This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/SQgH5nlNGw1922T1sCr0Wu_QEP4.roa File: SQgH5nlNGw1922T1sCr0Wu_QEP4.roa (raw, json) Hash identifier: ePTvjV6Hc0wALIZfUbb+3VbteB1Dow2GpSdR/RebexY= Subject key identifier: 49:08:07:E6:79:4D:1B:0D:7D:DB:64:F5:B0:2A:F4:5A:EF:D0:10:FE Certificate issuer: /CN=914aa557c3d3d1e6b7f0525c34cc1d488a5a9294 Certificate serial: 019BEBD25D2B085EF5DFF2904E1B58ADB8C3 Authority key identifier: 91:4A:A5:57:C3:D3:D1:E6:B7:F0:52:5C:34:CC:1D:48:8A:5A:92:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/SQgH5nlNGw1922T1sCr0Wu_QEP4.roa Signing time: Fri 23 Jan 2026 17:06:30 +0000 ROA not before: Fri 23 Jan 2026 17:06:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214025 IP address blocks: 116.204.164.0/24 maxlen: 24 222.167.224.0/24 maxlen: 24 222.167.227.0/24 maxlen: 24 222.167.232.0/24 maxlen: 24 222.167.239.0/24 maxlen: 24 222.167.253.0/24 maxlen: 24 222.167.254.0/24 maxlen: 24 222.167.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.crl rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.mft rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:eb:d2:5d:2b:08:5e:f5:df:f2:90:4e:1b:58:ad:b8:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=914aa557c3d3d1e6b7f0525c34cc1d488a5a9294 Validity Not Before: Jan 23 17:06:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=490807e6794d1b0d7ddb64f5b02af45aefd010fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:41:44:1d:18:fb:30:70:36:58:35:b8:c0:70: dd:08:79:5e:4b:3c:01:99:ea:eb:fd:5d:0f:ec:80: 82:41:fe:e6:a0:8a:19:25:c5:9e:a5:c7:b2:57:04: 6d:40:35:4b:c6:2a:66:36:06:06:01:82:d9:34:70: e3:d8:c2:a5:1d:ae:7a:f2:2e:fd:8d:97:74:45:8a: 7e:70:06:4a:9a:34:3b:7c:b6:71:eb:bf:fc:7f:db: 4a:9b:b4:e7:8f:16:17:20:f6:fd:79:05:99:7a:2a: 98:a8:7d:63:29:b3:d8:ca:5e:99:4c:3b:83:f2:64: 96:a4:18:b3:fe:94:d2:71:1d:47:de:5d:59:ea:df: eb:99:ef:05:19:e7:55:a4:9a:28:63:90:18:21:10: 8c:45:35:28:3b:1d:71:af:3a:66:85:c4:f7:35:b2: 60:30:e8:a9:03:07:3b:d7:24:ad:31:f1:9d:cb:43: 70:47:4d:87:c2:61:5f:f4:e8:41:aa:d5:32:5b:f1: 14:44:b5:ef:37:b3:c5:07:1c:c6:17:bd:79:90:b7: f8:85:d5:dc:17:54:5e:5e:7b:26:33:6d:43:07:ae: b9:09:ff:05:0f:37:39:e3:94:4c:85:28:58:30:2c: 63:0e:4d:7f:9b:4b:14:21:5d:8f:95:05:59:b3:29: 03:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:08:07:E6:79:4D:1B:0D:7D:DB:64:F5:B0:2A:F4:5A:EF:D0:10:FE X509v3 Authority Key Identifier: keyid:91:4A:A5:57:C3:D3:D1:E6:B7:F0:52:5C:34:CC:1D:48:8A:5A:92:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/SQgH5nlNGw1922T1sCr0Wu_QEP4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.204.164.0/24 222.167.224.0/24 222.167.227.0/24 222.167.232.0/24 222.167.239.0/24 