This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/51608f-fd4b-4268-a6e3-5ecb21fcfa75/1/SmR3reVpg9Oftt2wG6VeqB7WbmE.roa File: SmR3reVpg9Oftt2wG6VeqB7WbmE.roa (raw, json) Hash identifier: 0SJZoaTugeFDErq1aPzr3jWd7TCUqCyvEDw1XhqHPJc= Subject key identifier: 4A:64:77:AD:E5:69:83:D3:9F:B6:DD:B0:1B:A5:5E:A8:1E:D6:6E:61 Certificate issuer: /CN=f25d9db2448fe97b9d17a44be5d644848fa018e1 Certificate serial: 019B7C135897A0DEB5031E5671940C17A6ED Authority key identifier: F2:5D:9D:B2:44:8F:E9:7B:9D:17:A4:4B:E5:D6:44:84:8F:A0:18:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8l2dskSP6XudF6RL5dZEhI-gGOE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/51608f-fd4b-4268-a6e3-5ecb21fcfa75/1/SmR3reVpg9Oftt2wG6VeqB7WbmE.roa Signing time: Fri 02 Jan 2026 00:20:01 +0000 ROA not before: Fri 02 Jan 2026 00:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57090 IP address blocks: 185.143.28.0/22 maxlen: 24 185.143.29.0/24 maxlen: 24 185.143.30.0/23 maxlen: 24 185.143.31.0/24 maxlen: 24 194.53.208.0/22 maxlen: 24 194.53.209.0/24 maxlen: 24 194.53.210.0/23 maxlen: 24 194.53.211.0/24 maxlen: 24 2001:67c:28f0::/48 maxlen: 48 2a03:a8e0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/51608f-fd4b-4268-a6e3-5ecb21fcfa75/1/8l2dskSP6XudF6RL5dZEhI-gGOE.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/51608f-fd4b-4268-a6e3-5ecb21fcfa75/1/8l2dskSP6XudF6RL5dZEhI-gGOE.mft rsync://rpki.ripe.net/repository/DEFAULT/8l2dskSP6XudF6RL5dZEhI-gGOE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:58:97:a0:de:b5:03:1e:56:71:94:0c:17:a6:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f25d9db2448fe97b9d17a44be5d644848fa018e1 Validity Not Before: Jan 2 00:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a6477ade56983d39fb6ddb01ba55ea81ed66e61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a3:3a:7f:85:5a:23:2f:9f:8f:6c:0e:67:6c: 0e:21:71:9f:e3:e4:10:42:1b:68:15:d0:b7:e6:07: e2:30:35:47:3f:96:81:5c:4f:14:37:3c:0e:8f:18: 16:9a:39:c1:b4:66:0b:f7:65:80:98:6a:d7:46:97: c2:07:a0:c3:b3:4a:5f:bb:e2:c5:f2:79:68:b9:36: 7e:54:9f:33:ed:4c:5e:58:23:2e:79:a8:1a:2c:d8: a4:99:0e:9d:4d:85:f2:47:85:ab:ad:d5:1a:e1:42: 9f:8a:ca:17:06:7c:26:53:52:a6:27:bc:0d:a2:36: d9:4f:26:b6:7e:e3:83:df:bb:57:50:64:45:66:5a: b6:b7:e0:ee:c6:99:69:85:72:48:f0:8f:60:45:21: 5f:66:87:2d:28:b9:02:9b:5a:36:bd:9b:d5:5a:bd: b0:de:0f:4e:0d:cf:32:32:96:eb:35:f6:de:12:92: 94:44:de:b6:43:cb:f7:a8:f4:2c:04:0a:29:d4:7d: 5d:b7:45:ad:82:5e:d7:32:01:76:d1:83:26:bd:3f: 6f:75:fb:72:b3:bf:b1:d1:7f:5a:2f:29:84:40:0b: 31:e7:ca:c6:79:f2:8d:ec:17:ab:75:a8:cf:20:41: 3b:8f:05:c4:58:4d:84:bc:f7:33:e9:4e:74:b8:a9: e4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:64:77:AD:E5:69:83:D3:9F:B6:DD:B0:1B:A5:5E:A8:1E:D6:6E:61 X509v3 Authority Key Identifier: keyid:F2:5D:9D:B2:44:8F:E9:7B:9D:17:A4:4B:E5:D6:44:84:8F:A0:18:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8l2dskSP6XudF6RL5dZEhI-gGOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/51608f-fd4b-4268-a6e3-5ecb21fcfa75/1/SmR3reVpg9Oftt2wG6VeqB7WbmE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/51608f-fd4b-4268-a6e3-5ecb21fcfa75/1/8l2dskSP6XudF6RL5dZEhI-gGOE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.143.28.0/22 194.53.208.0/22 IPv6: 2001:67c:28f0::/48 2a03:a8e0::/32 Signature Algorithm: sha256WithRSAEncryption 79:ea:81:ed:d6:0d:a3:69:be:81:38:56:db:6c:ed:29:92:a7: 99:73:ba:64:14:9e:ee:d3:c2:2d:dd:e8:6d:5c:7a:cb:14:12: 9a:54:00:65:97:b5:1e:ab:bb:88:4c:9c:83:83:2f:58:59:bc: dd:c8:2d:93:f7:48:2e:ed:5c:61:e3:04:54:05:d5:4c:32:c0: 26:85:8c:40:25:36:02:aa:6a:0b:5e:32:ce:55:a4:ff:25:32: 54:0c:e8:7e:d7:d3:a4:0a:b9:41:04:87:88:57:3e:24:14:9b: d2:82:49:ea:15:9d:e8:2a:9e:5f:4e:2f:30:63:2c:2f:5c:5d: 7e:80:84:f1:7c:2a:96:91:d6:39:cb:54:7b:dc:b4:cf:d6:07: d3:1f:ed:91:db:09:ba:2d:6e:02:9b:7e:e1:cc:0a:7d:f6:79: 07:5c:4a:12:4e:a9:92:2b:51:40:cd:99:06:f8:de:8b:d1:8c: fc:b3:49:da:61:10:69:d4:78:fa:58:d1:59:49:86:9a:b6:4c: 22:40:ed:79:d3:e4:44:6c:bd:19:0b:21:b3:22:1a:31:44:a7: b5:63:4c:34:f7:d3:28:c7:95:c4:2a:ba:72:c3:61:eb:d1:fc: 0f:bf:dc:eb:87:6b:9c:d3:71:15:df:76:5c:57:c3:ac:c7:87: 2d:3e:d3:bb -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt8E1iXoN61Ax5WcZQMF6btMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyNWQ5ZGIyNDQ4ZmU5N2I5ZDE3YTQ0YmU1ZDY0NDg0OGZh MDE4ZTEwHhcNMjYwMTAyMDAyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTY0NzdhZGU1Njk4M2QzOWZiNmRkYjAxYmE1NWVhODFlZDY2ZTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwaM6f4VaIy+fj2wOZ2wOIXGf4+QQ QhtoFdC35gfiMDVHP5aBXE8UNzwOjxgWmjnBtGYL92WAmGrXRpfCB6DDs0pfu+LF 8nlouTZ+VJ8z7UxeWCMueagaLNikmQ6dTYXyR4WrrdUa4UKfisoXBnwmU1KmJ7wN ojbZTya2fuOD37tXUGRFZlq2t+DuxplphXJI8I9gRSFfZoctKLkCm1o2vZvVWr2w 3g9ODc8yMpbrNfbeEpKURN62Q8v3qPQsBAop1H1dt0Wtgl7XMgF20YMmvT9vdfty s7+x0X9aLymEQAsx58rGefKN7BerdajPIEE7jwXEWE2EvPcz6U50uKnkXwIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFEpkd63laYPTn7bdsBulXqge1m5hMB8GA1UdIwQY MBaAFPJdnbJEj+l7nRekS+XWRISPoBjhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGwyZHNrU1A2WHVkRjZSTDVkWkVoSS1nR09FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS81MTYwOGYtZmQ0Yi00MjY4LWE2ZTMt NWVjYjIxZmNmYTc1LzEvU21SM3JlVnBnOU9mdHQyd0c2VmVxQjdXYm1FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS81MTYwOGYtZmQ0Yi00MjY4LWE2ZTMtNWVjYjIxZmNmYTc1 LzEvOGwyZHNrU1A2WHVkRjZSTDVkWkVoSS1nR09FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDASBAIAATAMAwQCuY8cAwQC wjXQMBYEAgACMBADBwAgAQZ8KPADBQAqA6jgMA0GCSqGSIb3DQEBCwUAA4IBAQB5 6oHt1g2jab6BOFbbbO0pkqeZc7pkFJ7u08It3ehtXHrLFBKaVABll7Ueq7uITJyD gy9YWbzdyC2T90gu7Vxh4wRUBdVMMsAmhYxAJTYCqmoLXjLOVaT/JTJUDOh+19Ok CrlBBIeIVz4kFJvSgknqFZ3oKp5fTi8wYywvXF1+gITxfCqWkdY5y1R73LTP1gfT H+2R2wm6LW4Cm37hzAp99nkHXEoSTqmSK1FAzZkG+N6L0Yz8s0naYRBp1Hj6WNFZ SYaatkwiQO150+REbL0ZCyGzIhoxRKe1Y0w099Mox5XEKrpyw2Hr0fwPv9zrh2uc 03EV33ZcV8Osx4ctPtO7 -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:25 2026 by rpki-client