This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/sOU9sf_TLtLowD_NZ2t2Nk3oMWk.roa File: sOU9sf_TLtLowD_NZ2t2Nk3oMWk.roa (raw, json) Hash identifier: A6LA4etDI922EmA77PSJlPQnzxugY9xfCjTlpLtEMx0= Subject key identifier: B0:E5:3D:B1:FF:D3:2E:D2:E8:C0:3F:CD:67:6B:76:36:4D:E8:31:69 Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9 Certificate serial: 019B7FF21292AE357F6016DEF99C91634B9F Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/sOU9sf_TLtLowD_NZ2t2Nk3oMWk.roa Signing time: Fri 02 Jan 2026 18:22:09 +0000 ROA not before: Fri 02 Jan 2026 18:22:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12963 IP address blocks: 91.197.168.0/22 maxlen: 22 91.218.72.0/24 maxlen: 24 91.218.73.0/24 maxlen: 24 91.218.74.0/24 maxlen: 24 91.218.75.0/24 maxlen: 24 94.247.224.0/21 maxlen: 21 94.247.224.0/23 maxlen: 23 176.97.0.0/21 maxlen: 21 185.192.216.0/22 maxlen: 22 194.183.160.0/19 maxlen: 19 213.160.128.0/19 maxlen: 19 2a00:9880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:12:92:ae:35:7f:60:16:de:f9:9c:91:63:4b:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9 Validity Not Before: Jan 2 18:22:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0e53db1ffd32ed2e8c03fcd676b76364de83169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:89:3f:aa:ff:71:dd:f0:53:9e:ce:b8:8b: 4b:5a:26:55:16:3d:9c:04:9a:82:81:3b:a3:b1:8c: 32:65:48:98:ca:d5:f9:ac:24:4c:20:74:35:a5:bc: 4f:b7:b9:a2:e6:ee:0c:f5:85:46:ef:5c:ef:a5:ce: 40:ae:f4:52:be:86:db:73:cf:04:ef:3d:1c:3b:04: 08:16:5c:ae:1f:72:6e:14:c9:cb:49:4d:e8:a0:5c: 96:ed:00:3d:38:e5:24:91:21:2c:8b:71:08:f0:c8: dd:10:a0:42:bc:47:20:3c:b8:7b:a8:4a:b7:7a:47: 5b:c2:e9:3d:ce:6a:25:fd:f8:66:8c:21:1c:82:d2: a0:5d:5e:99:63:63:e1:1c:bf:ba:d9:d5:50:9d:a8: 74:c4:c1:97:c6:92:73:1e:19:f9:ac:25:3a:4e:4e: 85:58:c6:29:34:fe:6c:33:d6:90:3f:dd:49:6f:6a: 91:f2:15:a1:6f:ed:65:f9:f0:44:3a:d6:46:00:14: 7b:af:5a:c3:88:22:4c:fd:c8:91:fd:77:f4:e5:dd: 85:b6:32:ed:c4:e1:c6:0e:0e:5c:8b:ac:77:d8:54: 6b:67:f4:8a:de:87:6a:d7:04:3f:bc:f5:46:8c:dc: e0:37:6a:7f:1d:ba:8d:c6:9e:5e:89:2f:e3:21:a6: 71:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E5:3D:B1:FF:D3:2E:D2:E8:C0:3F:CD:67:6B:76:36:4D:E8:31:69 X509v3 Authority Key Identifier: keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/sOU9sf_TLtLowD_NZ2t2Nk3oMWk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.197.168.0/22 91.218.72.0/22 94.247.224.0/21 176.97.0.0/21 185.192.216.0/22 194.183.160.0/19 213.160.128.0/19 