This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/LTmOQCe-BWUTWVQkjpSYNnXaYa4.roa File: LTmOQCe-BWUTWVQkjpSYNnXaYa4.roa (raw, json) Hash identifier: zJdURY1Kn8xq2aZqWECgaU84OOgVmpgOtWckIX+5TSs= Subject key identifier: 2D:39:8E:40:27:BE:05:65:13:59:54:24:8E:94:98:36:75:DA:61:AE Certificate issuer: /CN=a8b5fe67c20797d3941555554f8c988ca2f7c17b Certificate serial: 019B7B354BA44C3D27460C8D02C7FD14E541 Authority key identifier: A8:B5:FE:67:C2:07:97:D3:94:15:55:55:4F:8C:98:8C:A2:F7:C1:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/LTmOQCe-BWUTWVQkjpSYNnXaYa4.roa Signing time: Thu 01 Jan 2026 20:17:28 +0000 ROA not before: Thu 01 Jan 2026 20:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207067 IP address blocks: 188.241.21.0/24 maxlen: 24 2a00:a607::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.crl rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.mft rsync://rpki.ripe.net/repository/DEFAULT/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 23:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:4b:a4:4c:3d:27:46:0c:8d:02:c7:fd:14:e5:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a8b5fe67c20797d3941555554f8c988ca2f7c17b Validity Not Before: Jan 1 20:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2d398e4027be0565135954248e94983675da61ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1b:b5:ce:28:41:d4:6f:c6:43:bd:d7:fd:78: 38:9b:b2:da:bc:03:9f:5e:29:57:23:f5:dd:16:34: 98:c4:93:11:3d:0f:f5:e8:5b:08:82:02:10:14:87: f0:3c:b1:45:d9:b6:8d:4c:c8:51:18:9a:0c:4b:6a: 3c:b2:c1:8c:1a:2f:5f:14:09:a9:54:09:4e:82:31: 05:1a:d4:08:7f:de:08:f4:53:05:25:c5:0a:03:d7: 26:7a:1c:32:f8:30:50:e6:42:a6:45:ff:ba:9c:27: bf:40:f1:7a:2e:65:e4:a0:46:5d:61:48:6c:9f:61: a6:6f:20:39:47:b6:26:9d:15:be:7c:8f:1a:61:1d: d8:c5:a7:10:3f:a5:83:70:57:40:f4:ea:50:ca:42: cf:15:32:65:cd:d9:68:71:44:91:a1:1a:20:b1:d3: 16:83:a2:b6:04:97:1d:51:c9:35:8d:0c:d1:6b:ad: c7:1e:bf:3c:4c:65:4f:52:fc:be:64:d4:a2:a4:a9: 51:9f:2b:2f:11:4c:f5:f1:8e:19:2f:29:0a:e4:bc: 07:92:cc:54:19:8b:7b:20:26:c4:f3:4c:16:22:d4: fc:df:c2:44:3b:c5:aa:c6:dc:d8:3e:8e:a4:d7:43: c1:39:70:b5:e8:cd:37:f6:57:8d:a5:89:25:fa:c7: d4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:39:8E:40:27:BE:05:65:13:59:54:24:8E:94:98:36:75:DA:61:AE X509v3 Authority Key Identifier: keyid:A8:B5:FE:67:C2:07:97:D3:94:15:55:55:4F:8C:98:8C:A2:F7:C1:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/LTmOQCe-BWUTWVQkjpSYNnXaYa4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.241.21.0/24 IPv6: 2a00:a607::/32 Signature Algorithm: