This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/SAIHz1BSLN8cZrRdxLMBgPm4XlA.roa File: SAIHz1BSLN8cZrRdxLMBgPm4XlA.roa (raw, json) Hash identifier: McGCOon8pvSTjIiegxDTJso9YyCAyFlc2PqcW0Wd9HE= Subject key identifier: 48:02:07:CF:50:52:2C:DF:1C:66:B4:5D:C4:B3:01:80:F9:B8:5E:50 Certificate issuer: /CN=dc327af32a98492757b200ea040db24ec3136592 Certificate serial: 019B7EA6E3A6A73FA5C6500A01E2E5EE6558 Authority key identifier: DC:32:7A:F3:2A:98:49:27:57:B2:00:EA:04:0D:B2:4E:C3:13:65:92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DJ68yqYSSdXsgDqBA2yTsMTZZI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/SAIHz1BSLN8cZrRdxLMBgPm4XlA.roa Signing time: Fri 02 Jan 2026 12:20:25 +0000 ROA not before: Fri 02 Jan 2026 12:20:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 185.241.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/3DJ68yqYSSdXsgDqBA2yTsMTZZI.crl rsync://rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/3DJ68yqYSSdXsgDqBA2yTsMTZZI.mft rsync://rpki.ripe.net/repository/DEFAULT/3DJ68yqYSSdXsgDqBA2yTsMTZZI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:e3:a6:a7:3f:a5:c6:50:0a:01:e2:e5:ee:65:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc327af32a98492757b200ea040db24ec3136592 Validity Not Before: Jan 2 12:20:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=480207cf50522cdf1c66b45dc4b30180f9b85e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:18:87:5f:4a:6c:c4:30:39:6f:c2:9c:d8:4f: 55:e8:94:7b:0d:13:04:c9:f9:e5:a3:db:44:4e:41: 2c:61:5c:c2:a1:77:b9:32:01:17:c3:73:ea:29:b0: 43:f1:35:2d:0e:68:fc:e6:ce:05:7c:09:64:33:d6: 43:f2:dd:f5:bd:fc:77:91:45:9b:d0:12:ed:be:e8: 76:03:4b:cb:d6:2e:01:41:ab:94:65:3b:c2:b4:a2: e3:9b:ae:be:b9:5c:9b:79:e9:c6:7e:b7:a5:90:8b: e1:a5:41:50:e6:af:ef:d3:30:e2:7d:c6:2c:d2:81: 5c:ce:2b:85:90:ac:b7:50:27:c7:0e:27:2b:c2:c7: 84:a0:f1:92:71:f2:ea:4c:37:64:ed:3b:76:a7:4c: 0e:18:91:aa:be:d2:c3:f9:98:f9:46:08:9d:a1:78: 63:f6:53:89:05:22:70:b0:67:d8:e2:b0:82:bb:e1: 9e:7b:40:d4:58:7b:86:a3:25:d0:f2:09:94:5e:11: 1b:31:40:97:e4:ab:6e:39:51:fa:8e:83:1a:47:e6: 47:00:cc:8b:6c:84:da:4b:12:c3:bc:f4:8f:e8:11: 06:4a:34:15:17:21:f6:fd:64:a3:22:bc:75:76:b9: f1:6c:f3:f2:10:ff:ae:98:51:b1:85:63:53:63:ed: 95:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:02:07:CF:50:52:2C:DF:1C:66:B4:5D:C4:B3:01:80:F9:B8:5E:50 X509v3 Authority Key Identifier: keyid:DC:32:7A:F3:2A:98:49:27:57:B2:00:EA:04:0D:B2:4E:C3:13:65:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DJ68yqYSSdXsgDqBA2yTsMTZZI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/SAIHz1BSLN8cZrRdxLMBgPm4XlA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/3DJ68yqYSSdXsgDqBA2yTsMTZZI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.241.8.0/24 