This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/SEMIltwG2Mp0INuZM2-Rtzcwd0Q.roa File: SEMIltwG2Mp0INuZM2-Rtzcwd0Q.roa (raw, json) Hash identifier: MM7jqLrGrNs0gRxIUqYxEKdS0toE1JlDNhc6tBIS7qg= Subject key identifier: 48:43:08:96:DC:06:D8:CA:74:20:DB:99:33:6F:91:B7:37:30:77:44 Certificate issuer: /CN=7c9126732c2f0193bc3de4e8d3abc15f4baed62d Certificate serial: 019B77C68341A45955929B29D197CBE1CBEC Authority key identifier: 7C:91:26:73:2C:2F:01:93:BC:3D:E4:E8:D3:AB:C1:5F:4B:AE:D6:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fJEmcywvAZO8PeTo06vBX0uu1i0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/SEMIltwG2Mp0INuZM2-Rtzcwd0Q.roa Signing time: Thu 01 Jan 2026 04:17:36 +0000 ROA not before: Thu 01 Jan 2026 04:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29119 IP address blocks: 5.252.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/fJEmcywvAZO8PeTo06vBX0uu1i0.crl rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/fJEmcywvAZO8PeTo06vBX0uu1i0.mft rsync://rpki.ripe.net/repository/DEFAULT/fJEmcywvAZO8PeTo06vBX0uu1i0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:83:41:a4:59:55:92:9b:29:d1:97:cb:e1:cb:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c9126732c2f0193bc3de4e8d3abc15f4baed62d Validity Not Before: Jan 1 04:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48430896dc06d8ca7420db99336f91b737307744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:35:c9:53:c2:9a:6d:82:99:72:26:de:4a:b2: f4:92:35:ce:02:6c:88:a4:c3:c6:34:53:61:d9:97: 1b:5e:db:90:be:f6:8a:53:98:15:1e:89:bc:67:7a: ed:20:c5:4c:6e:f5:5a:e9:d6:8d:33:94:e7:aa:13: a3:c4:33:07:51:25:f6:48:65:4d:a4:8e:ba:ba:76: 9c:4c:6e:1f:bc:4e:32:f2:73:86:fd:2d:c9:75:10: 94:23:90:d4:e8:09:49:cf:1f:67:f9:28:66:d6:d0: 0c:4c:7a:02:c9:f8:92:ca:26:24:ec:37:bb:de:c6: a7:c1:bf:a8:76:79:1d:ab:4f:2b:a8:86:c6:6d:4f: 27:3c:5c:4d:fc:9e:39:ec:22:5d:b7:5e:1e:1a:cd: 9d:91:9a:c5:96:e2:77:f4:48:c2:e3:4c:4c:c2:37: db:ae:2c:d2:c6:9f:d3:e3:af:8a:76:55:9d:de:aa: a8:6a:a3:c1:d2:5c:46:f3:14:90:97:bc:9e:99:08: f7:cc:79:20:d3:cd:13:b2:5d:a0:fb:56:48:49:d9: 35:14:08:96:fb:f6:f8:04:bc:4f:4d:51:e0:07:61: 33:d7:eb:80:70:7c:d9:75:48:53:96:b2:16:d5:57: 4f:49:63:03:fd:ab:ab:09:7c:e0:db:79:ee:30:f4: e7:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:43:08:96:DC:06:D8:CA:74:20:DB:99:33:6F:91:B7:37:30:77:44 X509v3 Authority Key Identifier: keyid:7C:91:26:73:2C:2F:01:93:BC:3D:E4:E8:D3:AB:C1:5F:4B:AE:D6:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fJEmcywvAZO8PeTo06vBX0uu1i0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/SEMIltwG2Mp0INuZM2-Rtzcwd0Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/fJEmcywvAZO8PeTo06vBX0uu1i0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.252.8.