sha256WithRSAEncryption 5a:c7:e8:b0:3c:6a:9d:3f:ec:e0:1d:68:0c:89:d2:3f:cf:7e: 8b:0a:1a:08:c1:ab:cb:6a:d6:72:52:ca:07:40:93:f1:70:4d: 7f:09:b4:fa:1f:e4:73:ec:d8:98:f0:69:53:0d:b8:c7:82:ae: 11:1c:ae:63:fb:cb:06:61:6d:8b:0c:13:d2:1a:2d:0d:00:b2: a5:0f:26:e5:01:81:91:50:fd:bf:55:cf:1c:8c:f2:d2:c0:0e: 04:62:ce:ea:22:7d:68:9f:37:d1:0a:ef:81:90:0c:7d:e2:cb: 17:b6:13:a6:d9:36:f7:7d:2f:fb:41:c8:7c:c0:1a:66:59:03: 1c:f1:d7:27:15:41:43:2d:c9:71:35:4d:84:ea:73:53:b1:0e: 2f:45:37:72:10:fa:fe:62:19:5c:ef:0c:ff:17:61:67:c7:fb: 41:f4:a4:94:0d:7e:48:f4:c5:7c:76:2d:df:19:dd:5b:2b:2c: 90:7b:84:86:04:c3:79:b2:46:41:39:0b:5b:06:4c:72:35:3a: 42:8e:db:84:53:eb:5d:0c:05:52:8f:38:61:65:8e:ed:69:df: 18:db:bf:de:e3:78:16:3d:bc:ec:f7:17:d3:3f:6f:71:7a:3e: 05:58:67:9a:cb:5d:a0:06:f6:21:9a:21:81:22:34:93:58:af: 6f:40:ce:e8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7NUukTD0nRgyNAsf9FOVBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4YjVmZTY3YzIwNzk3ZDM5NDE1NTU1NTRmOGM5ODhjYTJm N2MxN2IwHhcNMjYwMTAxMjAxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDM5OGU0MDI3YmUwNTY1MTM1OTU0MjQ4ZTk0OTgzNjc1ZGE2MWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBu1zihB1G/GQ73X/Xg4m7LavAOf XilXI/XdFjSYxJMRPQ/16FsIggIQFIfwPLFF2baNTMhRGJoMS2o8ssGMGi9fFAmp VAlOgjEFGtQIf94I9FMFJcUKA9cmehwy+DBQ5kKmRf+6nCe/QPF6LmXkoEZdYUhs n2GmbyA5R7YmnRW+fI8aYR3YxacQP6WDcFdA9OpQykLPFTJlzdlocUSRoRogsdMW g6K2BJcdUck1jQzRa63HHr88TGVPUvy+ZNSipKlRnysvEUz18Y4ZLykK5LwHksxU GYt7ICbE80wWItT838JEO8WqxtzYPo6k10PBOXC16M039leNpYkl+sfUpQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFC05jkAnvgVlE1lUJI6UmDZ12mGuMB8GA1UdIwQY MBaAFKi1/mfCB5fTlBVVVU+MmIyi98F7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUxYLVo4SUhsOU9VRlZWVlQ0eVlqS0wzd1hzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9lN2NiZjMtNjRlNi00MDIzLWJlZmQt MWNjNjE5MTk3NTUxLzEvTFRtT1FDZS1CV1VUV1ZRa2pwU1lOblhhWWE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS9lN2NiZjMtNjRlNi00MDIzLWJlZmQtMWNjNjE5MTk3NTUx LzEvcUxYLVo4SUhsOU9VRlZWVlQ0eVlqS0wzd1hzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAvPEVMA0E AgACMAcDBQAqAKYHMA0GCSqGSIb3DQEBCwUAA4IBAQBax+iwPGqdP+zgHWgMidI/ z36LChoIwavLatZyUsoHQJPxcE1/CbT6H+Rz7NiY8GlTDbjHgq4RHK5j+8sGYW2L DBPSGi0NALKlDyblAYGRUP2/Vc8cjPLSwA4EYs7qIn1onzfRCu+BkAx94ssXthOm 2Tb3fS/7Qch8wBpmWQMc8dcnFUFDLclxNU2E6nNTsQ4vRTdyEPr+Yhlc7wz/F2Fn x/tB9KSUDX5I9MV8di3fGd1bKyyQe4SGBMN5skZBOQtbBkxyNTpCjtuEU+tdDAVS jzhhZY7tad8Y27/e43gWPbzs9xfTP29xej4FWGeay12gBvYhmiGBIjSTWK9vQM7o -----END CERTIFICATE-----Generated at Mon Jan 26 09:23:34 2026 by rpki-client