This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/iqLZiisE0r3q2UyQHeXPDzBWCPg.roa File: iqLZiisE0r3q2UyQHeXPDzBWCPg.roa (raw, json) Hash identifier: fx2ZdcoBokX/+QAXM/cHaGytZtOSEg6zFoDJaLGeTdM= Subject key identifier: 8A:A2:D9:8A:2B:04:D2:BD:EA:D9:4C:90:1D:E5:CF:0F:30:56:08:F8 Certificate issuer: /CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce Certificate serial: 019BEBE3C1B278CA204C5F42621A177C5D0F Authority key identifier: 2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/iqLZiisE0r3q2UyQHeXPDzBWCPg.roa Signing time: Fri 23 Jan 2026 17:25:30 +0000 ROA not before: Fri 23 Jan 2026 17:25:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58061 IP address blocks: 138.249.0.0/24 maxlen: 24 138.249.1.0/24 maxlen: 24 138.249.14.0/24 maxlen: 24 170.168.4.0/24 maxlen: 24 170.168.5.0/24 maxlen: 24 170.168.26.0/24 maxlen: 24 170.168.27.0/24 maxlen: 24 170.168.32.0/24 maxlen: 24 170.168.41.0/24 maxlen: 24 170.168.43.0/24 maxlen: 24 170.168.48.0/24 maxlen: 24 170.168.49.0/24 maxlen: 24 170.168.50.0/24 maxlen: 24 170.168.51.0/24 maxlen: 24 170.168.112.0/24 maxlen: 24 170.168.113.0/24 maxlen: 24 170.168.114.0/24 maxlen: 24 170.168.118.0/24 maxlen: 24 170.168.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.mft rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:eb:e3:c1:b2:78:ca:20:4c:5f:42:62:1a:17:7c:5d:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce Validity Not Before: Jan 23 17:25:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8aa2d98a2b04d2bdead94c901de5cf0f305608f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f4:f2:05:58:d1:d6:25:ac:a2:d3:02:99:3a: 76:73:85:8e:b6:66:a2:1a:80:de:b3:37:a2:e5:0f: 6c:b5:17:5b:74:56:5e:a4:24:af:bf:5c:5d:fc:cb: a7:7c:c6:ca:40:64:5f:e6:5e:ca:da:9c:66:11:a8: 91:12:74:48:dc:5b:21:fe:7e:8d:f2:3b:4e:56:cd: f8:79:4e:e4:51:2c:53:17:a5:cf:a6:de:73:ac:3a: 23:f2:88:07:32:d7:a9:0f:0a:d2:42:69:72:0f:0c: 83:af:c4:a2:0f:cf:0d:34:84:7f:6d:a6:54:02:db: 90:bc:2e:d7:20:e9:20:9a:4d:a4:a5:dd:5b:e2:a8: b3:7c:45:b0:cd:6b:ff:f4:c7:ed:94:8c:1e:a0:bd: 66:87:fe:ba:67:d1:b4:bd:9b:dd:25:d6:b9:d5:b1: 20:33:95:e4:a0:bc:f5:e2:e8:4e:fb:e1:a8:07:85: 9b:de:2d:80:43:ba:b8:8a:f9:05:e4:ca:36:55:33: 61:18:68:58:28:29:7f:2a:1f:7f:1e:80:e5:1b:ef: f4:d2:0c:b6:68:72:0b:9f:7c:f0:46:f0:52:4c:de: d9:4e:6c:59:82:e0:8b:98:4d:84:9c:db:c8:ed:60: 98:2a:77:1e:83:f7:61:db:66:1d:60:53:21:68:47: 84:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A2:D9:8A:2B:04:D2:BD:EA:D9:4C:90:1D:E5:CF:0F:30:56:08:F8 X509v3 Authority Key Identifier: keyid:2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/iqLZiisE0r3q2UyQHeXPDzBWCPg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.249.0.0/23 