This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/1LsBmA-SbOfGa2eleJLL4F-PoS0.roa File: 1LsBmA-SbOfGa2eleJLL4F-PoS0.roa (raw, json) Hash identifier: fOsQjw7Bt8zL6Bscj5Hp28N4r7Zpof4N2iXErdaa6yA= Subject key identifier: D4:BB:01:98:0F:92:6C:E7:C6:6B:67:A5:78:92:CB:E0:5F:8F:A1:2D Certificate issuer: /CN=b754b22c5540508d9629a311ef1e83543657c4ee Certificate serial: 019B7CED45CF49A7D311EB11662D49E2C493 Authority key identifier: B7:54:B2:2C:55:40:50:8D:96:29:A3:11:EF:1E:83:54:36:57:C4:EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1SyLFVAUI2WKaMR7x6DVDZXxO4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/1LsBmA-SbOfGa2eleJLL4F-PoS0.roa Signing time: Fri 02 Jan 2026 04:18:03 +0000 ROA not before: Fri 02 Jan 2026 04:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34762 IP address blocks: 45.157.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/t1SyLFVAUI2WKaMR7x6DVDZXxO4.crl rsync://rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/t1SyLFVAUI2WKaMR7x6DVDZXxO4.mft rsync://rpki.ripe.net/repository/DEFAULT/t1SyLFVAUI2WKaMR7x6DVDZXxO4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:45:cf:49:a7:d3:11:eb:11:66:2d:49:e2:c4:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b754b22c5540508d9629a311ef1e83543657c4ee Validity Not Before: Jan 2 04:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d4bb01980f926ce7c66b67a57892cbe05f8fa12d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d4:a9:8f:b3:1a:4a:9f:68:d7:17:8e:11:e1: fa:02:7a:19:d3:ab:53:1e:06:9d:a5:43:63:19:30: a6:bc:e3:6c:82:1d:e0:d8:65:c6:8f:46:f9:a3:da: 27:5a:93:c2:53:8d:d6:f9:9c:30:30:3a:49:e7:fd: c6:71:e4:5b:89:e3:12:04:d5:23:d3:7d:d8:a8:96: 73:ac:ba:0b:c1:36:53:31:2a:96:5f:0f:e4:8b:18: 54:f4:66:e2:90:a9:f2:c7:a3:68:e8:ec:df:0e:3a: 28:cd:69:58:8c:32:86:83:e4:39:b0:48:44:e6:b3: 40:94:50:17:79:8c:d6:2f:a1:00:e0:91:c7:65:41: 27:6d:f5:66:0c:73:13:61:45:75:c8:f4:b7:87:7b: a0:c4:da:60:e5:a7:ae:76:f6:24:5e:57:fe:d2:28: b1:b7:ec:64:85:e0:78:e4:23:c5:a8:a8:6b:0d:cb: a1:62:38:9b:4b:60:90:9f:42:2f:31:fa:bd:8a:74: 23:7a:1a:bb:de:22:43:84:86:c0:76:9a:a4:74:5e: 5e:ff:d6:9e:9b:1e:cc:87:10:d1:01:8e:12:23:37: 10:cf:c3:ba:02:a9:cd:38:db:90:73:55:eb:81:f6: eb:89:1c:c6:28:fb:cb:b1:b6:5b:90:83:20:5e:78: 21:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:BB:01:98:0F:92:6C:E7:C6:6B:67:A5:78:92:CB:E0:5F:8F:A1:2D X509v3 Authority Key Identifier: keyid:B7:54:B2:2C:55:40:50:8D:96:29:A3:11:EF:1E:83:54:36:57:C4:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1SyLFVAUI2WKaMR7x6DVDZXxO4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/1LsBmA-SbOfGa2eleJLL4F-PoS0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/t1SyLFVAUI2WKaMR7x6DVDZXxO4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.157.174.0/24 