This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/eeb813-f24c-4175-828b-9d58ce221843/1/sg6tgAybBjXrNxu4j4vvtnhkeRs.roa File: sg6tgAybBjXrNxu4j4vvtnhkeRs.roa (raw, json) Hash identifier: znWkPFTjms0Q4dHid9C/SISTIFSJsDcguftIuJobD7Q= Subject key identifier: B2:0E:AD:80:0C:9B:06:35:EB:37:1B:B8:8F:8B:EF:B6:78:64:79:1B Certificate issuer: /CN=44566c1a283d553ef3f656f57223984dda7c355f Certificate serial: 019B783501957379508BBFBFA764A23B1259 Authority key identifier: 44:56:6C:1A:28:3D:55:3E:F3:F6:56:F5:72:23:98:4D:DA:7C:35:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFZsGig9VT7z9lb1ciOYTdp8NV8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/eeb813-f24c-4175-828b-9d58ce221843/1/sg6tgAybBjXrNxu4j4vvtnhkeRs.roa Signing time: Thu 01 Jan 2026 06:18:18 +0000 ROA not before: Thu 01 Jan 2026 06:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29399 IP address blocks: 170.84.252.0/23 maxlen: 27 178.250.88.0/21 maxlen: 27 185.49.128.0/22 maxlen: 27 185.212.216.0/22 maxlen: 27 195.137.222.0/23 maxlen: 27 195.149.85.0/24 maxlen: 27 212.85.224.0/24 maxlen: 24 212.85.225.0/24 maxlen: 24 212.85.226.0/24 maxlen: 24 212.85.227.0/24 maxlen: 24 2a03:5d00::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/eeb813-f24c-4175-828b-9d58ce221843/1/RFZsGig9VT7z9lb1ciOYTdp8NV8.crl rsync://rpki.ripe.net/repository/DEFAULT/03/eeb813-f24c-4175-828b-9d58ce221843/1/RFZsGig9VT7z9lb1ciOYTdp8NV8.mft rsync://rpki.ripe.net/repository/DEFAULT/RFZsGig9VT7z9lb1ciOYTdp8NV8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:01:95:73:79:50:8b:bf:bf:a7:64:a2:3b:12:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44566c1a283d553ef3f656f57223984dda7c355f Validity Not Before: Jan 1 06:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b20ead800c9b0635eb371bb88f8befb67864791b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b2:e0:19:a1:1f:19:c8:c3:a4:67:c4:9f:99: 71:e0:6b:d4:89:9d:80:37:90:50:a3:2f:a4:82:c6: 12:86:2e:4a:cf:16:f6:11:5e:0f:bb:52:fa:91:9f: 02:b5:fd:35:e4:93:59:4f:46:f3:e2:c9:35:71:17: 3b:a5:a6:1b:7f:c3:94:93:08:c2:1a:bd:7e:f9:5a: eb:be:9c:59:b8:c6:89:99:3c:4c:04:c2:11:e4:46: 7d:65:58:39:c7:9e:7a:38:9b:54:21:e8:07:5f:ef: 33:3d:cb:51:e0:5d:a5:c0:1e:13:b4:f3:74:c6:6f: fb:7b:2e:7f:17:08:0e:f7:4a:d8:8a:64:c2:6c:c3: 3f:04:d2:9d:c1:45:fe:65:79:04:42:a0:bb:ee:5f: 76:89:92:ae:a7:ea:31:8d:b4:6f:c4:85:3d:64:d5: b7:16:06:eb:d8:80:81:97:67:8a:29:27:3e:38:e3: e5:97:85:2a:37:b4:0d:4a:ba:0b:65:48:3b:9f:57: 6d:38:50:f4:b0:70:bf:36:b3:c6:5d:1e:5b:a4:51: d3:3a:03:0f:3c:cf:85:e0:f4:f0:8f:a0:71:22:9a: 28:19:4a:1b:5d:89:b8:5a:80:02:aa:33:b7:5b:3f: 98:54:b4:f4:d7:0b:6a:57:c2:f7:84:6a:82:89:08: f0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:0E:AD:80:0C:9B:06:35:EB:37:1B:B8:8F:8B:EF:B6:78:64:79:1B X509v3 Authority Key Identifier: