This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/SGEOF3Kjfz9OgMFAF1uM7yTC9Go.roa File: SGEOF3Kjfz9OgMFAF1uM7yTC9Go.roa (raw, json) Hash identifier: hrlY9vetmBnDI1nu6U8S0jS4ALGSbKcMuikZPIoOBPU= Subject key identifier: 48:61:0E:17:72:A3:7F:3F:4E:80:C1:40:17:5B:8C:EF:24:C2:F4:6A Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Certificate serial: 019B76EAF29D92C838698D9778A89D702217 Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/SGEOF3Kjfz9OgMFAF1uM7yTC9Go.roa Signing time: Thu 01 Jan 2026 00:17:47 +0000 ROA not before: Thu 01 Jan 2026 00:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59598 IP address blocks: 31.25.88.0/23 maxlen: 24 185.217.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.mft rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:f2:9d:92:c8:38:69:8d:97:78:a8:9d:70:22:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Validity Not Before: Jan 1 00:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48610e1772a37f3f4e80c140175b8cef24c2f46a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6f:75:1f:78:ed:23:16:d5:63:aa:21:ab:10: 4b:af:2d:12:80:ef:44:e5:af:94:75:b6:0a:8e:09: f8:51:9c:5f:81:7e:78:f8:e4:9a:7a:70:2a:24:fe: 38:79:1b:7a:7f:52:bb:08:89:0f:3f:b5:6e:d4:fe: b6:fa:54:1e:fb:5f:41:65:5d:4b:9d:53:f7:3f:86: 99:3c:75:fd:e0:41:30:55:bd:d9:a9:b3:90:83:43: fe:07:2d:b0:0e:22:ab:bd:a0:bd:1a:c5:25:98:f6: 95:10:10:01:f5:f7:ce:c8:9b:23:2f:11:51:de:00: e0:56:37:0f:9e:e5:24:92:95:8b:0b:35:6c:36:fa: 98:30:9f:ca:8a:46:1e:7c:b7:de:f7:a8:c6:99:bc: fa:e1:93:a7:11:d4:17:f0:75:87:12:c0:79:09:24: 5e:40:17:5e:ed:59:27:63:55:0a:6f:bf:77:89:30: 18:e3:50:60:a7:5e:b7:1d:cd:eb:48:57:81:12:3a: 35:71:7f:b9:b8:61:01:be:c1:6e:49:44:96:5d:82: 68:d7:ba:30:2d:a9:37:41:e9:a3:74:fd:c2:fb:e6: 5d:82:49:c6:ed:26:69:e3:da:14:e4:46:03:6c:4e: fc:cc:37:ce:7a:b8:ca:83:6d:cb:d3:e8:6f:c1:d1: 59:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:61:0E:17:72:A3:7F:3F:4E:80:C1:40:17:5B:8C:EF:24:C2:F4:6A X509v3 Authority Key Identifier: keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/SGEOF3Kjfz9OgMFAF1uM7yTC9Go.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.25.88.0/23 185.217.108.0/22 Signature Algorithm: sha256WithRSAEncryption 57:f9:c5:30:b5:25:22:fc:ae:f4:6e:08:2b:1c:c7:f5:b3:ad: c9:c5:25:c8:96:3c:a5:ca:e7:a3:5c:66:08:dd:2c:c6:bd:a5: f0:44:0f:b5:f5:f2:40:e5:ee:77:d2:bd:26:34:59:50:82:bc: 41:c6:3d:18:b7:61:cf:df:42:a6:18:d1:1b:22:cf:dd:d3:4f: 0e:b0:50:fb:08:df:c1:23:d5:85:7a:87:62:95:1f:d3:3d:06: 3d:21:3e:27:b2:19:64:fe:d4:e8:d1:e9:25:3b:62:e4:2f:59: d9:8a:e7:c6:b0:3f:5f:bb:94:0f:81:24:f5:33:44:67:bb:a4: 9f:2a:fb:5a:63:f4:a8:78:39:aa:db:d7:8d:78:cb:f8:da:c4: d4:37:bd:11:d3:60:f5:59:1e:80:e0:f7:8e:78:8a:cd:6b:6f: 4d:89:ff:71:49:45:7d:4e:5f:33:88:e2:00:02:5c:a2:ec:e1: 0b:40:dc:15:91:6a:7e:93:c0:dc:bb:9f:36:21:74:c2:b5:b9: 83:c3:6a:88:38:a5:de:aa:2d:36:95:4f:7f:3c:3a:af:20:33: db:18:60:d3:89:a7:e7:dc:8c:ec:e9:50:3c:b0:0e:3e:5f:01: a8:c1:d2:1d:69:c6:c5:0f:31:a8:15:cb:7f:6a:1c:9d:a7:02: ae:b0:1c:71 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26vKdksg4aY2XeKidcCIXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2 NWE0NzgwHhcNMjYwMTAxMDAxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODYxMGUxNzcyYTM3ZjNmNGU4MGMxNDAxNzViOGNlZjI0YzJmNDZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqG91H3jtIxbVY6ohqxBLry0SgO9E 5a+UdbYKjgn4UZxfgX54+OSaenAqJP44eRt6f1K7CIkPP7Vu1P62+lQe+19BZV1L nVP3P4aZPHX94EEwVb3ZqbOQg0P+By2wDiKrvaC9GsUlmPaVEBAB9ffOyJsjLxFR 3gDgVjcPnuUkkpWLCzVsNvqYMJ/KikYefLfe96jGmbz64ZOnEdQX8HWHEsB5CSRe QBde7VknY1UKb793iTAY41Bgp163Hc3rSFeBEjo1cX+5uGEBvsFuSUSWXYJo17ow Lak3QemjdP3C++ZdgknG7SZp49oU5EYDbE78zDfOerjKg23L0+hvwdFZCwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEhhDhdyo38/ToDBQBdbjO8kwvRqMB8GA1UdIwQY MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt ZmUwNjU5MTc2YTU2LzEvU0dFT0YzS2pmejlPZ01GQUYxdU03eVRDOUdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2 LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBHxlYAwQC udlsMA0GCSqGSIb3DQEBCwUAA4IBAQBX+cUwtSUi/K70bggrHMf1s63JxSXIljyl yuejXGYI3SzGvaXwRA+19fJA5e530r0mNFlQgrxBxj0Yt2HP30KmGNEbIs/d008O sFD7CN/BI9WFeodilR/TPQY9IT4nshlk/tTo0eklO2LkL1nZiufGsD9fu5QPgST1 M0Rnu6SfKvtaY/SoeDmq29eNeMv42sTUN70R02D1WR6A4PeOeIrNa29Nif9xSUV9 Tl8ziOIAAlyi7OELQNwVkWp+k8Dcu582IXTCtbmDw2qIOKXeqi02lU9/PDqvIDPb GGDTiafn3Izs6VA8sA4+XwGowdIdacbFDzGoFct/ahydpwKusBxx -----END CERTIFICATE-----Generated at Sun Jan 25 12:00:42 2026 by rpki-client