This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/lmALzp_C2hj8qDy6u9DneABNWCE.roa File: lmALzp_C2hj8qDy6u9DneABNWCE.roa (raw, json) Hash identifier: 0GPCM3inwnfBar+n/0nv3z67tNfW/VcLGbHgKFaiiwI= Subject key identifier: 96:60:0B:CE:9F:C2:DA:18:FC:A8:3C:BA:BB:D0:E7:78:00:4D:58:21 Certificate issuer: /CN=644f033f782eaf32ab09088775d64ac4b94b5b11 Certificate serial: 019B7B36C2FBA71989B175C702EC4773B6EE Authority key identifier: 64:4F:03:3F:78:2E:AF:32:AB:09:08:87:75:D6:4A:C4:B9:4B:5B:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZE8DP3gurzKrCQiHddZKxLlLWxE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/lmALzp_C2hj8qDy6u9DneABNWCE.roa Signing time: Thu 01 Jan 2026 20:19:04 +0000 ROA not before: Thu 01 Jan 2026 20:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204104 IP address blocks: 213.134.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/ZE8DP3gurzKrCQiHddZKxLlLWxE.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/ZE8DP3gurzKrCQiHddZKxLlLWxE.mft rsync://rpki.ripe.net/repository/DEFAULT/ZE8DP3gurzKrCQiHddZKxLlLWxE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:c2:fb:a7:19:89:b1:75:c7:02:ec:47:73:b6:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=644f033f782eaf32ab09088775d64ac4b94b5b11 Validity Not Before: Jan 1 20:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=96600bce9fc2da18fca83cbabbd0e778004d5821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5b:cb:89:16:8f:79:9e:95:6a:e4:66:1b:5c: 76:80:34:6e:91:42:c5:7c:4a:1b:36:16:58:02:b5: 0f:7b:63:eb:9f:11:01:19:25:aa:3d:d3:a1:58:0b: 30:52:8b:69:5f:9d:1d:75:a1:3a:74:ad:1b:fd:0f: ea:4e:50:d9:59:12:f1:77:85:5c:26:5f:d5:49:aa: a0:c0:49:e7:a7:7e:e2:4b:ef:a8:60:03:c1:56:ea: 1d:3b:c1:47:01:ea:12:db:2d:c9:07:33:d9:db:c8: 69:b2:53:85:82:f9:0d:b7:5a:52:b8:3c:11:29:9c: bb:5a:50:38:76:37:82:c0:c6:76:8e:89:cf:ed:dd: 80:00:8f:df:cd:2d:0f:28:cc:96:f5:ee:a0:11:22: 03:7e:47:9c:3b:37:27:f4:f5:99:8d:13:1f:84:4c: f5:52:3e:4a:4b:47:4e:88:e8:b1:9b:0d:6f:7a:7b: 7e:3d:5e:db:48:1e:fb:fb:0d:04:2a:cc:c9:ae:97: d7:03:ed:d0:d4:4f:ac:48:b1:cd:2a:d9:6f:de:b7: 3b:f9:9e:33:2d:a6:fa:55:95:57:1f:e0:ac:1f:ed: 8c:7f:79:cf:81:9d:26:cb:e0:08:36:f1:cf:1a:ad: e8:66:e6:e7:1a:a7:e0:5d:cd:73:c7:eb:d1:b0:12: 9f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:60:0B:CE:9F:C2:DA:18:FC:A8:3C:BA:BB:D0:E7:78:00:4D:58:21 X509v3 Authority Key Identifier: keyid:64:4F:03:3F:78:2E:AF:32:AB:09:08:87:75:D6:4A:C4:B9:4B:5B:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZE8DP3gurzKrCQiHddZKxLlLWxE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/lmALzp_C2hj8qDy6u9DneABNWCE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/ZE8DP3gurzKrCQiHddZKxLlLWxE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.134.17.