This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/lIu0H0yuC3-BywTkSb56YA1zcUs.roa File: lIu0H0yuC3-BywTkSb56YA1zcUs.roa (raw, json) Hash identifier: 3DBYGsn6K7uF1Bw9p2Jse1TYdY1cQKyXCA9E5NJekWw= Subject key identifier: 94:8B:B4:1F:4C:AE:0B:7F:81:CB:04:E4:49:BE:7A:60:0D:73:71:4B Certificate issuer: /CN=c65a1da1cb1c920ae2f9b748270fded8737a9184 Certificate serial: 019B79EC4B0905AAD04494FD56BA25701D0E Authority key identifier: C6:5A:1D:A1:CB:1C:92:0A:E2:F9:B7:48:27:0F:DE:D8:73:7A:91:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xlodocsckgri-bdIJw_e2HN6kYQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/lIu0H0yuC3-BywTkSb56YA1zcUs.roa Signing time: Thu 01 Jan 2026 14:18:07 +0000 ROA not before: Thu 01 Jan 2026 14:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47307 IP address blocks: 194.113.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/xlodocsckgri-bdIJw_e2HN6kYQ.crl rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/xlodocsckgri-bdIJw_e2HN6kYQ.mft rsync://rpki.ripe.net/repository/DEFAULT/xlodocsckgri-bdIJw_e2HN6kYQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:4b:09:05:aa:d0:44:94:fd:56:ba:25:70:1d:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c65a1da1cb1c920ae2f9b748270fded8737a9184 Validity Not Before: Jan 1 14:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=948bb41f4cae0b7f81cb04e449be7a600d73714b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c9:07:a8:f8:12:a8:89:b0:22:f5:2e:34:fc: 68:ba:76:90:4c:af:f1:0b:ab:34:5c:b2:b3:5f:51: e7:8f:68:ca:75:fa:f0:4e:06:7d:0f:0a:61:75:8b: 42:ae:4b:7d:c2:91:9b:34:3c:1f:10:55:c3:4b:02: 8f:c3:f0:f7:16:8b:34:3d:58:ed:c7:42:04:c1:fd: 37:01:fa:d5:31:2e:37:a5:72:5f:4d:4d:4e:93:17: 3f:b4:d8:b3:df:6b:1e:dc:04:20:11:b5:b8:09:1c: 39:ad:35:08:35:6d:bb:23:12:43:73:37:85:0a:ba: 01:8f:e1:d1:3c:bb:33:c0:1a:8f:88:d9:91:12:85: 2e:3b:b1:22:b7:b6:b3:51:29:9a:51:7b:fc:78:d4: 07:50:8e:7a:7c:f8:8b:04:1b:24:5f:01:df:cc:b5: 5d:49:eb:ae:ca:cb:1c:ee:dc:c6:06:fa:20:bc:27: 38:a9:b3:a2:b0:b7:05:98:22:a5:d9:9e:bb:cd:2f: 99:a0:01:4a:73:ee:13:19:c6:aa:bb:f6:b4:85:ee: 6f:6c:16:36:b2:09:03:71:96:90:d7:fa:4f:80:9f: e6:e2:6b:8b:96:34:18:66:fa:2e:ef:1b:c4:9b:66: b0:44:69:ce:61:0e:ad:da:e1:3d:06:98:6c:41:0b: 78:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8B:B4:1F:4C:AE:0B:7F:81:CB:04:E4:49:BE:7A:60:0D:73:71:4B X509v3 Authority Key Identifier: keyid:C6:5A:1D:A1:CB:1C:92:0A:E2:F9:B7:48:27:0F:DE:D8:73:7A:91:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xlodocsckgri-bdIJw_e2HN6kYQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/lIu0H0yuC3-BywTkSb56YA1zcUs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/4f54b4-009f-46ce-9ac0-36bac8d91e2e/1/xlodocsckgri-bdIJw_e2HN6kYQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.113.152.0/24 