This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/sp7cckHOAVZ1urLLSuO5BmgV-dQ.roa File: sp7cckHOAVZ1urLLSuO5BmgV-dQ.roa (raw, json) Hash identifier: YprGBhX6AZyr1/u6kF21WaMH+OCGQvlx5wwg1Z8Rfhk= Subject key identifier: B2:9E:DC:72:41:CE:01:56:75:BA:B2:CB:4A:E3:B9:06:68:15:F9:D4 Certificate issuer: /CN=f5d9a9282c9d2547c566634f3bacccbcf2588827 Certificate serial: 019B7758E31F9958C8D6293DCE548D30B459 Authority key identifier: F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/sp7cckHOAVZ1urLLSuO5BmgV-dQ.roa Signing time: Thu 01 Jan 2026 02:17:52 +0000 ROA not before: Thu 01 Jan 2026 02:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215929 IP address blocks: 62.164.177.0/24 maxlen: 24 193.24.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:e3:1f:99:58:c8:d6:29:3d:ce:54:8d:30:b4:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5d9a9282c9d2547c566634f3bacccbcf2588827 Validity Not Before: Jan 1 02:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b29edc7241ce015675bab2cb4ae3b9066815f9d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b5:cf:e0:96:49:9c:55:33:df:dd:cb:e5:8d: 6f:c9:7b:d3:91:40:e5:86:8f:b4:c8:de:d3:44:e4: 27:51:6f:b7:e0:7b:fe:cf:c2:18:1f:7a:68:01:74: af:56:82:5a:75:94:2b:d9:38:1c:3f:5c:3c:bf:5a: 14:1a:09:17:36:81:0f:78:11:79:66:72:1f:b9:fe: d4:a2:7f:b5:1e:5e:3a:72:5f:1f:e1:ca:10:4a:d1: 00:70:c3:dd:cd:c5:44:b1:5d:80:5d:58:cf:c9:3d: ac:d5:cb:60:66:9f:f1:f9:9f:79:00:a7:2c:74:ea: 29:78:68:07:31:96:63:7a:47:f9:90:a4:85:d6:d8: 86:6e:de:4f:f3:38:33:3e:fd:2d:49:82:0d:1a:38: 65:85:87:3a:a0:ed:13:90:7a:d0:44:e9:91:ad:3d: 1d:f9:70:70:5b:6c:f8:11:07:4b:cd:38:f8:bc:2d: 11:c2:3e:bf:e6:e1:4f:21:02:ad:11:c0:96:81:7d: 40:37:cf:1c:a4:23:b0:1d:5f:42:99:aa:ae:f0:82: 00:c5:24:40:59:ce:30:89:45:56:1b:72:c4:65:06: 1e:dc:09:67:a3:8a:39:fc:16:0f:47:b8:dc:e7:c0: cf:cb:dd:5c:20:3f:99:46:9e:cd:20:2b:48:e6:5a: d9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:9E:DC:72:41:CE:01:56:75:BA:B2:CB:4A:E3:B9:06:68:15:F9:D4 X509v3 Authority Key Identifier: keyid:F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/sp7cckHOAVZ1urLLSuO5BmgV-dQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.164.177.0/24 193.24.211.0/24 Signature Algorithm: sha256WithRSAEncryption 62:97:a0:84:e9:78:bf:ac:50:db:1c:89:d9:45:d9:8b:c9:aa: 96:0d:72:75:a5:6f:7f:7c:15:d0:02:98:84:42:be:b3:06:b5: 6f:50:b5:84:b0:6c:21:e3:30:bb:34:91:c7:d7:bd:8b:dc:7e: 81:1a:70:c5:59:df:dc:08:ff:23:d2:c4:d7:6c:66:b0:90:03: dd:69:f9:1d:da:e4:e9:0b:d9:1d:b3:6d:29:05:05:11:95:1f: 67:ba:97:83:56:ff:00:40:3e:0b:24:f3:84:40:0f:99:5c:67: 4f:fd:8e:e2:61:c5:27:67:ef:0c:b7:6e:82:54:7d:c1:26:e3: 6e:57:89:20:82:ed:da:58:e4:92:90:ec:98:e7:15:78:90:0a: 39:4d:f4:b6:2d:b4:31:0e:20:2c:0f:b2:ca:92:cd:53:f1:84: b0:b4:4d:cb:6d:f9:e3:2f:d9:94:dc:6b:35:04:0b:f2:65:35: 22:0c:38:2c:9d:c2:fa:f3:e9:1a:74:b1:55:cd:f5:0e:7d:d7: d8:d7:59:23:3a:0c:8d:dd:2f:20:23:be:c9:ee:c1:10:d1:13: be:6d:e9:db:24:e7:0d:91:ce:94:f5:97:4d:a3:89:0a:97:cd: 8d:ec:b0:21:d8:4b:53:a8:78:35:10:2c:f6:0a:d2:66:b8:39: 15:9d:1a:3b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WOMfmVjI1ik9zlSNMLRZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1ZDlhOTI4MmM5ZDI1NDdjNTY2NjM0ZjNiYWNjY2JjZjI1 ODg4MjcwHhcNMjYwMTAxMDIxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMjllZGM3MjQxY2UwMTU2NzViYWIyY2I0YWUzYjkwNjY4MTVmOWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbXP4JZJnFUz393L5Y1vyXvTkUDl ho+0yN7TROQnUW+34Hv+z8IYH3poAXSvVoJadZQr2TgcP1w8v1oUGgkXNoEPeBF5 ZnIfuf7Uon+1Hl46cl8f4coQStEAcMPdzcVEsV2AXVjPyT2s1ctgZp/x+Z95AKcs dOopeGgHMZZjekf5kKSF1tiGbt5P8zgzPv0tSYINGjhlhYc6oO0TkHrQROmRrT0d +XBwW2z4EQdLzTj4vC0Rwj6/5uFPIQKtEcCWgX1AN88cpCOwHV9Cmaqu8IIAxSRA Wc4wiUVWG3LEZQYe3Alno4o5/BYPR7jc58DPy91cID+ZRp7NICtI5lrZbQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLKe3HJBzgFWdbqyy0rjuQZoFfnUMB8GA1UdIwQY MBaAFPXZqSgsnSVHxWZjTzuszLzyWIgnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjct OGNmNDFjYWZkY2UyLzEvc3A3Y2NrSE9BVloxdXJMTFN1TzVCbWdWLWRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjctOGNmNDFjYWZkY2Uy LzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAPqSxAwQA wRjTMA0GCSqGSIb3DQEBCwUAA4IBAQBil6CE6Xi/rFDbHInZRdmLyaqWDXJ1pW9/ fBXQApiEQr6zBrVvULWEsGwh4zC7NJHH172L3H6BGnDFWd/cCP8j0sTXbGawkAPd afkd2uTpC9kds20pBQURlR9nupeDVv8AQD4LJPOEQA+ZXGdP/Y7iYcUnZ+8Mt26C VH3BJuNuV4kggu3aWOSSkOyY5xV4kAo5TfS2LbQxDiAsD7LKks1T8YSwtE3Lbfnj L9mU3Gs1BAvyZTUiDDgsncL68+kadLFVzfUOfdfY11kjOgyN3S8gI77J7sEQ0RO+ benbJOcNkc6U9ZdNo4kKl82N7LAh2EtTqHg1ECz2CtJmuDkVnRo7 -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:53 2026 by rpki-client