This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/SMhGdBkdywnevpYEWhKr1IzaM4M.roa File: SMhGdBkdywnevpYEWhKr1IzaM4M.roa (raw, json) Hash identifier: m3kf4ZVSNKzUhBPVSBlYDUaNyUcw0siodBs/T4U83BA= Subject key identifier: 48:C8:46:74:19:1D:CB:09:DE:BE:96:04:5A:12:AB:D4:8C:DA:33:83 Certificate issuer: /CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9 Certificate serial: 019B77C728555EF1816DBECFBDCAE675EA70 Authority key identifier: 1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/SMhGdBkdywnevpYEWhKr1IzaM4M.roa Signing time: Thu 01 Jan 2026 04:18:19 +0000 ROA not before: Thu 01 Jan 2026 04:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198401 IP address blocks: 91.149.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/GstjdqFkjUnVXk17ATcTZ7DcKvk.crl rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/GstjdqFkjUnVXk17ATcTZ7DcKvk.mft rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:28:55:5e:f1:81:6d:be:cf:bd:ca:e6:75:ea:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9 Validity Not Before: Jan 1 04:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48c84674191dcb09debe96045a12abd48cda3383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:84:18:27:b6:73:09:d7:bf:88:af:33:f8:87: 19:39:32:ca:99:0c:1d:3e:7d:e0:5f:a9:fa:48:57: f4:dd:9e:83:d8:95:26:70:d3:81:53:48:c4:a7:6c: 0b:01:d2:5e:db:00:81:af:02:0e:52:2d:ab:ed:9e: 5b:bb:4e:ec:c7:00:f6:fa:05:e3:c1:c2:21:70:3d: 8d:78:a9:70:ed:b3:6e:7b:13:98:f3:7a:df:50:28: 9f:2c:14:40:b3:36:ce:a2:db:33:17:7e:25:6d:24: 56:34:67:65:ad:77:d0:2a:4d:fe:e4:49:4c:b7:17: 86:f3:1b:1c:82:17:1a:55:81:54:b5:db:e1:b7:2d: 6d:c0:80:30:1f:db:d5:01:66:ab:63:b4:26:f5:49: 54:de:ed:61:4e:fb:10:ee:31:a8:2e:f9:66:da:5a: 2b:8e:ca:a0:1f:2a:9d:df:bb:48:84:b2:6f:ef:1f: a1:10:13:c1:dc:b0:36:c6:a8:89:3d:71:34:30:9e: 45:d4:b8:b0:d7:9a:a3:0c:16:8b:f5:61:43:09:56: af:01:e3:80:0c:b1:ea:14:44:32:a4:a8:e3:03:18: 1b:40:18:80:4d:59:97:1e:e9:79:73:e4:9b:3e:54: 87:9f:8e:16:2a:82:17:48:ea:c6:fa:f1:fb:bd:e1: 8d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C8:46:74:19:1D:CB:09:DE:BE:96:04:5A:12:AB:D4:8C:DA:33:83 X509v3 Authority Key Identifier: keyid:1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/SMhGdBkdywnevpYEWhKr1IzaM4M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/GstjdqFkjUnVXk17ATcTZ7DcKvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.149.213.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:c7:57:99:fe:05:57:20:0a:62:a2:69:50:f2:34:88:76:16: 3d:e9:31:86:0b:20:b4:40:2a:13:2f:54:13:1e:a3:0b:31:6e: 68:09:56:3c:9b:17:c3:98:68:1b:35:1a:aa:c5:0f:4c:02:35: 9d:00:9e:3e:45:62:f3:87:c8:5a:ac:72:31:eb:dd:12:37:aa: de:28:5f:a7:71:16:0c:62:d7:fe:13:63:ee:f0:11:3d:46:30: e7:8f:51:f2:46:2e:58:8b:62:ff:fa:2a:71:9a:58:0e:8a:71: c9:38:b9:de:18:49:ac:51:8e:0a:e0:03:12:28:c6:3d:d3:a4: e3:42:a3:e9:5b:30:fb:e2:4a:32:24:b4:9f:16:33:9e:78:85: f7:c0:af:50:bd:3a:92:ff:d3:d6:68:35:49:e4:80:67:84:42: 3d:76:32:56:8d:3b:04:d5:45:dc:2e:4b:12:0a:fd:c7:eb:7f: 8d:05:33:21:f9:d3:fd:3a:d1:36:a7:f4:6a:1e:d5:13:28:53: 8f:00:2a:96:41:ba:10:1b:33:99:73:11:c8:b0:39:9c:bb:c4: 41:12:58:fa:20:8b:d8:21:56:12:14:d6:94:58:e1:f1:81:9b: a7:e0:fa:4c:00:cf:82:ee:68:db:47:0f:76:54:2a:9d:61:85: ae:25:d5:cc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xyhVXvGBbb7PvcrmdepwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhY2I2Mzc2YTE2NDhkNDlkNTVlNGQ3YjAxMzcxMzY3YjBk YzJhZjkwHhcNMjYwMTAxMDQxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OGM4NDY3NDE5MWRjYjA5ZGViZTk2MDQ1YTEyYWJkNDhjZGEzMzgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYQYJ7ZzCde/iK8z+IcZOTLKmQwd Pn3gX6n6SFf03Z6D2JUmcNOBU0jEp2wLAdJe2wCBrwIOUi2r7Z5bu07sxwD2+gXj wcIhcD2NeKlw7bNuexOY83rfUCifLBRAszbOotszF34lbSRWNGdlrXfQKk3+5ElM txeG8xscghcaVYFUtdvhty1twIAwH9vVAWarY7Qm9UlU3u1hTvsQ7jGoLvlm2lor jsqgHyqd37tIhLJv7x+hEBPB3LA2xqiJPXE0MJ5F1Liw15qjDBaL9WFDCVavAeOA DLHqFEQypKjjAxgbQBiATVmXHul5c+SbPlSHn44WKoIXSOrG+vH7veGNzwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEjIRnQZHcsJ3r6WBFoSq9SM2jODMB8GA1UdIwQY MBaAFBrLY3ahZI1J1V5NewE3E2ew3Cr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3N0amRxRmtqVW5WWGsxN0FUY1RaN0RjS3ZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS83MjQ3YjAtNDk4OS00M2VhLTkzNTAt N2E5MzY3NTFkYjFiLzEvU01oR2RCa2R5d25ldnBZRVdoS3IxSXphTTRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS83MjQ3YjAtNDk4OS00M2VhLTkzNTAtN2E5MzY3NTFkYjFi LzEvR3N0amRxRmtqVW5WWGsxN0FUY1RaN0RjS3ZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW5XVMA0G CSqGSIb3DQEBCwUAA4IBAQCax1eZ/gVXIApiomlQ8jSIdhY96TGGCyC0QCoTL1QT HqMLMW5oCVY8mxfDmGgbNRqqxQ9MAjWdAJ4+RWLzh8harHIx690SN6reKF+ncRYM Ytf+E2Pu8BE9RjDnj1HyRi5Yi2L/+ipxmlgOinHJOLneGEmsUY4K4AMSKMY906Tj QqPpWzD74koyJLSfFjOeeIX3wK9QvTqS/9PWaDVJ5IBnhEI9djJWjTsE1UXcLksS Cv3H63+NBTMh+dP9OtE2p/RqHtUTKFOPACqWQboQGzOZcxHIsDmcu8RBElj6IIvY IVYSFNaUWOHxgZun4PpMAM+C7mjbRw92VCqdYYWuJdXM -----END CERTIFICATE-----Generated at Mon Jan 26 01:15:52 2026 by rpki-client