Signature Algorithm: sha256WithRSAEncryption 23:3b:e3:62:70:4c:83:67:f7:d9:65:67:a0:39:8f:8e:aa:51: cd:8e:e4:e6:d6:cc:7a:36:0a:58:1f:ad:43:aa:29:ef:f1:92: 09:fc:4a:ab:2a:7d:35:8d:02:2b:8e:e7:b7:a5:1b:b5:8e:f3: 51:35:9f:5c:3a:99:cc:f4:58:10:39:d1:dd:87:2e:62:0e:f2: 4a:eb:b7:ea:b5:5d:4a:4c:d9:86:ed:fb:f1:9e:59:77:57:fc: f0:5c:ba:7e:04:01:a5:fe:f0:df:bb:9b:91:ee:cf:78:e5:89: 7e:8f:14:e6:09:6d:13:0f:d0:9b:65:a6:3a:cb:63:26:55:22: 0c:8d:36:7e:f1:35:c6:03:e6:04:ae:bf:f3:07:f5:bd:97:79: 58:c7:e1:2e:39:e4:3f:9a:4d:21:0b:70:2b:bc:a5:18:b5:c7: 06:1a:9c:e5:9c:b1:f2:4b:70:94:9b:18:2b:a3:f4:f9:85:9f: b3:2b:84:a9:4c:00:67:ff:03:4b:9f:33:8f:ad:67:1e:3c:35: 63:fa:5b:bc:75:92:61:de:4e:43:a3:87:b2:7d:02:48:27:bd: d9:6d:0d:1a:c3:8e:ee:f8:d4:06:0b:71:95:95:55:e6:77:18: 0b:82:80:aa:cf:33:92:2f:1d:1f:3b:1f:2f:1f:e4:34:7e:6a: 83:f2:e6:7b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87UXPSafTEesRZi1J4sSTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NTRiMjJjNTU0MDUwOGQ5NjI5YTMxMWVmMWU4MzU0MzY1 N2M0ZWUwHhcNMjYwMTAyMDQxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNGJiMDE5ODBmOTI2Y2U3YzY2YjY3YTU3ODkyY2JlMDVmOGZhMTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldSpj7MaSp9o1xeOEeH6AnoZ06tT HgadpUNjGTCmvONsgh3g2GXGj0b5o9onWpPCU43W+ZwwMDpJ5/3GceRbieMSBNUj 033YqJZzrLoLwTZTMSqWXw/kixhU9GbikKnyx6No6OzfDjoozWlYjDKGg+Q5sEhE 5rNAlFAXeYzWL6EA4JHHZUEnbfVmDHMTYUV1yPS3h3ugxNpg5aeudvYkXlf+0iix t+xkheB45CPFqKhrDcuhYjibS2CQn0IvMfq9inQjehq73iJDhIbAdpqkdF5e/9ae mx7MhxDRAY4SIzcQz8O6AqnNONuQc1XrgfbriRzGKPvLsbZbkIMgXnghBwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNS7AZgPkmznxmtnpXiSy+Bfj6EtMB8GA1UdIwQY MBaAFLdUsixVQFCNlimjEe8eg1Q2V8TuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFTeUxGVkFVSTJXS2FNUjd4NkRWRFpYeE80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9iNTUxM2EtYmE2OS00OGM0LTk1ZWUt NTZlYzEzMjY5YTFjLzEvMUxzQm1BLVNiT2ZHYTJlbGVKTEw0Ri1Qb1MwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9iNTUxM2EtYmE2OS00OGM0LTk1ZWUtNTZlYzEzMjY5YTFj LzEvdDFTeUxGVkFVSTJXS2FNUjd4NkRWRFpYeE80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ2uMA0G CSqGSIb3DQEBCwUAA4IBAQAjO+NicEyDZ/fZZWegOY+OqlHNjuTm1sx6NgpYH61D qinv8ZIJ/EqrKn01jQIrjue3pRu1jvNRNZ9cOpnM9FgQOdHdhy5iDvJK67fqtV1K TNmG7fvxnll3V/zwXLp+BAGl/vDfu5uR7s945Yl+jxTmCW0TD9CbZaY6y2MmVSIM jTZ+8TXGA+YErr/zB/W9l3lYx+EuOeQ/mk0hC3ArvKUYtccGGpzlnLHyS3CUmxgr o/T5hZ+zK4SpTABn/wNLnzOPrWcePDVj+lu8dZJh3k5Do4eyfQJIJ73ZbQ0aw47u +NQGC3GVlVXmdxgLgoCqzzOSLx0fOx8vH+Q0fmqD8uZ7 -----END CERTIFICATE-----Generated at Mon Jan 26 04:39:34 2026 by rpki-client