This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/smUsXzlGIw2WaigNOEiBfQtIOMw.roa File: smUsXzlGIw2WaigNOEiBfQtIOMw.roa (raw, json) Hash identifier: bI8PqSSot+u9bXLXacGJ6AoDPSB2KvmCTOK7AIXLCKI= Subject key identifier: B2:65:2C:5F:39:46:23:0D:96:6A:28:0D:38:48:81:7D:0B:48:38:CC Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb Certificate serial: 019B7758F12C60E1DF8BF60B318647265A38 Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/smUsXzlGIw2WaigNOEiBfQtIOMw.roa Signing time: Thu 01 Jan 2026 02:17:56 +0000 ROA not before: Thu 01 Jan 2026 02:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203909 IP address blocks: 5.1.77.0/24 maxlen: 32 2a00:f826:4::/48 maxlen: 48 2a00:f826:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.mft rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 14:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:f1:2c:60:e1:df:8b:f6:0b:31:86:47:26:5a:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb Validity Not Before: Jan 1 02:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b2652c5f3946230d966a280d3848817d0b4838cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bf:94:90:04:c9:86:78:d9:8a:6d:3a:fd:65: 30:1f:66:0e:80:d0:10:13:4b:a3:7a:74:17:84:2e: 68:54:30:a7:22:9b:d4:35:35:1f:92:eb:fd:12:5b: 20:02:1d:73:c1:34:2c:35:59:8f:08:13:7c:b2:d0: f6:c6:ae:11:14:b2:e7:3a:97:25:93:24:16:67:2b: 07:7e:fc:97:ce:05:b6:5f:d8:0d:92:52:71:63:ba: 0a:78:2e:b4:9a:5e:c1:01:0f:48:2b:ef:e3:9e:e2: f4:b6:f3:e8:21:b4:4b:95:4e:cc:20:fb:ea:1e:87: 9a:29:7a:56:88:9f:07:18:82:e6:44:f5:01:21:89: a3:89:72:78:89:b2:15:80:3e:69:05:51:1c:2e:56: 70:a0:51:23:68:05:6c:c4:d7:46:e1:b5:36:6c:81: 5c:82:4a:a4:95:8d:8c:c2:ae:78:6e:8b:1b:56:6e: ea:2e:b1:ce:da:a0:91:d6:e8:03:39:7a:05:50:f0: 4d:71:03:4b:f6:cf:06:59:54:a7:f3:56:22:6c:6a: 58:ba:af:a6:23:8d:8a:33:6a:5f:0e:69:bf:99:22: 38:2f:e4:12:6d:70:a7:52:b7:f2:e0:fb:17:11:b1: d7:bf:e6:1a:60:cf:b1:59:2c:80:64:7e:c3:61:a9: 1c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:65:2C:5F:39:46:23:0D:96:6A:28:0D:38:48:81:7D:0B:48:38:CC X509v3 Authority Key Identifier: keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/smUsXzlGIw2WaigNOEiBfQtIOMw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.1.77.0/24 IPv6: 2a00:f826:4::/48 2a00:f826:7::/48 Signature Algorithm: sha256WithRSAEncryption ac:b8:4f:78:23:23:3c:c7:8e:67:dc:eb:3b:fe:ec:30:26:47: 60:36:8a:df:52:d4:a3:c9:2d:09:e3:ac:a8:44:99:b2:31:91: 