This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/La1bk9hiAsFAmxgmoYU8D36An4I.roa File: La1bk9hiAsFAmxgmoYU8D36An4I.roa (raw, json) Hash identifier: prW1lY9yf0rsG8vbap4UWXcYjyAnNaggPXP/OIdFgHM= Subject key identifier: 2D:AD:5B:93:D8:62:02:C1:40:9B:18:26:A1:85:3C:0F:7E:80:9F:82 Certificate issuer: /CN=5990c1553762ac9af57df9b58d9dc50af409c566 Certificate serial: 019B78A34C1113CF9C06D15C6F32A2822EA0 Authority key identifier: 59:90:C1:55:37:62:AC:9A:F5:7D:F9:B5:8D:9D:C5:0A:F4:09:C5:66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZDBVTdirJr1ffm1jZ3FCvQJxWY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/La1bk9hiAsFAmxgmoYU8D36An4I.roa Signing time: Thu 01 Jan 2026 08:18:46 +0000 ROA not before: Thu 01 Jan 2026 08:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49801 IP address blocks: 193.29.26.0/24 maxlen: 24 2a10:f980::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/WZDBVTdirJr1ffm1jZ3FCvQJxWY.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/WZDBVTdirJr1ffm1jZ3FCvQJxWY.mft rsync://rpki.ripe.net/repository/DEFAULT/WZDBVTdirJr1ffm1jZ3FCvQJxWY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:4c:11:13:cf:9c:06:d1:5c:6f:32:a2:82:2e:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5990c1553762ac9af57df9b58d9dc50af409c566 Validity Not Before: Jan 1 08:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2dad5b93d86202c1409b1826a1853c0f7e809f82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e5:7c:b0:c9:d8:73:d2:ac:db:7c:15:da:18: f1:a1:8e:4e:25:cb:b5:6c:3c:a7:93:35:e0:9f:47: 88:52:43:25:4e:50:02:4a:7d:86:78:b4:11:a8:c2: 94:c5:2d:77:33:66:e1:60:24:87:7d:35:76:61:a7: 2c:02:62:b2:53:bf:23:1d:47:32:78:ad:b4:91:33: ff:9d:e1:9a:b9:e6:97:d7:34:b1:b6:e7:8e:9a:28: 8d:e2:83:49:44:12:eb:c1:25:0a:ec:63:05:c4:45: a6:c2:38:57:85:82:5d:33:16:a0:c2:44:26:7b:f9: b0:a8:d7:57:6c:e6:91:f9:fa:99:3a:48:90:e4:ac: 4e:2e:d3:92:12:6f:22:39:60:1b:64:8d:c7:58:e4: e1:8b:ab:08:de:ae:ca:0e:00:70:f2:8e:c9:bc:0f: 3b:fa:da:03:84:e3:e3:0b:8c:a0:98:ce:2b:23:79: 6d:e6:71:f5:41:85:8d:4f:e6:5c:ed:1a:c7:0d:de: f7:04:51:f4:ac:36:e5:ff:d0:81:d6:77:54:92:21: 62:a2:a5:64:1d:81:79:3b:7e:9e:cd:be:78:27:5a: 7c:44:c8:10:81:37:7a:72:4c:7a:79:71:c4:5e:3f: a1:d2:a5:a2:7a:34:c7:32:0a:12:b3:6e:f6:e1:18: 10:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:AD:5B:93:D8:62:02:C1:40:9B:18:26:A1:85:3C:0F:7E:80:9F:82 X509v3 Authority Key Identifier: keyid:59:90:C1:55:37:62:AC:9A:F5:7D:F9:B5:8D:9D:C5:0A:F4:09:C5:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZDBVTdirJr1ffm1jZ3FCvQJxWY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/La1bk9hiAsFAmxgmoYU8D36An4I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/WZDBVTdirJr1ffm1jZ3FCvQJxWY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.29.26.0/24 