This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3f6178-5fd3-403f-8fec-1a89ff11965e/1/SmUJB6MxkTLU2QHo_NcP-yqCSU4.roa File: SmUJB6MxkTLU2QHo_NcP-yqCSU4.roa (raw, json) Hash identifier: 7KXQ4N+oMQBnbJdJsy42rcxl86QitfR/kZCJkJRuiMs= Subject key identifier: 4A:65:09:07:A3:31:91:32:D4:D9:01:E8:FC:D7:0F:FB:2A:82:49:4E Certificate issuer: /CN=51ad6791b8dbe9c352bd64a9322172b41c4b2171 Certificate serial: 019B7F153DE0D2F9297D0E785425F681A7A2 Authority key identifier: 51:AD:67:91:B8:DB:E9:C3:52:BD:64:A9:32:21:72:B4:1C:4B:21:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ua1nkbjb6cNSvWSpMiFytBxLIXE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3f6178-5fd3-403f-8fec-1a89ff11965e/1/SmUJB6MxkTLU2QHo_NcP-yqCSU4.roa Signing time: Fri 02 Jan 2026 14:20:56 +0000 ROA not before: Fri 02 Jan 2026 14:20:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47790 IP address blocks: 91.206.210.0/24 maxlen: 24 91.206.211.0/24 maxlen: 24 91.224.216.0/23 maxlen: 24 91.226.196.0/24 maxlen: 24 91.226.197.0/24 maxlen: 24 91.230.8.0/24 maxlen: 24 91.230.9.0/24 maxlen: 24 185.48.28.0/23 maxlen: 24 185.48.30.0/24 maxlen: 24 185.142.160.0/22 maxlen: 24 185.142.160.0/24 maxlen: 24 185.142.161.0/24 maxlen: 24 185.142.162.0/24 maxlen: 24 185.142.163.0/24 maxlen: 24 185.152.120.0/24 maxlen: 24 185.152.121.0/24 maxlen: 24 185.152.122.0/24 maxlen: 24 185.152.123.0/24 maxlen: 24 2a14:7a80::/29 maxlen: 32 2a14:7a80::/30 maxlen: 30 2a14:7a84::/30 maxlen: 30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3f6178-5fd3-403f-8fec-1a89ff11965e/1/Ua1nkbjb6cNSvWSpMiFytBxLIXE.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3f6178-5fd3-403f-8fec-1a89ff11965e/1/Ua1nkbjb6cNSvWSpMiFytBxLIXE.mft rsync://rpki.ripe.net/repository/DEFAULT/Ua1nkbjb6cNSvWSpMiFytBxLIXE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:3d:e0:d2:f9:29:7d:0e:78:54:25:f6:81:a7:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51ad6791b8dbe9c352bd64a9322172b41c4b2171 Validity Not Before: Jan 2 14:20:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a650907a3319132d4d901e8fcd70ffb2a82494e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8c:b7:a0:fd:9b:ef:81:c4:96:f2:57:69:95: 17:1a:63:04:74:08:34:51:88:fd:8c:c9:06:0e:d8: 91:02:6d:be:1c:a8:03:58:7b:77:d4:31:cb:bf:20: 70:29:38:cb:79:76:28:cb:a2:c7:ef:2e:64:e9:a7: 32:93:d9:c3:eb:da:34:f1:c1:c5:db:0f:f8:aa:6c: 01:3c:2a:92:74:92:96:26:eb:4b:b1:bf:3b:f7:de: 72:a1:47:4b:8c:8e:8b:bb:a5:aa:a7:69:83:04:17: ab:2a:f9:ff:09:74:f1:4c:8f:82:5c:8b:dd:53:96: d3:b4:3c:5b:b8:50:2b:40:b1:1b:ba:bf:28:01:3e: 89:c3:b5:8b:88:74:60:e4:bb:b9:3d:12:07:a8:67: 82:52:5e:7f:96:49:23:a8:b9:33:2c:15:2e:5e:8f: dc:6f:e4:b7:b5:ce:aa:1d:21:70:e1:52:f0:c7:c1: 35:b1:42:21:cb:21:3e:c8:cd:13:7c:cb:10:c3:3b: 10:3d:6a:eb:60:73:08:d5:8e:85:35:04:dc:a7:07: f7:c5:25:43:9b:d6:f3:31:13:f0:5d:59:b5:79:f2: 53:95:dd:78:b0:88:21:c3:48:91:d3:f2:21:16:53: 0f:4b:ed:f6:ae:f9:74:52:39:c8:c5:50:d4:b6:51: b8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:65:09:07:A3:31:91:32:D4:D9:01:E8:FC:D7:0F:FB:2A:82:49:4E X509v3 Authority Key Identifier: