This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/SgG9ZHH9fc3uAf_CC-5WvjfXJVY.roa File: SgG9ZHH9fc3uAf_CC-5WvjfXJVY.roa (raw, json) Hash identifier: L3DodDcPa/LFxBv/gHypkqFdWN1FKLcwCRDFpLcodzg= Subject key identifier: 4A:01:BD:64:71:FD:7D:CD:EE:01:FF:C2:0B:EE:56:BE:37:D7:25:56 Certificate issuer: /CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512 Certificate serial: 019B7F150CD452742BED1CCD3374C9DE33DB Authority key identifier: 58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/SgG9ZHH9fc3uAf_CC-5WvjfXJVY.roa Signing time: Fri 02 Jan 2026 14:20:44 +0000 ROA not before: Fri 02 Jan 2026 14:20:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44733 IP address blocks: 2a14:c380:420::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.mft rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:0c:d4:52:74:2b:ed:1c:cd:33:74:c9:de:33:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512 Validity Not Before: Jan 2 14:20:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a01bd6471fd7dcdee01ffc20bee56be37d72556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f2:72:88:27:0a:3e:47:c5:85:07:a6:51:6b: 87:f2:3a:7b:97:82:cc:2e:fa:cc:a6:04:df:8a:a8: 56:e1:14:ed:b7:da:1d:a2:17:7e:8e:65:7c:b9:90: 4a:d7:63:47:7f:a5:62:86:9d:39:30:2a:89:55:bc: 2f:bc:e1:19:4e:f4:2c:46:7e:4c:5f:10:d6:a4:47: 63:e4:7f:09:79:09:c7:3d:9a:6b:35:1d:f5:ab:e5: 0d:51:47:fb:34:da:f1:e7:5d:4d:ee:88:d4:26:0f: 15:e8:63:e9:89:d4:2b:13:cd:7e:53:5d:07:7a:e5: b6:7e:91:8c:73:d2:b0:3e:cb:97:56:bb:12:50:92: be:a9:a7:e3:86:28:08:ae:4e:02:30:e6:4d:42:4e: 39:b4:9e:00:c3:5a:81:b5:1e:e0:22:23:cd:84:00: d0:1c:76:bc:07:98:0c:20:16:4c:7a:7d:c3:91:bb: 91:4d:44:d2:36:15:31:c8:1c:8f:a2:88:f9:1c:76: 56:d3:eb:55:62:22:74:67:03:25:05:ef:25:0f:4b: bd:2b:3d:2b:9f:56:65:d0:a3:c6:c3:6a:c8:c0:a8: d8:be:0e:e0:94:6c:72:2e:95:73:d2:60:04:db:7a: de:b0:f4:12:c2:59:e9:7b:64:8b:11:8e:5b:55:ae: d5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:01:BD:64:71:FD:7D:CD:EE:01:FF:C2:0B:EE:56:BE:37:D7:25:56 X509v3 Authority Key Identifier: keyid:58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/SgG9ZHH9fc3uAf_CC-5WvjfXJVY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:c380:420::/44 Signature Algorithm: sha256WithRSAEncryption 51:40:b7:eb:49:1c:50:50:b2:e2:12:62:65:8f:3d:85:9d:7d: 9e:27:1c:79:ff:96:93:e6:a7:4e:3d:92:6c:c6:c4:b2:f8:5d: 79:03:56:bc:91:de:d3:fe:cf:3f:38:02:8c:d8:54:fd:14:47: d3:92:97:cb:aa:04:29:f6:bd:67:a5:b5:3a:cf:0b:f9:27:27: c7:09:13:ed:d0:3c:af:5a:1f:e1:27:86:dd:6a:30:e3:66:29: ce:fa:a5:63:e2:75:b9:ec:73:20:08:a2:3d:07:5e:3d:c9:2f: 12:1c:7a:f2:8b:b2:94:41:71:e0:62:f3:ce:69:a4:a6:dd:ca: e0:04:14:eb:34:b6:0a:b4:3b:55:8e:97:25:eb:86:e2:ef:b6: f0:bb:e0:43:f1:b2:a3:0d:b4:df:f5:6a:5e:d8:38:b4:b7:ef: 95:3e:5f:42:82:87:23:f8:50:f3:b7:c2:96:df:68:18:df:fd: 14:7b:be:c0:43:ca:f2:60:fe:f4:0a:34:f3:5b:df:f9:51:e0: 81:b0:2f:ca:82:fe:8d:45:69:c7:4c:6b:7b:3d:6b:df:02:65: 45:a5:34:75:d7:19:38:42:60:fe:fc:e3:46:39:d1:c7:10:e4: e1:7c:fa:f9:84:a8:3f:5a:a9:2b:f4:28:86:40:96:23:d3:40: 70:b7:43:79 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/FQzUUnQr7RzNM3TJ3jPbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YjNkZTVmOWFkYjUwZmU0MWY2ZGM3OGZmZDBhMmM5MDg2 ZDI1MTIwHhcNMjYwMTAyMTQyMDQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTAxYmQ2NDcxZmQ3ZGNkZWUwMWZmYzIwYmVlNTZiZTM3ZDcyNTU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2fJyiCcKPkfFhQemUWuH8jp7l4LM LvrMpgTfiqhW4RTtt9odohd+jmV8uZBK12NHf6Vihp05MCqJVbwvvOEZTvQsRn5M XxDWpEdj5H8JeQnHPZprNR31q+UNUUf7NNrx511N7ojUJg8V6GPpidQrE81+U10H euW2fpGMc9KwPsuXVrsSUJK+qafjhigIrk4CMOZNQk45tJ4Aw1qBtR7gIiPNhADQ HHa8B5gMIBZMen3DkbuRTUTSNhUxyByPooj5HHZW0+tVYiJ0ZwMlBe8lD0u9Kz0r n1Zl0KPGw2rIwKjYvg7glGxyLpVz0mAE23resPQSwlnpe2SLEY5bVa7VuQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFEoBvWRx/X3N7gH/wgvuVr431yVWMB8GA1UdIwQY MBaAFFiz3l+a21D+QfbceP/QoskIbSUSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0xQZVg1cmJVUDVCOXR4NF85Q2l5UWh0SlJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC82Yjc0OTAtZTEwYS00MmUwLTllMmUt NTMyMWQ2OWQ5NzlkLzEvU2dHOVpISDlmYzN1QWZfQ0MtNVd2amZYSlZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC82Yjc0OTAtZTEwYS00MmUwLTllMmUtNTMyMWQ2OWQ5Nzlk LzEvV0xQZVg1cmJVUDVCOXR4NF85Q2l5UWh0SlJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhTDgAQg MA0GCSqGSIb3DQEBCwUAA4IBAQBRQLfrSRxQULLiEmJljz2FnX2eJxx5/5aT5qdO PZJsxsSy+F15A1a8kd7T/s8/OAKM2FT9FEfTkpfLqgQp9r1npbU6zwv5JyfHCRPt 0DyvWh/hJ4bdajDjZinO+qVj4nW57HMgCKI9B149yS8SHHryi7KUQXHgYvPOaaSm 3crgBBTrNLYKtDtVjpcl64bi77bwu+BD8bKjDbTf9Wpe2Di0t++VPl9Cgocj+FDz t8KW32gY3/0Ue77AQ8ryYP70CjTzW9/5UeCBsC/Kgv6NRWnHTGt7PWvfAmVFpTR1 1xk4QmD+/ONGOdHHEOThfPr5hKg/Wqkr9CiGQJYj00Bwt0N5 -----END CERTIFICATE-----Generated at Sun Jan 25 16:17:49 2026 by rpki-client