This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa File: Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa (raw, json) Hash identifier: BZd7Kwg87H/bospWBtm/c29GcUHDV3xSrqHEL2bm8Hg= Subject key identifier: 2E:7D:CE:27:AC:C3:5B:1E:C1:97:0E:47:0A:59:78:A6:8E:02:1F:E3 Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1 Certificate serial: 019B79105ACA7D643CB4D5E87A4640E2827C Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa Signing time: Thu 01 Jan 2026 10:17:53 +0000 ROA not before: Thu 01 Jan 2026 10:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212735 IP address blocks: 193.189.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:5a:ca:7d:64:3c:b4:d5:e8:7a:46:40:e2:82:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1 Validity Not Before: Jan 1 10:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e7dce27acc35b1ec1970e470a5978a68e021fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:73:6e:26:67:15:a5:a6:97:46:40:4d:be:6f: ca:a2:3e:97:b7:1a:ab:05:36:a0:9b:a2:d2:8f:f7: 6a:bc:ec:7b:5f:fb:82:ea:06:bd:13:68:a6:d2:2f: ca:2b:8a:a6:f2:f1:2c:9f:d9:6c:24:e6:b1:b5:88: 3e:3e:e9:be:f4:01:bf:0d:03:a2:f6:39:50:d8:6b: 50:e4:cd:74:cb:d9:c9:62:63:73:6a:86:b0:f8:08: 91:71:d5:2b:df:07:96:9f:e8:15:a6:0a:b2:9b:02: 38:f5:f6:87:67:8d:a4:1a:01:7d:79:11:f8:db:38: 6a:7f:94:cc:70:4a:5f:79:50:2e:53:4f:c1:e4:03: 99:6d:a6:03:a2:a2:7d:54:ce:10:2f:0c:fd:97:76: 9a:92:42:6a:ed:2a:a8:2b:5a:d1:af:c3:5b:ee:9b: 34:38:44:3b:5f:29:06:f2:3b:ca:62:39:c6:3f:1f: 5b:65:99:fa:2d:fb:c8:03:b1:40:48:d6:7b:51:e9: e0:e6:44:ff:05:5e:ca:02:ff:b9:e3:c0:07:f1:aa: 12:39:5d:bc:f9:3c:19:d5:8b:34:9b:9b:00:6f:3f: 9c:b1:87:de:28:1c:c5:98:61:22:97:8a:b0:36:4b: 56:46:47:b2:4c:00:e5:32:92:05:83:e9:a6:d7:25: 0c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:7D:CE:27:AC:C3:5B:1E:C1:97:0E:47:0A:59:78:A6:8E:02:1F:E3 X509v3 Authority Key Identifier: keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.189.102.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:e7:65:ba:d5:3a:65:35:c1:a2:f3:21:ba:96:06:2b:13:8a: ae:2a:d6:3d:67:9d:c0:66:3e:ae:48:3f:1c:0c:8f:78:af:9a: 31:58:22:c7:44:b5:2f:67:17:f1:99:d0:39:df:b4:d0:02:19: 47:bf:f2:b3:67:f1:a0:14:76:43:87:8c:d4:6f:0f:49:1d:e7: 1b:8a:e4:b7:5d:70:73:c5:48:90:a6:92:56:6b:00:41:76:a1: 14:14:50:4c:32:d3:98:a0:1a:61:b4:53:12:50:ce:c9:6b:9a: 75:25:6a:80:c9:9c:07:bc:05:02:d8:2d:0d:54:c5:6c:cd:f6: c9:32:5d:60:f1:5c:c5:35:5f:73:3b:04:23:e7:a1:df:5c:37: 90:b2:c6:e4:3b:3c:b6:62:77:ac:44:fc:62:6a:70:7e:29:ae: c8:92:d1:d0:1d:f7:d0:4c:89:cd:66:50:b6:1d:70:08:a3:09: 97:63:81:35:36:03:7c:4b:62:08:cc:72:b7:24:b8:89:87:6d: 4b:d3:2a:84:1d:00:72:c8:55:30:16:40:ef:07:07:3c:8b:bb: 0d:ab:e0:2c:15:9f:45:03:3d:de:37:58:b3:98:c0:1d:e3:70: 3c:39:d6:ff:f9:62:c0:f3:08:05:78:2e:e2:17:34:2f:5b:13: 77:00:17:32 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EFrKfWQ8tNXoekZA4oJ8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjNWM1MzEyMTU4NGQ3ZDg2Mjk4N2YyNmZmN2JlZDVhZTEz ODE2YTEwHhcNMjYwMTAxMTAxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTdkY2UyN2FjYzM1YjFlYzE5NzBlNDcwYTU5NzhhNjhlMDIxZmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzXNuJmcVpaaXRkBNvm/Koj6Xtxqr BTagm6LSj/dqvOx7X/uC6ga9E2im0i/KK4qm8vEsn9lsJOaxtYg+Pum+9AG/DQOi 9jlQ2GtQ5M10y9nJYmNzaoaw+AiRcdUr3weWn+gVpgqymwI49faHZ42kGgF9eRH4 2zhqf5TMcEpfeVAuU0/B5AOZbaYDoqJ9VM4QLwz9l3aakkJq7SqoK1rRr8Nb7ps0 OEQ7XykG8jvKYjnGPx9bZZn6LfvIA7FASNZ7Ueng5kT/BV7KAv+548AH8aoSOV28 +TwZ1Ys0m5sAbz+csYfeKBzFmGEil4qwNktWRkeyTADlMpIFg+mm1yUMjQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC59ziesw1sewZcORwpZeKaOAh/jMB8GA1UdIwQY MBaAFKxcUxIVhNfYYph/Jv977VrhOBahMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8xMDdmZGQtZDJhNS00NTBjLWIwMzEt MjViZjI1MDE4NDg5LzEvTG4zT0o2ekRXeDdCbHc1SENsbDRwbzRDSC1NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8xMDdmZGQtZDJhNS00NTBjLWIwMzEtMjViZjI1MDE4NDg5 LzEvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwb1mMA0G CSqGSIb3DQEBCwUAA4IBAQAd52W61TplNcGi8yG6lgYrE4quKtY9Z53AZj6uSD8c DI94r5oxWCLHRLUvZxfxmdA537TQAhlHv/KzZ/GgFHZDh4zUbw9JHecbiuS3XXBz xUiQppJWawBBdqEUFFBMMtOYoBphtFMSUM7Ja5p1JWqAyZwHvAUC2C0NVMVszfbJ Ml1g8VzFNV9zOwQj56HfXDeQssbkOzy2YnesRPxianB+Ka7IktHQHffQTInNZlC2 HXAIowmXY4E1NgN8S2IIzHK3JLiJh21L0yqEHQByyFUwFkDvBwc8i7sNq+AsFZ9F Az3eN1izmMAd43A8Odb/+WLA8wgFeC7iFzQvWxN3ABcy -----END CERTIFICATE-----Generated at Sun Jan 25 17:41:43 2026 by rpki-client