:4d:4a:98:61:19:03:f8:3d:19:c2:7f:b7:e8:4a:e8:47: 0b:cc:d6:15:19:56:f9:2d:5a:8d:dd:55:c1:5f:b1:fd:19:eb: 1c:0d:de:27:00:51:c1:1c:3f:44:38:2d:6c:e4:bb:42:bb:78: 2a:71:e8:ff:a7:83:1c:ac:c6:70:68:da:b4:3b:1f:57:b7:29: 73:98:06:80:fc:78:2c:98:25:44:e0:79:59:0a:b2:b2:fc:80: d8:18:bd:1e:9d:ff:52:00:17:96:d7:00:6b:6e:5b:e2:52:6b: 0b:4a:01:9c:ae:73:0b:87:8e:2b:da:ca:eb:b9:d0:39:fb:59: 14:98:87:d7:a4:b4:9a:e0:2e:5c:77:53:ab:f8:9d:37:65:61: d9:18:68:04:36:be:d3:60:5f:de:09:87:5a:50:45:65:fa:3a: 9e:4e:9a:87:aa:d0:a7:03:25:ed:80:8c:e7:cf:04:66:63:29: f8:d6:7b:1f -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZsZNvH+ajo0NBA5xKR4bfVtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjUxMjEzMTkzNjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDYyZjcxYWYwM2E2ZjNmODI3YzhlMzE0M2FhZjcyZGQ2YTk2ZDljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsETP6HHB1WcI55BDsSq1NCpbnazW gUacE8fL7zrdMFChlxHm1bIVWp4/ynlwEng4VYyH+6YTJwBK/+2Y+zfu+vmnfV/u 3bIe+kVHHR4f/FXiGUadbfCxu2rNDNaMmVJfg+bitqMbOfjJynTqgt2QfxwfqhQK mpMGdtY+c/5+FYELuOO/LrRRMBtwn6c4afoAkPYn03AsvVsN+RKUg9X6Hj/WmMpk CLlE3bptIu2iCdQ5Wy9xfhc6GXLIiCpo4d39RFXbGmBM7d48mmRLuCegO20mRUAQ X7eTUWCvLnwMP9eqNHMfBc60zssMffE+41i8E6ecQKGyJKssvtGvGEOdwQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFLBi9xrwOm8/gnyOMUOq9y3WqW2cMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvc0dMM0d2QTZiei1DZkk0eFE2cjNMZGFwYlp3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAAjAqAwYAKhRnwAED BwAqFGfAApgDBgAqFGfAAwMHASoUZ8AGAAMGACoUZ8AQMA0GCSqGSIb3DQEBCwUA A4IBAQC6KaDGJgAzEGu25L456knJR51B14zqkgeZRAVB8W8TdQF2UUa+HD7jZ0Bp dj3RX7MtLdkAtidM93On1QR7StNOxhjIeEMXJnIiwE1KmGEZA/g9GcJ/t+hK6EcL zNYVGVb5LVqN3VXBX7H9GescDd4nAFHBHD9EOC1s5LtCu3gqcej/p4McrMZwaNq0 Ox9XtylzmAaA/HgsmCVE4HlZCrKy/IDYGL0enf9SABeW1wBrblviUmsLSgGcrnML h44r2srrudA5+1kUmIfXpLSa4C5cd1Or+J03ZWHZGGgENr7TYF/eCYdaUEVl+jqe TpqHqtCnAyXtgIznzwRmYyn41nsf -----END CERTIFICATE-----Generated at Tue Dec 16 04:03:13 2025 by rpki-client