This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/lJu2Ar4sGLPORXpgczklcY8qF_E.roa File: lJu2Ar4sGLPORXpgczklcY8qF_E.roa (raw, json) Hash identifier: JhRPmgHPgILgAzd5XOTBcsJ31hAepEsimX60PARvpIY= Subject key identifier: 94:9B:B6:02:BE:2C:18:B3:CE:45:7A:60:73:39:25:71:8F:2A:17:F1 Certificate issuer: /CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863 Certificate serial: 019B7C1261298BE14C5A408826E0FF098C60 Authority key identifier: DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/lJu2Ar4sGLPORXpgczklcY8qF_E.roa Signing time: Fri 02 Jan 2026 00:18:57 +0000 ROA not before: Fri 02 Jan 2026 00:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201021 IP address blocks: 185.28.60.0/24 maxlen: 24 185.28.61.0/24 maxlen: 24 185.28.62.0/24 maxlen: 24 185.28.63.0/24 maxlen: 24 185.103.196.0/24 maxlen: 24 185.103.197.0/24 maxlen: 24 185.103.198.0/24 maxlen: 24 185.103.199.0/24 maxlen: 24 185.106.20.0/24 maxlen: 24 185.106.21.0/24 maxlen: 24 185.106.22.0/24 maxlen: 24 185.106.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/39UkoF1He4L7ypPnpQSqMaOtaGM.crl rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/39UkoF1He4L7ypPnpQSqMaOtaGM.mft rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:61:29:8b:e1:4c:5a:40:88:26:e0:ff:09:8c:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863 Validity Not Before: Jan 2 00:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=949bb602be2c18b3ce457a60733925718f2a17f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a8:1b:7c:ef:e6:40:9a:da:0a:df:2f:67:f8: 03:37:63:90:3e:12:2c:43:4b:cc:0b:b8:83:3b:a6: 70:68:ba:da:d0:2f:a3:f3:55:59:d9:b3:1e:89:30: 19:12:de:a7:f7:bc:36:f1:cf:75:c9:f4:6e:74:35: f9:99:d5:a1:13:2d:ad:0e:b3:3c:8b:b5:9e:a8:29: 90:87:82:fc:90:af:a5:48:8c:5f:f5:7f:d5:ed:cc: 28:7d:07:7f:f8:2a:9d:f8:a2:51:a3:f6:9a:c1:6d: 0d:15:0a:29:40:18:24:1f:83:81:0b:c0:67:80:a8: 28:7a:91:04:92:3a:09:b8:e6:78:d2:28:89:76:ed: 9e:05:bc:d4:5d:8b:f5:83:81:20:98:5c:ca:94:33: af:f6:79:ff:cd:0e:9f:05:5e:29:cd:1c:70:c7:af: 7e:c6:e4:f4:a6:1d:db:90:84:85:1c:09:81:be:fe: a9:cc:0b:96:30:d8:52:0f:2a:3c:dd:3b:28:76:74: 25:2b:d0:67:dc:df:79:fb:6a:7b:82:9f:c9:0a:da: 97:9e:13:bf:91:07:3b:e3:af:50:3c:23:a4:13:18: 30:af:0c:17:9c:8f:ad:f4:1e:5e:63:09:7a:37:57: e7:31:64:1a:83:f9:79:74:37:80:76:1a:7d:16:c5: 3d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:9B:B6:02:BE:2C:18:B3:CE:45:7A:60:73:39:25:71:8F:2A:17:F1 X509v3 Authority Key Identifier: keyid:DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/lJu2Ar4sGLPORXpgczklcY8qF_E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/39UkoF1He4L7ypPnpQSqMaOtaGM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.28.60.0/22 