This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/ss_i7POqldkDP31KMdlVrzarBdE.roa File: ss_i7POqldkDP31KMdlVrzarBdE.roa (raw, json) Hash identifier: WvsAUlRR+NRLn32GVVcoWQROpDNnn7tmpssNx6BwiVE= Subject key identifier: B2:CF:E2:EC:F3:AA:95:D9:03:3F:7D:4A:31:D9:55:AF:36:AB:05:D1 Certificate issuer: /CN=49d8663d3b969e0253a26d5425bee1c5d443b361 Certificate serial: 019B76EB36718E153629FB37B351A166AFC6 Authority key identifier: 49:D8:66:3D:3B:96:9E:02:53:A2:6D:54:25:BE:E1:C5:D4:43:B3:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SdhmPTuWngJTom1UJb7hxdRDs2E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/ss_i7POqldkDP31KMdlVrzarBdE.roa Signing time: Thu 01 Jan 2026 00:18:04 +0000 ROA not before: Thu 01 Jan 2026 00:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31726 IP address blocks: 185.117.192.0/22 maxlen: 22 2a06:8600::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.mft rsync://rpki.ripe.net/repository/DEFAULT/SdhmPTuWngJTom1UJb7hxdRDs2E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:36:71:8e:15:36:29:fb:37:b3:51:a1:66:af:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49d8663d3b969e0253a26d5425bee1c5d443b361 Validity Not Before: Jan 1 00:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b2cfe2ecf3aa95d9033f7d4a31d955af36ab05d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7a:59:7b:be:4f:03:00:10:15:1f:c8:17:ce: 1c:70:7b:fd:b8:3f:aa:6f:4b:d7:60:48:22:54:d8: f7:db:55:71:53:82:85:48:4d:5f:d2:61:2f:09:7c: 42:79:2e:d2:44:1e:37:01:11:bc:a6:31:06:6b:67: bb:51:d2:eb:fd:5e:41:24:65:c3:0f:58:c4:72:cf: ca:25:06:68:1c:74:89:ba:2f:83:af:4c:fc:99:44: 5c:13:f5:aa:c7:dc:c1:96:8c:8d:67:14:7f:f4:f9: 10:df:0a:e0:6a:51:65:5c:1a:16:56:2b:6b:be:6e: 41:49:05:43:22:e1:16:3e:de:ed:5d:5a:ce:51:f6: c2:f2:27:9b:39:6a:c7:72:ad:03:67:ce:6e:05:2b: 85:4e:f9:80:d5:1b:e9:b5:a9:99:43:03:26:12:75: ef:b5:dc:b6:93:39:c0:50:c8:46:19:9b:3e:e1:ba: 2c:32:5b:95:30:b6:23:50:d8:61:e1:40:35:b4:dc: e3:ed:7d:75:00:b0:ec:8a:18:f7:fd:94:c0:cd:ea: 67:94:b9:66:a3:d9:e2:49:8b:92:62:7a:35:19:6c: 8d:c4:10:45:f2:71:00:5a:3d:78:68:fb:a0:1f:30: ad:58:61:03:f5:8d:f8:00:d6:ff:9b:b0:19:d4:1c: e1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:CF:E2:EC:F3:AA:95:D9:03:3F:7D:4A:31:D9:55:AF:36:AB:05:D1 X509v3 Authority Key Identifier: keyid:49:D8:66:3D:3B:96:9E:02:53:A2:6D:54:25:BE:E1:C5:D4:43:B3:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SdhmPTuWngJTom1UJb7hxdRDs2E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/ss_i7POqldkDP31KMdlVrzarBdE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.117.192.0/22 IPv6: 