This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2ef040-a617-4c91-8038-3d485b7cdf5c/1/SGCJMFXuQqkQ66hRX-BwbZShDeQ.roa File: SGCJMFXuQqkQ66hRX-BwbZShDeQ.roa (raw, json) Hash identifier: fC7zF6FRItdVCOIIyCz7wcwPMyIF6QXNLXbJU6mx+1Q= Subject key identifier: 48:60:89:30:55:EE:42:A9:10:EB:A8:51:5F:E0:70:6D:94:A1:0D:E4 Certificate issuer: /CN=bbf7f3bfb4ed53e59cef8c4584b627470b60a820 Certificate serial: 019B7E39375F1D25122D670C4DA604E204E0 Authority key identifier: BB:F7:F3:BF:B4:ED:53:E5:9C:EF:8C:45:84:B6:27:47:0B:60:A8:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_fzv7TtU-Wc74xFhLYnRwtgqCA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2ef040-a617-4c91-8038-3d485b7cdf5c/1/SGCJMFXuQqkQ66hRX-BwbZShDeQ.roa Signing time: Fri 02 Jan 2026 10:20:37 +0000 ROA not before: Fri 02 Jan 2026 10:20:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39686 IP address blocks: 194.104.28.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/2ef040-a617-4c91-8038-3d485b7cdf5c/1/u_fzv7TtU-Wc74xFhLYnRwtgqCA.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/2ef040-a617-4c91-8038-3d485b7cdf5c/1/u_fzv7TtU-Wc74xFhLYnRwtgqCA.mft rsync://rpki.ripe.net/repository/DEFAULT/u_fzv7TtU-Wc74xFhLYnRwtgqCA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:37:5f:1d:25:12:2d:67:0c:4d:a6:04:e2:04:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbf7f3bfb4ed53e59cef8c4584b627470b60a820 Validity Not Before: Jan 2 10:20:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4860893055ee42a910eba8515fe0706d94a10de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:73:b2:96:d3:91:40:ee:8c:02:5e:a9:2d:c4: dc:10:18:0f:4b:83:92:3b:81:c2:d6:dc:8d:4d:7e: c8:04:4d:a8:5d:ae:83:fd:3d:9a:56:b7:1f:fc:c4: ae:58:65:d1:eb:ad:64:fe:5a:9b:50:4a:a5:df:6d: 7b:e9:40:f6:f1:a7:53:f5:72:09:26:ec:e7:2a:a4: 98:27:21:31:42:06:68:6e:5e:03:0a:56:49:42:52: eb:6e:6f:38:78:04:76:f6:d0:9f:80:3e:5f:72:ab: fd:13:78:bd:4b:d9:a7:a4:5d:c5:7a:87:f3:e4:ee: f2:7c:49:91:f9:55:2f:c2:73:fe:d7:6e:f0:19:04: da:02:5b:32:63:f5:90:d4:85:18:bb:92:d1:6c:a8: 24:1f:5d:52:e5:01:89:0d:21:4b:10:9a:70:61:82: cb:a0:50:cb:25:f4:7a:1e:b4:e0:9d:8e:4e:12:86: 87:b5:06:9e:99:63:e3:9c:fb:82:a1:6f:88:4a:ba: f7:17:4c:be:16:63:f8:99:74:d2:96:74:b3:65:85: 3b:6e:48:56:82:be:89:89:87:4c:82:ff:6e:a0:1b: 65:21:6d:dd:4d:c2:1c:cd:26:47:ad:3a:cd:3c:d9: 44:e0:34:12:8b:68:33:3d:5a:f3:44:f0:a0:71:fa: 65:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:60:89:30:55:EE:42:A9:10:EB:A8:51:5F:E0:70:6D:94:A1:0D:E4 X509v3 Authority Key Identifier: keyid:BB:F7:F3:BF:B4:ED:53:E5:9C:EF:8C:45:84:B6:27:47:0B:60:A8:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_fzv7TtU-Wc74xFhLYnRwtgqCA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2ef040-a617-4c91-8038-3d485b7cdf5c/1/SGCJMFXuQqkQ66hRX-BwbZShDeQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2ef040-a617-4c91-8038-3d485b7cdf5c/1/u_fzv7TtU-Wc74xFhLYnRwtgqCA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.104.28.