This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/bbb7b6-3ee5-46d9-b37b-61667c7691b2/1/SaGiZjjt90SX7-BzKCTX7bYUJCE.roa File: SaGiZjjt90SX7-BzKCTX7bYUJCE.roa (raw, json) Hash identifier: shQxuuEzemQfoeUgl6rxwi+Wbc4ekvnlLIFK68Q9YjM= Subject key identifier: 49:A1:A2:66:38:ED:F7:44:97:EF:E0:73:28:24:D7:ED:B6:14:24:21 Certificate issuer: /CN=3fffcbec888c1047f221d7cf9396bf1412abaf9b Certificate serial: 019BE5FE58235584C878C28FED5660BE18D2 Authority key identifier: 3F:FF:CB:EC:88:8C:10:47:F2:21:D7:CF:93:96:BF:14:12:AB:AF:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P__L7IiMEEfyIdfPk5a_FBKrr5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/bbb7b6-3ee5-46d9-b37b-61667c7691b2/1/SaGiZjjt90SX7-BzKCTX7bYUJCE.roa Signing time: Thu 22 Jan 2026 13:56:49 +0000 ROA not before: Thu 22 Jan 2026 13:56:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212602 IP address blocks: 5.133.114.0/24 maxlen: 32 5.180.112.0/24 maxlen: 32 5.180.113.0/24 maxlen: 32 84.238.160.0/22 maxlen: 32 85.137.220.0/22 maxlen: 32 185.194.208.0/22 maxlen: 32 2a10:7040::/29 maxlen: 29 2a10:7040:2::/64 maxlen: 64 2a10:7041::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/bbb7b6-3ee5-46d9-b37b-61667c7691b2/1/P__L7IiMEEfyIdfPk5a_FBKrr5s.crl rsync://rpki.ripe.net/repository/DEFAULT/68/bbb7b6-3ee5-46d9-b37b-61667c7691b2/1/P__L7IiMEEfyIdfPk5a_FBKrr5s.mft rsync://rpki.ripe.net/repository/DEFAULT/P__L7IiMEEfyIdfPk5a_FBKrr5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e5:fe:58:23:55:84:c8:78:c2:8f:ed:56:60:be:18:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fffcbec888c1047f221d7cf9396bf1412abaf9b Validity Not Before: Jan 22 13:56:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=49a1a26638edf74497efe0732824d7edb6142421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:39:e7:03:28:49:76:dc:57:c7:41:ec:bb:26: 2d:69:e9:dd:6a:2e:3b:75:d7:28:2f:23:9b:da:45: 2d:c9:9a:9d:bd:9d:58:12:d6:37:66:67:7d:a4:8a: 04:3b:a7:bc:e5:bf:74:bc:8f:ab:25:56:88:7b:5f: 95:0a:90:73:8c:54:80:b1:db:01:02:13:47:f6:ee: be:39:c6:74:d3:4f:f5:79:28:97:65:a3:be:0f:2d: 92:55:d5:91:7c:8b:59:88:f4:ab:f3:51:bd:78:fb: e7:7c:5c:46:d1:f8:dc:f3:fb:eb:de:ea:97:cc:37: 7c:2a:c8:3c:64:a8:07:9f:aa:76:12:f5:60:9c:0e: ae:a1:01:b1:66:4d:68:f5:7f:75:93:f0:12:ae:ae: 24:eb:7e:17:11:7b:23:7e:de:6f:25:14:f8:14:9f: 59:03:ca:3b:df:4b:ba:b7:09:b1:ed:2f:a9:2f:b0: 3c:d2:05:34:b3:cb:d0:56:5e:fb:1b:db:81:ae:36: c9:bc:00:f6:f5:e5:c9:e1:81:b4:da:d5:14:1e:c9: fd:08:db:26:a7:81:5b:21:62:61:0e:b5:d3:c5:dc: ae:5e:7d:d8:f0:ff:bc:3c:84:53:cf:d2:ec:85:82: 88:8b:c9:28:90:62:0e:d5:5d:2b:ba:12:1d:3b:a0: 73:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A1:A2:66:38:ED:F7:44:97:EF:E0:73:28:24:D7:ED:B6:14:24:21 X509v3 Authority Key Identifier: keyid:3F:FF:CB:EC:88:8C:10:47:F2:21:D7:CF:93:96:BF:14:12:AB:AF:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P__L7IiMEEfyIdfPk5a_FBKrr5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/bbb7b6-3ee5-46d9-b37b-61667c7691b2/1/SaGiZjjt90SX7-BzKCTX7bYUJCE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/bbb7b6-3ee5-46d9-b37b-61667c7691b2/1/P__L7IiMEEfyIdfPk5a_FBKrr5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.133.114.0/24 5.180.112.0/23 84.238.160.0/22 85.137.220.0/22 185.194.208.0/22 IPv6: 2a10:7040::/29 Signature Algorithm: sha256WithRSAEncryption 9f:ac:d3:b2:25:84:cc:59:e0:72:67:da:5b:fe:b5:8b:e5:e9: c0:aa:c8:c6:95:49:41:f6:4d:5c:46:9d:24:44:6f:e0:b4:7b: 41:27:ec:a6:26:c5:79:45:c7:e0:d5:c7:ec:7a:70:59:fc:15: d0:7f:7a:00:72:4e:f6:6b:5a:88:a6:81:8f:fd:75:86:fe:fd: a7:7d:7b:ba:f3:52:6b:81:9d:d8:61:69:49:c0:d0:b6:e9:d0: 12:7a:25:39:81:d7:6f:7b:ad:f4:1d:ad:0a:8a:05:7e:5e:1b: 48:a6:85:5f:de:42:79:7e:14:2f:a5:d4:00:cf:74:d9:b6:c2: 33:0e:ff:5e:77:be:99:42:1f:5e:cc:1b:16:ca:57:e3:d9:bc: 8e:4c:72:64:7d:87:5d:81:5d:d9:3e:ab:06:91:e5:5a:6d:f5: 50:46:f0:96:7e:29:3c:63:95:d7:5a:b3:e5:ad:7d:0b:3d:61: 32:3e:a3:42:a1:3b:07:27:99:dc:78:cd:42:93:a8:f0:f9:c3: fe:25:b2:5c:9f:18:95:c3:85:65:ac:38:16:1c:51:fc:0a:b7: 39:73:15:b7:23:08:a9:ec:ed:c2:80:5b:3a:01:48:4f:e6:10: cb:0d:27:53:8e:de:85:47:6a:63:43:03:35:8a:b4:d1:2b:7e: 11:03:db:a4 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZvl/lgjVYTIeMKP7VZgvhjSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZmZjYmVjODg4YzEwNDdmMjIxZDdjZjkzOTZiZjE0MTJh YmFmOWIwHhcNMjYwMTIyMTM1NjQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OWExYTI2NjM4ZWRmNzQ0OTdlZmUwNzMyODI0ZDdlZGI2MTQyNDIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgTnnAyhJdtxXx0HsuyYtaendai47 ddcoLyOb2kUtyZqdvZ1YEtY3Zmd9pIoEO6e85b90vI+rJVaIe1+VCpBzjFSAsdsB AhNH9u6+OcZ000/1eSiXZaO+Dy2SVdWRfItZiPSr81G9ePvnfFxG0fjc8/vr3uqX zDd8Ksg8ZKgHn6p2EvVgnA6uoQGxZk1o9X91k/ASrq4k634XEXsjft5vJRT4FJ9Z A8o730u6twmx7S+pL7A80gU0s8vQVl77G9uBrjbJvAD29eXJ4YG02tUUHsn9CNsm p4FbIWJhDrXTxdyuXn3Y8P+8PIRTz9LshYKIi8kokGIO1V0ruhIdO6Bz/wIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFEmhomY47fdEl+/gcygk1+22FCQhMB8GA1UdIwQY MBaAFD//y+yIjBBH8iHXz5OWvxQSq6+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUF9fTDdJaU1FRWZ5SWRmUGs1YV9GQktycjVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9iYmI3YjYtM2VlNS00NmQ5LWIzN2It NjE2NjdjNzY5MWIyLzEvU2FHaVpqanQ5MFNYNy1CektDVFg3YllVSkNFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC9iYmI3YjYtM2VlNS00NmQ5LWIzN2ItNjE2NjdjNzY5MWIy LzEvUF9fTDdJaU1FRWZ5SWRmUGs1YV9GQktycjVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQABYVyAwQB BbRwAwQCVO6gAwQCVYncAwQCucLQMA0EAgACMAcDBQMqEHBAMA0GCSqGSIb3DQEB CwUAA4IBAQCfrNOyJYTMWeByZ9pb/rWL5enAqsjGlUlB9k1cRp0kRG/gtHtBJ+ym JsV5Rcfg1cfsenBZ/BXQf3oAck72a1qIpoGP/XWG/v2nfXu681JrgZ3YYWlJwNC2 6dASeiU5gddve630Ha0KigV+XhtIpoVf3kJ5fhQvpdQAz3TZtsIzDv9ed76ZQh9e zBsWylfj2byOTHJkfYddgV3ZPqsGkeVabfVQRvCWfik8Y5XXWrPlrX0LPWEyPqNC oTsHJ5nceM1Ck6jw+cP+JbJcnxiVw4VlrDgWHFH8Crc5cxW3Iwip7O3CgFs6AUhP 5hDLDSdTjt6FR2pjQwM1irTRK34RA9uk -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:02 2026 by rpki-client