This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/ab36a0-04ec-4190-b59d-2a0e45862c03/1/SQFAkjt57y-pTXhYLYstw04Yit8.roa File: SQFAkjt57y-pTXhYLYstw04Yit8.roa (raw, json) Hash identifier: hgGTZStyS8714Gh8ubpZL/WCwm7djUM9MS9CR1krlpU= Subject key identifier: 49:01:40:92:3B:79:EF:2F:A9:4D:78:58:2D:8B:2D:C3:4E:18:8A:DF Certificate issuer: /CN=47119a205683167925b9f04174312637b1600c07 Certificate serial: 019B7A5B7D38669EE2E370FFA71880DE7485 Authority key identifier: 47:11:9A:20:56:83:16:79:25:B9:F0:41:74:31:26:37:B1:60:0C:07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RxGaIFaDFnklufBBdDEmN7FgDAc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/ab36a0-04ec-4190-b59d-2a0e45862c03/1/SQFAkjt57y-pTXhYLYstw04Yit8.roa Signing time: Thu 01 Jan 2026 16:19:34 +0000 ROA not before: Thu 01 Jan 2026 16:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15600 IP address blocks: 5.144.0.0/19 maxlen: 24 185.74.124.0/22 maxlen: 24 2a00:d4a0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/ab36a0-04ec-4190-b59d-2a0e45862c03/1/RxGaIFaDFnklufBBdDEmN7FgDAc.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/ab36a0-04ec-4190-b59d-2a0e45862c03/1/RxGaIFaDFnklufBBdDEmN7FgDAc.mft rsync://rpki.ripe.net/repository/DEFAULT/RxGaIFaDFnklufBBdDEmN7FgDAc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:7d:38:66:9e:e2:e3:70:ff:a7:18:80:de:74:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47119a205683167925b9f04174312637b1600c07 Validity Not Before: Jan 1 16:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=490140923b79ef2fa94d78582d8b2dc34e188adf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5e:ef:45:a8:ce:d0:c9:19:21:c2:87:3b:b8: 51:4d:10:33:4a:c3:bd:46:eb:d3:34:85:e6:01:d5: 85:6c:d8:81:bd:8c:a9:41:34:61:c6:78:5c:01:b1: 6f:30:b4:a7:69:66:65:c3:3f:3a:d4:b0:95:94:b4: 17:36:58:20:79:71:a9:3f:96:a1:23:af:aa:64:56: ec:85:f5:cc:7e:d7:8b:a9:25:ec:3d:39:aa:1f:1c: ab:41:d5:81:63:06:a7:db:c6:ec:04:69:5a:54:01: aa:d8:a7:34:13:2d:90:9a:57:73:fd:b9:50:29:2c: e1:8b:dd:da:0b:cd:0d:08:a5:c4:66:45:d4:ba:18: 9d:3a:28:87:29:46:d9:d1:47:c1:d6:7d:84:08:67: 13:9e:6a:b6:b0:89:d1:2f:a0:6d:3e:f5:90:37:c8: b8:ae:a6:41:56:d6:0e:f1:e7:59:ff:5f:7d:00:49: 33:f6:a7:41:6c:88:d6:e1:1f:4c:db:08:5c:85:20: 14:02:aa:c1:79:db:47:77:24:ee:30:64:c8:30:f6: ff:0a:12:3e:3a:48:aa:c1:2b:7a:4f:84:d0:d4:22: 41:64:90:4a:6d:13:d8:69:03:68:1f:6c:e2:56:83: c8:57:52:16:c5:ff:60:e2:bd:0d:29:8f:fd:da:de: 1e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:01:40:92:3B:79:EF:2F:A9:4D:78:58:2D:8B:2D:C3:4E:18:8A:DF X509v3 Authority Key Identifier: keyid:47:11:9A:20:56:83:16:79:25:B9:F0:41:74:31:26:37:B1:60:0C:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RxGaIFaDFnklufBBdDEmN7FgDAc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/ab36a0-04ec-4190-b59d-2a0e45862c03/1/SQFAkjt57y-pTXhYLYstw04Yit8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/ab36a0-04ec-4190-b59d-2a0e45862c03/1/RxGaIFaDFnklufBBdDEmN7FgDAc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.144.0.0/19 