Signature Algorithm: sha256WithRSAEncryption 21:38:b6:a3:0e:66:cd:20:56:9f:89:40:6b:57:4c:83:bc:da: e5:73:60:18:67:05:1c:aa:a8:be:c9:b1:34:c0:34:c4:4a:b0: 68:c3:ce:61:fa:32:11:6b:03:b9:90:8e:ec:5a:61:49:89:1c: 48:33:ec:4d:28:87:9f:67:ad:33:0f:63:24:95:69:e0:5d:1c: 0a:13:c9:83:8b:67:e3:5e:67:e4:d6:36:2b:da:9d:a7:36:4b: 66:6c:ce:00:6c:fe:35:e9:d7:84:97:56:60:67:29:9d:57:a0: de:7e:35:d9:ee:e3:27:55:16:79:1c:c9:fd:11:24:c5:c7:8d: 6b:c1:3f:fc:fc:6f:40:5e:55:cf:ab:aa:fd:f2:fb:ee:f2:0c: 3e:af:75:74:25:7e:33:66:2b:6b:3f:8a:5e:25:52:18:5a:5e: b7:c1:ee:25:67:9c:b9:af:4c:03:d9:ba:48:72:3e:4d:b1:b3: 3d:9d:06:d0:29:a5:cb:23:8f:a3:b7:d0:47:0e:30:22:c1:cc: ee:e6:35:0c:7f:3f:03:3f:38:9b:39:34:c5:66:53:24:49:3a: cc:26:e7:60:7f:e5:c3:12:46:af:6d:43:71:91:e3:c7:17:54: 9b:74:22:80:ee:c3:6c:af:8e:a7:e7:3f:02:33:9c:4b:c1:0f: 3b:75:1c:3e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+puOmpz+lxlAKAeLl7mVYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjMzI3YWYzMmE5ODQ5Mjc1N2IyMDBlYTA0MGRiMjRlYzMx MzY1OTIwHhcNMjYwMTAyMTIyMDI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODAyMDdjZjUwNTIyY2RmMWM2NmI0NWRjNGIzMDE4MGY5Yjg1ZTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBiHX0psxDA5b8Kc2E9V6JR7DRME yfnlo9tETkEsYVzCoXe5MgEXw3PqKbBD8TUtDmj85s4FfAlkM9ZD8t31vfx3kUWb 0BLtvuh2A0vL1i4BQauUZTvCtKLjm66+uVybeenGfrelkIvhpUFQ5q/v0zDifcYs 0oFcziuFkKy3UCfHDicrwseEoPGScfLqTDdk7Tt2p0wOGJGqvtLD+Zj5RgidoXhj 9lOJBSJwsGfY4rCCu+Gee0DUWHuGoyXQ8gmUXhEbMUCX5KtuOVH6joMaR+ZHAMyL bITaSxLDvPSP6BEGSjQVFyH2/WSjIrx1drnxbPPyEP+umFGxhWNTY+2VAwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEgCB89QUizfHGa0XcSzAYD5uF5QMB8GA1UdIwQY MBaAFNwyevMqmEknV7IA6gQNsk7DE2WSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0RKNjh5cVlTU2RYc2dEcUJBMnlUc01UWlpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9hNGY2MTktNGU5My00MWQ2LTg0NmMt MTYyMTllMTQwZmE3LzEvU0FJSHoxQlNMTjhjWnJSZHhMTUJnUG00WGxBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC9hNGY2MTktNGU5My00MWQ2LTg0NmMtMTYyMTllMTQwZmE3 LzEvM0RKNjh5cVlTU2RYc2dEcUJBMnlUc01UWlpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufEIMA0G CSqGSIb3DQEBCwUAA4IBAQAhOLajDmbNIFafiUBrV0yDvNrlc2AYZwUcqqi+ybE0 wDTESrBow85h+jIRawO5kI7sWmFJiRxIM+xNKIefZ60zD2MklWngXRwKE8mDi2fj Xmfk1jYr2p2nNktmbM4AbP416deEl1ZgZymdV6DefjXZ7uMnVRZ5HMn9ESTFx41r wT/8/G9AXlXPq6r98vvu8gw+r3V0JX4zZitrP4peJVIYWl63we4lZ5y5r0wD2bpI cj5NsbM9nQbQKaXLI4+jt9BHDjAiwczu5jUMfz8DPzibOTTFZlMkSTrMJudgf+XD EkavbUNxkePHF1SbdCKA7sNsr46n5z8CM5xLwQ87dRw+ -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:38 2026 by rpki-client