This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/1-lKoU1yOKxnwsDuF3-ruK96PVNo.roa File: 1-lKoU1yOKxnwsDuF3-ruK96PVNo.roa (raw, json) Hash identifier: IOjO4sGW5jpY5sMRaf3CjBzP7+xSqwcjH//jisz2/A8= Subject key identifier: FA:52:A8:53:5C:8E:2B:19:F0:B0:3B:85:DF:EA:EE:2B:DE:8F:54:DA Certificate issuer: /CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f Certificate serial: 019B7A5B95B6876CC6D8211AA36E951B0602 Authority key identifier: 96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/1-lKoU1yOKxnwsDuF3-ruK96PVNo.roa Signing time: Thu 01 Jan 2026 16:19:41 +0000 ROA not before: Thu 01 Jan 2026 16:19:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31595 IP address blocks: 83.167.160.0/20 maxlen: 20 2001:4be8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/lub3fL2hAZh9nfyEvpC2-6Zq3J8.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/lub3fL2hAZh9nfyEvpC2-6Zq3J8.mft rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:95:b6:87:6c:c6:d8:21:1a:a3:6e:95:1b:06:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f Validity Not Before: Jan 1 16:19:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa52a8535c8e2b19f0b03b85dfeaee2bde8f54da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:74:94:14:55:69:40:e2:0f:5d:15:85:3c:24: 8e:38:e6:29:61:08:1d:5c:ff:a3:8d:b7:a9:27:09: 68:9d:ab:4e:a3:46:7e:91:2a:56:89:8a:e3:ad:76: 29:c9:09:fd:a1:a7:60:b8:ba:bb:82:aa:92:fb:0f: 33:48:d4:ed:00:6b:8d:d4:cc:3e:8b:e1:8c:bb:c2: 27:8e:39:eb:54:fe:8a:7c:c9:68:d6:a3:0e:54:87: 14:6b:9a:58:b4:fe:cf:cc:fb:8c:32:a3:6a:b6:0e: 33:63:bd:60:fd:64:06:d5:e8:64:ec:32:c0:94:d6: a1:b9:cd:6a:84:e5:55:10:98:ac:2c:3c:aa:92:c4: 59:5f:18:0b:9f:93:4d:93:e0:76:56:be:f8:77:40: c3:38:0f:25:08:91:ef:8a:44:23:14:d2:a8:7b:8b: bd:8b:91:68:a5:99:2b:bc:c1:dc:88:df:d1:d4:ee: a4:7c:c6:97:ca:2c:75:6a:a7:e6:08:81:f3:b2:72: e3:33:34:50:f0:bf:34:dc:b0:e6:da:70:da:9d:60: 23:70:2c:27:0a:3a:90:c0:37:d3:c3:50:a8:71:50: ac:a2:8e:53:d4:1b:e5:76:15:05:cc:2a:8e:e2:e4: 77:ff:56:b8:de:05:18:9e:17:8b:89:65:ca:1f:c1: 0c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:52:A8:53:5C:8E:2B:19:F0:B0:3B:85:DF:EA:EE:2B:DE:8F:54:DA X509v3 Authority Key Identifier: keyid:96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/1-lKoU1yOKxnwsDuF3-ruK96PVNo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/lub3fL2hAZh9nfyEvpC2-6Zq3J8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.167.160.0/20 IPv6: 2001:4be8::/32 Signature Algorithm: sha256WithRSAEncryption 98:4e:f3:98:8b:cb:73:91:41:10:ea:69:b5:a3:bb:c5:9d:70: 