keyid:44:56:6C:1A:28:3D:55:3E:F3:F6:56:F5:72:23:98:4D:DA:7C:35:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFZsGig9VT7z9lb1ciOYTdp8NV8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/eeb813-f24c-4175-828b-9d58ce221843/1/sg6tgAybBjXrNxu4j4vvtnhkeRs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/eeb813-f24c-4175-828b-9d58ce221843/1/RFZsGig9VT7z9lb1ciOYTdp8NV8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.84.252.0/23 178.250.88.0/21 185.49.128.0/22 185.212.216.0/22 195.137.222.0/23 195.149.85.0/24 212.85.224.0/22 IPv6: 2a03:5d00::/29 Signature Algorithm: sha256WithRSAEncryption 87:5b:68:fb:8c:96:19:1c:38:78:8d:87:e7:dd:3d:77:9c:7d: 08:77:7c:c5:9e:be:22:36:47:fb:99:92:5f:a5:a7:e7:1b:97: b7:a4:47:07:32:28:6b:82:c7:d2:db:60:b9:90:de:86:8c:6e: 38:d5:30:be:0d:6a:a4:f3:21:3c:c6:ed:df:89:68:bc:b5:c7: 46:fa:a7:0f:93:84:7e:f6:f1:e1:af:54:ee:b9:bb:4d:79:67: c8:b1:20:ce:10:e9:b6:9c:f2:65:3b:af:c6:f4:b6:3d:14:a7: e3:bd:c7:0c:d6:9e:23:6a:c5:6b:69:8a:76:6f:69:2e:47:13: d4:2d:81:00:16:6a:06:1b:b4:b0:35:99:22:c9:c5:a9:56:5d: 2e:cd:5f:73:f5:00:57:b9:18:54:6e:b7:89:17:21:b2:a0:6a: 1b:57:2f:6a:c5:6d:1e:ea:57:94:d5:22:20:7b:3e:ae:0f:2d: 15:a8:81:cf:fb:78:4d:16:7f:9f:e7:4e:24:44:5a:2a:c7:af: 2b:d0:ea:c1:77:99:e8:f5:33:c8:44:0d:48:07:32:a1:fa:1c: 70:90:22:12:b1:43:07:8a:a1:cf:c8:d0:30:14:15:ba:8a:5e: 73:a9:d9:04:16:78:4c:79:02:05:ac:c7:4f:d0:15:45:ad:60: 34:03:19:b2 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt4NQGVc3lQi7+/p2SiOxJZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0NTY2YzFhMjgzZDU1M2VmM2Y2NTZmNTcyMjM5ODRkZGE3 YzM1NWYwHhcNMjYwMTAxMDYxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMjBlYWQ4MDBjOWIwNjM1ZWIzNzFiYjg4ZjhiZWZiNjc4NjQ3OTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbLgGaEfGcjDpGfEn5lx4GvUiZ2A N5BQoy+kgsYShi5Kzxb2EV4Pu1L6kZ8Ctf015JNZT0bz4sk1cRc7paYbf8OUkwjC Gr1++VrrvpxZuMaJmTxMBMIR5EZ9ZVg5x556OJtUIegHX+8zPctR4F2lwB4TtPN0 xm/7ey5/FwgO90rYimTCbMM/BNKdwUX+ZXkEQqC77l92iZKup+oxjbRvxIU9ZNW3 Fgbr2ICBl2eKKSc+OOPll4UqN7QNSroLZUg7n1dtOFD0sHC/NrPGXR5bpFHTOgMP PM+F4PTwj6BxIpooGUobXYm4WoACqjO3Wz+YVLT01wtqV8L3hGqCiQjwMQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFLIOrYAMmwY16zcbuI+L77Z4ZHkbMB8GA1UdIwQY MBaAFERWbBooPVU+8/ZW9XIjmE3afDVfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkZac0dpZzlWVDd6OWxiMWNpT1lUZHA4TlY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9lZWI4MTMtZjI0Yy00MTc1LTgyOGIt OWQ1OGNlMjIxODQzLzEvc2c2dGdBeWJCalhyTnh1NGo0dnZ0bmhrZVJzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9lZWI4MTMtZjI0Yy00MTc1LTgyOGItOWQ1OGNlMjIxODQz LzEvUkZac0dpZzlWVDd6OWxiMWNpT1lUZHA4TlY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQBqlT8AwQD svpYAwQCuTGAAwQCudTYAwQBw4neAwQAw5VVAwQC1FXgMA0EAgACMAcDBQMqA10A MA0GCSqGSIb3DQEBCwUAA4IBAQCHW2j7jJYZHDh4jYfn3T13nH0Id3zFnr4iNkf7 mZJfpafnG5e3pEcHMihrgsfS22C5kN6GjG441TC+DWqk8yE8xu3fiWi8tcdG+qcP k4R+9vHhr1TuubtNeWfIsSDOEOm2nPJlO6/G9LY9FKfjvccM1p4jasVraYp2b2ku RxPULYEAFmoGG7SwNZkiycWpVl0uzV9z9QBXuRhUbreJFyGyoGobVy9qxW0e6leU 1SIgez6uDy0VqIHP+3hNFn+f504kRFoqx68r0OrBd5no9TPIRA1IBzKh+hxwkCIS sUMHiqHPyNAwFBW6il5zqdkEFnhMeQIFrMdP0BVFrWA0Axmy -----END CERTIFICATE-----Generated at Mon Jan 26 11:41:11 2026 by rpki-client