This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/Lp0vHH3sV5CmRox_CW0AyUEO49A.roa File: Lp0vHH3sV5CmRox_CW0AyUEO49A.roa (raw, json) Hash identifier: HnRMr5r2HkpjEYviPbeXFZfwzUunRvvI+wgZvCnFlCc= Subject key identifier: 2E:9D:2F:1C:7D:EC:57:90:A6:46:8C:7F:09:6D:00:C9:41:0E:E3:D0 Certificate issuer: /CN=764928a97be955377013d382c62940e950dd212b Certificate serial: 019B7A5AF7BBDB45E0BABD2AEC38FCA91121 Authority key identifier: 76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/Lp0vHH3sV5CmRox_CW0AyUEO49A.roa Signing time: Thu 01 Jan 2026 16:19:00 +0000 ROA not before: Thu 01 Jan 2026 16:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51131 IP address blocks: 185.205.216.0/22 maxlen: 24 2a0b:cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.crl rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.mft rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:f7:bb:db:45:e0:ba:bd:2a:ec:38:fc:a9:11:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764928a97be955377013d382c62940e950dd212b Validity Not Before: Jan 1 16:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e9d2f1c7dec5790a6468c7f096d00c9410ee3d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7e:ac:94:da:ae:3c:29:f2:a7:57:22:8f:18: 43:e0:44:29:68:5e:a6:72:13:9e:5f:e2:b6:4d:da: 08:f3:be:7e:34:15:84:d8:29:82:50:a6:e9:6e:ae: 1c:9d:0e:58:15:68:56:12:a3:34:bd:27:0e:3f:83: 4e:4a:9a:93:f8:68:e4:f8:d1:b2:9d:3d:ae:cb:b8: d5:bb:c8:88:90:72:0c:35:d6:4b:53:10:8a:7b:73: 9e:72:b1:62:d5:4a:2f:1b:af:09:c9:a2:36:10:cd: 13:9d:d6:74:fe:fc:45:2f:04:f8:4a:17:f6:cc:f9: 69:1c:89:d9:01:80:1d:d1:8d:8e:c0:fc:41:c2:35: 35:0b:6e:e3:e9:cd:21:3b:d2:1f:12:3b:dc:a5:c6: 4f:e3:2b:c0:cf:ac:43:fa:78:95:e6:67:a0:b7:82: 24:4d:fa:f5:c5:b4:4c:37:f7:83:29:36:c7:b9:f4: fd:90:db:31:fa:00:52:13:0c:8a:b6:4d:dc:7a:46: 9d:89:92:81:f3:0a:71:a3:20:da:66:99:83:a7:ca: cc:dc:51:ff:20:ce:c1:91:b8:5f:b2:c9:79:df:13: 02:7e:81:0b:93:3a:2c:55:8a:cd:e7:b4:82:05:1d: 6d:68:2f:da:46:d0:9b:c9:ee:d7:15:20:2d:2d:c7: 20:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:9D:2F:1C:7D:EC:57:90:A6:46:8C:7F:09:6D:00:C9:41:0E:E3:D0 X509v3 Authority Key Identifier: keyid:76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/Lp0vHH3sV5CmRox_CW0AyUEO49A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.205.216.0/22 IPv6: 2a0b:cc0::/32 Signature Algorithm: sha256WithRSAEncryption 09:4d:c1:f5:e3:dd:a7:d8:40:70:79:55:da:8c:1b:1e:d1:c3: 9a:82:55:68:0d:39:36:f0:f2:e2:8f:7e:6f:05:14:52:e7:37: b1:69:60:d2:ea:16:ca:77:07:e7:4c:c8:b3:8c:fc:bd:2e:2f: 67:93:ad:13:c6:55:a6:b4:02:ef:d9:1e:e3:19:5b:5e:fb:93: 8c:12:75:1d:c9:3a:2d:04:a5:df:ea:57:f1:59:04:00:cc:c3: 55:40:2d:af:50:bb:4c:ea:4f:0a:23:60:1d:82:ac:7f:fb:e6: 6c:65:70:ec:fe:ee:f1:b3:a1:2d:96:37:f5:3c:92:32:84:20: b5:bb:d9:d5:35:4d:5c:06:83:ad:0e:93:f4:f1:7b:2e:42:3d: 12:1d:1e:7e:e2:99:42:b0:56:1c:73:bf:79:29:43:26:07:1c: f9:0e:0e:91:27:a1:c6:ad:30:69:09:4f:6f:d8:91:ba:8e:4b: 58:1d:6a:61:8b:ce:4f:81:8a:07:ea:9e:dc:dd:5f:0c:9f:58: 8d:76:6c:ec:8c:06:aa:07:f4:bd:07:0f:9f:6c:40:9e:5b:27: 22:e3:d2:a1:23:e2:0b:2b:54:0c:10:80:07:f0:68:8a:4c:3e: c9:03:ce:62:20:bf:3a:65:eb:ec:9f:82:a1:4f:b0:09:4f:77: 8b:48:07:18 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6Wve720Xgur0q7Dj8qREhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2NDkyOGE5N2JlOTU1Mzc3MDEzZDM4MmM2Mjk0MGU5NTBk ZDIxMmIwHhcNMjYwMTAxMTYxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTlkMmYxYzdkZWM1NzkwYTY0NjhjN2YwOTZkMDBjOTQxMGVlM2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp36slNquPCnyp1cijxhD4EQpaF6m chOeX+K2TdoI875+NBWE2CmCUKbpbq4cnQ5YFWhWEqM0vScOP4NOSpqT+Gjk+NGy nT2uy7jVu8iIkHIMNdZLUxCKe3OecrFi1UovG68JyaI2EM0TndZ0/vxFLwT4Shf2 zPlpHInZAYAd0Y2OwPxBwjU1C27j6c0hO9IfEjvcpcZP4yvAz6xD+niV5megt4Ik Tfr1xbRMN/eDKTbHufT9kNsx+gBSEwyKtk3cekadiZKB8wpxoyDaZpmDp8rM3FH/ IM7Bkbhfssl53xMCfoELkzosVYrN57SCBR1taC/aRtCbye7XFSAtLccg8QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFC6dLxx97FeQpkaMfwltAMlBDuPQMB8GA1UdIwQY MBaAFHZJKKl76VU3cBPTgsYpQOlQ3SErMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGtrb3FYdnBWVGR3RTlPQ3hpbEE2VkRkSVNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My85NTM2ZjUtZjU2Ni00YzgwLWE3ZDkt YmMxNTIyNzg5ZDNiLzEvTHAwdkhIM3NWNUNtUm94X0NXMEF5VUVPNDlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My85NTM2ZjUtZjU2Ni00YzgwLWE3ZDktYmMxNTIyNzg5ZDNi LzEvZGtrb3FYdnBWVGR3RTlPQ3hpbEE2VkRkSVNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuc3YMA0E AgACMAcDBQAqCwzAMA0GCSqGSIb3DQEBCwUAA4IBAQAJTcH1492n2EBweVXajBse 0cOaglVoDTk28PLij35vBRRS5zexaWDS6hbKdwfnTMizjPy9Li9nk60TxlWmtALv 2R7jGVte+5OMEnUdyTotBKXf6lfxWQQAzMNVQC2vULtM6k8KI2Adgqx/++ZsZXDs /u7xs6Etljf1PJIyhCC1u9nVNU1cBoOtDpP08XsuQj0SHR5+4plCsFYcc795KUMm Bxz5Dg6RJ6HGrTBpCU9v2JG6jktYHWphi85PgYoH6p7c3V8Mn1iNdmzsjAaqB/S9 Bw+fbECeWyci49KhI+ILK1QMEIAH8GiKTD7JA85iIL86Zevsn4KhT7AJT3eLSAcY -----END CERTIFICATE-----Generated at Mon Jan 26 15:01:55 2026 by rpki-client