68:4e:95:a2:35:6b:9e:8b:45:4a:93:a2:bb:b1:e1:7f:28:b3: f5:f3:73:6f:87:d3:23:10:b7:62:db:97:f0:e9:5d:2d:48:c2: ce:26:57:59:bd:7b:68:81:ab:7c:72:b9:bc:90:a9:aa:3c:45: 83:28:49:a8:06:08:b2:9a:a8:a7:66:3b:8b:ad:7c:be:b6:6f: 11:52:60:00:1a:e1:87:79:b8:66:f3:ab:a9:ec:e6:21:06:cc: ca:14:79:91:e4:cf:ed:8d:de:36:76:74:f0:13:a7:bd:2e:84: 7a:41:77:e9:0a:36:f3:50:29:45:a7:ca:fc:ab:b8:07:98:5b: bd:37:99:2c:82:16:7b:ab:61:76:78:09:6f:91:4d:1b:7a:92: 34:89:1a:d0:ee:da:b3:ae:12:97:5a:f2:f7:d4:bb:97:9f:80: 0c:91:e0:a0:49:4b:66:56:29:60:df:24:e8:31:62:82:ba:92: 9a:0a:62:c8:6a:68:78:87:22:01:e6:98:af:04:39:62:2c:03: ba:8d:9f:93:8d:a6:57:19:a5:d7:45:3a:92:e8:82:8a:d8:f8: 6c:33:47:a0:66:3e:ec:5a:16:56:10:8f:5a:e2:df:80:57:5a: d3:01:a3:1b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt6W5W2h2zG2CEao26VGwYCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2ZTZmNzdjYmRhMTAxOTg3ZDlkZmM4NGJlOTBiNmZiYTY2 YWRjOWYwHhcNMjYwMTAxMTYxOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTUyYTg1MzVjOGUyYjE5ZjBiMDNiODVkZmVhZWUyYmRlOGY1NGRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXSUFFVpQOIPXRWFPCSOOOYpYQgd XP+jjbepJwlonatOo0Z+kSpWiYrjrXYpyQn9oadguLq7gqqS+w8zSNTtAGuN1Mw+ i+GMu8InjjnrVP6KfMlo1qMOVIcUa5pYtP7PzPuMMqNqtg4zY71g/WQG1ehk7DLA lNahuc1qhOVVEJisLDyqksRZXxgLn5NNk+B2Vr74d0DDOA8lCJHvikQjFNKoe4u9 i5FopZkrvMHciN/R1O6kfMaXyix1aqfmCIHzsnLjMzRQ8L803LDm2nDanWAjcCwn CjqQwDfTw1CocVCsoo5T1BvldhUFzCqO4uR3/1a43gUYnheLiWXKH8EMWwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFPpSqFNcjisZ8LA7hd/q7ivej1TaMB8GA1UdIwQY MBaAFJbm93y9oQGYfZ38hL6QtvumatyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHViM2ZMMmhBWmg5bmZ5RXZwQzItNlpxM0o4LmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8xY2JjMWUtNGQ0Ni00YjViLWIyNDkt MzIwOGRlMzljMDlkLzEvMS1sS29VMXlPS3hud3NEdUYzLXJ1Szk2UFZOby5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNWIvMWNiYzFlLTRkNDYtNGI1Yi1iMjQ5LTMyMDhkZTM5YzA5 ZC8xL2x1YjNmTDJoQVpoOW5meUV2cEMyLTZacTNKOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEBFOnoDAN BAIAAjAHAwUAIAFL6DANBgkqhkiG9w0BAQsFAAOCAQEAmE7zmIvLc5FBEOpptaO7 xZ1waE6VojVrnotFSpOiu7Hhfyiz9fNzb4fTIxC3YtuX8OldLUjCziZXWb17aIGr fHK5vJCpqjxFgyhJqAYIspqop2Y7i618vrZvEVJgABrhh3m4ZvOrqezmIQbMyhR5 keTP7Y3eNnZ08BOnvS6EekF36Qo281ApRafK/Ku4B5hbvTeZLIIWe6thdngJb5FN G3qSNIka0O7as64Sl1ry99S7l5+ADJHgoElLZlYpYN8k6DFigrqSmgpiyGpoeIci AeaYrwQ5YiwDuo2fk42mVxml10U6kuiCitj4bDNHoGY+7FoWVhCPWuLfgFda0wGj Gw== -----END CERTIFICATE-----Generated at Mon Jan 26 02:01:20 2026 by rpki-client