This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/SgsTOpfz4GV5ysHaU_hkxTEuBfY.roa File: SgsTOpfz4GV5ysHaU_hkxTEuBfY.roa (raw, json) Hash identifier: 6wqRkJqmJOrf7latD4lpHfKJuj57gPHrqy5yXyHp9PQ= Subject key identifier: 4A:0B:13:3A:97:F3:E0:65:79:CA:C1:DA:53:F8:64:C5:31:2E:05:F6 Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f Certificate serial: 019B79ED22E3205FA5E19EBA9ECE3A1C658E Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/SgsTOpfz4GV5ysHaU_hkxTEuBfY.roa Signing time: Thu 01 Jan 2026 14:19:02 +0000 ROA not before: Thu 01 Jan 2026 14:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202600 IP address blocks: 194.181.43.0/24 maxlen: 24 194.181.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.mft rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:22:e3:20:5f:a5:e1:9e:ba:9e:ce:3a:1c:65:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f Validity Not Before: Jan 1 14:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a0b133a97f3e06579cac1da53f864c5312e05f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2c:f6:bd:50:8b:07:c9:83:a5:71:56:4c:44: aa:5e:84:c6:c2:37:c8:94:14:42:55:01:b6:6f:1d: 85:00:2d:f1:09:5c:5a:15:30:92:b1:5f:3a:01:c5: bf:4a:4e:a4:eb:df:60:0d:0e:ca:bc:37:85:7b:63: e9:33:aa:d4:6d:39:74:d8:a8:5b:7a:15:aa:0f:5a: 3d:49:1d:00:31:ef:8b:ff:47:ee:ab:04:9a:00:69: b3:8d:60:d4:f7:ae:bb:ce:45:d4:db:d4:16:14:53: fe:ab:10:90:b4:ce:35:b9:ee:39:dc:20:bb:da:ce: f6:97:46:bc:4a:21:2b:bd:4c:96:64:b0:5f:50:ae: af:75:de:74:71:7e:09:b7:86:43:3d:8e:40:d9:da: 2b:fa:72:33:b9:88:12:8a:d1:e3:ba:fa:ad:8a:93: c7:86:43:65:93:ca:8c:d2:14:cf:ff:07:32:23:ac: ef:53:09:77:ad:f2:68:54:e8:f9:d9:55:4b:cd:f1: 04:d3:f5:79:8f:ad:70:6e:ba:36:ed:91:d4:8b:61: b8:f6:1e:8d:b3:68:06:ee:f3:49:9f:7d:1c:20:26: 87:df:bf:95:af:0b:b5:b6:6b:c7:42:f4:a6:c2:f5: 04:6b:ec:61:bb:74:51:e2:ea:c5:31:c1:ee:36:4c: e2:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:0B:13:3A:97:F3:E0:65:79:CA:C1:DA:53:F8:64:C5:31:2E:05:F6 X509v3 Authority Key Identifier: keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/SgsTOpfz4GV5ysHaU_hkxTEuBfY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.181.43.0-194.181.44.255 Signature Algorithm: sha256WithRSAEncryption 26:c9:f5:61:37:e5:e6:6a:56:27:50:b8:1f:63:b9:28:c3:18: 25:ae:49:7b:b3:00:b0:0f:48:bf:cf:d1:08:45:8e:2c:c1:4b: 25:1c:2a:98:36:a0:71:70:31:36:8e:73:bc:2e:b1:10:43:10: fb:56:c6:50:76:18:9a:22:30:66:9f:a0:ad:12:e4:8d:a6:1c: 10:2d:c1:59:37:1c:4b:84:ef:a0:5b:5e:0a:f2:58:a5:de:b2: 60:f6:ea:5a:4f:b7:27:90:12:82:d1:6f:79:91:b7:28:28:77: 66:af:1c:e0:52:2d:35:a7:63:c9:50:7d:99:11:8c:83:2c:cb: ba:fa:65:76:a7:0a:f6:74:e7:12:6f:79:17:94:49:6c:5d:6b: 9e:21:8e:f9:33:e0:16:94:be:d5:5a:67:c5:5f:14:ba:ad:b1: 86:81:f6:2c:d0:cb:48:40:63:6c:ed:e1:50:90:c5:9e:1a:62: 2d:15:ca:e1:95:5e:86:ad:37:29:04:03:98:5d:a7:9d:4a:d6: 7e:33:a0:8b:72:d5:91:4f:61:0a:00:73:0f:21:bc:6d:2c:c4: d1:92:36:d7:a8:e6:bc:5f:0a:69:25:6a:cd:d2:f8:47:6f:d2: e5:8d:e5:41:aa:fa:67:37:cc:d8:b2:29:44:30:d4:37:48:9f: 7e:6d:fd:f6 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt57SLjIF+l4Z66ns46HGWOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw MTE4OGYwHhcNMjYwMTAxMTQxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTBiMTMzYTk3ZjNlMDY1NzljYWMxZGE1M2Y4NjRjNTMxMmUwNWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzCz2vVCLB8mDpXFWTESqXoTGwjfI lBRCVQG2bx2FAC3xCVxaFTCSsV86AcW/Sk6k699gDQ7KvDeFe2PpM6rUbTl02Khb ehWqD1o9SR0AMe+L/0fuqwSaAGmzjWDU9667zkXU29QWFFP+qxCQtM41ue453CC7 2s72l0a8SiErvUyWZLBfUK6vdd50cX4Jt4ZDPY5A2dor+nIzuYgSitHjuvqtipPH hkNlk8qM0hTP/wcyI6zvUwl3rfJoVOj52VVLzfEE0/V5j61wbro27ZHUi2G49h6N s2gG7vNJn30cICaH37+Vrwu1tmvHQvSmwvUEa+xhu3RR4urFMcHuNkzihwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFEoLEzqX8+BlecrB2lP4ZMUxLgX2MB8GA1UdIwQY MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt YzA2NzFiZjRjZjNlLzEvU2dzVE9wZno0R1Y1eXNIYVVfaGt4VEV1QmZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBADCtSsD BADCtSwwDQYJKoZIhvcNAQELBQADggEBACbJ9WE35eZqVidQuB9juSjDGCWuSXuz ALAPSL/P0QhFjizBSyUcKpg2oHFwMTaOc7wusRBDEPtWxlB2GJoiMGafoK0S5I2m HBAtwVk3HEuE76BbXgryWKXesmD26lpPtyeQEoLRb3mRtygod2avHOBSLTWnY8lQ fZkRjIMsy7r6ZXanCvZ05xJveReUSWxda54hjvkz4BaUvtVaZ8VfFLqtsYaB9izQ y0hAY2zt4VCQxZ4aYi0VyuGVXoatNykEA5hdp51K1n4zoIty1ZFPYQoAcw8hvG0s xNGSNteo5rxfCmklas3S+Edv0uWN5UGq+mc3zNiyKUQw1DdIn35t/fY= -----END CERTIFICATE-----Generated at Mon Jan 26 23:21:03 2026 by rpki-client