This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SJQ34xUY1VgaLmcVn3m2WNmODRQ.roa File: SJQ34xUY1VgaLmcVn3m2WNmODRQ.roa (raw, json) Hash identifier: VkgG7AknRSRs1qeLfxSRhqQGiUxjAhr1QS3nIvTYH7M= Subject key identifier: 48:94:37:E3:15:18:D5:58:1A:2E:67:15:9F:79:B6:58:D9:8E:0D:14 Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d Certificate serial: 019B7F84463307C2B320B5C9F29A6FE68450 Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SJQ34xUY1VgaLmcVn3m2WNmODRQ.roa Signing time: Fri 02 Jan 2026 16:22:13 +0000 ROA not before: Fri 02 Jan 2026 16:22:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30937 IP address blocks: 45.141.124.0/22 maxlen: 23 45.157.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.mft rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:46:33:07:c2:b3:20:b5:c9:f2:9a:6f:e6:84:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d Validity Not Before: Jan 2 16:22:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=489437e31518d5581a2e67159f79b658d98e0d14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:20:07:59:b0:ec:d6:05:9d:6c:2e:88:3f:2d: ec:70:89:4e:86:17:cc:b0:c9:ab:f6:78:0c:2b:8c: 70:4a:c7:65:f1:76:60:4c:53:24:d3:54:f3:31:2a: 39:8a:a1:12:f5:27:ea:5f:59:89:59:e2:47:ba:ac: 05:73:de:10:9b:e9:f0:0b:2f:37:24:78:93:63:c0: ad:02:d4:62:80:1c:b6:d1:ca:69:55:de:a4:0e:be: 20:48:6b:00:f8:10:83:38:5e:5c:7a:19:02:4d:c6: b6:18:4c:c1:a5:06:4e:82:c1:a7:de:57:78:d7:f6: a1:40:fd:56:e8:e8:a6:5a:90:60:51:c8:51:44:34: 90:e5:b6:cb:3b:32:a9:1f:63:b6:63:b0:7a:c3:65: 22:9a:73:41:e9:c0:b1:22:f6:31:10:99:25:56:d3: 3d:86:10:2c:10:64:a2:63:4d:20:7e:96:fe:67:6e: 3a:e1:76:98:1b:de:3c:8d:e0:8e:02:1a:7b:59:52: 54:cb:37:b9:a3:9d:58:ac:44:3f:ba:ae:31:ae:63: ec:10:e4:e3:c6:63:9d:ae:f2:9f:3e:72:ea:36:7c: 45:c7:92:09:92:c8:cd:8a:72:f8:5e:bf:05:d9:c5: 12:a7:d4:3d:5f:c7:1e:bd:66:14:f3:a0:94:d7:9a: b1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:94:37:E3:15:18:D5:58:1A:2E:67:15:9F:79:B6:58:D9:8E:0D:14 X509v3 Authority Key Identifier: keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SJQ34xUY1VgaLmcVn3m2WNmODRQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.141.124.0/22 45.157.200.0/23 Signature Algorithm: sha256WithRSAEncryption 13:76:7a:b2:4b:59:f6:1a:a0:f4:39:b4:71:1c:1b:19:eb:84: 52:51:29:cc:35:9b:f0:4d:a8:7d:5a:cb:a2:8c:ba:86:87:ae: ce:5b:7c:e5:5f:d5:34:b5:01:36:23:96:74:93:a1:65:37:c8: c8:c7:eb:9b:c8:b2:e9:fa:bd:a0:70:0b:35:88:ea:8b:90:3e: a7:6f:55:a5:18:c8:ba:38:ee:ad:88:64:4d:05:93:22:13:5c: 03:2a:b9:c8:dd:be:b3:15:a2:bf:80:d6:06:36:6b:1c:7b:19: 5a:db:8b:e3:b1:b5:58:15:c1:bf:a9:13:d9:cf:0c:a4:f2:98: 50:43:39:c4:d6:c0:a8:6b:71:f9:7b:e8:c9:af:8b:66:60:f3: 0a:ed:a1:08:09:03:49:ff:1d:19:2e:b2:ed:b9:ef:56:8f:49: c0:15:2f:87:28:1a:53:46:59:19:b6:e1:61:70:6f:08:99:5d: c8:18:a4:44:ae:32:c8:2c:fd:81:0b:9a:31:7b:8e:8d:a6:ab: f0:71:bd:cb:d1:a8:f9:77:19:fb:26:93:fc:92:40:b8:a7:ab: f9:81:74:15:87:05:86:84:d3:04:b0:66:23:3f:ef:fb:25:b9: de:75:79:e1:05:6f:ba:bb:70:12:17:e5:e5:b2:f6:42:d8:2d: d9:0b:ae:90 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hEYzB8KzILXJ8ppv5oRQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw MTRiOGQwHhcNMjYwMTAyMTYyMjEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODk0MzdlMzE1MThkNTU4MWEyZTY3MTU5Zjc5YjY1OGQ5OGUwZDE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyCAHWbDs1gWdbC6IPy3scIlOhhfM sMmr9ngMK4xwSsdl8XZgTFMk01TzMSo5iqES9SfqX1mJWeJHuqwFc94Qm+nwCy83 JHiTY8CtAtRigBy20cppVd6kDr4gSGsA+BCDOF5cehkCTca2GEzBpQZOgsGn3ld4 1/ahQP1W6OimWpBgUchRRDSQ5bbLOzKpH2O2Y7B6w2UimnNB6cCxIvYxEJklVtM9 hhAsEGSiY00gfpb+Z2464XaYG948jeCOAhp7WVJUyze5o51YrEQ/uq4xrmPsEOTj xmOdrvKfPnLqNnxFx5IJksjNinL4Xr8F2cUSp9Q9X8cevWYU86CU15qx5wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEiUN+MVGNVYGi5nFZ95tljZjg0UMB8GA1UdIwQY MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt NmJjNzU1NzhiNGMzLzEvU0pRMzR4VVkxVmdhTG1jVm4zbTJXTm1PRFJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLY18AwQB LZ3IMA0GCSqGSIb3DQEBCwUAA4IBAQATdnqyS1n2GqD0ObRxHBsZ64RSUSnMNZvw Tah9WsuijLqGh67OW3zlX9U0tQE2I5Z0k6FlN8jIx+ubyLLp+r2gcAs1iOqLkD6n b1WlGMi6OO6tiGRNBZMiE1wDKrnI3b6zFaK/gNYGNmscexla24vjsbVYFcG/qRPZ zwyk8phQQznE1sCoa3H5e+jJr4tmYPMK7aEICQNJ/x0ZLrLtue9Wj0nAFS+HKBpT RlkZtuFhcG8ImV3IGKRErjLILP2BC5oxe46Npqvwcb3L0aj5dxn7JpP8kkC4p6v5 gXQVhwWGhNMEsGYjP+/7JbnedXnhBW+6u3ASF+XlsvZC2C3ZC66Q -----END CERTIFICATE-----Generated at Wed Jan 21 16:57:56 2026 by rpki-client