222.167.253.0-222.167.255.255 Signature Algorithm: sha256WithRSAEncryption 10:1e:3c:01:c9:35:d3:47:14:81:be:1e:53:c0:84:a9:ae:f8: a0:aa:6d:43:1d:ad:f4:b7:33:03:15:8a:db:4b:eb:49:dd:98: b6:c1:88:82:ca:19:45:2e:62:31:c8:1e:33:22:31:65:9b:7f: d8:3c:d4:bd:f1:96:46:62:cd:6e:b5:85:06:f1:d3:ea:a4:7a: 42:38:73:34:a4:8d:f9:cc:7f:15:86:10:49:e5:20:79:a6:10: 99:0e:fb:0f:89:da:24:07:0c:47:0e:26:cd:0a:40:a9:99:45: 48:e2:26:c4:38:7a:86:7b:19:a1:d0:02:05:26:e3:10:89:5a: eb:2f:43:60:3c:87:4e:fa:73:64:34:2e:ad:5b:da:b3:3f:d0: f4:cf:96:b2:b7:c3:4b:6f:dc:fe:7d:e6:d8:c7:6f:6a:0c:96: 35:3a:3e:3a:fa:66:ec:40:04:48:68:6a:bc:ee:d4:23:a4:70: 2f:ae:64:24:cc:f0:d5:e3:2a:87:b0:35:0c:32:2d:e2:e4:3b: 18:ea:01:d7:b3:4b:37:59:85:e5:db:9b:26:31:68:93:68:e5: 57:fe:c3:24:8a:ec:bb:72:4a:63:89:2e:6b:35:f4:0d:3a:20: 23:43:30:0d:b0:b7:b1:1b:d9:4b:92:74:f7:54:a4:3a:fe:36: cd:4f:36:b5 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgISAZvr0l0rCF713/KQThtYrbjDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNGFhNTU3YzNkM2QxZTZiN2YwNTI1YzM0Y2MxZDQ4OGE1 YTkyOTQwHhcNMjYwMTIzMTcwNjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OTA4MDdlNjc5NGQxYjBkN2RkYjY0ZjViMDJhZjQ1YWVmZDAxMGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUFEHRj7MHA2WDW4wHDdCHleSzwB merr/V0P7ICCQf7moIoZJcWepceyVwRtQDVLxipmNgYGAYLZNHDj2MKlHa568i79 jZd0RYp+cAZKmjQ7fLZx67/8f9tKm7TnjxYXIPb9eQWZeiqYqH1jKbPYyl6ZTDuD 8mSWpBiz/pTScR1H3l1Z6t/rme8FGedVpJooY5AYIRCMRTUoOx1xrzpmhcT3NbJg MOipAwc71yStMfGdy0NwR02HwmFf9OhBqtUyW/EURLXvN7PFBxzGF715kLf4hdXc F1ReXnsmM21DB665Cf8FDzc545RMhShYMCxjDk1/m0sUIV2PlQVZsykDgwIDAQAB o4ICLjCCAiowHQYDVR0OBBYEFEkIB+Z5TRsNfdtk9bAq9Frv0BD+MB8GA1UdIwQY MBaAFJFKpVfD09Hmt/BSXDTMHUiKWpKUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1VxbFY4UFQwZWEzOEZKY05Nd2RTSXBha3BRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9kYjk3ZDAtMjhmMi00MzI5LWI4NTYt NGEzNDhlN2JlNDQxLzEvU1FnSDVubE5HdzE5MjJUMXNDcjBXdV9RRVA0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9kYjk3ZDAtMjhmMi00MzI5LWI4NTYtNGEzNDhlN2JlNDQx LzEva1VxbFY4UFQwZWEzOEZKY05Nd2RTSXBha3BRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEQGCCsGAQUFBwEHAQH/BDUwMzAxBAIAATArAwQAdMykAwQA 3qfgAwQA3qfjAwQA3qfoAwQA3qfvMAsDBADep/0DAwPeoDANBgkqhkiG9w0BAQsF AAOCAQEAEB48Ack100cUgb4eU8CEqa74oKptQx2t9LczAxWK20vrSd2YtsGIgsoZ RS5iMcgeMyIxZZt/2DzUvfGWRmLNbrWFBvHT6qR6QjhzNKSN+cx/FYYQSeUgeaYQ mQ77D4naJAcMRw4mzQpAqZlFSOImxDh6hnsZodACBSbjEIla6y9DYDyHTvpzZDQu rVvasz/Q9M+WsrfDS2/c/n3m2MdvagyWNTo+Ovpm7EAESGhqvO7UI6RwL65kJMzw 1eMqh7A1DDIt4uQ7GOoB17NLN1mF5dubJjFok2jlV/7DJIrsu3JKY4kuazX0DTog I0MwDbC3sRvZS5J091SkOv42zU82tQ== -----END CERTIFICATE-----Generated at Sun Jan 25 13:03:25 2026 by rpki-client