IPv6: 2a10:f980::/29 Signature Algorithm: sha256WithRSAEncryption 44:54:d9:c0:ba:21:75:c5:56:e7:9a:ba:77:a1:e9:0a:86:72: e1:16:84:cd:7f:9d:b8:53:90:42:12:0c:f6:71:ef:71:9b:0a: 15:b6:f6:bd:fc:49:41:a0:9c:68:d4:65:e2:5b:b2:69:b6:ed: d1:78:5a:e5:99:ad:92:5e:c3:c3:54:23:47:b8:ee:0c:a9:a9: e5:ef:7a:09:f6:e9:0c:e3:61:50:db:40:03:c0:74:44:4b:29: d5:fb:8b:4c:48:2f:ca:42:52:d9:65:f2:a7:70:c4:27:03:86: 05:1d:69:d2:07:6d:39:ff:22:9e:60:65:10:6f:36:3c:29:6b: a7:c1:6a:2d:c9:02:61:bd:3f:73:fb:e6:76:66:da:63:a1:4d: d5:04:46:f0:5a:cc:17:1b:54:9b:02:55:58:32:09:69:6b:f5: 22:0a:e8:b0:2a:18:39:12:fc:76:ff:39:fc:30:d0:55:7a:67: af:47:e5:a4:c7:8d:9e:f7:56:28:08:7a:33:bd:1a:9c:8e:a4: a0:86:24:10:48:25:b3:a8:6c:7a:f4:c1:0a:07:99:0f:8c:e8: b1:7a:f6:2e:4c:a7:73:e0:c7:f4:fb:c5:a9:58:19:3c:cb:d9: b6:a6:73:00:2a:a8:23:32:6d:d1:ab:b1:40:1e:aa:f9:ed:df: 21:fb:e1:34 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4o0wRE8+cBtFcbzKigi6gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5OTBjMTU1Mzc2MmFjOWFmNTdkZjliNThkOWRjNTBhZjQw OWM1NjYwHhcNMjYwMTAxMDgxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZGFkNWI5M2Q4NjIwMmMxNDA5YjE4MjZhMTg1M2MwZjdlODA5ZjgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAleV8sMnYc9Ks23wV2hjxoY5OJcu1 bDynkzXgn0eIUkMlTlACSn2GeLQRqMKUxS13M2bhYCSHfTV2YacsAmKyU78jHUcy eK20kTP/neGaueaX1zSxtueOmiiN4oNJRBLrwSUK7GMFxEWmwjhXhYJdMxagwkQm e/mwqNdXbOaR+fqZOkiQ5KxOLtOSEm8iOWAbZI3HWOThi6sI3q7KDgBw8o7JvA87 +toDhOPjC4ygmM4rI3lt5nH1QYWNT+Zc7RrHDd73BFH0rDbl/9CB1ndUkiFioqVk HYF5O36ezb54J1p8RMgQgTd6ckx6eXHEXj+h0qWiejTHMgoSs2724RgQ3wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFC2tW5PYYgLBQJsYJqGFPA9+gJ+CMB8GA1UdIwQY MBaAFFmQwVU3Yqya9X35tY2dxQr0CcVmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV1pEQlZUZGlySnIxZmZtMWpaM0ZDdlFKeFdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9hOGY4ZTEtZGNlMi00N2VmLTgyNGUt YmVmMTAzNGVkYmU1LzEvTGExYms5aGlBc0ZBbXhnbW9ZVThEMzZBbjRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9hOGY4ZTEtZGNlMi00N2VmLTgyNGUtYmVmMTAzNGVkYmU1 LzEvV1pEQlZUZGlySnIxZmZtMWpaM0ZDdlFKeFdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwR0aMA0E AgACMAcDBQMqEPmAMA0GCSqGSIb3DQEBCwUAA4IBAQBEVNnAuiF1xVbnmrp3oekK hnLhFoTNf524U5BCEgz2ce9xmwoVtva9/ElBoJxo1GXiW7Jptu3ReFrlma2SXsPD VCNHuO4Mqanl73oJ9ukM42FQ20ADwHRESynV+4tMSC/KQlLZZfKncMQnA4YFHWnS B205/yKeYGUQbzY8KWunwWotyQJhvT9z++Z2ZtpjoU3VBEbwWswXG1SbAlVYMglp a/UiCuiwKhg5Evx2/zn8MNBVemevR+Wkx42e91YoCHozvRqcjqSghiQQSCWzqGx6 9MEKB5kPjOixevYuTKdz4Mf0+8WpWBk8y9m2pnMAKqgjMm3Rq7FAHqr57d8h++E0 -----END CERTIFICATE-----Generated at Mon Jan 26 15:35:05 2026 by rpki-client