This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/SUphdQJw-Hg0tkCTHAxdssxM7WU.roa File: SUphdQJw-Hg0tkCTHAxdssxM7WU.roa (raw, json) Hash identifier: K6sCasus5CCnYwQblrVqAaOdSMRGrcdNZpoyM5tiQkY= Subject key identifier: 49:4A:61:75:02:70:F8:78:34:B6:40:93:1C:0C:5D:B2:CC:4C:ED:65 Certificate issuer: /CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c Certificate serial: 019B79EBC29776A31ABB5DF06EC1A73099DF Authority key identifier: 9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/SUphdQJw-Hg0tkCTHAxdssxM7WU.roa Signing time: Thu 01 Jan 2026 14:17:32 +0000 ROA not before: Thu 01 Jan 2026 14:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61002 IP address blocks: 185.170.11.0/24 maxlen: 24 188.211.164.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.mft rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:c2:97:76:a3:1a:bb:5d:f0:6e:c1:a7:30:99:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c Validity Not Before: Jan 1 14:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=494a61750270f87834b640931c0c5db2cc4ced65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:65:49:ac:36:8c:4c:be:00:17:07:8c:77:03: a5:36:4a:2e:0a:63:ae:b2:6c:94:b3:73:41:c1:c6: 02:84:ee:e1:25:5d:b3:b3:ea:43:78:dd:40:22:1c: 77:70:c4:fc:19:11:28:cc:4c:5c:7c:ae:9a:f5:6e: ce:08:13:78:72:61:16:08:c6:65:73:d4:dd:4c:d6: cd:25:29:91:6b:f9:fb:4a:17:90:90:58:bb:da:3f: 82:b4:e6:da:52:ef:46:b6:02:4c:94:ff:ab:5f:dc: 80:22:ae:37:85:b5:17:f7:c5:b4:bd:d6:cd:d2:da: 9a:9b:1f:56:77:e0:db:fa:c8:b1:f3:45:f6:48:c8: e5:de:11:99:e2:10:10:7e:66:4f:a3:3d:ad:0f:ca: 71:a3:ad:11:1f:b6:81:18:6e:91:fd:31:45:3f:10: dd:f8:89:62:b8:8d:70:ab:70:a6:c4:1f:d0:49:52: bc:3d:43:c9:c1:9b:3f:91:bd:9b:89:81:d8:a3:43: 19:2a:92:3d:d3:eb:36:51:e2:a0:94:be:22:ce:df: fe:8b:02:cb:1b:77:52:91:bc:74:07:f3:78:1c:1f: 52:94:10:a9:f1:56:6e:c1:48:ea:7d:13:c3:33:4c: 23:1e:cf:57:ab:f5:73:17:ab:91:4b:e6:06:a4:f3: 0a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:4A:61:75:02:70:F8:78:34:B6:40:93:1C:0C:5D:B2:CC:4C:ED:65 X509v3 Authority Key Identifier: keyid:9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/SUphdQJw-Hg0tkCTHAxdssxM7WU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.170.11.0/24 188.211.164.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:8b:8d:49:08:93:f2:67:72:ae:a2:dd:00:0f:65:fe:c4:e5: 55:36:49:d2:06:27:99:b1:70:b7:28:31:b3:ef:83:bf:fc:95: 6c:6e:7f:dc:08:dc:25:f0:a3:3d:a2:17:7f:59:a7:65:70:89: a2:71:d1:e8:13:dd:48:e6:df:a7:0f:51:f7:eb:b2:b2:93:d5: 18:da:78:fe:a5:74:bb:9f:77:d5:af:c4:15:0a:8a:cf:d1:92: 8b:16:57:41:f4:84:d5:a1:d5:ec:a5:c1:47:39:4a:0f:81:13: 80:51:32:7d:05:10:48:f7:83:47:6b:0e:80:7f:03:cc:54:cf: b7:39:30:49:82:23:da:9a:4e:12:03:95:2b:2a:dc:9d:d9:8b: d7:3f:7e:de:17:d0:33:bd:9b:bc:75:93:a1:68:5d:5f:08:26: e2:2f:45:71:ae:69:2b:ca:43:02:1a:23:a3:3b:ee:2c:d0:c0: a6:bb:2b:6b:7e:71:c5:40:00:98:b6:0b:70:14:f8:32:6a:30: 48:61:db:a6:fb:76:13:8d:9c:b3:be:5d:0f:05:a7:a5:d1:b6: ea:79:74:44:f1:05:08:e7:79:9c:44:3b:b1:09:45:3f:78:83: 78:de:94:99:e6:c8:fa:a5:48:82:6a:11:3c:5e:35:f3:c1:a5: 19:b3:8e:9d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt568KXdqMau13wbsGnMJnfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNTQyZjVkZjNjMWFjYjg1N2ZkNTBlZWIwMTZlZWQwNzM4 NWZmOGMwHhcNMjYwMTAxMTQxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OTRhNjE3NTAyNzBmODc4MzRiNjQwOTMxYzBjNWRiMmNjNGNlZDY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWVJrDaMTL4AFweMdwOlNkouCmOu smyUs3NBwcYChO7hJV2zs+pDeN1AIhx3cMT8GREozExcfK6a9W7OCBN4cmEWCMZl c9TdTNbNJSmRa/n7SheQkFi72j+CtObaUu9GtgJMlP+rX9yAIq43hbUX98W0vdbN 0tqamx9Wd+Db+six80X2SMjl3hGZ4hAQfmZPoz2tD8pxo60RH7aBGG6R/TFFPxDd +IliuI1wq3CmxB/QSVK8PUPJwZs/kb2biYHYo0MZKpI90+s2UeKglL4izt/+iwLL G3dSkbx0B/N4HB9SlBCp8VZuwUjqfRPDM0wjHs9Xq/VzF6uRS+YGpPMKMQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFElKYXUCcPh4NLZAkxwMXbLMTO1lMB8GA1UdIwQY MBaAFJxUL13zway4V/1Q7rAW7tBzhf+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUt MjVkYmY0MzgwNGM1LzEvU1VwaGRRSnctSGcwdGtDVEhBeGRzc3hNN1dVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUtMjVkYmY0MzgwNGM1 LzEvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuaoLAwQB vNOkMA0GCSqGSIb3DQEBCwUAA4IBAQALi41JCJPyZ3Kuot0AD2X+xOVVNknSBieZ sXC3KDGz74O//JVsbn/cCNwl8KM9ohd/WadlcImicdHoE91I5t+nD1H367Kyk9UY 2nj+pXS7n3fVr8QVCorP0ZKLFldB9ITVodXspcFHOUoPgROAUTJ9BRBI94NHaw6A fwPMVM+3OTBJgiPamk4SA5UrKtyd2YvXP37eF9AzvZu8dZOhaF1fCCbiL0Vxrmkr ykMCGiOjO+4s0MCmuytrfnHFQACYtgtwFPgyajBIYdum+3YTjZyzvl0PBael0bbq eXRE8QUI53mcRDuxCUU/eIN43pSZ5sj6pUiCahE8XjXzwaUZs46d -----END CERTIFICATE-----Generated at Sun Jan 25 17:34:15 2026 by rpki-client