This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Lb9j0RVU1_DqaEpFDRLF-rB5NGo.roa File: Lb9j0RVU1_DqaEpFDRLF-rB5NGo.roa (raw, json) Hash identifier: Ntu0WE747DMTuqfSLhrbSHk0UIxpxBy/Z6RXcUHowxQ= Subject key identifier: 2D:BF:63:D1:15:54:D7:F0:EA:68:4A:45:0D:12:C5:FA:B0:79:34:6A Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a Certificate serial: 019B77C73F07DA4FDEE2036448884E58BDE4 Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Lb9j0RVU1_DqaEpFDRLF-rB5NGo.roa Signing time: Thu 01 Jan 2026 04:18:25 +0000 ROA not before: Thu 01 Jan 2026 04:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58255 IP address blocks: 193.232.24.0/24 maxlen: 24 194.85.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.mft rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:3f:07:da:4f:de:e2:03:64:48:88:4e:58:bd:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a Validity Not Before: Jan 1 04:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2dbf63d11554d7f0ea684a450d12c5fab079346a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:00:b5:b6:b0:ca:9c:6d:68:73:dc:cd:20:c5: ec:62:17:a5:54:db:8f:8b:05:85:8d:3a:2c:6c:a9: 30:09:04:dd:8b:27:0f:44:28:76:0f:5e:57:0a:bf: ee:d0:8b:8c:75:bb:e5:55:af:15:9c:96:32:1a:40: 3e:4f:b3:e2:01:88:68:4a:bb:05:b4:f6:e0:5f:f5: d3:f4:7b:65:a0:bb:e1:bb:f1:b5:8c:b6:26:2c:ff: 3c:b2:f2:5e:f2:f6:30:af:cc:38:28:d1:8b:a8:6f: ad:60:23:87:7b:1d:87:4d:d1:da:a5:3a:e0:2c:97: d9:75:d6:e7:cc:65:4d:d4:b8:85:76:e5:3d:d2:97: 49:e0:52:db:a6:aa:46:3e:b4:c9:01:c0:ac:36:ae: 9f:f3:32:4c:24:20:03:e1:b0:1e:8f:d2:f9:a0:13: 2d:10:71:fa:56:30:91:da:58:3d:e9:8d:61:04:a6: 78:2e:77:5d:ed:c3:2d:c8:86:88:99:87:75:f6:de: cf:84:ea:a6:4c:71:39:46:93:68:f8:f4:c6:a8:6a: 14:14:be:f4:6f:bf:da:59:bb:2c:fd:45:12:d7:ad: a8:e7:c0:03:6f:33:91:0f:fe:79:06:ce:75:77:86: 1d:d7:43:63:25:58:67:2b:f1:f7:42:f7:1d:2f:e6: e4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BF:63:D1:15:54:D7:F0:EA:68:4A:45:0D:12:C5:FA:B0:79:34:6A X509v3 Authority Key Identifier: keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Lb9j0RVU1_DqaEpFDRLF-rB5NGo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.232.24.0/24 194.85.208.0/24 Signature Algorithm: sha256WithRSAEncryption 04:23:73:92:ab:d0:bf:55:61:09:a1:95:bf:9c:f1:3e:a0:d0: 42:89:99:0e:fa:e2:64:1c:ae:e6:2f:86:16:41:a7:ce:63:22: 2c:57:27:1d:b0:11:14:6d:0b:ef:2c:0a:e3:a9:81:93:4a:18: a0:25:cd:30:1a:f0:cd:e8:ae:1f:a5:2e:3b:bb:f5:68:59:c3: c8:a0:b0:48:ae:ed:ce:2f:49:7c:05:38:d3:48:1f:4f:80:93: 7f:b0:b0:3f:6a:60:c9:2e:f4:80:23:91:29:87:72:9c:c5:7a: 99:34:e9:e3:34:c6:e2:66:04:fd:dd:3c:2b:5f:ec:5c:4d:b2: 80:20:b2:7c:17:88:58:b4:2c:f7:2d:17:ec:34:9a:ed:9e:72: 9a:c4:2d:30:1a:40:78:29:45:26:07:0c:33:be:a9:2b:7c:46: 92:7c:a2:3f:6f:7e:0a:40:42:ff:be:d4:a8:e7:b0:16:51:12: fb:f6:5d:38:70:e1:9f:9a:1e:7a:09:80:06:8b:c5:1b:da:aa: f6:38:ef:04:52:a6:02:ff:11:b6:fa:e9:ed:86:d5:85:7e:3a: 40:56:35:b2:b3:6a:1b:ff:04:0c:ff:07:c8:aa:ae:ce:bc:93: 68:e4:f6:44:5c:55:4a:db:79:3c:88:67:f8:d8:61:a6:e9:65: 30:3f:06:d4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xz8H2k/e4gNkSIhOWL3kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx NjQ2NGEwHhcNMjYwMTAxMDQxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZGJmNjNkMTE1NTRkN2YwZWE2ODRhNDUwZDEyYzVmYWIwNzkzNDZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwC1trDKnG1oc9zNIMXsYhelVNuP iwWFjTosbKkwCQTdiycPRCh2D15XCr/u0IuMdbvlVa8VnJYyGkA+T7PiAYhoSrsF tPbgX/XT9HtloLvhu/G1jLYmLP88svJe8vYwr8w4KNGLqG+tYCOHex2HTdHapTrg LJfZddbnzGVN1LiFduU90pdJ4FLbpqpGPrTJAcCsNq6f8zJMJCAD4bAej9L5oBMt EHH6VjCR2lg96Y1hBKZ4Lndd7cMtyIaImYd19t7PhOqmTHE5RpNo+PTGqGoUFL70 b7/aWbss/UUS162o58ADbzORD/55Bs51d4Yd10NjJVhnK/H3QvcdL+bkPQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFC2/Y9EVVNfw6mhKRQ0SxfqweTRqMB8GA1UdIwQY MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt OWU5YTFlMDM3MzhlLzEvTGI5ajBSVlUxX0RxYUVwRkRSTEYtckI1TkdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwegYAwQA wlXQMA0GCSqGSIb3DQEBCwUAA4IBAQAEI3OSq9C/VWEJoZW/nPE+oNBCiZkO+uJk HK7mL4YWQafOYyIsVycdsBEUbQvvLArjqYGTShigJc0wGvDN6K4fpS47u/VoWcPI oLBIru3OL0l8BTjTSB9PgJN/sLA/amDJLvSAI5Eph3KcxXqZNOnjNMbiZgT93Twr X+xcTbKAILJ8F4hYtCz3LRfsNJrtnnKaxC0wGkB4KUUmBwwzvqkrfEaSfKI/b34K QEL/vtSo57AWURL79l04cOGfmh56CYAGi8Ub2qr2OO8EUqYC/xG2+unthtWFfjpA VjWys2ob/wQM/wfIqq7OvJNo5PZEXFVK23k8iGf42GGm6WUwPwbU -----END CERTIFICATE-----Generated at Sun Jan 25 17:32:50 2026 by rpki-client