This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6c9902-cd45-4404-8513-71c3d6aa2899/1/SthetgpXxzE5DDJOcie_LsqpRQs.roa File: SthetgpXxzE5DDJOcie_LsqpRQs.roa (raw, json) Hash identifier: 1G5wA/BqRdbf365y+2p8DrgYId5s873fPHSYZ3snZ28= Subject key identifier: 4A:D8:5E:B6:0A:57:C7:31:39:0C:32:4E:72:27:BF:2E:CA:A9:45:0B Certificate issuer: /CN=617f6f6e150a6043cb2093b08ddd3a2a4ab97a37 Certificate serial: 019B7C10FEF1B792369B356CD16F5F40FC0C Authority key identifier: 61:7F:6F:6E:15:0A:60:43:CB:20:93:B0:8D:DD:3A:2A:4A:B9:7A:37 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YX9vbhUKYEPLIJOwjd06Kkq5ejc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6c9902-cd45-4404-8513-71c3d6aa2899/1/SthetgpXxzE5DDJOcie_LsqpRQs.roa Signing time: Fri 02 Jan 2026 00:17:26 +0000 ROA not before: Fri 02 Jan 2026 00:17:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 196874 IP address blocks: 109.233.80.0/21 maxlen: 21 192.145.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/6c9902-cd45-4404-8513-71c3d6aa2899/1/YX9vbhUKYEPLIJOwjd06Kkq5ejc.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/6c9902-cd45-4404-8513-71c3d6aa2899/1/YX9vbhUKYEPLIJOwjd06Kkq5ejc.mft rsync://rpki.ripe.net/repository/DEFAULT/YX9vbhUKYEPLIJOwjd06Kkq5ejc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:10:fe:f1:b7:92:36:9b:35:6c:d1:6f:5f:40:fc:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=617f6f6e150a6043cb2093b08ddd3a2a4ab97a37 Validity Not Before: Jan 2 00:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4ad85eb60a57c731390c324e7227bf2ecaa9450b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1a:90:63:35:71:81:18:02:ee:70:7c:2f:b3: c0:bc:fb:25:22:61:24:9b:c6:9f:6f:db:fd:d0:1e: 6e:64:82:3b:a7:c9:a7:3c:5c:d2:bd:1c:5c:e5:d2: 18:20:9f:ea:d6:a4:4e:c3:9b:07:45:ac:3e:0a:ba: 0a:73:77:88:2f:7a:39:28:c4:57:f4:23:41:a7:23: 5c:cb:51:9a:25:3c:da:23:2a:19:80:23:ca:19:1a: 11:98:02:e0:71:f1:6b:6e:e1:0e:80:90:7e:59:68: 39:15:ba:52:07:1f:f2:04:c4:9a:5e:82:fe:bf:88: 7f:96:6b:0e:92:83:6b:89:2e:ee:d5:ce:ef:45:79: 81:2e:51:72:6d:a8:70:e6:18:ec:b6:ac:00:89:b3: b5:3a:3e:be:6e:a2:a1:12:e4:e8:c4:80:0d:83:de: 68:8b:98:75:47:4f:62:84:6f:71:08:d3:96:03:57: 66:d6:9b:80:0b:9c:76:5d:cd:af:1b:25:4e:e5:85: b2:99:07:2c:bc:88:bb:b1:85:6c:28:1d:3b:30:a4: de:74:e0:42:f0:78:02:75:cb:1b:8f:e4:83:eb:df: f2:52:60:a6:83:5c:1b:2c:f6:d2:d5:57:1c:7a:16: 7f:19:47:0c:59:0e:10:13:b6:ee:ce:36:49:77:31: 90:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D8:5E:B6:0A:57:C7:31:39:0C:32:4E:72:27:BF:2E:CA:A9:45:0B X509v3 Authority Key Identifier: keyid:61:7F:6F:6E:15:0A:60:43:CB:20:93:B0:8D:DD:3A:2A:4A:B9:7A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YX9vbhUKYEPLIJOwjd06Kkq5ejc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6c9902-cd45-4404-8513-71c3d6aa2899/1/SthetgpXxzE5DDJOcie_LsqpRQs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6c9902-cd45-4404-8513-71c3d6aa2899/1/YX9vbhUKYEPLIJOwjd06Kkq5ejc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.233.80.0/21 192.145.48.