17:06:4b:88:23:47:81:7f:a6:8d:4d:c9:61:1b:56:81:f8:70: 7f:95:5f:f9:da:1a:dc:f0:f2:a9:b3:69:27:77:d4:ab:13:ea: 07:2f:36:9d:6c:9a:d1:25:e0:c5:22:d5:d7:72:9e:80:1a:85: 1d:7b:37:55:1e:c7:d6:d0:96:f9:bc:24:7f:8f:59:c5:d3:97: da:4c:42:b4:f2:08:0e:cd:5c:8d:2a:54:1c:98:54:55:e5:22: 6e:38:33:b2:5a:74:d1:cb:f4:f2:32:b6:2d:3d:53:ab:6d:22: eb:f9:53:aa:a0:3b:36:d0:b0:8c:02:9d:62:2c:c2:a4:55:05: fe:22:08:83:e5:0b:6f:50:14:1d:7c:d2:69:84:52:d9:ff:92: 29:d1:8d:73:92:e1:cd:0a:54:62:6a:c2:f0:8c:af:65:04:b6: 7e:41:53:68:cc:c3:11:3e:7c:17:53:bb:9c:73:eb:62:34:aa: d0:10:4d:2b:cf:c3:da:21:82:7d:e9:bc:0d:f0:43:cf:91:23: 9c:fc:bf:f1:9f:89:f9:a9:21:f1:ce:24:1f:dc:08:c2:49:43: b4:7b:16:bc -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt3WPEsYOHfi/YLMYZHJlo4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0MjUzYzRmMjMzY2U5ODQ3Njk5YWU2OGVjYmY1ZDc1MTRi MGZhZGIwHhcNMjYwMTAxMDIxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMjY1MmM1ZjM5NDYyMzBkOTY2YTI4MGQzODQ4ODE3ZDBiNDgzOGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsb+UkATJhnjZim06/WUwH2YOgNAQ E0ujenQXhC5oVDCnIpvUNTUfkuv9ElsgAh1zwTQsNVmPCBN8stD2xq4RFLLnOpcl kyQWZysHfvyXzgW2X9gNklJxY7oKeC60ml7BAQ9IK+/jnuL0tvPoIbRLlU7MIPvq HoeaKXpWiJ8HGILmRPUBIYmjiXJ4ibIVgD5pBVEcLlZwoFEjaAVsxNdG4bU2bIFc gkqklY2Mwq54bosbVm7qLrHO2qCR1ugDOXoFUPBNcQNL9s8GWVSn81YibGpYuq+m I42KM2pfDmm/mSI4L+QSbXCnUrfy4PsXEbHXv+YaYM+xWSyAZH7DYakcFQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFLJlLF85RiMNlmooDThIgX0LSDjMMB8GA1UdIwQY MBaAFLQlPE8jPOmEdpmuaOy/XXUUsPrbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdENVOFR5TTg2WVIybWE1bzdMOWRkUlN3LXRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80MWQ2ZTEtNWNhZC00MGRiLTk3NzMt NThiMzhmNWFjODBiLzEvc21Vc1h6bEdJdzJXYWlnTk9FaUJmUXRJT013LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC80MWQ2ZTEtNWNhZC00MGRiLTk3NzMtNThiMzhmNWFjODBi LzEvdENVOFR5TTg2WVIybWE1bzdMOWRkUlN3LXRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQABQFNMBgE AgACMBIDBwAqAPgmAAQDBwAqAPgmAAcwDQYJKoZIhvcNAQELBQADggEBAKy4T3gj IzzHjmfc6zv+7DAmR2A2it9S1KPJLQnjrKhEmbIxkRcGS4gjR4F/po1NyWEbVoH4 cH+VX/naGtzw8qmzaSd31KsT6gcvNp1smtEl4MUi1ddynoAahR17N1Uex9bQlvm8 JH+PWcXTl9pMQrTyCA7NXI0qVByYVFXlIm44M7JadNHL9PIyti09U6ttIuv5U6qg OzbQsIwCnWIswqRVBf4iCIPlC29QFB180mmEUtn/kinRjXOS4c0KVGJqwvCMr2UE tn5BU2jMwxE+fBdTu5xz62I0qtAQTSvPw9ohgn3pvA3wQ8+RI5z8v/GfifmpIfHO JB/cCMJJQ7R7Frw= -----END CERTIFICATE-----Generated at Wed Jan 21 00:04:09 2026 by rpki-client