This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6b41f5-b7c5-4334-9fbf-b38a6f220e63/1/sSTPNFsIM_pP58lAmJ2VifEkHkE.roa File: sSTPNFsIM_pP58lAmJ2VifEkHkE.roa (raw, json) Hash identifier: U/3F8egAN1yDpn1UU3R15xmn8D/CQ/5823ShE3x+1Nk= Subject key identifier: B1:24:CF:34:5B:08:33:FA:4F:E7:C9:40:98:9D:95:89:F1:24:1E:41 Certificate issuer: /CN=741e2b35550773e053797f764d2e21d65e6428c7 Certificate serial: 019B7CEDAF438967F0931F2058AAF4C29617 Authority key identifier: 74:1E:2B:35:55:07:73:E0:53:79:7F:76:4D:2E:21:D6:5E:64:28:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dB4rNVUHc-BTeX92TS4h1l5kKMc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6b41f5-b7c5-4334-9fbf-b38a6f220e63/1/sSTPNFsIM_pP58lAmJ2VifEkHkE.roa Signing time: Fri 02 Jan 2026 04:18:30 +0000 ROA not before: Fri 02 Jan 2026 04:18:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35798 IP address blocks: 185.70.176.0/22 maxlen: 22 195.130.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/6b41f5-b7c5-4334-9fbf-b38a6f220e63/1/dB4rNVUHc-BTeX92TS4h1l5kKMc.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/6b41f5-b7c5-4334-9fbf-b38a6f220e63/1/dB4rNVUHc-BTeX92TS4h1l5kKMc.mft rsync://rpki.ripe.net/repository/DEFAULT/dB4rNVUHc-BTeX92TS4h1l5kKMc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:af:43:89:67:f0:93:1f:20:58:aa:f4:c2:96:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=741e2b35550773e053797f764d2e21d65e6428c7 Validity Not Before: Jan 2 04:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b124cf345b0833fa4fe7c940989d9589f1241e41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f7:31:6c:e8:fd:95:96:e1:c9:0d:c5:29:cb: fe:89:67:87:79:12:ed:f2:c7:a5:cd:e5:64:28:ce: 85:45:7e:95:3b:c7:c4:c1:c1:c5:40:1a:3b:a9:ac: b3:ae:a8:c8:0d:4a:75:f0:b7:02:5b:0e:60:4d:99: 8a:5d:61:53:64:92:21:b0:4e:d8:12:c1:cc:d3:97: d3:ba:02:96:fd:f8:c8:73:b8:7d:d9:09:40:f5:f9: 4a:a1:5d:73:29:6a:e5:f6:c6:8b:2c:f8:e4:9c:26: 07:7a:64:b1:e1:3d:2f:a3:7b:a8:b1:c6:60:f0:45: cf:32:16:a3:75:61:bd:9c:43:0b:76:25:bf:7d:45: e5:63:30:9b:04:40:2d:87:dc:fa:b8:ef:0d:93:34: f5:ca:58:f5:c1:1b:39:db:89:47:7b:af:69:c3:ef: 3e:71:54:87:58:f2:58:2c:83:6d:a2:8f:fd:e0:2f: a2:d5:2c:0c:4d:3b:ed:72:4f:4c:f6:ab:1b:b4:48: 73:4d:14:eb:c1:d0:2d:c2:d7:db:f5:41:5e:a6:ac: e1:41:ca:99:f5:f6:bf:c4:be:7b:f4:cb:a2:86:19: dd:8a:70:a8:2a:27:a1:10:40:10:c3:cb:84:b0:60: 53:0b:4a:75:de:23:e3:47:db:29:5f:33:dc:66:80: 0a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:24:CF:34:5B:08:33:FA:4F:E7:C9:40:98:9D:95:89:F1:24:1E:41 X509v3 Authority Key Identifier: keyid:74:1E:2B:35:55:07:73:E0:53:79:7F:76:4D:2E:21:D6:5E:64:28:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dB4rNVUHc-BTeX92TS4h1l5kKMc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6b41f5-b7c5-4334-9fbf-b38a6f220e63/1/sSTPNFsIM_pP58lAmJ2VifEkHkE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6b41f5-b7c5-4334-9fbf-b38a6f220e63/1/dB4rNVUHc-BTeX92TS4h1l5kKMc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.70.176.0/22 