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:fb:4d:b9:de:17:49:e9:34:85:12:62:69:93:17:c9:ad:b8: 46:b5:ac:fb:be:e1:3d:f5:e0:5a:78:5a:ce:a3:a4:3e:40:1a: ae:f3:6c:76:ac:01:f9:e3:8c:c9:5a:12:c2:af:4b:80:b8:0f: b6:7b:f1:58:06:a0:3f:f8:c9:3c:34:f5:59:2f:65:d7:e0:01: 4d:76:fe:d9:4e:7d:ca:f9:6f:cc:69:72:26:e7:6b:6e:50:65: 47:2b:ab:0e:e1:be:72:59:ed:b7:24:cc:90:70:5b:d8:3f:25: ea:7c:5c:43:d6:06:7d:f3:59:2e:34:69:48:98:3e:7a:38:6d: 62:7c:f4:6c:f5:ee:3a:bc:0a:71:60:0b:f0:1f:4c:e8:33:f3: a7:a9:29:f7:35:a2:10:2b:b5:eb:e7:c5:38:f5:a2:c8:fe:2c: 0d:50:a5:43:03:f9:d9:81:11:8c:ca:1b:cb:4d:44:26:be:d9: ee:54:0d:0e:7d:54:e0:72:12:ad:51:c2:70:6a:87:f2:7f:ec: 05:5b:1c:f2:33:4b:a3:65:13:bf:58:a4:60:db:89:9c:f1:95: 5e:db:34:a9:98:fd:6f:ef:44:2d:1c:36:ed:69:ae:f4:9c:ba: 55:7d:a6:9f:cb:34:69:a5:79:ce:cf:5a:3e:ee:65:82:88:bd: 57:51:3d:65 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xoNBpFlVkpsp0ZfL4cvsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjOTEyNjczMmMyZjAxOTNiYzNkZTRlOGQzYWJjMTVmNGJh ZWQ2MmQwHhcNMjYwMTAxMDQxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODQzMDg5NmRjMDZkOGNhNzQyMGRiOTkzMzZmOTFiNzM3MzA3NzQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApDXJU8KabYKZcibeSrL0kjXOAmyI pMPGNFNh2ZcbXtuQvvaKU5gVHom8Z3rtIMVMbvVa6daNM5TnqhOjxDMHUSX2SGVN pI66unacTG4fvE4y8nOG/S3JdRCUI5DU6AlJzx9n+Shm1tAMTHoCyfiSyiYk7De7 3sanwb+odnkdq08rqIbGbU8nPFxN/J457CJdt14eGs2dkZrFluJ39EjC40xMwjfb rizSxp/T46+KdlWd3qqoaqPB0lxG8xSQl7yemQj3zHkg080Tsl2g+1ZISdk1FAiW +/b4BLxPTVHgB2Ez1+uAcHzZdUhTlrIW1VdPSWMD/aurCXzg23nuMPTn4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEhDCJbcBtjKdCDbmTNvkbc3MHdEMB8GA1UdIwQY MBaAFHyRJnMsLwGTvD3k6NOrwV9LrtYtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZkpFbWN5d3ZBWk84UGVUbzA2dkJYMHV1MWkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi85NDYzMmUtOTlkMy00YzIxLWI2N2Qt ZDZiNzMwMjY2ZTc2LzEvU0VNSWx0d0cyTXAwSU51Wk0yLVJ0emN3ZDBRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi85NDYzMmUtOTlkMy00YzIxLWI2N2QtZDZiNzMwMjY2ZTc2 LzEvZkpFbWN5d3ZBWk84UGVUbzA2dkJYMHV1MWkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBfwIMA0G CSqGSIb3DQEBCwUAA4IBAQAb+0253hdJ6TSFEmJpkxfJrbhGtaz7vuE99eBaeFrO o6Q+QBqu82x2rAH544zJWhLCr0uAuA+2e/FYBqA/+Mk8NPVZL2XX4AFNdv7ZTn3K +W/MaXIm52tuUGVHK6sO4b5yWe23JMyQcFvYPyXqfFxD1gZ981kuNGlImD56OG1i fPRs9e46vApxYAvwH0zoM/OnqSn3NaIQK7Xr58U49aLI/iwNUKVDA/nZgRGMyhvL TUQmvtnuVA0OfVTgchKtUcJwaofyf+wFWxzyM0ujZRO/WKRg24mc8ZVe2zSpmP1v 70QtHDbtaa70nLpVfaafyzRppXnOz1o+7mWCiL1XUT1l -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:41 2026 by rpki-client