This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/SGh_0_StZ-bip9gscWJB5whR3RM.roa File: SGh_0_StZ-bip9gscWJB5whR3RM.roa (raw, json) Hash identifier: 6hZbIPbSJWU4puEyHHUPbKbE4av5+/Ai8H+XhwiWL6Q= Subject key identifier: 48:68:7F:D3:F4:AD:67:E6:E2:A7:D8:2C:71:62:41:E7:08:51:DD:13 Certificate issuer: /CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e Certificate serial: 019B7B36EC18CEB0B938EBF352F5D2188C5C Authority key identifier: B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/SGh_0_StZ-bip9gscWJB5whR3RM.roa Signing time: Thu 01 Jan 2026 20:19:15 +0000 ROA not before: Thu 01 Jan 2026 20:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3266 IP address blocks: 78.24.72.0/24 maxlen: 24 78.24.73.0/24 maxlen: 24 78.24.74.0/24 maxlen: 24 78.24.75.0/24 maxlen: 24 78.24.77.0/24 maxlen: 24 78.24.78.0/24 maxlen: 24 78.24.79.0/24 maxlen: 24 2a00:1908::/35 maxlen: 35 2a00:1908::/48 maxlen: 48 2a00:1908:2000::/35 maxlen: 35 2a00:1908:4000::/35 maxlen: 35 2a00:1908:6000::/35 maxlen: 35 2a00:1908:8000::/35 maxlen: 35 2a00:1908:a000::/35 maxlen: 35 2a00:1909::/32 maxlen: 32 2a00:1909::/48 maxlen: 48 2a00:190a::/32 maxlen: 32 2a00:190a::/48 maxlen: 48 2a00:190f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/suRItKCPDkxYooPYBzWoqAPhDU4.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/suRItKCPDkxYooPYBzWoqAPhDU4.mft rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:ec:18:ce:b0:b9:38:eb:f3:52:f5:d2:18:8c:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e Validity Not Before: Jan 1 20:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48687fd3f4ad67e6e2a7d82c716241e70851dd13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:10:8d:0f:26:eb:45:16:ae:62:07:3f:d0:82: ab:00:b1:69:9d:ef:c4:c1:29:eb:3c:6d:61:eb:41: f1:74:27:1d:b9:bd:e8:19:da:39:ea:9a:96:c9:67: 9c:5a:00:74:54:c2:c2:a2:f8:6c:35:f0:e4:31:cf: f2:ec:43:74:3a:63:69:11:28:fa:a8:be:ea:39:ad: 1c:77:52:a7:bc:cf:13:ea:cd:34:52:b2:1e:90:7b: 03:63:e3:8a:24:f3:be:53:25:45:f5:bc:a7:40:27: b0:6c:a5:63:1e:e4:cb:88:b4:81:c2:8d:e8:c3:14: 15:30:c2:95:6b:b6:be:c7:3d:06:22:21:1f:a1:f4: 30:9d:44:76:28:ed:55:b3:b1:4c:88:36:e6:25:59: 05:02:48:99:e3:b8:09:5e:ab:ec:50:ce:eb:fe:58: 78:17:5f:ab:a9:29:51:11:09:7e:c9:90:53:ba:a7: 69:4a:e5:e5:9c:4b:54:db:5f:9c:0b:56:87:61:79: 2a:4d:4e:36:53:6d:4b:81:d6:8b:56:83:df:fa:fe: d0:58:22:db:b9:fd:a0:ce:15:23:8e:28:eb:89:95: 29:23:8d:cd:58:76:df:8b:f0:a8:ed:af:2d:3d:d8: 6e:ae:b8:0a:b6:14:fa:6e:bd:46:70:c8:62:6f:40: 6c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:68:7F:D3:F4:AD:67:E6:E2:A7:D8:2C:71:62:41:E7:08:51:DD:13 X509v3 Authority Key Identifier: keyid:B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/SGh_0_StZ-bip9gscWJB5whR3RM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/suRItKCPDkxYooPYBzWoqAPhDU4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.24.72.0/22 