Signature Algorithm: sha256WithRSAEncryption 81:17:38:b7:0a:a0:1c:49:40:0a:6d:f6:c2:93:f8:98:ef:71: 24:ad:78:f7:8b:d0:9c:16:08:b3:ab:8b:2d:20:e1:44:9d:2a: 51:24:ff:61:f3:fe:bc:ce:24:be:c5:73:c8:1a:c6:6d:f5:88: 61:9f:a6:65:b9:98:83:9d:32:52:f4:64:47:71:41:98:90:ba: b4:f0:7a:52:c8:af:a8:2f:17:42:b7:ca:79:c1:93:3b:df:8b: 1f:1f:2d:7a:13:ec:0f:45:3a:70:e8:d6:06:65:95:6d:06:fc: 80:78:19:f6:e3:2b:77:47:7a:2f:39:c8:57:da:fa:6a:97:7a: aa:61:dd:2d:c0:d9:94:cc:a3:91:70:d2:0d:cf:fa:88:1a:18: 50:f6:c9:99:99:f2:5e:02:e2:27:0f:c5:ae:9b:6f:fb:2a:9f: 69:5c:d9:42:a1:96:6a:58:2a:5e:63:c3:88:2c:99:86:85:3e: 00:31:60:3d:97:99:dc:16:94:1d:8f:2c:de:ec:eb:5f:d6:89: db:43:48:3b:27:53:d6:c8:b9:5c:2d:33:9f:ed:52:9a:72:98: bb:4a:5b:47:f4:6f:d6:24:4c:ea:03:f6:f1:6d:aa:5e:f9:28: fe:0f:18:06:ac:db:85:99:d3:ff:53:9d:32:b8:85:c7:28:44: 23:65:0c:05 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57EsJBarQRJT9VrolcB0OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NWExZGExY2IxYzkyMGFlMmY5Yjc0ODI3MGZkZWQ4NzM3 YTkxODQwHhcNMjYwMTAxMTQxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDhiYjQxZjRjYWUwYjdmODFjYjA0ZTQ0OWJlN2E2MDBkNzM3MTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjMkHqPgSqImwIvUuNPxounaQTK/x C6s0XLKzX1Hnj2jKdfrwTgZ9DwphdYtCrkt9wpGbNDwfEFXDSwKPw/D3Fos0PVjt x0IEwf03AfrVMS43pXJfTU1Okxc/tNiz32se3AQgEbW4CRw5rTUINW27IxJDczeF CroBj+HRPLszwBqPiNmREoUuO7Eit7azUSmaUXv8eNQHUI56fPiLBBskXwHfzLVd Seuuyssc7tzGBvogvCc4qbOisLcFmCKl2Z67zS+ZoAFKc+4TGcaqu/a0he5vbBY2 sgkDcZaQ1/pPgJ/m4muLljQYZvou7xvEm2awRGnOYQ6t2uE9BphsQQt4QwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJSLtB9Mrgt/gcsE5Em+emANc3FLMB8GA1UdIwQY MBaAFMZaHaHLHJIK4vm3SCcP3thzepGEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGxvZG9jc2NrZ3JpLWJkSUp3X2UySE42a1lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS80ZjU0YjQtMDA5Zi00NmNlLTlhYzAt MzZiYWM4ZDkxZTJlLzEvbEl1MEgweXVDMy1CeXdUa1NiNTZZQTF6Y1VzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS80ZjU0YjQtMDA5Zi00NmNlLTlhYzAtMzZiYWM4ZDkxZTJl LzEveGxvZG9jc2NrZ3JpLWJkSUp3X2UySE42a1lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwnGYMA0G CSqGSIb3DQEBCwUAA4IBAQCBFzi3CqAcSUAKbfbCk/iY73EkrXj3i9CcFgizq4st IOFEnSpRJP9h8/68ziS+xXPIGsZt9Yhhn6ZluZiDnTJS9GRHcUGYkLq08HpSyK+o LxdCt8p5wZM734sfHy16E+wPRTpw6NYGZZVtBvyAeBn24yt3R3ovOchX2vpql3qq Yd0twNmUzKORcNINz/qIGhhQ9smZmfJeAuInD8Wum2/7Kp9pXNlCoZZqWCpeY8OI LJmGhT4AMWA9l5ncFpQdjyze7Otf1onbQ0g7J1PWyLlcLTOf7VKacpi7SltH9G/W JEzqA/bxbape+Sj+DxgGrNuFmdP/U50yuIXHKEQjZQwF -----END CERTIFICATE-----Generated at Sun Jan 25 13:01:55 2026 by rpki-client