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:57:82:ab:49:80:76:23:bd:36:e9:b4:ee:91:85:e6:97:1a: 55:b9:a4:7b:b5:5a:08:fa:ae:a5:05:23:24:6c:3b:07:dc:0d: 94:48:33:c4:5c:55:fd:e4:8b:f2:ed:b6:54:67:ef:14:da:48: 71:f8:12:a5:64:c6:5b:0e:b2:bd:52:20:5f:fd:62:0d:32:8e: 27:65:0d:be:1c:96:16:c6:2a:51:be:9a:0a:d7:e5:f0:13:35: ab:77:3c:ff:28:d0:0f:92:a1:1c:c4:aa:78:cc:f1:38:53:e8: 42:de:e4:b9:ae:45:e9:53:f2:51:cd:97:ff:fd:91:ca:1e:df: d0:4a:29:79:16:9e:ed:52:f9:b2:52:76:86:85:12:25:03:be: 10:36:11:fb:62:4a:ff:83:e8:fc:84:9c:d4:ff:a9:ff:75:96: 52:3c:8b:db:8c:c6:bf:7b:2a:a7:c6:21:8d:48:fa:55:43:8f: f4:c3:89:e4:71:bb:46:0d:a5:f9:8f:1f:4e:e6:16:8c:86:c4: 08:0f:98:7d:d2:b6:07:61:e2:40:21:ad:54:2d:b0:d0:74:4b: 11:ba:ab:dc:4f:55:db:3e:54:67:f2:75:fc:8a:21:ba:72:97: f1:3c:bc:f1:6a:db:be:85:04:ef:78:d3:5c:da:44:80:12:75: d1:a8:1d:44 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NsL7pxmJsXXHAuxHc7buMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0NGYwMzNmNzgyZWFmMzJhYjA5MDg4Nzc1ZDY0YWM0Yjk0 YjViMTEwHhcNMjYwMTAxMjAxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjYwMGJjZTlmYzJkYTE4ZmNhODNjYmFiYmQwZTc3ODAwNGQ1ODIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlvLiRaPeZ6VauRmG1x2gDRukULF fEobNhZYArUPe2PrnxEBGSWqPdOhWAswUotpX50ddaE6dK0b/Q/qTlDZWRLxd4Vc Jl/VSaqgwEnnp37iS++oYAPBVuodO8FHAeoS2y3JBzPZ28hpslOFgvkNt1pSuDwR KZy7WlA4djeCwMZ2jonP7d2AAI/fzS0PKMyW9e6gESIDfkecOzcn9PWZjRMfhEz1 Uj5KS0dOiOixmw1vent+PV7bSB77+w0EKszJrpfXA+3Q1E+sSLHNKtlv3rc7+Z4z Lab6VZVXH+CsH+2Mf3nPgZ0my+AINvHPGq3oZubnGqfgXc1zx+vRsBKfwQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJZgC86fwtoY/Kg8urvQ53gATVghMB8GA1UdIwQY MBaAFGRPAz94Lq8yqwkIh3XWSsS5S1sRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkU4RFAzZ3VyektyQ1FpSGRkWkt4TGxMV3hFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS84N2NhOTEtNmZiOC00MDM4LTg5MGMt NDkxNWZlN2Y5MmNlLzEvbG1BTHpwX0MyaGo4cUR5NnU5RG5lQUJOV0NFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS84N2NhOTEtNmZiOC00MDM4LTg5MGMtNDkxNWZlN2Y5MmNl LzEvWkU4RFAzZ3VyektyQ1FpSGRkWkt4TGxMV3hFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1YYRMA0G CSqGSIb3DQEBCwUAA4IBAQBqV4KrSYB2I7026bTukYXmlxpVuaR7tVoI+q6lBSMk bDsH3A2USDPEXFX95Ivy7bZUZ+8U2khx+BKlZMZbDrK9UiBf/WINMo4nZQ2+HJYW xipRvpoK1+XwEzWrdzz/KNAPkqEcxKp4zPE4U+hC3uS5rkXpU/JRzZf//ZHKHt/Q Sil5Fp7tUvmyUnaGhRIlA74QNhH7Ykr/g+j8hJzU/6n/dZZSPIvbjMa/eyqnxiGN SPpVQ4/0w4nkcbtGDaX5jx9O5haMhsQID5h90rYHYeJAIa1ULbDQdEsRuqvcT1Xb PlRn8nX8iiG6cpfxPLzxatu+hQTveNNc2kSAEnXRqB1E -----END CERTIFICATE-----Generated at Sun Jan 25 17:47:32 2026 by rpki-client