2a06:8600::/29 Signature Algorithm: sha256WithRSAEncryption a8:67:65:cd:c0:0f:94:64:b1:18:fc:05:99:b6:fd:bc:09:15: 8f:28:b8:1d:18:70:1e:45:3d:2a:64:68:89:52:b8:19:b3:5f: c7:9a:05:89:30:e2:a8:84:59:00:99:56:63:33:69:d5:2d:c4: 19:3d:ec:19:d1:59:2b:b4:00:06:f0:a5:99:3c:7c:34:79:fe: c7:a7:74:43:15:c1:4e:13:65:46:44:fd:8b:a1:31:70:29:09: 02:92:bf:ef:12:25:c1:4a:83:57:e9:a4:54:90:81:d8:4b:ed: c3:d3:e5:9a:08:d9:da:96:fe:77:66:a7:d9:1c:b3:a7:7d:ec: e3:6d:5b:49:b2:e0:86:c6:5c:fe:81:a0:63:d9:a7:fb:61:ee: 1a:25:4e:18:28:0e:6d:47:7b:ba:19:47:66:39:b9:26:8e:8e: 4b:c0:8b:38:7b:2a:15:a9:07:4b:f1:2a:db:a7:d3:e6:28:46: 6b:99:a6:78:a5:e8:5b:0f:41:f4:93:5e:dc:39:65:e6:77:70: f4:23:fd:0c:f9:f1:4f:64:60:bf:50:05:41:ca:8c:eb:c4:03: d7:e5:52:39:11:32:9e:c9:04:31:9b:f9:64:e5:b0:04:a0:fe: 28:b6:f9:ae:7f:02:60:2e:30:f5:36:c0:5c:da:82:d3:7d:67: 19:07:a6:34 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt26zZxjhU2Kfs3s1GhZq/GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5ZDg2NjNkM2I5NjllMDI1M2EyNmQ1NDI1YmVlMWM1ZDQ0 M2IzNjEwHhcNMjYwMTAxMDAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMmNmZTJlY2YzYWE5NWQ5MDMzZjdkNGEzMWQ5NTVhZjM2YWIwNWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXpZe75PAwAQFR/IF84ccHv9uD+q b0vXYEgiVNj321VxU4KFSE1f0mEvCXxCeS7SRB43ARG8pjEGa2e7UdLr/V5BJGXD D1jEcs/KJQZoHHSJui+Dr0z8mURcE/Wqx9zBloyNZxR/9PkQ3wrgalFlXBoWVitr vm5BSQVDIuEWPt7tXVrOUfbC8iebOWrHcq0DZ85uBSuFTvmA1RvptamZQwMmEnXv tdy2kznAUMhGGZs+4bosMluVMLYjUNhh4UA1tNzj7X11ALDsihj3/ZTAzepnlLlm o9niSYuSYno1GWyNxBBF8nEAWj14aPugHzCtWGED9Y34ANb/m7AZ1BzhwwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLLP4uzzqpXZAz99SjHZVa82qwXRMB8GA1UdIwQY MBaAFEnYZj07lp4CU6JtVCW+4cXUQ7NhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2RobVBUdVduZ0pUb20xVUpiN2h4ZFJEczJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9hNWQwMGQtNjI2Ni00NmVhLWJjOGMt NDE4MmJlZGI5OGExLzEvc3NfaTdQT3FsZGtEUDMxS01kbFZyemFyQmRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy9hNWQwMGQtNjI2Ni00NmVhLWJjOGMtNDE4MmJlZGI5OGEx LzEvU2RobVBUdVduZ0pUb20xVUpiN2h4ZFJEczJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXXAMA0E AgACMAcDBQMqBoYAMA0GCSqGSIb3DQEBCwUAA4IBAQCoZ2XNwA+UZLEY/AWZtv28 CRWPKLgdGHAeRT0qZGiJUrgZs1/HmgWJMOKohFkAmVZjM2nVLcQZPewZ0VkrtAAG 8KWZPHw0ef7Hp3RDFcFOE2VGRP2LoTFwKQkCkr/vEiXBSoNX6aRUkIHYS+3D0+Wa CNnalv53ZqfZHLOnfezjbVtJsuCGxlz+gaBj2af7Ye4aJU4YKA5tR3u6GUdmObkm jo5LwIs4eyoVqQdL8Srbp9PmKEZrmaZ4pehbD0H0k17cOWXmd3D0I/0M+fFPZGC/ UAVByozrxAPX5VI5ETKeyQQxm/lk5bAEoP4otvmufwJgLjD1NsBc2oLTfWcZB6Y0 -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:26 2026 by rpki-client