This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/654f36-ac5a-4292-8140-534d78898d6b/1/sudPoVqFg1PQZP7-xy4v565d_SM.roa File: sudPoVqFg1PQZP7-xy4v565d_SM.roa (raw, json) Hash identifier: tABC2SMeyK75v3oh2kumS0Pn8iv5DPrW8wlj3JIpyAM= Subject key identifier: B2:E7:4F:A1:5A:85:83:53:D0:64:FE:FE:C7:2E:2F:E7:AE:5D:FD:23 Certificate issuer: /CN=b55d4e6317c62a1a69dac31f4f143e3bc280ba62 Certificate serial: 019B7C80C262D207CE896289B899550C6FE1 Authority key identifier: B5:5D:4E:63:17:C6:2A:1A:69:DA:C3:1F:4F:14:3E:3B:C2:80:BA:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tV1OYxfGKhpp2sMfTxQ-O8KAumI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/654f36-ac5a-4292-8140-534d78898d6b/1/sudPoVqFg1PQZP7-xy4v565d_SM.roa Signing time: Fri 02 Jan 2026 02:19:31 +0000 ROA not before: Fri 02 Jan 2026 02:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16321 IP address blocks: 91.196.252.0/22 maxlen: 22 176.116.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/654f36-ac5a-4292-8140-534d78898d6b/1/tV1OYxfGKhpp2sMfTxQ-O8KAumI.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/654f36-ac5a-4292-8140-534d78898d6b/1/tV1OYxfGKhpp2sMfTxQ-O8KAumI.mft rsync://rpki.ripe.net/repository/DEFAULT/tV1OYxfGKhpp2sMfTxQ-O8KAumI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:c2:62:d2:07:ce:89:62:89:b8:99:55:0c:6f:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b55d4e6317c62a1a69dac31f4f143e3bc280ba62 Validity Not Before: Jan 2 02:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b2e74fa15a858353d064fefec72e2fe7ae5dfd23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:39:72:ce:6f:96:c9:3e:ba:a0:dc:6f:3c:7b: e6:eb:97:f2:d5:9f:b0:6e:f6:c2:a4:5e:c3:56:6c: c9:34:c6:26:9e:10:e3:4a:dd:d2:e2:20:1c:b7:a2: c1:6b:3f:b2:d1:6b:13:fa:7e:95:07:55:17:f6:9d: 0c:9a:a0:0a:23:5c:2f:e0:e1:45:89:17:91:c3:07: 89:87:ac:c4:59:a2:c5:ed:e6:c2:f0:eb:b2:d8:7b: a5:f6:c7:b3:ba:43:81:7e:94:75:b4:d8:08:03:b1: 80:72:48:78:4f:e6:39:28:4d:c1:58:6d:d7:b6:90: 09:7b:6e:fa:ec:66:c0:43:06:15:ba:95:57:2f:f6: b2:25:bd:a6:6e:8b:60:81:9b:46:e6:42:3e:e6:06: 02:9d:bb:4b:b4:8a:52:cc:2f:0d:d7:22:e2:a3:27: e9:0b:ab:2e:06:18:f7:1c:37:e4:93:51:a5:d3:a1: 5d:b3:3a:78:89:c8:cd:41:8b:ea:15:1e:ea:37:5e: d8:3b:a2:e0:02:79:d6:60:6d:39:10:20:a1:3b:92: 5d:e6:a1:72:1b:01:51:7e:fd:99:34:19:01:f3:4f: 47:12:7c:47:62:29:1e:4d:dc:fa:d6:57:1c:a0:4a: 22:71:c3:15:38:d8:7a:b3:95:18:11:4a:68:ac:bd: 1d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E7:4F:A1:5A:85:83:53:D0:64:FE:FE:C7:2E:2F:E7:AE:5D:FD:23 X509v3 Authority Key Identifier: keyid:B5:5D:4E:63:17:C6:2A:1A:69:DA:C3:1F:4F:14:3E:3B:C2:80:BA:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tV1OYxfGKhpp2sMfTxQ-O8KAumI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/654f36-ac5a-4292-8140-534d78898d6b/1/sudPoVqFg1PQZP7-xy4v565d_SM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/654f36-ac5a-4292-8140-534d78898d6b/1/tV1OYxfGKhpp2sMfTxQ-O8KAumI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.196.252.0/22 