This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/SED4pOneSK1Nz4GXJ8sxeamW4bA.roa File: SED4pOneSK1Nz4GXJ8sxeamW4bA.roa (raw, json) Hash identifier: rv2mx30pNaTbk2/jVNoTsekRApJk2qpOrI2G/ZbcQfQ= Subject key identifier: 48:40:F8:A4:E9:DE:48:AD:4D:CF:81:97:27:CB:31:79:A9:96:E1:B0 Certificate issuer: /CN=41fc55ee2488fb9401c4b668abac54110ebb8092 Certificate serial: 019B7D5C0DEEAA73466F7454919927C61111 Authority key identifier: 41:FC:55:EE:24:88:FB:94:01:C4:B6:68:AB:AC:54:11:0E:BB:80:92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/SED4pOneSK1Nz4GXJ8sxeamW4bA.roa Signing time: Fri 02 Jan 2026 06:19:03 +0000 ROA not before: Fri 02 Jan 2026 06:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50246 IP address blocks: 91.227.187.0/24 maxlen: 24 193.29.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/QfxV7iSI-5QBxLZoq6xUEQ67gJI.crl rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/QfxV7iSI-5QBxLZoq6xUEQ67gJI.mft rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:0d:ee:aa:73:46:6f:74:54:91:99:27:c6:11:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41fc55ee2488fb9401c4b668abac54110ebb8092 Validity Not Before: Jan 2 06:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4840f8a4e9de48ad4dcf819727cb3179a996e1b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0d:a6:70:a4:60:f6:2c:64:f0:63:b9:f3:d1: 2a:75:9b:2f:08:53:f4:b2:ab:df:95:53:d0:31:2a: 56:6e:53:59:2b:b7:8f:47:08:fc:08:d2:cb:50:ad: de:10:37:63:98:33:99:13:ba:ba:7b:ab:5f:1f:e0: f1:37:18:1f:0c:c2:0e:53:dd:0a:a7:84:42:ee:34: 8f:d1:f7:6a:7f:ff:90:a2:36:6e:e5:41:eb:cc:74: ac:8c:ea:aa:88:21:e8:41:21:e2:1a:38:c2:21:93: 73:d3:86:40:93:4a:18:17:fe:d1:19:06:a4:82:8a: 5e:65:e6:42:8d:7e:5b:1f:52:c7:06:b0:4f:23:a9: bc:90:61:10:b5:11:ff:af:99:65:07:fe:52:d0:b1: c8:b0:2c:79:6e:62:45:b6:ad:1b:21:3a:d8:d8:fd: d6:a0:83:82:fd:df:37:ed:e6:e4:53:62:80:7d:a1: 07:51:75:8e:0b:4a:f8:8d:ea:52:0a:1e:3e:b1:1e: ff:0b:42:6e:6c:b6:3f:05:35:d7:5c:d5:c0:3a:e2: b2:91:59:49:dd:8a:ab:c1:35:04:38:05:df:ee:96: e6:47:40:1d:11:b4:96:02:33:05:1f:eb:75:4b:f4: 8b:90:1a:88:d1:a3:54:9d:48:c8:1f:90:b4:3d:77: aa:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:40:F8:A4:E9:DE:48:AD:4D:CF:81:97:27:CB:31:79:A9:96:E1:B0 X509v3 Authority Key Identifier: keyid:41:FC:55:EE:24:88:FB:94:01:C4:B6:68:AB:AC:54:11:0E:BB:80:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/SED4pOneSK1Nz4GXJ8sxeamW4bA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/QfxV7iSI-5QBxLZoq6xUEQ67gJI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.227.187.0/24 193.29.38.0/24 