185.103.196.0/22 185.106.20.0/22 Signature Algorithm: sha256WithRSAEncryption 25:1c:c2:cd:de:a1:a2:25:78:d1:ad:75:d3:e3:7a:bf:81:31: 78:34:e5:a1:67:5c:2e:19:9c:e9:46:95:ae:15:ed:89:12:b8: 16:c5:31:c8:70:02:60:8b:93:b5:e7:42:29:bb:ca:44:2e:7b: 60:b1:32:de:3a:c7:7d:97:f0:31:21:84:e7:dc:49:43:96:46: b3:fa:e3:88:f8:e0:99:a2:58:92:23:a5:06:13:dc:42:82:c3: 1d:84:b6:f9:30:41:b9:cc:5b:bb:b3:0f:dc:46:f0:5d:43:0d: 17:17:3c:5d:55:0a:92:db:77:81:f8:d1:84:e5:b9:60:e3:e8: ec:58:a6:16:24:ed:1e:28:fd:25:82:b5:e4:a7:32:3d:f0:16: b2:d2:8b:b5:8c:cf:c5:98:e5:ed:98:02:af:ec:48:61:d0:6c: 48:0a:70:69:57:40:e6:68:2e:dc:6f:7f:2e:52:2f:bf:bf:d0: 0d:48:85:57:6a:85:df:48:f4:9e:ea:77:97:b7:c0:8c:0b:bf: 15:47:63:46:38:f3:1d:a3:f4:87:04:75:df:ab:fc:5b:f0:9a: 31:f0:c2:19:55:3e:44:19:65:01:15:d3:1f:c1:40:ec:0a:4c: fd:e9:5f:82:dd:ed:3e:83:f3:eb:f8:51:23:af:dc:0c:2c:fd: 6f:8d:69:81 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt8EmEpi+FMWkCIJuD/CYxgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmZDUyNGEwNWQ0NzdiODJmYmNhOTNlN2E1MDRhYTMxYTNh ZDY4NjMwHhcNMjYwMTAyMDAxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDliYjYwMmJlMmMxOGIzY2U0NTdhNjA3MzM5MjU3MThmMmExN2YxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqgbfO/mQJraCt8vZ/gDN2OQPhIs Q0vMC7iDO6ZwaLra0C+j81VZ2bMeiTAZEt6n97w28c91yfRudDX5mdWhEy2tDrM8 i7WeqCmQh4L8kK+lSIxf9X/V7cwofQd/+Cqd+KJRo/aawW0NFQopQBgkH4OBC8Bn gKgoepEEkjoJuOZ40iiJdu2eBbzUXYv1g4EgmFzKlDOv9nn/zQ6fBV4pzRxwx69+ xuT0ph3bkISFHAmBvv6pzAuWMNhSDyo83TsodnQlK9Bn3N95+2p7gp/JCtqXnhO/ kQc7469QPCOkExgwrwwXnI+t9B5eYwl6N1fnMWQag/l5dDeAdhp9FsU9zwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFJSbtgK+LBizzkV6YHM5JXGPKhfxMB8GA1UdIwQY MBaAFN/VJKBdR3uC+8qT56UEqjGjrWhjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzlVa29GMUhlNEw3eXBQbnBRU3FNYU90YUdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8yMGMxODctMDBmZC00NTllLWFhZTQt NDY3ZjRmN2Y1ZGVkLzEvbEp1MkFyNHNHTFBPUlhwZ2N6a2xjWThxRl9FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8yMGMxODctMDBmZC00NTllLWFhZTQtNDY3ZjRmN2Y1ZGVk LzEvMzlVa29GMUhlNEw3eXBQbnBRU3FNYU90YUdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCuRw8AwQC uWfEAwQCuWoUMA0GCSqGSIb3DQEBCwUAA4IBAQAlHMLN3qGiJXjRrXXT43q/gTF4 NOWhZ1wuGZzpRpWuFe2JErgWxTHIcAJgi5O150Ipu8pELntgsTLeOsd9l/AxIYTn 3ElDlkaz+uOI+OCZoliSI6UGE9xCgsMdhLb5MEG5zFu7sw/cRvBdQw0XFzxdVQqS 23eB+NGE5blg4+jsWKYWJO0eKP0lgrXkpzI98Bay0ou1jM/FmOXtmAKv7Ehh0GxI CnBpV0DmaC7cb38uUi+/v9ANSIVXaoXfSPSe6neXt8CMC78VR2NGOPMdo/SHBHXf q/xb8Jox8MIZVT5EGWUBFdMfwUDsCkz96V+C3e0+g/Pr+FEjr9wMLP1vjWmB -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:13 2026 by rpki-client