This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/sgMcau3D-EQEi1zB4j-31e-AG0g.roa File: sgMcau3D-EQEi1zB4j-31e-AG0g.roa (raw, json) Hash identifier: feRutTx2W38pnuALKbaPopDGRLCZYDeeC1Z2bMCEyeM= Subject key identifier: B2:03:1C:6A:ED:C3:F8:44:04:8B:5C:C1:E2:3F:B7:D5:EF:80:1B:48 Certificate issuer: /CN=34b419fa4a0a1605188318cdf4a2044992853b95 Certificate serial: 019B78347B67144A3E653298A46181D80A7D Authority key identifier: 34:B4:19:FA:4A:0A:16:05:18:83:18:CD:F4:A2:04:49:92:85:3B:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLQZ-koKFgUYgxjN9KIESZKFO5U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/sgMcau3D-EQEi1zB4j-31e-AG0g.roa Signing time: Thu 01 Jan 2026 06:17:43 +0000 ROA not before: Thu 01 Jan 2026 06:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41655 IP address blocks: 37.153.80.0/21 maxlen: 21 37.153.80.0/24 maxlen: 24 37.153.81.0/24 maxlen: 24 37.153.82.0/24 maxlen: 24 37.153.83.0/24 maxlen: 24 37.153.84.0/24 maxlen: 24 37.153.85.0/24 maxlen: 24 37.153.86.0/24 maxlen: 24 37.153.87.0/24 maxlen: 24 185.224.180.0/22 maxlen: 24 195.8.198.0/23 maxlen: 23 195.8.198.0/24 maxlen: 24 195.8.199.0/24 maxlen: 24 2a00:adc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/NLQZ-koKFgUYgxjN9KIESZKFO5U.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/NLQZ-koKFgUYgxjN9KIESZKFO5U.mft rsync://rpki.ripe.net/repository/DEFAULT/NLQZ-koKFgUYgxjN9KIESZKFO5U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:7b:67:14:4a:3e:65:32:98:a4:61:81:d8:0a:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34b419fa4a0a1605188318cdf4a2044992853b95 Validity Not Before: Jan 1 06:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b2031c6aedc3f844048b5cc1e23fb7d5ef801b48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b4:a3:a0:f2:c2:06:94:68:f7:a2:24:df:27: 16:2e:f8:96:00:2e:ef:97:b3:27:2f:57:e9:ba:75: 30:0c:35:16:e8:3e:47:fb:8f:48:3a:4d:4c:a5:ac: fa:02:78:ee:73:30:e7:d0:af:66:c2:d1:ae:23:1b: 29:42:ae:23:b1:e9:f3:c3:bd:67:01:90:0f:79:df: eb:3f:5f:8f:37:79:81:5a:42:85:8c:1b:66:a6:42: d5:2b:d3:48:ee:76:ed:28:4f:bc:94:58:fc:53:7b: 88:56:03:95:ef:d1:7c:05:d6:f2:e9:e6:6b:6c:00: 98:ae:42:8c:8b:31:ba:db:e7:b1:d3:6b:ea:3c:14: 38:09:8a:34:7a:7c:41:41:2f:48:df:f1:c8:e6:9f: fe:f1:77:1b:f6:5c:ce:95:09:5b:d7:c8:a0:82:20: b1:95:d3:71:39:d9:43:ad:d6:0a:62:dd:00:fa:fa: 61:be:c2:4c:03:5c:73:94:6c:31:28:e8:77:57:8b: f9:d8:44:e4:e4:b0:ed:f4:31:47:d5:a2:a7:ef:16: e9:e0:4c:7d:58:68:fb:83:90:9a:15:62:c7:4e:7b: db:93:25:9b:e5:03:d4:c7:6b:5b:11:5c:38:c1:36: d0:c8:d6:e9:41:64:4d:1e:3e:66:1f:9a:e1:7b:f9: a2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:03:1C:6A:ED:C3:F8:44:04:8B:5C:C1:E2:3F:B7:D5:EF:80:1B:48 X509v3 Authority Key Identifier: keyid:34:B4:19:FA:4A:0A:16:05:18:83:18:CD:F4:A2:04:49:92:85:3B:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLQZ-koKFgUYgxjN9KIESZKFO5U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/sgMcau3D-EQEi1zB4j-31e-AG0g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/NLQZ-koKFgUYgxjN9KIESZKFO5U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.153.80.0/21 185.224.180.0/22 195.8.198.0/23 IPv6: 2a00:adc0::/32 Signature Algorithm: sha256WithRSAEncryption c5:1a:73:bd:0e:7f:ec:cf:14:41:bb:7b:ce:62:51:e3:a8:ca: e3:aa:6a:c0:ff:c6:9b:5a:bb:2e:e9:37:da:01:93:4e:dc:94: 26:05:88:80:a4:60:d4:e7:a2:e5:22:d3:61:da:e4:45:20:12: 1d:ab:00:c2:eb:46:cd:b8:d5:40:68:6a:15:62:21:d7:c9:01: b0:39:62:8b:db:4a:da:c3:92:46:e3:e9:b9:06:38:92:c7:f2: 4b:e0:76:d6:25:24:ab:9f:99:9d:bf:7d:f7:59:7f:73:70:54: fd:e2:c7:46:33:6a:dc:dc:82:7b:d2:eb:af:b9:6a:f9:46:71: 59:a0:27:98:f7:7d:eb:1d:24:1e:89:b9:bb:7d:aa:8a:8c:72: 2b:99:fa:ab:78:79:14:6f:c4:61:8d:8f:d3:c3:19:c7:4f:f6: 18:1a:05:9c:28:8f:17:a2:e0:04:19:22:10:d3:b1:45:50:76: d6:17:bf:87:a1:0a:37:f7:41:cd:ba:6c:e3:09:6b:a7:f4:e0: 72:5d:30:a0:aa:49:69:3c:89:b0:d6:87:c8:4c:0b:7e:2e:94: b0:fb:f2:52:2f:3b:a9:61:97:da:d4:d5:24:c8:8b:df:86:75: 8c:a9:11:10:c9:6b:f6:4e:f8:f2:3d:10:97:5f:7e:4f:51:73: 17:06:99:d7 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt4NHtnFEo+ZTKYpGGB2Ap9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0YjQxOWZhNGEwYTE2MDUxODgzMThjZGY0YTIwNDQ5OTI4 NTNiOTUwHhcNMjYwMTAxMDYxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMjAzMWM2YWVkYzNmODQ0MDQ4YjVjYzFlMjNmYjdkNWVmODAxYjQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7SjoPLCBpRo96Ik3ycWLviWAC7v l7MnL1fpunUwDDUW6D5H+49IOk1Mpaz6AnjuczDn0K9mwtGuIxspQq4jsenzw71n AZAPed/rP1+PN3mBWkKFjBtmpkLVK9NI7nbtKE+8lFj8U3uIVgOV79F8Bdby6eZr bACYrkKMizG62+ex02vqPBQ4CYo0enxBQS9I3/HI5p/+8Xcb9lzOlQlb18iggiCx ldNxOdlDrdYKYt0A+vphvsJMA1xzlGwxKOh3V4v52ETk5LDt9DFH1aKn7xbp4Ex9 WGj7g5CaFWLHTnvbkyWb5QPUx2tbEVw4wTbQyNbpQWRNHj5mH5rhe/miGwIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFLIDHGrtw/hEBItcweI/t9XvgBtIMB8GA1UdIwQY MBaAFDS0GfpKChYFGIMYzfSiBEmShTuVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkxRWi1rb0tGZ1VZZ3hqTjlLSUVTWktGTzVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84Yzc5ZmItN2E1Ny00MjlkLTljMzMt ODc3NzU0NGM5Mjc1LzEvc2dNY2F1M0QtRVFFaTF6QjRqLTMxZS1BRzBnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi84Yzc5ZmItN2E1Ny00MjlkLTljMzMtODc3NzU0NGM5Mjc1 LzEvTkxRWi1rb0tGZ1VZZ3hqTjlLSUVTWktGTzVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQDJZlQAwQC ueC0AwQBwwjGMA0EAgACMAcDBQAqAK3AMA0GCSqGSIb3DQEBCwUAA4IBAQDFGnO9 Dn/szxRBu3vOYlHjqMrjqmrA/8abWrsu6TfaAZNO3JQmBYiApGDU56LlItNh2uRF IBIdqwDC60bNuNVAaGoVYiHXyQGwOWKL20raw5JG4+m5BjiSx/JL4HbWJSSrn5md v333WX9zcFT94sdGM2rc3IJ70uuvuWr5RnFZoCeY933rHSQeibm7faqKjHIrmfqr eHkUb8RhjY/TwxnHT/YYGgWcKI8XouAEGSIQ07FFUHbWF7+HoQo390HNumzjCWun 9OByXTCgqklpPImw1ofITAt+LpSw+/JSLzupYZfa1NUkyIvfhnWMqREQyWv2Tvjy PRCXX35PUXMXBpnX -----END CERTIFICATE-----Generated at Tue Jan 27 07:45:26 2026 by rpki-client