This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/sPW3SqhXQFkvyEdUczVqCrMoZZM.roa File: sPW3SqhXQFkvyEdUczVqCrMoZZM.roa (raw, json) Hash identifier: PP/JgUlM59r8wR9R5R4QZCwoOfZzBFE/FyC4nN3GGNI= Subject key identifier: B0:F5:B7:4A:A8:57:40:59:2F:C8:47:54:73:35:6A:0A:B3:28:65:93 Certificate issuer: /CN=1997625c395fb867f5d808d53597a11ce7f3c4cb Certificate serial: 019C14CAA3FA6554D033DC119F40263FCF24 Authority key identifier: 19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/sPW3SqhXQFkvyEdUczVqCrMoZZM.roa Signing time: Sat 31 Jan 2026 16:02:30 +0000 ROA not before: Sat 31 Jan 2026 16:02:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15557 IP address blocks: 185.9.152.0/22 maxlen: 22 2a03:2fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:14:ca:a3:fa:65:54:d0:33:dc:11:9f:40:26:3f:cf:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1997625c395fb867f5d808d53597a11ce7f3c4cb Validity Not Before: Jan 31 16:02:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0f5b74aa85740592fc8475473356a0ab3286593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0a:a4:90:a7:f4:aa:ba:69:f6:6a:f0:d9:ec: df:b0:81:40:dc:ee:04:d9:e0:af:00:41:45:36:c0: e2:01:e0:fa:38:cd:0a:0a:f0:72:d0:df:30:69:05: 20:81:0e:8a:3e:f4:5d:7c:49:bd:44:d5:d8:d6:4d: 8a:ec:ce:c1:f4:a8:b0:ac:44:d1:a8:c8:13:dc:19: 86:aa:0e:c4:96:57:14:72:41:b0:2e:53:2d:21:1d: fb:28:5e:aa:04:01:b6:72:4a:63:ad:97:d4:57:fe: 32:76:e2:32:dd:13:2c:77:b2:a4:bf:12:e4:29:94: d9:85:51:d6:8c:37:d0:e7:b1:be:63:f0:58:3f:37: c0:a0:cf:b7:05:6c:a4:bd:fa:98:07:d8:04:36:47: 77:0b:14:ea:2f:59:d8:f2:9c:62:01:b7:6d:38:4a: a5:2e:89:f8:ad:5c:6b:ed:36:86:7e:8e:e8:fe:a8: 77:e5:9a:e8:71:0f:27:27:85:55:7f:16:6e:2d:32: 39:aa:42:f2:b4:ae:4f:cb:0c:78:51:c0:fb:4a:46: fe:12:47:2f:f9:79:fd:2d:64:b9:66:13:15:e0:db: e1:57:09:34:5b:c0:71:ab:c2:1c:c4:c2:d3:91:77: 95:e9:8e:46:79:d3:91:28:38:ae:0f:96:01:15:22: d5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:F5:B7:4A:A8:57:40:59:2F:C8:47:54:73:35:6A:0A:B3:28:65:93 X509v3 Authority Key Identifier: keyid:19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/sPW3SqhXQFkvyEdUczVqCrMoZZM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.9.152.0/22 IPv6: 2a03:2fc0::/32 Signature Algorithm: sha256WithRSAEncryption 49:78:3b:c8:17:96:90:53:81:8a:d9:29:7a:cc:7e:7a:90:1b: 36:66:b5:76:7f:45:de:32:d3:d7:8d:80:81:41:90:fe:b5:71: a5:73:65:7c:7d:cb:af:f2:05:0f:6e:28:19:bf:d6:ca:d9:7d: a3:cf:3e:63:b9:3a:30:c1:da:f1:86:21:74:c7:3b:eb:d8:ac: 72:c9:13:c7:4a:0a:e8:0c:b8:c6:e9:27:ec:17:8f:d5:07:b5: 95:fb:ff:ab:b2:9f:45:eb:09:8b:53:4d:e7:79:fb:df:b5:4f: cd:23:8f:b7:0c:cb:82:1f:0e:85:1f:a2:9d:62:4a:c2:2b:d6: 0e:56:df:80:36:88:2e:66:b8:9c:6f:7f:9b:87:24:34:df:b1: ba:52:99:f8:f7:01:63:29:86:b4:25:3b:4c:18:2f:72:1b:89: 7b:e6:6a:01:0c:53:ad:8a:45:8d:08:86:12:92:a6:9a:a1:29: 6a:7f:65:4c:c0:11:4f:58:d4:dc:46:b0:20:8d:65:6c:09:f2: 4b:b5:36:b8:e0:b7:e3:84:b0:23:a3:2e:26:89:4b:09:62:29: 77:64:de:35:59:ca:5a:1c:6e:9e:27:a4:95:71:cf:54:fe:3c: a0:5d:39:42:27:b1:2a:0d:92:8b:82:74:23:a2:c5:c2:fe:a9: 21:01:d1:9e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZwUyqP6ZVTQM9wRn0AmP88kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE5OTc2MjVjMzk1ZmI4NjdmNWQ4MDhkNTM1OTdhMTFjZTdm M2M0Y2IwHhcNMjYwMTMxMTYwMjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMGY1Yjc0YWE4NTc0MDU5MmZjODQ3NTQ3MzM1NmEwYWIzMjg2NTkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQqkkKf0qrpp9mrw2ezfsIFA3O4E 2eCvAEFFNsDiAeD6OM0KCvBy0N8waQUggQ6KPvRdfEm9RNXY1k2K7M7B9KiwrETR qMgT3BmGqg7EllcUckGwLlMtIR37KF6qBAG2ckpjrZfUV/4yduIy3RMsd7KkvxLk KZTZhVHWjDfQ57G+Y/BYPzfAoM+3BWykvfqYB9gENkd3CxTqL1nY8pxiAbdtOEql Lon4rVxr7TaGfo7o/qh35ZrocQ8nJ4VVfxZuLTI5qkLytK5Pywx4UcD7Skb+Ekcv +Xn9LWS5ZhMV4NvhVwk0W8Bxq8IcxMLTkXeV6Y5GedORKDiuD5YBFSLVDwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLD1t0qoV0BZL8hHVHM1agqzKGWTMB8GA1UdIwQY MBaAFBmXYlw5X7hn9dgI1TWXoRzn88TLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR1pkaVhEbGZ1R2YxMkFqVk5aZWhIT2Z6eE1zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8xNmU4MTItMjdjNi00MDVkLWE0YzUt YTdmN2I5ODA5MDA3LzEvc1BXM1NxaFhRRmt2eUVkVWN6VnFDck1vWlpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS8xNmU4MTItMjdjNi00MDVkLWE0YzUtYTdmN2I5ODA5MDA3 LzEvR1pkaVhEbGZ1R2YxMkFqVk5aZWhIT2Z6eE1zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuQmYMA0E AgACMAcDBQAqAy/AMA0GCSqGSIb3DQEBCwUAA4IBAQBJeDvIF5aQU4GK2Sl6zH56 kBs2ZrV2f0XeMtPXjYCBQZD+tXGlc2V8fcuv8gUPbigZv9bK2X2jzz5juTowwdrx hiF0xzvr2KxyyRPHSgroDLjG6SfsF4/VB7WV+/+rsp9F6wmLU03nefvftU/NI4+3 DMuCHw6FH6KdYkrCK9YOVt+ANoguZricb3+bhyQ037G6Upn49wFjKYa0JTtMGC9y G4l75moBDFOtikWNCIYSkqaaoSlqf2VMwBFPWNTcRrAgjWVsCfJLtTa44LfjhLAj oy4miUsJYil3ZN41WcpaHG6eJ6SVcc9U/jygXTlCJ7EqDZKLgnQjosXC/qkhAdGe -----END CERTIFICATE-----Generated at Tue Feb 10 03:11:45 2026 by rpki-client