This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/sfpzjwAzE5yJGNSCQHkge4x6-tE.roa File: sfpzjwAzE5yJGNSCQHkge4x6-tE.roa (raw, json) Hash identifier: VnRjhz79BOzjpDki4YTEDGfYwGijq8Qs+KY/WcY4aUY= Subject key identifier: B1:FA:73:8F:00:33:13:9C:89:18:D4:82:40:79:20:7B:8C:7A:FA:D1 Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Certificate serial: 019B7EA75597A70098FAC1056803BA714FE6 Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/sfpzjwAzE5yJGNSCQHkge4x6-tE.roa Signing time: Fri 02 Jan 2026 12:20:54 +0000 ROA not before: Fri 02 Jan 2026 12:20:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8342 IP address blocks: 213.24.0.0/16 maxlen: 16 213.24.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:55:97:a7:00:98:fa:c1:05:68:03:ba:71:4f:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Validity Not Before: Jan 2 12:20:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b1fa738f0033139c8918d4824079207b8c7afad1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:96:bc:47:09:6e:e3:d8:9c:3e:de:0b:67:2e: a2:03:75:e0:4c:a4:90:dc:f3:99:aa:a7:c2:c7:5d: 02:49:c0:85:a5:cd:ff:59:60:53:0c:2e:ec:31:95: cd:38:f5:ae:48:d3:2c:00:87:e2:e4:1e:08:02:a7: e0:22:31:1d:8e:f8:67:2b:de:0e:d0:a4:00:c9:4c: 1e:7d:6f:3c:33:df:b2:8b:0d:41:80:88:73:11:98: 73:f2:10:c5:0f:7c:a1:0f:8b:e7:62:38:3b:4e:a7: 2b:16:12:23:27:52:54:be:57:05:3a:c3:16:45:d0: 7c:90:78:b1:df:64:6b:bd:8c:3c:85:76:36:f6:4e: f4:c8:95:f2:c0:33:e1:d2:af:27:23:63:73:75:7d: 0f:1a:16:56:e0:8e:f3:08:e1:2f:24:6e:4a:bc:d3: 05:86:7a:ee:c4:d3:cb:38:ad:bf:1f:a3:d4:96:48: 74:3e:63:7f:21:98:a6:00:9a:1d:97:3e:64:a8:eb: 79:90:87:cf:92:24:bd:60:55:9d:ab:a2:b8:27:c4: e7:4f:5d:b4:00:1d:14:9d:bc:07:b0:f6:8e:ca:6f: 42:72:ee:9d:8f:98:22:bf:ca:d0:a7:a1:b2:a6:4e: f8:a8:f0:3b:14:52:f8:5c:b5:3d:72:5e:9f:0f:00: 6f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:FA:73:8F:00:33:13:9C:89:18:D4:82:40:79:20:7B:8C:7A:FA:D1 X509v3 Authority Key Identifier: keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/sfpzjwAzE5yJGNSCQHkge4x6-tE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.24.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7b:b6:97:80:93:af:b1:80:cd:ac:0d:1a:af:96:96:28:c7:11: 7a:91:02:e4:5a:4f:15:a1:ed:6d:4d:05:8a:b0:34:87:f4:43: 9b:c0:cb:03:a0:49:55:6e:e0:dc:61:74:ee:64:22:5b:b2:44: dd:4b:9f:40:fa:ac:83:a1:70:dc:73:99:2f:bf:dc:bf:5f:82: 23:f6:fb:b9:00:10:bf:f4:aa:cf:2a:81:34:92:5a:ac:e7:ca: 69:90:f1:e6:06:e3:43:4b:f8:9f:3e:12:9d:0c:54:10:64:59: 83:50:19:2b:8a:5d:27:99:68:db:a5:48:7a:c1:a9:96:45:f4: dd:28:ee:85:79:18:53:2c:06:e9:c0:ef:23:64:3a:9e:62:d3: e9:01:32:41:5e:38:c9:9a:95:16:58:ca:e7:ff:fd:4f:76:54: c6:5d:a2:1d:89:57:bb:ff:fb:53:2e:3a:23:64:e1:e0:5a:07: 6d:d8:f9:5f:f5:54:da:2b:80:6d:ac:4d:04:a5:4d:d6:b4:2d: 5b:a7:61:0f:01:97:23:b7:73:d7:a0:00:7f:8d:54:36:48:42: d8:0e:af:66:55:ba:28:f3:c3:7a:36:1a:62:03:a5:c7:38:9e: fb:07:a9:ed:1c:ee:d0:d7:53:43:93:bd:94:1f:5d:95:ac:39: c5:0d:d0:f5 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt+p1WXpwCY+sEFaAO6cU/mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx ZTZjMDkwHhcNMjYwMTAyMTIyMDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMWZhNzM4ZjAwMzMxMzljODkxOGQ0ODI0MDc5MjA3YjhjN2FmYWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZa8Rwlu49icPt4LZy6iA3XgTKSQ 3POZqqfCx10CScCFpc3/WWBTDC7sMZXNOPWuSNMsAIfi5B4IAqfgIjEdjvhnK94O 0KQAyUwefW88M9+yiw1BgIhzEZhz8hDFD3yhD4vnYjg7TqcrFhIjJ1JUvlcFOsMW RdB8kHix32RrvYw8hXY29k70yJXywDPh0q8nI2NzdX0PGhZW4I7zCOEvJG5KvNMF hnruxNPLOK2/H6PUlkh0PmN/IZimAJodlz5kqOt5kIfPkiS9YFWdq6K4J8TnT120 AB0UnbwHsPaOym9Ccu6dj5giv8rQp6Gypk74qPA7FFL4XLU9cl6fDwBv9wIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFLH6c48AMxOciRjUgkB5IHuMevrRMB8GA1UdIwQY MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt NWE4NmMyNzU3YzFlLzEvc2Zwemp3QXpFNXlKR05TQ1FIa2dlNHg2LXRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA1RgwDQYJ KoZIhvcNAQELBQADggEBAHu2l4CTr7GAzawNGq+WlijHEXqRAuRaTxWh7W1NBYqw NIf0Q5vAywOgSVVu4NxhdO5kIluyRN1Ln0D6rIOhcNxzmS+/3L9fgiP2+7kAEL/0 qs8qgTSSWqznymmQ8eYG40NL+J8+Ep0MVBBkWYNQGSuKXSeZaNulSHrBqZZF9N0o 7oV5GFMsBunA7yNkOp5i0+kBMkFeOMmalRZYyuf//U92VMZdoh2JV7v/+1MuOiNk 4eBaB23Y+V/1VNorgG2sTQSlTda0LVunYQ8BlyO3c9egAH+NVDZIQtgOr2ZVuijz w3o2GmIDpcc4nvsHqe0c7tDXU0OTvZQfXZWsOcUN0PU= -----END CERTIFICATE-----Generated at Sun Jan 25 21:05:50 2026 by rpki-client