This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/sDxsgbo3eTmsakd4pd7_8WMgtzk.roa File: sDxsgbo3eTmsakd4pd7_8WMgtzk.roa (raw, json) Hash identifier: jh6FYJLzGaHbk9k9qFevlnU/3o4unMr+5K3qO/34I6U= Subject key identifier: B0:3C:6C:81:BA:37:79:39:AC:6A:47:78:A5:DE:FF:F1:63:20:B7:39 Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 019BB171A7DF708C2FCEB17618D91046D73F Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/sDxsgbo3eTmsakd4pd7_8WMgtzk.roa Signing time: Mon 12 Jan 2026 09:02:54 +0000 ROA not before: Mon 12 Jan 2026 09:02:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 834 IP address blocks: 45.155.253.0/24 maxlen: 24 45.155.254.0/24 maxlen: 24 176.125.251.0/24 maxlen: 24 185.199.151.0/24 maxlen: 24 185.199.212.0/23 maxlen: 23 185.199.213.0/24 maxlen: 24 185.199.214.0/23 maxlen: 24 185.221.25.0/24 maxlen: 24 185.221.26.0/24 maxlen: 24 185.225.168.0/23 maxlen: 23 185.225.168.0/24 maxlen: 24 185.225.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 18:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b1:71:a7:df:70:8c:2f:ce:b1:76:18:d9:10:46:d7:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: Jan 12 09:02:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b03c6c81ba377939ac6a4778a5defff16320b739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:16:5e:5f:65:ce:62:86:48:6e:17:79:ec:bc: 33:97:2e:bb:14:d5:6d:a7:57:ec:f7:26:3f:c5:97: 13:f8:8f:b6:16:d8:8f:c5:fd:5d:64:b4:5c:88:3b: da:85:ba:36:75:04:db:db:b1:b0:17:72:7e:ed:1a: 7a:b7:2f:01:45:b1:84:5a:47:ec:76:ad:b6:6f:3b: e1:16:62:74:bb:32:16:fe:8c:dc:f3:55:e4:68:25: 36:8b:13:99:58:74:79:a3:26:c1:da:82:ba:ef:98: 65:a6:14:22:3a:3d:ec:b9:6c:27:45:3c:c5:75:c9: c7:08:ed:6e:6b:a5:83:b6:cd:5c:cf:ef:bd:b2:84: 64:c2:4c:4b:77:7b:cd:59:28:d9:f7:26:38:08:82: dd:ef:8e:61:24:f6:e9:ed:df:46:10:4f:92:fe:d6: 3a:9e:50:32:fe:43:b0:14:ce:c2:7a:fa:43:5e:b2: 6a:68:e5:84:ba:18:10:e7:36:b4:24:e9:a8:60:15: c9:93:52:ba:e2:e9:df:e5:8a:a7:9a:38:d6:fd:44: 15:9a:5f:83:65:41:5f:d0:6a:ab:8a:53:f9:2b:8b: f9:f7:34:dc:94:8a:93:7d:b7:75:fe:e1:0f:b1:fe: 1c:a3:da:b1:ab:93:08:39:c3:22:48:6c:d9:4c:f6: 60:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:3C:6C:81:BA:37:79:39:AC:6A:47:78:A5:DE:FF:F1:63:20:B7:39 X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/sDxsgbo3eTmsakd4pd7_8WMgtzk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.155.253.0-45.155.254.255 176.125.251.0/24 185.199.151.0/24 185.199.212.0/22 185.221.25.0-185.221.26.255 185.225.168.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:7a:41:99:f9:ec:6b:65:59:5b:fc:77:05:46:83:b9:e1:40: 18:31:20:2f:20:3f:fa:04:51:4a:c7:59:9e:07:5d:47:79:ab: 09:27:14:7b:b6:b8:a4:d5:f2:52:bc:fc:53:91:a2:d7:07:a7: 0c:66:2f:70:78:4e:5b:a0:a3:90:b5:0f:93:fe:3a:a3:34:c4: d1:6e:4e:a6:e1:66:c7:db:1a:da:1f:33:bf:16:0c:12:1a:a0: b4:f2:89:d9:bb:f9:bc:5b:5c:60:ad:94:0f:c4:d6:b9:a6:74: fe:fe:c9:8e:07:e2:a4:f1:01:0a:41:a6:86:47:8e:b7:90:63: 7a:42:89:18:9a:7c:42:ff:35:5f:6b:bf:43:64:4e:9d:43:b1: 36:67:a7:aa:a1:8c:81:00:d9:31:d1:06:83:c2:7d:c7:f1:fb: 5f:44:13:9b:10:80:62:ca:15:05:ba:d2:b9:fd:90:dc:1a:91: 34:69:d9:ed:53:c5:39:7a:96:e1:69:7e:45:c4:57:58:70:44: ee:32:f4:ee:48:37:b8:09:7e:6e:65:7a:a7:28:89:78:b0:3b: 14:20:27:14:9f:b4:fa:d0:44:bc:58:d9:8a:b3:68:14:8b:72: 87:ff:cd:74:47:d8:37:82:76:f7:45:c3:74:af:3f:72:26:99: be:51:01:d6 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZuxcaffcIwvzrF2GNkQRtc/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjYwMTEyMDkwMjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDNjNmM4MWJhMzc3OTM5YWM2YTQ3NzhhNWRlZmZmMTYzMjBiNzM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRZeX2XOYoZIbhd57Lwzly67FNVt p1fs9yY/xZcT+I+2FtiPxf1dZLRciDvahbo2dQTb27GwF3J+7Rp6ty8BRbGEWkfs dq22bzvhFmJ0uzIW/ozc81XkaCU2ixOZWHR5oybB2oK675hlphQiOj3suWwnRTzF dcnHCO1ua6WDts1cz++9soRkwkxLd3vNWSjZ9yY4CILd745hJPbp7d9GEE+S/tY6 nlAy/kOwFM7CevpDXrJqaOWEuhgQ5za0JOmoYBXJk1K64unf5YqnmjjW/UQVml+D ZUFf0GqrilP5K4v59zTclIqTfbd1/uEPsf4co9qxq5MIOcMiSGzZTPZgQQIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFLA8bIG6N3k5rGpHeKXe//FjILc5MB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEvc0R4c2dibzNlVG1zYWtkNHBkN184V01ndHprLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDA6BAIAATA0MAwDBAAtm/0D BAAtm/4DBACwffsDBAC5x5cDBAK5x9QwDAMEALndGQMEALndGgMEAbnhqDANBgkq hkiG9w0BAQsFAAOCAQEAf3pBmfnsa2VZW/x3BUaDueFAGDEgLyA/+gRRSsdZngdd R3mrCScUe7a4pNXyUrz8U5Gi1wenDGYvcHhOW6CjkLUPk/46ozTE0W5OpuFmx9sa 2h8zvxYMEhqgtPKJ2bv5vFtcYK2UD8TWuaZ0/v7JjgfipPEBCkGmhkeOt5BjekKJ GJp8Qv81X2u/Q2ROnUOxNmenqqGMgQDZMdEGg8J9x/H7X0QTmxCAYsoVBbrSuf2Q 3BqRNGnZ7VPFOXqW4Wl+RcRXWHBE7jL07kg3uAl+bmV6pyiJeLA7FCAnFJ+0+tBE vFjZirNoFItyh//NdEfYN4J290XDdK8/ciaZvlEB1g== -----END CERTIFICATE-----Generated at Mon Jan 19 02:40:03 2026 by rpki-client