Signature Algorithm: sha256WithRSAEncryption 34:6e:cc:6e:04:d2:7f:83:2c:92:c0:08:ac:8b:c4:27:93:0f: 9c:8d:8b:6b:bf:1b:6d:b8:72:87:d9:97:40:cc:20:d6:73:83: df:06:67:ae:c7:c6:98:3a:57:28:a5:db:b3:01:7f:a0:c7:57: 20:4d:de:f2:52:17:df:f8:e0:f3:7d:3a:bf:14:fa:a1:8f:54: 95:85:a4:d6:9a:b5:4a:fa:dd:08:b5:58:3f:db:bd:07:01:d4: 21:5d:ef:02:89:ca:97:e2:67:e6:18:37:15:a6:a0:bc:8b:97: 58:14:8c:83:51:e3:23:a0:aa:28:9c:e8:37:cc:07:db:62:ac: 77:92:44:26:8f:2c:9d:e6:d8:77:d5:6f:3a:4b:4f:dd:7b:71: bc:91:80:f0:eb:c4:a1:26:8c:c5:81:ce:56:1a:b3:2b:6b:1b: d1:ea:b9:68:38:6b:22:df:67:14:2d:5e:f7:9a:c7:3f:57:4c: 22:21:ef:c6:c7:1d:47:f5:f6:e5:4b:ce:e3:c9:8e:a1:15:d6: 04:c0:05:54:1b:65:cd:01:09:ca:9e:41:68:b0:09:9c:2a:01: 9a:68:b2:b9:40:35:c5:49:3f:25:5b:f5:ff:2e:db:d9:aa:b4: b3:d7:e6:5b:42:82:5e:55:8e:87:c8:63:f2:85:ae:45:c6:4c: b4:c4:bc:40 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9XA3uqnNGb3RUkZknxhERMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxZmM1NWVlMjQ4OGZiOTQwMWM0YjY2OGFiYWM1NDExMGVi YjgwOTIwHhcNMjYwMTAyMDYxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODQwZjhhNGU5ZGU0OGFkNGRjZjgxOTcyN2NiMzE3OWE5OTZlMWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQ2mcKRg9ixk8GO589EqdZsvCFP0 sqvflVPQMSpWblNZK7ePRwj8CNLLUK3eEDdjmDOZE7q6e6tfH+DxNxgfDMIOU90K p4RC7jSP0fdqf/+QojZu5UHrzHSsjOqqiCHoQSHiGjjCIZNz04ZAk0oYF/7RGQak gopeZeZCjX5bH1LHBrBPI6m8kGEQtRH/r5llB/5S0LHIsCx5bmJFtq0bITrY2P3W oIOC/d837ebkU2KAfaEHUXWOC0r4jepSCh4+sR7/C0JubLY/BTXXXNXAOuKykVlJ 3YqrwTUEOAXf7pbmR0AdEbSWAjMFH+t1S/SLkBqI0aNUnUjIH5C0PXeqXQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEhA+KTp3kitTc+BlyfLMXmpluGwMB8GA1UdIwQY MBaAFEH8Ve4kiPuUAcS2aKusVBEOu4CSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWZ4VjdpU0ktNVFCeExab3E2eFVFUTY3Z0pJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hYTM2NjEtZGViMy00NWE0LTg2OTMt Mzg4MWE4YjgyN2FjLzEvU0VENHBPbmVTSzFOejRHWEo4c3hlYW1XNGJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9hYTM2NjEtZGViMy00NWE0LTg2OTMtMzg4MWE4YjgyN2Fj LzEvUWZ4VjdpU0ktNVFCeExab3E2eFVFUTY3Z0pJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW+O7AwQA wR0mMA0GCSqGSIb3DQEBCwUAA4IBAQA0bsxuBNJ/gyySwAisi8Qnkw+cjYtrvxtt uHKH2ZdAzCDWc4PfBmeux8aYOlcopduzAX+gx1cgTd7yUhff+ODzfTq/FPqhj1SV haTWmrVK+t0ItVg/270HAdQhXe8CicqX4mfmGDcVpqC8i5dYFIyDUeMjoKoonOg3 zAfbYqx3kkQmjyyd5th31W86S0/de3G8kYDw68ShJozFgc5WGrMraxvR6rloOGsi 32cULV73msc/V0wiIe/Gxx1H9fblS87jyY6hFdYEwAVUG2XNAQnKnkFosAmcKgGa aLK5QDXFST8lW/X/LtvZqrSz1+ZbQoJeVY6HyGPyha5Fxky0xLxA -----END CERTIFICATE-----Generated at Mon Jan 26 03:05:44 2026 by rpki-client