This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/86ed5b-bcc1-4d03-95da-b99d4d00f831/1/LN5u4cKF-NhDcGbejtHvD1zpxbQ.roa File: LN5u4cKF-NhDcGbejtHvD1zpxbQ.roa (raw, json) Hash identifier: V/xKYLBS6IcpbpVkKJK+eiXs78SdG87M/X8zt2P0C70= Subject key identifier: 2C:DE:6E:E1:C2:85:F8:D8:43:70:66:DE:8E:D1:EF:0F:5C:E9:C5:B4 Certificate issuer: /CN=fac0f0da39a22a79f80c1f379b668b90f6d74708 Certificate serial: 019B7910F86A75C2697E368743FDECF110E8 Authority key identifier: FA:C0:F0:DA:39:A2:2A:79:F8:0C:1F:37:9B:66:8B:90:F6:D7:47:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-sDw2jmiKnn4DB83m2aLkPbXRwg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/86ed5b-bcc1-4d03-95da-b99d4d00f831/1/LN5u4cKF-NhDcGbejtHvD1zpxbQ.roa Signing time: Thu 01 Jan 2026 10:18:33 +0000 ROA not before: Thu 01 Jan 2026 10:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204272 IP address blocks: 185.108.208.0/22 maxlen: 22 2a05:4100::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/86ed5b-bcc1-4d03-95da-b99d4d00f831/1/1-sDw2jmiKnn4DB83m2aLkPbXRwg.crl rsync://rpki.ripe.net/repository/DEFAULT/88/86ed5b-bcc1-4d03-95da-b99d4d00f831/1/1-sDw2jmiKnn4DB83m2aLkPbXRwg.mft rsync://rpki.ripe.net/repository/DEFAULT/1-sDw2jmiKnn4DB83m2aLkPbXRwg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:f8:6a:75:c2:69:7e:36:87:43:fd:ec:f1:10:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fac0f0da39a22a79f80c1f379b668b90f6d74708 Validity Not Before: Jan 1 10:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2cde6ee1c285f8d8437066de8ed1ef0f5ce9c5b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:e1:e7:58:a8:fe:6f:36:c3:e5:ea:43:cc:c6: 41:38:ef:92:b3:82:e7:d9:40:80:b4:de:bc:a5:6c: cb:b6:c6:6b:70:a4:21:19:c9:62:98:fe:57:29:4e: 5c:00:f2:c2:84:af:4b:e8:68:c8:bb:63:09:ac:79: d2:30:0e:de:11:26:2a:aa:08:98:f8:e0:ca:32:27: af:a5:dc:14:ab:ac:dc:72:90:82:1d:a7:b2:df:ff: 6a:20:a2:80:03:6a:70:53:c5:b5:64:44:19:0d:4c: f9:87:e0:52:a4:4c:6c:86:c8:50:25:59:cf:e0:29: 71:1a:2e:a9:ae:c7:a8:14:29:d1:a9:75:9b:67:fc: 9b:20:e3:40:fe:98:42:3a:d9:e2:10:00:c8:cf:f6: 7a:87:de:ee:b1:0b:41:02:ed:cb:9f:c9:4e:01:2e: e2:54:18:f8:a5:b3:c0:a4:1e:46:fb:d2:ef:b5:85: 3c:0b:5e:68:a2:c1:49:b5:a5:b3:dd:3d:f7:14:fa: 4e:df:19:9e:b7:a7:e0:64:eb:c7:f3:eb:de:7c:6c: f8:ff:21:78:1b:ca:59:7a:c0:a7:ba:15:48:ac:9d: 21:d8:fa:12:0f:d5:e3:df:ab:98:f5:9f:a2:46:45: 7a:b8:0d:94:ae:94:a9:66:fb:90:d2:fa:b3:b6:9c: be:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:DE:6E:E1:C2:85:F8:D8:43:70:66:DE:8E:D1:EF:0F:5C:E9:C5:B4 X509v3 Authority Key Identifier: keyid:FA:C0:F0:DA:39:A2:2A:79:F8:0C:1F:37:9B:66:8B:90:F6:D7:47:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-sDw2jmiKnn4DB83m2aLkPbXRwg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/86ed5b-bcc1-4d03-95da-b99d4d00f831/1/LN5u4cKF-NhDcGbejtHvD1zpxbQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/86ed5b-bcc1-4d03-95da-b99d4d00f831/1/1-sDw2jmiKnn4DB83m2aLkPbXRwg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.108.208.0/22 