This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/lrAiy-EH1jEuKoHS5MnaAD9d8q4.roa File: lrAiy-EH1jEuKoHS5MnaAD9d8q4.roa (raw, json) Hash identifier: karv3ruqmEVsqvLYOaPUsLt+xLVJWdgtNgbALQZJKzo= Subject key identifier: 96:B0:22:CB:E1:07:D6:31:2E:2A:81:D2:E4:C9:DA:00:3F:5D:F2:AE Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Certificate serial: 019B77595886D97FE6BC4AF82C2BDE034AB4 Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/lrAiy-EH1jEuKoHS5MnaAD9d8q4.roa Signing time: Thu 01 Jan 2026 02:18:22 +0000 ROA not before: Thu 01 Jan 2026 02:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56885 IP address blocks: 46.102.109.0/24 maxlen: 24 188.241.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.mft rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:58:86:d9:7f:e6:bc:4a:f8:2c:2b:de:03:4a:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Validity Not Before: Jan 1 02:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=96b022cbe107d6312e2a81d2e4c9da003f5df2ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9d:82:22:4c:1a:f3:c4:56:fe:54:c1:e3:d5: 80:f1:da:06:01:3a:56:37:d2:83:9d:d4:b4:e8:74: 50:70:bc:84:d8:e4:06:e2:2b:57:c7:2b:17:c6:30: c6:1f:74:b4:92:85:77:46:c1:d3:05:8d:db:e3:62: 9a:a3:8b:96:ac:6a:f8:95:12:36:aa:d8:b4:ed:16: 8c:a5:df:a3:62:1d:01:99:3c:f3:8c:79:1b:9c:2f: c8:dd:d6:1f:c8:22:a2:10:bc:a5:33:b9:0b:66:14: 4e:67:03:04:56:3b:31:40:c4:86:93:d9:41:52:09: f4:63:f7:c5:52:d5:22:51:3a:60:a0:6a:03:7e:22: ec:7a:ae:f4:b4:7a:d1:98:59:3d:0c:ab:54:9a:8d: 7a:cc:76:d2:33:59:e8:da:e8:fb:47:a8:62:e9:1f: 35:9e:77:44:4c:00:a2:41:9e:26:49:bf:b2:ad:d7: 62:24:5a:59:f2:9a:69:45:22:ea:f5:00:24:5c:92: dc:e8:48:19:df:11:31:07:7a:9c:a5:6d:8b:71:f0: f8:5b:2b:92:34:05:2f:1b:63:23:c5:fa:41:a3:c0: d7:1a:ea:9f:9a:8c:54:eb:e7:58:b6:7e:67:4d:7c: e5:3a:5f:c5:75:ba:6c:9e:bf:7b:38:4e:90:77:b5: 7a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:B0:22:CB:E1:07:D6:31:2E:2A:81:D2:E4:C9:DA:00:3F:5D:F2:AE X509v3 Authority Key Identifier: keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/lrAiy-EH1jEuKoHS5MnaAD9d8q4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.102.109.0/24 188.241.158.0/24 Signature Algorithm: sha256WithRSAEncryption be:eb:f3:a1:1c:b6:e8:cf:5c:b0:38:fe:f9:3e:12:66:d8:3f: 36:d7:7d:d0:92:76:df:0a:68:7d:11:1a:4d:a6:71:5c:8a:74: 3a:8c:2a:8a:c7:01:d6:b7:37:88:e5:30:4d:d6:65:fc:d1:ce: 43:6e:c7:75:9e:4c:f7:a4:bf:e1:4e:df:e6:b3:1a:08:b3:bf: 53:c9:f7:3f:f3:8f:df:ad:fc:bd:2b:e2:ea:0b:c4:84:90:bc: 3f:58:7e:80:ba:9b:15:13:30:08:12:a6:84:ca:bf:2c:e6:a9: 9f:06:d7:30:18:5e:a4:17:49:ef:7f:c9:8f:7a:e9:72:ec:d4: 9b:51:1c:8b:5c:95:ef:9e:9e:45:19:8c:5b:ef:ac:7f:59:1c: 41:dd:2f:fa:a6:ba:94:31:b8:46:14:d0:36:b6:2e:eb:ce:35: 98:17:37:08:b1:6e:aa:63:d6:2f:e5:82:eb:af:52:2e:dd:46: 84:d2:60:81:1a:9c:dc:c1:bc:77:08:20:54:ed:af:e5:69:30: 5b:a9:59:7b:e6:d7:9e:9c:93:69:09:2e:4d:6e:04:5c:94:f2: e7:43:8e:c9:45:3a:d7:5a:2d:27:23:45:eb:a5:c0:7d:25:78: da:62:4f:44:fb:e9:f3:1c:6e:16:44:22:d7:e2:db:21:4d:34: 0f:fb:97:c8 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt3WViG2X/mvEr4LCveA0q0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy MTliNTkwHhcNMjYwMTAxMDIxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NmIwMjJjYmUxMDdkNjMxMmUyYTgxZDJlNGM5ZGEwMDNmNWRmMmFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZ2CIkwa88RW/lTB49WA8doGATpW N9KDndS06HRQcLyE2OQG4itXxysXxjDGH3S0koV3RsHTBY3b42Kao4uWrGr4lRI2 qti07RaMpd+jYh0BmTzzjHkbnC/I3dYfyCKiELylM7kLZhROZwMEVjsxQMSGk9lB Ugn0Y/fFUtUiUTpgoGoDfiLseq70tHrRmFk9DKtUmo16zHbSM1no2uj7R6hi6R81 nndETACiQZ4mSb+yrddiJFpZ8pppRSLq9QAkXJLc6EgZ3xExB3qcpW2LcfD4WyuS NAUvG2MjxfpBo8DXGuqfmoxU6+dYtn5nTXzlOl/Fdbpsnr97OE6Qd7V6HQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFJawIsvhB9YxLiqB0uTJ2gA/XfKuMB8GA1UdIwQY MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl LTkyZTI1ZmUxNjMzMS8xL2xyQWl5LUVIMWpFdUtvSFM1TW5hQUQ5ZDhxNC5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAAuZm0D BAC88Z4wDQYJKoZIhvcNAQELBQADggEBAL7r86EctujPXLA4/vk+EmbYPzbXfdCS dt8KaH0RGk2mcVyKdDqMKorHAda3N4jlME3WZfzRzkNux3WeTPekv+FO3+azGgiz v1PJ9z/zj9+t/L0r4uoLxISQvD9YfoC6mxUTMAgSpoTKvyzmqZ8G1zAYXqQXSe9/ yY966XLs1JtRHItcle+enkUZjFvvrH9ZHEHdL/qmupQxuEYU0Da2LuvONZgXNwix bqpj1i/lguuvUi7dRoTSYIEanNzBvHcIIFTtr+VpMFupWXvm156ck2kJLk1uBFyU 8udDjslFOtdaLScjReulwH0leNpiT0T76fMcbhZEItfi2yFNNA/7l8g= -----END CERTIFICATE-----Generated at Sun Jan 25 13:02:12 2026 by rpki-client