This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/ldHMEOJiE59-H0cOPRmvSFACx0s.roa File: ldHMEOJiE59-H0cOPRmvSFACx0s.roa (raw, json) Hash identifier: mOMIPtr1abOjWcrfM5eKbECfrNaucrP77WVejoM6ds4= Subject key identifier: 95:D1:CC:10:E2:62:13:9F:7E:1F:47:0E:3D:19:AF:48:50:02:C7:4B Certificate issuer: /CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4 Certificate serial: 019B7C111899C5D900037A87132856A91DDC Authority key identifier: FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/ldHMEOJiE59-H0cOPRmvSFACx0s.roa Signing time: Fri 02 Jan 2026 00:17:33 +0000 ROA not before: Fri 02 Jan 2026 00:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211360 IP address blocks: 193.84.108.0/24 maxlen: 24 2a10:ba80::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:18:99:c5:d9:00:03:7a:87:13:28:56:a9:1d:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4 Validity Not Before: Jan 2 00:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=95d1cc10e262139f7e1f470e3d19af485002c74b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:23:c0:75:d1:7d:71:0b:20:6b:87:f4:b3:a2: 1f:a1:34:f9:40:fe:85:b1:b5:92:fa:86:18:ae:c3: f0:8c:f1:11:57:70:c0:f8:61:d3:d5:e2:32:9a:e4: a9:af:2b:e4:f9:18:7b:e4:15:a5:dc:0c:85:e0:5b: 1c:2a:0a:9c:d5:f6:8d:3c:ad:af:21:70:0d:a5:6c: 6d:9d:0d:27:b7:40:79:20:58:57:1e:09:08:33:e2: 72:d8:13:36:8b:5e:23:b1:09:5f:31:74:d0:bf:cc: b5:98:f5:e3:67:18:4b:34:81:8f:a6:bd:94:1a:24: 53:3a:7b:21:ff:b4:fd:dc:1d:83:60:e6:c2:8b:2f: d6:28:59:91:08:57:54:4a:2c:33:53:bf:5a:53:e5: 0b:58:96:31:2a:c0:a2:d1:d1:96:9c:b4:9e:e5:ad: 82:fa:67:f5:c5:32:e9:48:d5:db:68:6e:51:8f:f3: dd:e9:26:6d:8f:1c:dd:e1:e9:55:12:31:d8:39:60: fc:4a:7f:7e:68:c6:3c:fb:e7:2a:c5:5d:8c:7f:3f: 2a:31:20:3b:9a:5d:dd:77:3c:6c:c1:9f:e6:7f:36: 07:cb:05:e4:b1:01:ee:a1:4a:72:11:b9:5e:66:bd: e0:da:9e:90:e3:92:8c:84:23:63:61:36:1b:13:57: 81:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:D1:CC:10:E2:62:13:9F:7E:1F:47:0E:3D:19:AF:48:50:02:C7:4B X509v3 Authority Key Identifier: keyid:FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/ldHMEOJiE59-H0cOPRmvSFACx0s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.84.108.0/24 IPv6: 2a10:ba80::/31 Signature Algorithm: sha256WithRSAEncryption 45:da:fa:a6:2c:af:f8:c8:2c:6b:8b:bd:30:f3:a2:c4:c9:b6: c0:da:41:af:69:a3:8d:f4:c9:0b:12:52:6c:06:9d:83:1f:d0: 8e:c0:db:ca:90:2a:98:61:94:59:0c:c7:35:47:e1:a1:63:26: 