138.249.14.0/24 170.168.4.0/23 170.168.26.0/23 170.168.32.0/24 170.168.41.0/24 170.168.43.0/24 170.168.48.0/22 170.168.112.0-170.168.114.255 170.168.118.0/23 Signature Algorithm: sha256WithRSAEncryption 12:1a:81:c9:f7:7a:a6:fb:28:d5:cd:0f:ea:c1:b0:77:54:ea: 13:28:0b:41:68:db:8c:94:2d:dc:60:8a:91:e6:82:0b:6f:83: 09:d3:fb:89:4c:6d:39:e4:0a:07:1b:11:8b:9a:f5:6e:71:40: 6d:d6:9a:76:32:c8:15:4d:68:46:c9:67:08:53:b2:4a:0c:33: 5a:bd:d9:9c:41:71:c4:9d:0d:d9:e4:cf:71:c6:c6:81:09:ec: 80:d9:3d:1f:03:4c:2e:0f:a8:5e:2e:9d:28:e3:b5:76:6e:af: bb:b4:f5:1c:e1:70:ba:b8:66:91:6b:77:77:13:09:b8:31:9d: b6:63:d2:8b:bf:91:40:d2:66:ed:7d:b6:6c:d2:b4:da:e8:f8: 5c:7e:fc:0f:2c:6a:43:f8:70:ad:49:fc:c1:a5:79:63:d7:6d: 70:cd:c6:bc:34:29:af:07:a5:67:fc:d6:1d:0e:84:80:19:76: 88:30:3a:c7:6a:99:ba:59:30:5a:12:6a:27:26:af:69:c8:52: db:a9:02:27:7e:06:26:21:35:b2:49:0d:fa:4c:7a:64:64:e2: 8f:0b:7a:f5:d5:ef:61:85:81:d1:9f:06:d3:04:c5:f1:7d:74: 31:d8:78:4e:13:c7:a8:56:cf:42:6a:e5:f1:90:b2:c8:1c:b6: 9b:6e:ee:62 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgISAZvr48GyeMogTF9CYhoXfF0PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlNmE4NmU2MmYwY2U5OGUwMmU5ODA4NjlmZjQ0MTRlZTJh MGYwY2UwHhcNMjYwMTIzMTcyNTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YWEyZDk4YTJiMDRkMmJkZWFkOTRjOTAxZGU1Y2YwZjMwNTYwOGY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfTyBVjR1iWsotMCmTp2c4WOtmai GoDeszei5Q9stRdbdFZepCSvv1xd/MunfMbKQGRf5l7K2pxmEaiREnRI3Fsh/n6N 8jtOVs34eU7kUSxTF6XPpt5zrDoj8ogHMtepDwrSQmlyDwyDr8SiD88NNIR/baZU AtuQvC7XIOkgmk2kpd1b4qizfEWwzWv/9MftlIweoL1mh/66Z9G0vZvdJda51bEg M5XkoLz14uhO++GoB4Wb3i2AQ7q4ivkF5Mo2VTNhGGhYKCl/Kh9/HoDlG+/00gy2 aHILn3zwRvBSTN7ZTmxZguCLmE2EnNvI7WCYKnceg/dh22YdYFMhaEeE8QIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFIqi2YorBNK96tlMkB3lzw8wVgj4MB8GA1UdIwQY MBaAFC5qhuYvDOmOAumAhp/0QU7ioPDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2Et YTY2N2JiNzY1MDYwLzEvaXFMWmlpc0UwcjNxMlV5UUhlWFBEekJXQ1BnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2EtYTY2N2JiNzY1MDYw LzEvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDBKBAIAATBEAwQBivkAAwQA ivkOAwQBqqgEAwQBqqgaAwQAqqggAwQAqqgpAwQAqqgrAwQCqqgwMAwDBASqqHAD BACqqHIDBAGqqHYwDQYJKoZIhvcNAQELBQADggEBABIagcn3eqb7KNXND+rBsHdU 6hMoC0Fo24yULdxgipHmggtvgwnT+4lMbTnkCgcbEYua9W5xQG3WmnYyyBVNaEbJ ZwhTskoMM1q92ZxBccSdDdnkz3HGxoEJ7IDZPR8DTC4PqF4unSjjtXZur7u09Rzh cLq4ZpFrd3cTCbgxnbZj0ou/kUDSZu19tmzStNro+Fx+/A8sakP4cK1J/MGleWPX bXDNxrw0Ka8HpWf81h0OhIAZdogwOsdqmbpZMFoSaicmr2nIUtupAid+BiYhNbJJ DfpMemRk4o8LevXV72GFgdGfBtMExfF9dDHYeE4Tx6hWz0Jq5fGQssgctptu7mI= -----END CERTIFICATE-----Generated at Sun Jan 25 16:38:35 2026 by rpki-client