This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/7bd729-98e5-43ff-afe6-187b1f77c1a5/1/o-GuySAZav0PksHcDzno-EypQJ0.roa File: o-GuySAZav0PksHcDzno-EypQJ0.roa (raw, json) Hash identifier: /pzSPA6PGMWrOD+vCeL5sGDbZ/TBSHFZKj+LgOJi0Mo= Subject key identifier: A3:E1:AE:C9:20:19:6A:FD:0F:92:C1:DC:0F:39:E8:F8:4C:A9:40:9D Certificate issuer: /CN=4c93029c5b2639cd29b9f9dd5294cc94ef52d6af Certificate serial: 019B7C1176070C9C0EBB9FFF50EA092974EB Authority key identifier: 4C:93:02:9C:5B:26:39:CD:29:B9:F9:DD:52:94:CC:94:EF:52:D6:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TJMCnFsmOc0pufndUpTMlO9S1q8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/7bd729-98e5-43ff-afe6-187b1f77c1a5/1/o-GuySAZav0PksHcDzno-EypQJ0.roa Signing time: Fri 02 Jan 2026 00:17:57 +0000 ROA not before: Fri 02 Jan 2026 00:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48707 IP address blocks: 91.230.200.0/24 maxlen: 24 91.230.201.0/24 maxlen: 24 91.230.202.0/24 maxlen: 24 91.230.203.0/24 maxlen: 24 91.230.204.0/24 maxlen: 24 91.230.205.0/24 maxlen: 24 185.237.28.0/24 maxlen: 24 185.237.29.0/24 maxlen: 24 185.237.30.0/24 maxlen: 24 185.237.31.0/24 maxlen: 24 185.238.137.0/24 maxlen: 24 185.253.212.0/24 maxlen: 24 185.253.213.0/24 maxlen: 24 185.253.214.0/24 maxlen: 24 185.253.215.0/24 maxlen: 24 195.2.208.0/24 maxlen: 24 195.2.209.0/24 maxlen: 24 2a0c:b40::/32 maxlen: 48 2a0c:b41::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/7bd729-98e5-43ff-afe6-187b1f77c1a5/1/TJMCnFsmOc0pufndUpTMlO9S1q8.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/7bd729-98e5-43ff-afe6-187b1f77c1a5/1/TJMCnFsmOc0pufndUpTMlO9S1q8.mft rsync://rpki.ripe.net/repository/DEFAULT/TJMCnFsmOc0pufndUpTMlO9S1q8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:76:07:0c:9c:0e:bb:9f:ff:50:ea:09:29:74:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c93029c5b2639cd29b9f9dd5294cc94ef52d6af Validity Not Before: Jan 2 00:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a3e1aec920196afd0f92c1dc0f39e8f84ca9409d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ca:7c:ae:47:d5:b2:bc:f5:60:06:08:31:ae: b9:06:80:ca:9d:33:3e:b0:1f:71:fd:f4:24:e3:27: 57:8a:65:12:3f:6b:35:2f:8f:2a:a6:36:da:13:c9: b3:4f:f6:67:09:78:0f:dc:18:b3:8c:f1:a6:c2:65: 82:05:84:57:0c:60:80:49:a7:69:d4:5b:65:af:68: 9c:f4:a5:5c:6d:e2:d5:7e:9a:4c:69:4c:b3:cd:89: ae:eb:9d:58:f3:39:f9:d6:4d:1e:46:80:dc:bb:61: 6f:dc:32:22:17:af:fe:43:5f:94:db:b3:a3:82:57: 8e:d6:ef:61:62:86:1b:fc:0f:f6:57:ad:e4:67:78: 89:71:79:9f:bd:4f:2e:31:ea:ec:7b:a9:a7:59:17: ec:10:a1:7a:2d:25:60:58:ff:46:3a:ed:1a:41:07: ac:92:09:c2:a0:30:e7:2f:be:18:8a:4a:a4:76:46: 48:6d:ad:9a:ae:26:16:f8:71:15:bb:0e:97:d2:d2: 05:6e:5a:e9:18:1c:e5:81:02:df:c1:ac:5c:e3:3a: aa:a2:e3:12:87:40:e0:2c:1a:c7:38:7f:f0:2a:48: 77:66:cb:29:cd:05:a5:88:71:fc:4c:0a:24:2c:d9: 90:ae:7d:6a:ff:79:c4:d8:6f:33:81:7c:fd:c5:bd: 08:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E1:AE:C9:20:19:6A:FD:0F:92:C1:DC:0F:39:E8:F8:4C:A9:40:9D X509v3 Authority Key Identifier: keyid:4C:93:02:9C:5B:26:39:CD:29:B9:F9:DD:52:94:CC:94:EF:52:D6:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TJMCnFsmOc0pufndUpTMlO9S1q8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/7bd729-98e5-43ff-afe6-187b1f77c1a5/1/o-GuySAZav0PksHcDzno-EypQJ0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/7bd729-98e5-43ff-afe6-187b1f77c1a5/1/TJMCnFsmOc0pufndUpTMlO9S1q8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.230.200.0-91.230.205.255 185.237.28.0/22 185.238.137.0/24 185.253.212.0/22 195.2.208.0/23 IPv6: 2a0c:b40::/31 Signature Algorithm: sha256WithRSAEncryption 8b:ed:45:fd:70:69:d9:a5:76:e6:2f:ab:2a:7e:c7:7a:94:87: 43:82:cb:60:83:26:1b:37:10:01:f5:90:9d:85:85:75:ce:11: 07:a4:09:d7:1a:99:d4:22:57:76:46:b6:a3:10:d2:e0:8d:64: 76:34:7c:5a:20:dd:34:19:78:f9:43:1e:e8:d7:d1:2a:da:c4: 5b:8a:c0:45:65:b9:52:8c:e8:bd:9c:7a:25:99:2f:ea:fb:bb: 66:5f:fa:cf:84:eb:21:67:88:00:f6:d1:ae:4e:e0:51:0b:88: d4:84:b5:2c:24:33:a9:03:e1:b2:10:b2:89:b3:0e:07:72:45: 83:74:70:65:55:26:43:bc:3e:06:fc:fc:29:7b:0c:3c:e8:57: 5e:77:ce:a7:13:ff:14:e2:07:8f:4e:99:3c:f6:a0:26:1b:fb: b3:0e:c9:f9:f3:8d:e7:d7:f4:08:82:9b:14:ff:af:ed:59:a2: dd:56:90:4c:c1:e4:0b:92:63:10:dd:37:3f:d8:65:6b:10:cb: 28:36:2d:f0:ed:9a:bd:9a:c2:b3:b9:1a:ae:ec:16:53:33:b2: 13:9d:58:f8:f2:85:5d:19:b4:f8:a6:84:9a:81:3b:a3:9f:b6: 39:47:69:70:0b:ad:6c:0f:e0:29:55:76:02:98:07:77:a8:40: 3f:99:86:b9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgISAZt8EXYHDJwOu5//UOoJKXTrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjOTMwMjljNWIyNjM5Y2QyOWI5ZjlkZDUyOTRjYzk0ZWY1 MmQ2YWYwHhcNMjYwMTAyMDAxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhM2UxYWVjOTIwMTk2YWZkMGY5MmMxZGMwZjM5ZThmODRjYTk0MDlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlMp8rkfVsrz1YAYIMa65BoDKnTM+ sB9x/fQk4ydXimUSP2s1L48qpjbaE8mzT/ZnCXgP3BizjPGmwmWCBYRXDGCASadp 1Ftlr2ic9KVcbeLVfppMaUyzzYmu651Y8zn51k0eRoDcu2Fv3DIiF6/+Q1+U27Oj gleO1u9hYoYb/A/2V63kZ3iJcXmfvU8uMerse6mnWRfsEKF6LSVgWP9GOu0aQQes kgnCoDDnL74YikqkdkZIba2ariYW+HEVuw6X0tIFblrpGBzlgQLfwaxc4zqqouMS h0DgLBrHOH/wKkh3ZsspzQWliHH8TAokLNmQrn1q/3nE2G8zgXz9xb0IqQIDAQAB o4ICODCCAjQwHQYDVR0OBBYEFKPhrskgGWr9D5LB3A856PhMqUCdMB8GA1UdIwQY MBaAFEyTApxbJjnNKbn53VKUzJTvUtavMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEpNQ25Gc21PYzBwdWZuZFVwVE1sTzlTMXE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC83YmQ3MjktOThlNS00M2ZmLWFmZTYt MTg3YjFmNzdjMWE1LzEvby1HdXlTQVphdjBQa3NIY0R6bm8tRXlwUUowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC83YmQ3MjktOThlNS00M2ZmLWFmZTYtMTg3YjFmNzdjMWE1 LzEvVEpNQ25Gc21PYzBwdWZuZFVwVE1sTzlTMXE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAsBAIAATAmMAwDBANb5sgD BAFb5swDBAK57RwDBAC57okDBAK5/dQDBAHDAtAwDQQCAAIwBwMFASoMC0AwDQYJ KoZIhvcNAQELBQADggEBAIvtRf1wadmlduYvqyp+x3qUh0OCy2CDJhs3EAH1kJ2F hXXOEQekCdcamdQiV3ZGtqMQ0uCNZHY0fFog3TQZePlDHujX0SraxFuKwEVluVKM 6L2ceiWZL+r7u2Zf+s+E6yFniAD20a5O4FELiNSEtSwkM6kD4bIQsomzDgdyRYN0 cGVVJkO8Pgb8/Cl7DDzoV153zqcT/xTiB49OmTz2oCYb+7MOyfnzjefX9AiCmxT/ r+1Zot1WkEzB5AuSYxDdNz/YZWsQyyg2LfDtmr2awrO5Gq7sFlMzshOdWPjyhV0Z tPimhJqBO6OftjlHaXALrWwP4ClVdgKYB3eoQD+Zhrk= -----END CERTIFICATE-----Generated at Mon Feb 2 08:07:48 2026 by rpki-client