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:d6:2a:b3:04:fb:cf:f8:13:73:23:90:8d:62:8a:be:f5:bc: a2:3a:0a:0a:a4:1d:e2:03:43:16:76:fc:f1:db:6a:a5:30:ab: cf:fe:c2:b2:23:96:49:0e:7e:c6:22:90:0d:d8:07:b8:7c:16: 44:29:90:6f:e3:2c:af:93:11:65:25:2c:3c:75:10:fd:5d:1e: 1e:48:68:09:d4:82:62:c6:e7:63:3a:bf:44:2e:16:25:0e:b4: 50:f2:96:d7:20:bd:f8:bd:de:8f:85:fb:6c:62:d4:11:c4:3e: 6d:38:fd:9d:bb:1c:26:99:11:a1:6c:b4:aa:11:f8:db:9e:c5: 96:e0:e2:15:00:06:10:47:7e:56:f2:85:ef:06:9e:2d:38:e0: d3:4c:49:96:d1:0c:b3:8b:c9:b0:29:25:82:2f:95:64:77:a7: fa:db:42:8e:11:3b:c4:36:da:bb:db:92:7f:aa:23:08:67:ac: 53:37:d9:4b:d7:6a:cd:10:9b:c7:f6:e7:c9:bf:a5:82:a3:7e: 7c:ee:aa:9d:7c:d9:dc:16:c5:34:10:d0:b8:fd:9a:83:fa:97: ab:7c:83:bc:e5:c3:b0:61:26:4c:8d:f6:53:5c:24:90:b7:b0: 66:f8:62:f4:1d:5d:0d:18:2e:72:86:76:95:96:87:40:34:f6: 64:29:50:c8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OTdfHSUSLWcMTaYE4gTgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiZjdmM2JmYjRlZDUzZTU5Y2VmOGM0NTg0YjYyNzQ3MGI2 MGE4MjAwHhcNMjYwMTAyMTAyMDM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODYwODkzMDU1ZWU0MmE5MTBlYmE4NTE1ZmUwNzA2ZDk0YTEwZGU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw3OyltORQO6MAl6pLcTcEBgPS4OS O4HC1tyNTX7IBE2oXa6D/T2aVrcf/MSuWGXR661k/lqbUEql32176UD28adT9XIJ JuznKqSYJyExQgZobl4DClZJQlLrbm84eAR29tCfgD5fcqv9E3i9S9mnpF3Feofz 5O7yfEmR+VUvwnP+127wGQTaAlsyY/WQ1IUYu5LRbKgkH11S5QGJDSFLEJpwYYLL oFDLJfR6HrTgnY5OEoaHtQaemWPjnPuCoW+ISrr3F0y+FmP4mXTSlnSzZYU7bkhW gr6JiYdMgv9uoBtlIW3dTcIczSZHrTrNPNlE4DQSi2gzPVrzRPCgcfpl0QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEhgiTBV7kKpEOuoUV/gcG2UoQ3kMB8GA1UdIwQY MBaAFLv387+07VPlnO+MRYS2J0cLYKggMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdV9menY3VHRVLVdjNzR4RmhMWW5Sd3RncUNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8yZWYwNDAtYTYxNy00YzkxLTgwMzgt M2Q0ODViN2NkZjVjLzEvU0dDSk1GWHVRcWtRNjZoUlgtQndiWlNoRGVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi8yZWYwNDAtYTYxNy00YzkxLTgwMzgtM2Q0ODViN2NkZjVj LzEvdV9menY3VHRVLVdjNzR4RmhMWW5Sd3RncUNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwmgcMA0G CSqGSIb3DQEBCwUAA4IBAQB71iqzBPvP+BNzI5CNYoq+9byiOgoKpB3iA0MWdvzx 22qlMKvP/sKyI5ZJDn7GIpAN2Ae4fBZEKZBv4yyvkxFlJSw8dRD9XR4eSGgJ1IJi xudjOr9ELhYlDrRQ8pbXIL34vd6PhftsYtQRxD5tOP2duxwmmRGhbLSqEfjbnsWW 4OIVAAYQR35W8oXvBp4tOODTTEmW0Qyzi8mwKSWCL5Vkd6f620KOETvENtq725J/ qiMIZ6xTN9lL12rNEJvH9ufJv6WCo3587qqdfNncFsU0ENC4/ZqD+perfIO85cOw YSZMjfZTXCSQt7Bm+GL0HV0NGC5yhnaVlodANPZkKVDI -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:18 2026 by rpki-client