This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/SDgL2DcW067zsQwIkMGp0Q7DumQ.roa File: SDgL2DcW067zsQwIkMGp0Q7DumQ.roa (raw, json) Hash identifier: M7FnxKdjUg7dQJ1DNiK4qvZZAUkfItNkGPtKgFWqy4Q= Subject key identifier: 48:38:0B:D8:37:16:D3:AE:F3:B1:0C:08:90:C1:A9:D1:0E:C3:BA:64 Certificate issuer: /CN=bdfa3af839aa1dce758f489e2d31ae22092fc99a Certificate serial: 019B77C6E4071CA27905C810F36CB51D148D Authority key identifier: BD:FA:3A:F8:39:AA:1D:CE:75:8F:48:9E:2D:31:AE:22:09:2F:C9:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfo6-DmqHc51j0ieLTGuIgkvyZo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/SDgL2DcW067zsQwIkMGp0Q7DumQ.roa Signing time: Thu 01 Jan 2026 04:18:01 +0000 ROA not before: Thu 01 Jan 2026 04:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3304 IP address blocks: 193.28.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/vfo6-DmqHc51j0ieLTGuIgkvyZo.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/vfo6-DmqHc51j0ieLTGuIgkvyZo.mft rsync://rpki.ripe.net/repository/DEFAULT/vfo6-DmqHc51j0ieLTGuIgkvyZo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:e4:07:1c:a2:79:05:c8:10:f3:6c:b5:1d:14:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdfa3af839aa1dce758f489e2d31ae22092fc99a Validity Not Before: Jan 1 04:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48380bd83716d3aef3b10c0890c1a9d10ec3ba64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:4a:96:7c:cd:24:25:16:53:94:2b:7d:09:42: 79:25:8b:5b:e5:82:96:78:27:d1:9e:fa:fd:b5:c0: 10:d0:ba:ba:85:50:9b:a9:5c:64:6e:51:da:33:4a: c9:7b:52:43:3f:3b:99:c0:3b:6a:5c:2e:7c:b6:98: 03:3a:dd:7e:23:e0:2e:06:8f:5b:3c:49:8b:65:1d: 84:71:f3:98:e5:bf:f0:59:7f:1a:a2:cd:6a:03:95: 88:48:2a:c4:5b:ca:fa:cb:45:8e:b5:db:71:3a:97: 0e:91:77:b8:d0:cc:3f:d0:b0:79:b1:dd:07:e3:82: e9:41:a3:15:ae:f8:9d:78:1c:8d:d0:6b:64:f9:43: 26:1b:f6:b1:56:bd:63:89:21:41:74:06:58:68:b4: f3:44:ee:07:be:6f:1b:09:bc:bd:4e:a0:39:a7:bd: 6f:15:a8:0e:10:6f:6e:0d:93:49:4b:c0:3b:2b:7c: 53:cc:2b:21:45:b0:97:db:2f:97:67:5a:b2:ec:b7: d5:1c:3d:08:21:c3:a5:00:ad:08:07:d2:9c:35:95: 77:27:d6:ea:b5:60:77:6b:15:f3:29:37:d8:87:fe: 71:33:9b:78:f0:38:d5:54:f7:b5:fe:ad:44:a8:7d: 46:af:df:2e:b8:38:67:4c:9f:58:64:2a:f4:bb:9d: 7c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:38:0B:D8:37:16:D3:AE:F3:B1:0C:08:90:C1:A9:D1:0E:C3:BA:64 X509v3 Authority Key Identifier: keyid:BD:FA:3A:F8:39:AA:1D:CE:75:8F:48:9E:2D:31:AE:22:09:2F:C9:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfo6-DmqHc51j0ieLTGuIgkvyZo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/SDgL2DcW067zsQwIkMGp0Q7DumQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/vfo6-DmqHc51j0ieLTGuIgkvyZo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.28.47.0/24 