IPv6: 2a00:9880::/32 Signature Algorithm: sha256WithRSAEncryption 4d:18:d2:95:0b:14:8e:d2:31:5f:42:76:48:7d:db:f2:a5:5c: 30:d3:39:2f:4e:1d:27:ad:31:d1:9f:a0:d8:c3:63:f9:28:2f: e2:53:b1:10:cd:0a:1d:61:f1:95:83:44:7e:3b:05:07:19:ac: bd:56:9f:56:f9:75:28:06:4c:8b:f8:16:23:97:b9:37:0e:22: 7b:64:7d:40:57:b2:d4:d6:0b:a6:13:69:d5:58:75:53:1f:79: 6a:7a:89:28:c8:dc:92:47:f7:3b:8d:92:05:cf:2f:63:35:0e: c7:46:7f:f5:1c:64:b5:eb:20:0c:e7:09:b0:3b:e4:2a:fc:64: 40:64:29:d7:23:7c:32:38:3a:3a:bb:7e:dd:c5:7f:af:e5:5a: 98:37:a7:7a:85:a1:b6:bb:1a:8e:a8:43:85:9e:af:66:f9:70: 91:b4:d6:15:c1:3f:52:a8:c1:5f:e0:a3:4d:b9:53:55:5e:91: 59:6f:45:0b:41:a2:9f:74:79:c0:15:d2:93:d4:00:e5:1b:67: d5:9a:f4:2f:53:aa:89:39:60:22:ca:2f:71:a0:1b:9a:28:fb: df:e9:53:35:10:58:19:d1:b5:01:27:c1:69:35:b4:bb:ff:c7: a0:02:8d:f6:9e:6b:82:c3:07:3e:45:38:e5:5e:b4:d8:af:75: 6d:95:dc:72 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt/8hKSrjV/YBbe+ZyRY0ufMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZTNjMzM2OTcyMDk0YjFhOGMxM2Q0MTgxNjg1N2QxOTdh M2FhZTkwHhcNMjYwMTAyMTgyMjA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMGU1M2RiMWZmZDMyZWQyZThjMDNmY2Q2NzZiNzYzNjRkZTgzMTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAym6JP6r/cd3wU57OuItLWiZVFj2c BJqCgTujsYwyZUiYytX5rCRMIHQ1pbxPt7mi5u4M9YVG71zvpc5ArvRSvobbc88E 7z0cOwQIFlyuH3JuFMnLSU3ooFyW7QA9OOUkkSEsi3EI8MjdEKBCvEcgPLh7qEq3 ekdbwuk9zmol/fhmjCEcgtKgXV6ZY2PhHL+62dVQnah0xMGXxpJzHhn5rCU6Tk6F WMYpNP5sM9aQP91Jb2qR8hWhb+1l+fBEOtZGABR7r1rDiCJM/ciR/Xf05d2FtjLt xOHGDg5ci6x32FRrZ/SK3odq1wQ/vPVGjNzgN2p/HbqNxp5eiS/jIaZx+QIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFLDlPbH/0y7S6MA/zWdrdjZN6DFpMB8GA1UdIwQY MBaAFHTjwzaXIJSxqME9QYFoV9GXo6rpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAt YTZjNDllYjI4Mjg3LzEvc09VOXNmX1RMdExvd0RfTloydDJOazNvTVdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAtYTZjNDllYjI4Mjg3 LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQCW8WoAwQC W9pIAwQDXvfgAwQDsGEAAwQCucDYAwQFwregAwQF1aCAMA0EAgACMAcDBQAqAJiA MA0GCSqGSIb3DQEBCwUAA4IBAQBNGNKVCxSO0jFfQnZIfdvypVww0zkvTh0nrTHR n6DYw2P5KC/iU7EQzQodYfGVg0R+OwUHGay9Vp9W+XUoBkyL+BYjl7k3DiJ7ZH1A V7LU1gumE2nVWHVTH3lqeokoyNySR/c7jZIFzy9jNQ7HRn/1HGS16yAM5wmwO+Qq /GRAZCnXI3wyODo6u37dxX+v5VqYN6d6haG2uxqOqEOFnq9m+XCRtNYVwT9SqMFf 4KNNuVNVXpFZb0ULQaKfdHnAFdKT1ADlG2fVmvQvU6qJOWAiyi9xoBuaKPvf6VM1 EFgZ0bUBJ8FpNbS7/8egAo32nmuCwwc+RTjlXrTYr3Vtldxy -----END CERTIFICATE-----Generated at Sun Jan 25 16:33:14 2026 by rpki-client