9f:6c:3a:68:25:69:02:32:1c:b4:57:24:0d:3a:c3:07:ed:a5: c4:b2:e8:1c:a4:94:55:98:b5:34:e3:36:e5:cd:9b:d3:16:f1: 20:ca:73:14:6e:90:28:e9:74:58:cb:e0:ab:a2:b8:59:c2:03: 22:1a:3a:a5:a0:b2:62:16:ff:e5:a2:f0:99:ed:6a:eb:d4:7f: 48:0b:38:e7:fb:b1:52:59:aa:3d:58:61:28:b3:39:96:e7:c0: 6c:b6:6a:f7:0e:c3:2a:f8:02:20:ef:eb:91:5a:f1:c6:5f:35: 65:6e:48:cb:b5:09:6a:a7:a4:11:89:61:6f:1f:ae:e5:19:bb: 72:1a:dc:8d:48:c8:2c:bb:f6:89:09:51:01:da:a1:ed:95:f0: 38:a3:a4:a8:ce:a9:47:86:3c:45:f9:28:55:aa:60:3d:7f:3c: 64:84:a9:f6:63:32:e6:6b:8a:b8:65:83:ff:1f:ad:c0:31:c4: e5:55:3d:1c:ed:a5:96:ff:3a:de:ed:9b:23:36:f7:bd:83:2e: c1:5b:78:89 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8ERiZxdkAA3qHEyhWqR3cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkMjFjYjRiYWExNTg2MmQxYjU3NzNiZjJiZTYwY2E1ZjRm YzI0ZDQwHhcNMjYwMTAyMDAxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NWQxY2MxMGUyNjIxMzlmN2UxZjQ3MGUzZDE5YWY0ODUwMDJjNzRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCPAddF9cQsga4f0s6IfoTT5QP6F sbWS+oYYrsPwjPERV3DA+GHT1eIymuSpryvk+Rh75BWl3AyF4FscKgqc1faNPK2v IXANpWxtnQ0nt0B5IFhXHgkIM+Jy2BM2i14jsQlfMXTQv8y1mPXjZxhLNIGPpr2U GiRTOnsh/7T93B2DYObCiy/WKFmRCFdUSiwzU79aU+ULWJYxKsCi0dGWnLSe5a2C +mf1xTLpSNXbaG5Rj/Pd6SZtjxzd4elVEjHYOWD8Sn9+aMY8++cqxV2Mfz8qMSA7 ml3ddzxswZ/mfzYHywXksQHuoUpyEbleZr3g2p6Q45KMhCNjYTYbE1eBbwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJXRzBDiYhOffh9HDj0Zr0hQAsdLMB8GA1UdIwQY MBaAFP0hy0uqFYYtG1dzvyvmDKX0/CTUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1NITFM2b1ZoaTBiVjNPX0stWU1wZlQ4Sk5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8zMjY2MDYtMTRiYS00NDM2LTk5ODUt YmU1NTIwYTVjODIxLzEvbGRITUVPSmlFNTktSDBjT1BSbXZTRkFDeDBzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8zMjY2MDYtMTRiYS00NDM2LTk5ODUtYmU1NTIwYTVjODIx LzEvX1NITFM2b1ZoaTBiVjNPX0stWU1wZlQ4Sk5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwVRsMA0E AgACMAcDBQEqELqAMA0GCSqGSIb3DQEBCwUAA4IBAQBF2vqmLK/4yCxri70w86LE ybbA2kGvaaON9MkLElJsBp2DH9COwNvKkCqYYZRZDMc1R+GhYyafbDpoJWkCMhy0 VyQNOsMH7aXEsugcpJRVmLU04zblzZvTFvEgynMUbpAo6XRYy+CrorhZwgMiGjql oLJiFv/lovCZ7Wrr1H9ICzjn+7FSWao9WGEoszmW58Bstmr3DsMq+AIg7+uRWvHG XzVlbkjLtQlqp6QRiWFvH67lGbtyGtyNSMgsu/aJCVEB2qHtlfA4o6SozqlHhjxF +ShVqmA9fzxkhKn2YzLma4q4ZYP/H63AMcTlVT0c7aWW/zre7ZsjNve9gy7BW3iJ -----END CERTIFICATE-----Generated at Mon Jan 26 01:01:38 2026 by rpki-client