176.116.240.0/20 Signature Algorithm: sha256WithRSAEncryption 40:fc:e9:68:91:3e:b5:e7:f1:b8:a8:ce:2b:80:e0:fa:a5:88: 21:ea:44:34:b8:21:62:7e:15:3b:11:b5:c8:55:46:bd:82:3d: e7:d6:04:c0:ff:a0:50:b2:21:b5:61:76:39:05:57:f3:6e:74: 73:65:59:b8:b7:3b:96:90:22:9b:ff:48:37:72:c3:08:c5:33: 35:6d:9a:9c:9e:1c:ed:8f:e5:19:fe:bd:0d:62:22:5b:21:de: 00:e6:38:26:4e:32:f5:36:5e:20:f0:a2:94:dd:a8:a7:6b:db: 46:af:2d:de:4e:47:d9:8a:7f:e8:1a:29:7e:3c:7e:91:e9:8a: f7:b0:67:cf:91:4b:46:7b:7a:c9:43:76:e1:fc:e7:d0:c1:25: 2a:b4:dc:0f:43:71:e6:f8:12:6a:c1:b3:9e:6e:09:15:bc:3b: e7:2c:d8:d3:f7:bd:31:d7:64:ce:6a:36:fe:dd:65:de:87:74: 47:09:a9:b9:12:c1:97:55:3d:ec:ec:7e:70:08:d6:96:c0:cd: 4a:d7:36:ef:a3:18:87:81:4d:1f:50:35:f6:84:ee:87:0c:2b: 87:ca:4f:c9:0d:28:32:b3:b0:50:c1:2e:eb:b1:1a:7d:d6:fe: 64:e0:22:e0:65:6b:29:2b:8c:1b:80:fb:16:5c:97:33:3c:4d: 86:d0:11:b8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gMJi0gfOiWKJuJlVDG/hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NWQ0ZTYzMTdjNjJhMWE2OWRhYzMxZjRmMTQzZTNiYzI4 MGJhNjIwHhcNMjYwMTAyMDIxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMmU3NGZhMTVhODU4MzUzZDA2NGZlZmVjNzJlMmZlN2FlNWRmZDIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4zlyzm+WyT66oNxvPHvm65fy1Z+w bvbCpF7DVmzJNMYmnhDjSt3S4iAct6LBaz+y0WsT+n6VB1UX9p0MmqAKI1wv4OFF iReRwweJh6zEWaLF7ebC8Ouy2Hul9sezukOBfpR1tNgIA7GAckh4T+Y5KE3BWG3X tpAJe2767GbAQwYVupVXL/ayJb2mbotggZtG5kI+5gYCnbtLtIpSzC8N1yLioyfp C6suBhj3HDfkk1Gl06Fdszp4icjNQYvqFR7qN17YO6LgAnnWYG05ECChO5Jd5qFy GwFRfv2ZNBkB809HEnxHYikeTdz61lccoEoiccMVONh6s5UYEUporL0d5wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLLnT6FahYNT0GT+/scuL+euXf0jMB8GA1UdIwQY MBaAFLVdTmMXxioaadrDH08UPjvCgLpiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFYxT1l4ZkdLaHBwMnNNZlR4US1POEtBdW1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82NTRmMzYtYWM1YS00MjkyLTgxNDAt NTM0ZDc4ODk4ZDZiLzEvc3VkUG9WcUZnMVBRWlA3LXh5NHY1NjVkX1NNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC82NTRmMzYtYWM1YS00MjkyLTgxNDAtNTM0ZDc4ODk4ZDZi LzEvdFYxT1l4ZkdLaHBwMnNNZlR4US1POEtBdW1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW8T8AwQE sHTwMA0GCSqGSIb3DQEBCwUAA4IBAQBA/OlokT615/G4qM4rgOD6pYgh6kQ0uCFi fhU7EbXIVUa9gj3n1gTA/6BQsiG1YXY5BVfzbnRzZVm4tzuWkCKb/0g3csMIxTM1 bZqcnhztj+UZ/r0NYiJbId4A5jgmTjL1Nl4g8KKU3aina9tGry3eTkfZin/oGil+ PH6R6Yr3sGfPkUtGe3rJQ3bh/OfQwSUqtNwPQ3Hm+BJqwbOebgkVvDvnLNjT970x 12TOajb+3WXeh3RHCam5EsGXVT3s7H5wCNaWwM1K1zbvoxiHgU0fUDX2hO6HDCuH yk/JDSgys7BQwS7rsRp91v5k4CLgZWspK4wbgPsWXJczPE2G0BG4 -----END CERTIFICATE-----Generated at Mon Jan 26 04:40:42 2026 by rpki-client