IPv6: 2a05:4100::/29 Signature Algorithm: sha256WithRSAEncryption 85:45:10:d7:22:32:c4:a4:c8:bb:73:3f:da:14:cb:cb:9d:af: 62:e9:ad:84:c7:29:47:51:70:2f:4c:56:ea:63:63:4e:d3:62: bd:cb:72:22:f7:3d:cb:b4:50:fc:99:d3:54:c7:52:39:43:0e: 71:97:17:01:b9:b6:45:3c:6a:4c:b5:2d:5d:a5:41:6d:ad:e3: ec:0c:f2:1f:5f:f3:cc:15:7c:a0:7c:76:7a:1c:de:fe:19:2c: 50:2b:cc:18:75:34:d1:f7:fd:ef:d4:d3:c4:be:16:a6:c1:5f: b5:01:75:ec:9e:0b:1f:5f:3e:f0:fe:53:bd:b1:47:f5:29:57: 43:89:60:9c:85:e2:35:af:7e:48:04:d4:ae:5d:5b:df:0c:90: 7a:24:13:ad:5c:a3:aa:0e:ea:6a:52:18:09:b8:95:79:72:60: c4:78:5e:35:a4:b0:8b:d4:29:37:c8:e4:a6:48:15:01:04:a0: bb:02:bb:16:fa:97:2d:52:2b:17:5b:0f:3a:8b:9d:90:af:7c: fc:33:e6:65:a1:af:53:bd:13:c3:37:89:9c:8d:b1:b2:dc:58: df:14:09:02:24:9f:dc:2b:35:cb:37:fd:57:1f:4f:42:21:b5: ea:d8:23:bd:40:b2:f0:99:d2:b7:71:df:29:01:a1:bc:8d:42: db:62:b0:17 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt5EPhqdcJpfjaHQ/3s8RDoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhYzBmMGRhMzlhMjJhNzlmODBjMWYzNzliNjY4YjkwZjZk NzQ3MDgwHhcNMjYwMTAxMTAxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyY2RlNmVlMWMyODVmOGQ4NDM3MDY2ZGU4ZWQxZWYwZjVjZTljNWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+uHnWKj+bzbD5epDzMZBOO+Ss4Ln 2UCAtN68pWzLtsZrcKQhGclimP5XKU5cAPLChK9L6GjIu2MJrHnSMA7eESYqqgiY +ODKMievpdwUq6zccpCCHaey3/9qIKKAA2pwU8W1ZEQZDUz5h+BSpExshshQJVnP 4ClxGi6prseoFCnRqXWbZ/ybIONA/phCOtniEADIz/Z6h97usQtBAu3Ln8lOAS7i VBj4pbPApB5G+9LvtYU8C15oosFJtaWz3T33FPpO3xmet6fgZOvH8+vefGz4/yF4 G8pZesCnuhVIrJ0h2PoSD9Xj36uY9Z+iRkV6uA2UrpSpZvuQ0vqztpy+wwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFCzebuHChfjYQ3Bm3o7R7w9c6cW0MB8GA1UdIwQY MBaAFPrA8No5oip5+AwfN5tmi5D210cIMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1zRHcyam1pS25uNERCODNtMmFMa1BiWFJ3Zy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODgvODZlZDViLWJjYzEtNGQwMy05NWRh LWI5OWQ0ZDAwZjgzMS8xL0xONXU0Y0tGLU5oRGNHYmVqdEh2RDF6cHhiUS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvODgvODZlZDViLWJjYzEtNGQwMy05NWRhLWI5OWQ0ZDAwZjgz MS8xLzEtc0R3MmptaUtubjREQjgzbTJhTGtQYlhSd2cuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAK5bNAw DQQCAAIwBwMFAyoFQQAwDQYJKoZIhvcNAQELBQADggEBAIVFENciMsSkyLtzP9oU y8udr2LprYTHKUdRcC9MVupjY07TYr3LciL3Pcu0UPyZ01THUjlDDnGXFwG5tkU8 aky1LV2lQW2t4+wM8h9f88wVfKB8dnoc3v4ZLFArzBh1NNH3/e/U08S+FqbBX7UB deyeCx9fPvD+U72xR/UpV0OJYJyF4jWvfkgE1K5dW98MkHokE61co6oO6mpSGAm4 lXlyYMR4XjWksIvUKTfI5KZIFQEEoLsCuxb6ly1SKxdbDzqLnZCvfPwz5mWhr1O9 E8M3iZyNsbLcWN8UCQIkn9wrNcs3/VcfT0IhterYI71AsvCZ0rdx3ykBobyNQtti sBc= -----END CERTIFICATE-----Generated at Sun Jan 25 16:12:31 2026 by rpki-client