185.74.124.0/22 IPv6: 2a00:d4a0::/29 Signature Algorithm: sha256WithRSAEncryption 56:84:43:71:ba:c0:e8:d6:27:04:4b:11:8f:c3:16:16:ff:b7: 89:a2:01:ae:b2:8f:3a:cb:e1:77:1f:b2:f0:84:53:8f:49:35: 1d:34:5a:e5:10:dd:07:86:5e:34:0e:c2:c5:c0:36:b8:c4:8f: 95:61:be:bb:88:25:3f:63:3b:96:f0:f3:e5:48:b3:53:9b:9c: 83:c0:1b:83:f9:78:4f:5f:ee:dd:84:b2:da:16:c3:37:5a:57: 18:8e:5c:d1:33:5d:3d:28:a5:42:f6:6b:b0:ad:46:b7:01:6e: bf:77:81:c1:24:83:ce:0e:a6:15:82:1e:63:aa:56:d1:8e:e2: 1e:49:02:86:c2:21:87:c6:4b:0b:d1:44:6c:8c:d3:01:ef:98: 72:98:cf:d8:bd:1e:75:d7:27:b2:c2:68:be:38:82:fc:93:62: 1e:63:c7:dd:d9:af:38:cc:e4:f5:3e:e6:47:f6:84:cf:27:15: b1:6c:16:e1:c9:f2:8f:ad:2f:fa:89:e2:4e:fd:aa:ec:c3:61: 55:5a:6b:94:bb:c7:ae:74:51:81:71:c2:ea:c7:c4:37:db:0b: 46:ec:79:77:91:87:4d:c3:a0:64:6e:b8:e9:36:f6:4d:ee:47: dd:12:44:d0:6b:27:94:cc:60:16:99:10:03:d4:e0:22:c3:72: 4e:c2:4c:cf -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt6W304Zp7i43D/pxiA3nSFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3MTE5YTIwNTY4MzE2NzkyNWI5ZjA0MTc0MzEyNjM3YjE2 MDBjMDcwHhcNMjYwMTAxMTYxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OTAxNDA5MjNiNzllZjJmYTk0ZDc4NTgyZDhiMmRjMzRlMTg4YWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1l7vRajO0MkZIcKHO7hRTRAzSsO9 RuvTNIXmAdWFbNiBvYypQTRhxnhcAbFvMLSnaWZlwz861LCVlLQXNlggeXGpP5ah I6+qZFbshfXMfteLqSXsPTmqHxyrQdWBYwan28bsBGlaVAGq2Kc0Ey2Qmldz/blQ KSzhi93aC80NCKXEZkXUuhidOiiHKUbZ0UfB1n2ECGcTnmq2sInRL6BtPvWQN8i4 rqZBVtYO8edZ/199AEkz9qdBbIjW4R9M2whchSAUAqrBedtHdyTuMGTIMPb/ChI+ OkiqwSt6T4TQ1CJBZJBKbRPYaQNoH2ziVoPIV1IWxf9g4r0NKY/92t4eNwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFEkBQJI7ee8vqU14WC2LLcNOGIrfMB8GA1UdIwQY MBaAFEcRmiBWgxZ5JbnwQXQxJjexYAwHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnhHYUlGYURGbmtsdWZCQmRERW1ON0ZnREFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9hYjM2YTAtMDRlYy00MTkwLWI1OWQt MmEwZTQ1ODYyYzAzLzEvU1FGQWtqdDU3eS1wVFhoWUxZc3R3MDRZaXQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS9hYjM2YTAtMDRlYy00MTkwLWI1OWQtMmEwZTQ1ODYyYzAz LzEvUnhHYUlGYURGbmtsdWZCQmRERW1ON0ZnREFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQFBZAAAwQC uUp8MA0EAgACMAcDBQMqANSgMA0GCSqGSIb3DQEBCwUAA4IBAQBWhENxusDo1icE SxGPwxYW/7eJogGuso86y+F3H7LwhFOPSTUdNFrlEN0Hhl40DsLFwDa4xI+VYb67 iCU/YzuW8PPlSLNTm5yDwBuD+XhPX+7dhLLaFsM3WlcYjlzRM109KKVC9muwrUa3 AW6/d4HBJIPODqYVgh5jqlbRjuIeSQKGwiGHxksL0URsjNMB75hymM/YvR511yey wmi+OIL8k2IeY8fd2a84zOT1PuZH9oTPJxWxbBbhyfKPrS/6ieJO/arsw2FVWmuU u8eudFGBccLqx8Q32wtG7Hl3kYdNw6BkbrjpNvZN7kfdEkTQayeUzGAWmRAD1OAi w3JOwkzP -----END CERTIFICATE-----Generated at Mon Jan 26 20:42:40 2026 by rpki-client