This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/SggDrxFFsWWs12xC5aQkzP-tlSU.roa File: SggDrxFFsWWs12xC5aQkzP-tlSU.roa (raw, json) Hash identifier: 9cLRIhlE0/G5tYsZFx8+yzpMIrF34vwAUkKOhMbaUZc= Subject key identifier: 4A:08:03:AF:11:45:B1:65:AC:D7:6C:42:E5:A4:24:CC:FF:AD:95:25 Certificate issuer: /CN=918316ab4ea13ebb54560c1a67042d47e966d823 Certificate serial: 019B76EB9181DF3F477CE622D82D0622D103 Authority key identifier: 91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/SggDrxFFsWWs12xC5aQkzP-tlSU.roa Signing time: Thu 01 Jan 2026 00:18:28 +0000 ROA not before: Thu 01 Jan 2026 00:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2635 IP address blocks: 195.234.108.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:91:81:df:3f:47:7c:e6:22:d8:2d:06:22:d1:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=918316ab4ea13ebb54560c1a67042d47e966d823 Validity Not Before: Jan 1 00:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a0803af1145b165acd76c42e5a424ccffad9525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:51:4d:a5:90:14:15:e5:f7:44:41:18:e4:6e: 35:96:2b:e0:97:6d:2b:37:5c:8f:3e:c5:1c:48:50: d0:59:57:11:bb:35:72:c1:d7:de:d0:71:4e:5e:46: b2:b4:b6:41:48:18:23:cd:84:e2:05:21:f0:30:5d: cb:ed:31:10:eb:c1:ea:eb:51:ec:78:ab:d6:68:87: 4d:0f:40:6e:45:57:ed:b7:8f:13:3d:18:26:76:db: 59:69:15:0f:f1:a6:e8:ed:9b:79:91:7c:61:a5:f9: 0e:42:f9:45:4d:53:10:55:b6:57:21:b9:91:55:2e: b8:1e:7d:97:37:4c:1d:28:4f:1f:5f:b8:d9:10:e4: 1d:1e:b0:9c:0e:e7:92:82:6e:bc:4f:56:ee:7c:d8: 63:f6:30:db:c6:9d:bc:97:48:e5:17:b6:c7:9b:03: c7:7f:3f:ae:09:7e:97:47:d3:49:1d:05:71:9d:25: 51:51:af:ac:f8:5a:59:c1:05:43:c1:33:22:da:8c: 13:ec:04:34:47:9d:52:21:db:85:02:95:bd:dd:d0: b5:25:7e:45:5f:62:42:ee:64:fe:55:7a:c5:60:fd: 5a:c7:5a:71:49:38:e6:49:a1:cd:b0:10:52:a9:11: 2a:1a:0a:8e:91:3d:e4:ad:a6:70:28:a7:f0:3a:bd: 87:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:08:03:AF:11:45:B1:65:AC:D7:6C:42:E5:A4:24:CC:FF:AD:95:25 X509v3 Authority Key Identifier: keyid:91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/SggDrxFFsWWs12xC5aQkzP-tlSU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.234.108.0/22 Signature Algorithm: sha256WithRSAEncryption 69:02:4d:29:5e:32:21:f2:06:78:c2:3c:15:65:af:4c:20:6d: 00:02:3f:45:a1:9f:bf:28:04:8f:66:8a:28:47:d0:a4:14:d7: 2e:52:b4:0b:39:b2:64:25:bc:16:ee:c1:30:41:b1:51:da:47: d5:76:75:2c:ca:eb:fa:00:2e:35:b9:d1:cd:a7:99:3a:e7:9d: 7d:ac:06:8b:d4:57:98:55:dd:d3:6b:87:a2:cb:3c:2d:9e:ad: e2:07:1d:c5:0b:c9:83:2e:54:2b:37:9c:38:4f:64:2d:ba:ca: 52:c3:8c:1c:cf:de:25:70:68:70:c4:92:88:fa:3e:e0:61:b5: bc:6a:46:07:6c:49:a8:09:a8:08:39:42:59:a6:e2:13:66:0f: bf:cb:0a:f0:df:77:59:bd:51:3a:15:2e:b5:42:f6:68:04:ac: 6c:72:89:25:84:00:99:83:28:95:08:42:5f:02:58:87:21:9f: 2d:3c:fe:1e:65:f0:a8:a7:ec:d1:f9:3f:dd:76:b4:4e:bd:94: 16:cd:30:38:7a:c1:47:3a:63:6f:eb:6c:4f:d8:1a:84:4e:08: 7f:6f:82:b5:39:92:53:c9:02:54:92:00:5a:db:9e:04:74:f2: de:6e:99:17:24:32:94:60:f1:8f:eb:e9:d5:79:e7:2a:fc:5e: a5:42:3f:7b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt265GB3z9HfOYi2C0GItEDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxODMxNmFiNGVhMTNlYmI1NDU2MGMxYTY3MDQyZDQ3ZTk2 NmQ4MjMwHhcNMjYwMTAxMDAxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTA4MDNhZjExNDViMTY1YWNkNzZjNDJlNWE0MjRjY2ZmYWQ5NTI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlFNpZAUFeX3REEY5G41livgl20r N1yPPsUcSFDQWVcRuzVywdfe0HFOXkaytLZBSBgjzYTiBSHwMF3L7TEQ68Hq61Hs eKvWaIdND0BuRVftt48TPRgmdttZaRUP8abo7Zt5kXxhpfkOQvlFTVMQVbZXIbmR VS64Hn2XN0wdKE8fX7jZEOQdHrCcDueSgm68T1bufNhj9jDbxp28l0jlF7bHmwPH fz+uCX6XR9NJHQVxnSVRUa+s+FpZwQVDwTMi2owT7AQ0R51SIduFApW93dC1JX5F X2JC7mT+VXrFYP1ax1pxSTjmSaHNsBBSqREqGgqOkT3kraZwKKfwOr2HjQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEoIA68RRbFlrNdsQuWkJMz/rZUlMB8GA1UdIwQY MBaAFJGDFqtOoT67VFYMGmcELUfpZtgjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1lNV3EwNmhQcnRVVmd3YVp3UXRSLWxtMkNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi84OWZiOTktOTA0OS00ODJmLTk1ZGMt OWUzY2QwZDlkNzdhLzEvU2dnRHJ4RkZzV1dzMTJ4QzVhUWt6UC10bFNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi84OWZiOTktOTA0OS00ODJmLTk1ZGMtOWUzY2QwZDlkNzdh LzEva1lNV3EwNmhQcnRVVmd3YVp3UXRSLWxtMkNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw+psMA0G CSqGSIb3DQEBCwUAA4IBAQBpAk0pXjIh8gZ4wjwVZa9MIG0AAj9FoZ+/KASPZooo R9CkFNcuUrQLObJkJbwW7sEwQbFR2kfVdnUsyuv6AC41udHNp5k65519rAaL1FeY Vd3Ta4eiyzwtnq3iBx3FC8mDLlQrN5w4T2QtuspSw4wcz94lcGhwxJKI+j7gYbW8 akYHbEmoCagIOUJZpuITZg+/ywrw33dZvVE6FS61QvZoBKxscoklhACZgyiVCEJf AliHIZ8tPP4eZfCop+zR+T/ddrROvZQWzTA4esFHOmNv62xP2BqETgh/b4K1OZJT yQJUkgBa254EdPLebpkXJDKUYPGP6+nVeecq/F6lQj97 -----END CERTIFICATE-----Generated at Sun Jan 25 16:55:58 2026 by rpki-client