keyid:51:AD:67:91:B8:DB:E9:C3:52:BD:64:A9:32:21:72:B4:1C:4B:21:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ua1nkbjb6cNSvWSpMiFytBxLIXE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3f6178-5fd3-403f-8fec-1a89ff11965e/1/SmUJB6MxkTLU2QHo_NcP-yqCSU4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3f6178-5fd3-403f-8fec-1a89ff11965e/1/Ua1nkbjb6cNSvWSpMiFytBxLIXE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.206.210.0/23 91.224.216.0/23 91.226.196.0/23 91.230.8.0/23 185.48.28.0-185.48.30.255 185.142.160.0/22 185.152.120.0/22 IPv6: 2a14:7a80::/29 Signature Algorithm: sha256WithRSAEncryption 05:7d:6a:6f:94:95:81:9d:78:9e:50:b5:ac:1b:2c:f5:8e:86: 2a:d5:8f:ed:8a:5d:8a:64:19:ba:a1:eb:fa:bb:c9:06:f1:71: 51:5a:68:8e:81:86:bb:74:ea:48:fa:e8:7e:3d:21:3e:41:99: 0b:06:e1:7d:7c:9b:e9:a4:ee:bf:e6:b2:36:eb:5c:b0:da:90: c7:df:70:7b:ab:b0:04:f3:61:5f:c6:8f:e2:71:c4:8a:61:37: 3f:7c:5c:ad:97:2c:8b:e7:78:1b:e2:35:05:27:94:f5:8a:13: 6a:2d:bc:0d:18:64:df:06:13:c1:ec:df:37:ae:cb:28:ee:c0: 79:86:e4:40:4c:e5:5b:9f:9a:77:ab:6d:35:05:e7:34:30:db: 6f:04:d3:c4:d3:c5:18:58:1f:b7:7c:e1:7b:99:40:0b:dc:94: b9:71:cb:c5:7e:0a:72:1c:1f:12:37:38:e1:b2:7c:c6:9b:64: a1:1f:54:d0:b8:7a:0d:dc:06:7d:d4:5a:01:31:fc:64:e8:1a: 66:4e:f2:d0:aa:fc:b7:75:8e:13:83:6e:ae:eb:7b:ef:b8:74: 8f:4c:c9:0d:0b:dc:84:98:80:eb:95:d6:da:59:32:d6:1d:e3: c2:50:79:c7:6c:68:3b:64:f2:da:a5:86:84:90:66:ed:96:fd: 54:98:19:80 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgISAZt/FT3g0vkpfQ54VCX2gaeiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxYWQ2NzkxYjhkYmU5YzM1MmJkNjRhOTMyMjE3MmI0MWM0 YjIxNzEwHhcNMjYwMTAyMTQyMDU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTY1MDkwN2EzMzE5MTMyZDRkOTAxZThmY2Q3MGZmYjJhODI0OTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIy3oP2b74HElvJXaZUXGmMEdAg0 UYj9jMkGDtiRAm2+HKgDWHt31DHLvyBwKTjLeXYoy6LH7y5k6acyk9nD69o08cHF 2w/4qmwBPCqSdJKWJutLsb87995yoUdLjI6Lu6Wqp2mDBBerKvn/CXTxTI+CXIvd U5bTtDxbuFArQLEbur8oAT6Jw7WLiHRg5Lu5PRIHqGeCUl5/lkkjqLkzLBUuXo/c b+S3tc6qHSFw4VLwx8E1sUIhyyE+yM0TfMsQwzsQPWrrYHMI1Y6FNQTcpwf3xSVD m9bzMRPwXVm1efJTld14sIghw0iR0/IhFlMPS+32rvl0UjnIxVDUtlG4HQIDAQAB o4ICRDCCAkAwHQYDVR0OBBYEFEplCQejMZEy1NkB6PzXD/sqgklOMB8GA1UdIwQY MBaAFFGtZ5G42+nDUr1kqTIhcrQcSyFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWExbmtiamI2Y05TdldTcE1pRnl0QnhMSVhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zZjYxNzgtNWZkMy00MDNmLThmZWMt MWE4OWZmMTE5NjVlLzEvU21VSkI2TXhrVExVMlFIb19OY1AteXFDU1U0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zZjYxNzgtNWZkMy00MDNmLThmZWMtMWE4OWZmMTE5NjVl LzEvVWExbmtiamI2Y05TdldTcE1pRnl0QnhMSVhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFoGCCsGAQUFBwEHAQH/BEswSTA4BAIAATAyAwQBW87SAwQB W+DYAwQBW+LEAwQBW+YIMAwDBAK5MBwDBAC5MB4DBAK5jqADBAK5mHgwDQQCAAIw BwMFAyoUeoAwDQYJKoZIhvcNAQELBQADggEBAAV9am+UlYGdeJ5QtawbLPWOhirV j+2KXYpkGbqh6/q7yQbxcVFaaI6Bhrt06kj66H49IT5BmQsG4X18m+mk7r/msjbr XLDakMffcHursATzYV/Gj+JxxIphNz98XK2XLIvneBviNQUnlPWKE2otvA0YZN8G E8Hs3zeuyyjuwHmG5EBM5VufmnerbTUF5zQw228E08TTxRhYH7d84XuZQAvclLlx y8V+CnIcHxI3OOGyfMabZKEfVNC4eg3cBn3UWgEx/GToGmZO8tCq/Ld1jhODbq7r e++4dI9MyQ0L3ISYgOuV1tpZMtYd48JQecdsaDtk8tqlhoSQZu2W/VSYGYA= -----END CERTIFICATE-----Generated at Mon Jan 26 15:33:52 2026 by rpki-client