195.130.222.0/24 Signature Algorithm: sha256WithRSAEncryption 24:8a:d0:18:62:da:11:20:5a:8d:4a:0b:9e:59:dd:65:9c:d8: 6a:09:e1:4b:b9:17:7e:2d:a0:fb:23:dc:11:a9:11:3c:be:42: 86:0c:77:cf:5e:dd:aa:1e:71:3b:ff:27:14:23:1f:5f:08:c5: 91:f6:b1:43:65:a6:f8:79:89:05:26:f2:eb:f9:a2:e3:c6:de: 8c:5d:82:c2:97:94:63:c4:b0:98:22:31:98:4f:b2:68:bc:d4: ca:59:8b:62:54:e1:bf:69:c6:46:31:f2:ab:5d:d7:4c:bd:d1: 20:ab:3a:ce:74:df:fc:fe:e7:ce:1f:6e:8f:3f:6c:bb:d4:f3: 6c:d5:00:59:51:74:65:72:93:4d:6b:ec:d4:97:a2:83:c9:55: f1:9d:99:23:e0:8f:1a:17:31:ad:fb:33:2b:0a:cf:07:45:a0: 9a:cd:7f:f8:b0:c5:2a:30:3c:ea:62:90:cf:7c:f9:b9:0f:e2: 33:b9:43:a8:50:8c:65:80:97:61:f2:a6:7e:cc:25:2a:fa:63: 83:ab:bc:57:bb:1a:11:52:7d:e8:45:98:6c:4d:ff:c6:c1:77: a5:7a:41:d8:95:db:0d:36:ea:e1:5f:3e:2e:d8:de:d4:95:6e: 03:9e:37:f5:39:c4:3d:4b:9b:ed:1b:be:c9:7e:1a:e3:84:ce: b4:2d:56:1b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87a9DiWfwkx8gWKr0wpYXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0MWUyYjM1NTUwNzczZTA1Mzc5N2Y3NjRkMmUyMWQ2NWU2 NDI4YzcwHhcNMjYwMTAyMDQxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTI0Y2YzNDViMDgzM2ZhNGZlN2M5NDA5ODlkOTU4OWYxMjQxZTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvcxbOj9lZbhyQ3FKcv+iWeHeRLt 8selzeVkKM6FRX6VO8fEwcHFQBo7qayzrqjIDUp18LcCWw5gTZmKXWFTZJIhsE7Y EsHM05fTugKW/fjIc7h92QlA9flKoV1zKWrl9saLLPjknCYHemSx4T0vo3uoscZg 8EXPMhajdWG9nEMLdiW/fUXlYzCbBEAth9z6uO8NkzT1ylj1wRs524lHe69pw+8+ cVSHWPJYLINtoo/94C+i1SwMTTvtck9M9qsbtEhzTRTrwdAtwtfb9UFepqzhQcqZ 9fa/xL579MuihhndinCoKiehEEAQw8uEsGBTC0p13iPjR9spXzPcZoAK2wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLEkzzRbCDP6T+fJQJidlYnxJB5BMB8GA1UdIwQY MBaAFHQeKzVVB3PgU3l/dk0uIdZeZCjHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEI0ck5WVUhjLUJUZVg5MlRTNGgxbDVrS01jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC82YjQxZjUtYjdjNS00MzM0LTlmYmYt YjM4YTZmMjIwZTYzLzEvc1NUUE5Gc0lNX3BQNThsQW1KMlZpZkVrSGtFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC82YjQxZjUtYjdjNS00MzM0LTlmYmYtYjM4YTZmMjIwZTYz LzEvZEI0ck5WVUhjLUJUZVg5MlRTNGgxbDVrS01jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuUawAwQA w4LeMA0GCSqGSIb3DQEBCwUAA4IBAQAkitAYYtoRIFqNSgueWd1lnNhqCeFLuRd+ LaD7I9wRqRE8vkKGDHfPXt2qHnE7/ycUIx9fCMWR9rFDZab4eYkFJvLr+aLjxt6M XYLCl5RjxLCYIjGYT7JovNTKWYtiVOG/acZGMfKrXddMvdEgqzrOdN/8/ufOH26P P2y71PNs1QBZUXRlcpNNa+zUl6KDyVXxnZkj4I8aFzGt+zMrCs8HRaCazX/4sMUq MDzqYpDPfPm5D+IzuUOoUIxlgJdh8qZ+zCUq+mODq7xXuxoRUn3oRZhsTf/GwXel ekHYldsNNurhXz4u2N7UlW4Dnjf1OcQ9S5vtG77JfhrjhM60LVYb -----END CERTIFICATE-----Generated at Tue Feb 10 02:33:31 2026 by rpki-client