78.24.77.0-78.24.79.255 IPv6: 2a00:1908::-2a00:1908:bfff:ffff:ffff:ffff:ffff:ffff 2a00:1909::-2a00:190a:ffff:ffff:ffff:ffff:ffff:ffff 2a00:190f::/48 Signature Algorithm: sha256WithRSAEncryption 7a:71:d4:b7:3e:19:e9:75:ad:eb:cb:7b:14:dc:23:3d:b9:6c: e3:ff:da:58:8c:3f:df:a7:52:3b:14:f0:3b:b9:41:79:ff:ec: 07:0b:65:ce:4c:4c:17:69:46:d1:a6:17:ca:3e:86:24:cb:4d: 64:3a:c6:62:e1:1f:17:d5:32:92:60:4a:e8:23:59:8c:fc:76: ab:74:23:14:2a:2a:03:0e:8a:99:2d:19:c1:34:f1:59:66:a2: df:b9:01:78:be:2b:9a:13:6b:47:da:89:d9:f0:2b:13:00:2c: ad:4e:4a:2a:fc:27:28:e3:70:8c:ea:4a:b6:dd:7a:d6:90:3c: 36:d3:a6:18:49:7b:fd:9a:6a:0e:f8:39:d9:8c:8d:fe:28:8b: 24:0b:1f:57:a3:04:05:a4:be:bf:f4:89:9d:8e:8f:dd:4a:df: 97:f3:d8:e2:43:ad:0b:f9:52:8a:e5:08:b5:59:66:62:74:e2: cf:b6:9e:a5:fd:56:36:e5:b5:27:f8:39:24:63:cf:a6:f5:80: f5:c9:c3:1f:e3:d8:bf:6c:87:75:9b:01:1c:94:36:6f:cf:e4: 3a:4f:87:65:4c:a5:91:ab:3e:de:01:e4:2b:66:61:b1:5b:f8: 4a:b1:ed:a3:6f:86:94:0d:ff:1a:3b:5e:3f:13:df:4f:63:5c: 4c:da:ad:83 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgISAZt7NuwYzrC5OOvzUvXSGIxcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZTQ0OGI0YTA4ZjBlNGM1OGEyODNkODA3MzVhOGE4MDNl MTBkNGUwHhcNMjYwMTAxMjAxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODY4N2ZkM2Y0YWQ2N2U2ZTJhN2Q4MmM3MTYyNDFlNzA4NTFkZDEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhhCNDybrRRauYgc/0IKrALFpne/E wSnrPG1h60HxdCcdub3oGdo56pqWyWecWgB0VMLCovhsNfDkMc/y7EN0OmNpESj6 qL7qOa0cd1KnvM8T6s00UrIekHsDY+OKJPO+UyVF9bynQCewbKVjHuTLiLSBwo3o wxQVMMKVa7a+xz0GIiEfofQwnUR2KO1Vs7FMiDbmJVkFAkiZ47gJXqvsUM7r/lh4 F1+rqSlREQl+yZBTuqdpSuXlnEtU21+cC1aHYXkqTU42U21LgdaLVoPf+v7QWCLb uf2gzhUjjijriZUpI43NWHbfi/Co7a8tPdhurrgKthT6br1GcMhib0BsKQIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFEhof9P0rWfm4qfYLHFiQecIUd0TMB8GA1UdIwQY MBaAFLLkSLSgjw5MWKKD2Ac1qKgD4Q1OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3VSSXRLQ1BEa3hZb29QWUJ6V29xQVBoRFU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9hNzA2OGEtOTJiYS00MmVhLTk5NjYt MjA1NGQ0ZTkwM2JjLzEvU0doXzBfU3RaLWJpcDlnc2NXSkI1d2hSM1JNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9hNzA2OGEtOTJiYS00MmVhLTk5NjYtMjA1NGQ0ZTkwM2Jj LzEvc3VSSXRLQ1BEa3hZb29QWUJ6V29xQVBoRFU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF8GCCsGAQUFBwEHAQH/BFAwTjAaBAIAATAUAwQCThhIMAwD BABOGE0DBAROGEAwMAQCAAIwKjAPAwUDKgAZCAMGBioAGQiAMA4DBQAqABkJAwUA KgAZCgMHACoAGQ8AADANBgkqhkiG9w0BAQsFAAOCAQEAenHUtz4Z6XWt68t7FNwj Pbls4//aWIw/36dSOxTwO7lBef/sBwtlzkxMF2lG0aYXyj6GJMtNZDrGYuEfF9Uy kmBK6CNZjPx2q3QjFCoqAw6KmS0ZwTTxWWai37kBeL4rmhNrR9qJ2fArEwAsrU5K KvwnKONwjOpKtt161pA8NtOmGEl7/ZpqDvg52YyN/iiLJAsfV6MEBaS+v/SJnY6P 3Urfl/PY4kOtC/lSiuUItVlmYnTiz7aepf1WNuW1J/g5JGPPpvWA9cnDH+PYv2yH dZsBHJQ2b8/kOk+HZUylkas+3gHkK2ZhsVv4SrHto2+GlA3/GjtePxPfT2NcTNqt gw== -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:24 2026 by rpki-client