Signature Algorithm: sha256WithRSAEncryption 36:d5:d2:50:3f:02:66:5b:f4:e1:c9:cd:a8:1f:ed:b7:0c:c0: 5f:82:f3:30:69:f8:89:0d:89:c6:ce:a9:dc:f6:31:4b:16:59: 3d:e0:d9:3e:f7:43:e7:ee:18:53:2e:48:1a:04:27:56:cc:c5: 9c:16:ab:04:db:40:00:f5:4d:7b:73:7c:a5:6c:90:f0:84:6a: d1:3b:de:4b:00:58:97:74:1a:fa:04:2c:89:50:ac:12:7d:f1: c3:00:9f:94:53:16:36:10:c2:d7:59:f6:26:bf:f9:f7:c7:2c: e9:07:02:41:b7:0a:32:dd:97:07:4a:e5:7f:42:53:cb:c3:54: d2:59:83:4b:75:69:9a:d8:03:dc:3c:1b:02:cc:21:4b:e1:13: 03:cc:81:04:e9:b9:29:dd:1f:78:95:94:3e:9d:e0:64:e8:56: 19:e1:1b:71:99:ab:e3:8c:88:7b:40:e6:30:7f:b7:d5:fd:2c: f0:e1:1c:1b:54:79:00:37:e6:11:d2:b4:ce:5e:9f:2d:f6:e4: e9:8f:d7:b8:7e:fb:b3:a5:4c:15:2d:d9:8a:4d:68:21:93:ab: f3:45:b9:96:38:4c:7d:bd:25:80:a9:88:04:3d:9b:61:ee:83: d0:49:3b:c4:22:5a:b0:9f:46:f3:bc:1f:0f:28:a8:44:0b:27: 15:07:4b:d2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xuQHHKJ5BcgQ82y1HRSNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZmEzYWY4MzlhYTFkY2U3NThmNDg5ZTJkMzFhZTIyMDky ZmM5OWEwHhcNMjYwMTAxMDQxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODM4MGJkODM3MTZkM2FlZjNiMTBjMDg5MGMxYTlkMTBlYzNiYTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoEqWfM0kJRZTlCt9CUJ5JYtb5YKW eCfRnvr9tcAQ0Lq6hVCbqVxkblHaM0rJe1JDPzuZwDtqXC58tpgDOt1+I+AuBo9b PEmLZR2EcfOY5b/wWX8aos1qA5WISCrEW8r6y0WOtdtxOpcOkXe40Mw/0LB5sd0H 44LpQaMVrvideByN0Gtk+UMmG/axVr1jiSFBdAZYaLTzRO4Hvm8bCby9TqA5p71v FagOEG9uDZNJS8A7K3xTzCshRbCX2y+XZ1qy7LfVHD0IIcOlAK0IB9KcNZV3J9bq tWB3axXzKTfYh/5xM5t48DjVVPe1/q1EqH1Gr98uuDhnTJ9YZCr0u518UwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEg4C9g3FtOu87EMCJDBqdEOw7pkMB8GA1UdIwQY MBaAFL36Ovg5qh3OdY9Ini0xriIJL8maMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmZvNi1EbXFIYzUxajBpZUxUR3VJZ2t2eVpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC84Y2RiYzUtOTM2NS00YTBjLWI5YTMt YWU3NzQ2ZjA5NjMwLzEvU0RnTDJEY1cwNjd6c1F3SWtNR3AwUTdEdW1RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC84Y2RiYzUtOTM2NS00YTBjLWI5YTMtYWU3NzQ2ZjA5NjMw LzEvdmZvNi1EbXFIYzUxajBpZUxUR3VJZ2t2eVpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRwvMA0G CSqGSIb3DQEBCwUAA4IBAQA21dJQPwJmW/Thyc2oH+23DMBfgvMwafiJDYnGzqnc 9jFLFlk94Nk+90Pn7hhTLkgaBCdWzMWcFqsE20AA9U17c3ylbJDwhGrRO95LAFiX dBr6BCyJUKwSffHDAJ+UUxY2EMLXWfYmv/n3xyzpBwJBtwoy3ZcHSuV/QlPLw1TS WYNLdWma2APcPBsCzCFL4RMDzIEE6bkp3R94lZQ+neBk6FYZ4RtxmavjjIh7QOYw f7fV/Szw4RwbVHkAN+YR0rTOXp8t9uTpj9e4fvuzpUwVLdmKTWghk6vzRbmWOEx9 vSWAqYgEPZth7oPQSTvEIlqwn0bzvB8PKKhECycVB0vS -----END CERTIFICATE-----Generated at Mon Feb 9 21:25:16 2026 by rpki-client