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:5d:ee:9e:b2:94:1d:83:7e:e7:aa:4b:17:f9:6b:e8:e6:ad: c2:f0:6a:dc:10:e1:1e:86:5b:2a:d6:8a:9a:fc:4d:b4:50:5b: 1a:29:02:5d:74:d6:f4:aa:c2:22:b9:1e:12:dc:54:dd:97:5f: 68:fb:c3:7d:69:54:c6:23:43:59:d9:6d:96:33:2d:d3:78:ec: 96:29:69:51:a2:71:7e:24:9e:92:7a:fc:e7:23:60:02:ef:cf: 03:8e:4a:fa:35:d0:4c:11:7e:47:53:6e:17:c2:f3:04:3e:46: 81:6f:41:c2:4a:55:5f:33:39:fe:ca:73:9b:82:f4:0f:2c:17: 43:06:8b:50:31:d7:e9:cd:13:e6:60:9a:9a:a6:23:23:f9:c6: da:28:a3:20:ea:d9:c8:67:5e:f7:33:93:d4:72:97:40:9e:6f: 3d:be:70:83:ec:76:cd:80:aa:c8:7c:f0:8c:06:d2:b0:ba:27: a4:4f:7c:82:7d:d2:72:f9:52:90:10:d4:1a:f8:8d:c6:80:1f: 71:77:6d:08:a5:a8:ff:6f:7f:0c:bf:6f:bb:83:cc:67:5b:e0: 7c:0a:be:2c:7f:41:ff:ff:15:52:4f:f8:7d:0d:05:58:a6:6e: 8e:d4:35:e8:66:05:74:df:13:5b:9c:ca:37:11:19:46:b0:15: e2:45:21:aa -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EP7xt5I2mzVs0W9fQPwMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxN2Y2ZjZlMTUwYTYwNDNjYjIwOTNiMDhkZGQzYTJhNGFi OTdhMzcwHhcNMjYwMTAyMDAxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YWQ4NWViNjBhNTdjNzMxMzkwYzMyNGU3MjI3YmYyZWNhYTk0NTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxqQYzVxgRgC7nB8L7PAvPslImEk m8afb9v90B5uZII7p8mnPFzSvRxc5dIYIJ/q1qROw5sHRaw+CroKc3eIL3o5KMRX 9CNBpyNcy1GaJTzaIyoZgCPKGRoRmALgcfFrbuEOgJB+WWg5FbpSBx/yBMSaXoL+ v4h/lmsOkoNriS7u1c7vRXmBLlFybahw5hjstqwAibO1Oj6+bqKhEuToxIANg95o i5h1R09ihG9xCNOWA1dm1puAC5x2Xc2vGyVO5YWymQcsvIi7sYVsKB07MKTedOBC 8HgCdcsbj+SD69/yUmCmg1wbLPbS1VccehZ/GUcMWQ4QE7buzjZJdzGQVwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFErYXrYKV8cxOQwyTnInvy7KqUULMB8GA1UdIwQY MBaAFGF/b24VCmBDyyCTsI3dOipKuXo3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVg5dmJoVUtZRVBMSUpPd2pkMDZLa3E1ZWpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi82Yzk5MDItY2Q0NS00NDA0LTg1MTMt NzFjM2Q2YWEyODk5LzEvU3RoZXRncFh4ekU1RERKT2NpZV9Mc3FwUlFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi82Yzk5MDItY2Q0NS00NDA0LTg1MTMtNzFjM2Q2YWEyODk5 LzEvWVg5dmJoVUtZRVBMSUpPd2pkMDZLa3E1ZWpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDbelQAwQC wJEwMA0GCSqGSIb3DQEBCwUAA4IBAQBdXe6espQdg37nqksX+Wvo5q3C8GrcEOEe hlsq1oqa/E20UFsaKQJddNb0qsIiuR4S3FTdl19o+8N9aVTGI0NZ2W2WMy3TeOyW KWlRonF+JJ6SevznI2AC788Djkr6NdBMEX5HU24XwvMEPkaBb0HCSlVfMzn+ynOb gvQPLBdDBotQMdfpzRPmYJqapiMj+cbaKKMg6tnIZ173M5PUcpdAnm89vnCD7HbN gKrIfPCMBtKwuiekT3yCfdJy+VKQENQa+I3GgB9xd20Ipaj/b38Mv2+7g8xnW+B8 Cr4sf0H//xVST/h9DQVYpm6O1DXoZgV03xNbnMo3ERlGsBXiRSGq -----END CERTIFICATE-----Generated at Mon Feb 2 08:08:19 2026 by rpki-client