This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/ldjE34Y5UHyQm9UPuMRXHapL2tQ.roa File: ldjE34Y5UHyQm9UPuMRXHapL2tQ.roa (raw, json) Hash identifier: l2HlPn4UDyIXeMSyP3+IwTe3CYld8micBXtqct5ZxHs= Subject key identifier: 95:D8:C4:DF:86:39:50:7C:90:9B:D5:0F:B8:C4:57:1D:AA:4B:DA:D4 Certificate issuer: /CN=01cf2a71b2c7bf541c6cc04151cd02078d369926 Certificate serial: 019B7CEE3542B89B2819C3BBC8F3E21578EB Authority key identifier: 01:CF:2A:71:B2:C7:BF:54:1C:6C:C0:41:51:CD:02:07:8D:36:99:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/ldjE34Y5UHyQm9UPuMRXHapL2tQ.roa Signing time: Fri 02 Jan 2026 04:19:04 +0000 ROA not before: Fri 02 Jan 2026 04:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42812 IP address blocks: 185.82.140.0/22 maxlen: 22 193.24.111.0/24 maxlen: 24 2a05:90c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:35:42:b8:9b:28:19:c3:bb:c8:f3:e2:15:78:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01cf2a71b2c7bf541c6cc04151cd02078d369926 Validity Not Before: Jan 2 04:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=95d8c4df8639507c909bd50fb8c4571daa4bdad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:87:d7:f7:c0:87:32:94:da:f6:0a:88:f0:e3: 1a:7a:cd:e8:72:d9:92:90:a2:e3:3b:f1:4a:b4:81: d1:2e:8f:3b:23:b9:8f:50:84:81:1c:3f:31:f5:bf: 0d:7d:f3:e8:37:c2:d3:3d:a4:8b:f9:38:bb:3f:6e: 33:a5:af:b0:ce:44:00:11:6a:b7:48:d3:0f:68:32: 29:42:11:68:0b:10:59:43:da:41:6b:51:9e:f0:e6: 4c:1e:47:44:dc:63:ab:9d:2a:d7:d3:e6:ae:88:f9: 59:0f:d2:4d:75:e8:b1:b4:7c:23:5c:1c:7d:ac:86: fb:fa:9d:f7:05:c8:63:69:05:16:d0:d4:36:52:a8: 9d:a9:bd:0a:61:d8:f0:93:d2:b1:73:a8:84:22:81: 56:2b:4b:01:ea:e8:9c:69:45:86:24:87:a1:ec:db: 36:6e:2a:f1:01:fb:5c:83:29:ce:24:1d:1b:54:a1: dc:25:9f:04:be:d4:5c:b8:5a:57:2f:fa:91:b9:18: c7:20:5d:c4:1b:f3:0f:c3:54:94:db:9f:27:ae:bf: 54:80:1e:17:32:bb:fa:b0:07:ac:28:1f:e6:f1:af: 25:0b:31:18:10:f6:24:eb:40:fd:0d:66:e2:b1:a7: 37:19:a1:8f:45:5d:75:64:81:1c:2a:24:b8:9c:8d: 1a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:D8:C4:DF:86:39:50:7C:90:9B:D5:0F:B8:C4:57:1D:AA:4B:DA:D4 X509v3 Authority Key Identifier: keyid:01:CF:2A:71:B2:C7:BF:54:1C:6C:C0:41:51:CD:02:07:8D:36:99:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/ldjE34Y5UHyQm9UPuMRXHapL2tQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.82.140.0/22 193.24.111.0/24 IPv6: 2a05:90c0::/29 Signature Algorithm: sha256WithRSAEncryption 39:42:07:bd:1c:b4:6d:8b:da:7f:19:90:9f:d9:84:ab:7d:c6: 78:29:e5:bb:a2:9f:2e:00:49:41:11:14:2c:82:82:dd:b1:de: a4:18:8a:e6:99:0a:59:87:2c:35:f6:13:f1:48:13:2c:e3:22: b6:2c:05:9a:1e:56:27:81:d7:21:8a:3a:cb:82:bf:87:d0:47: 8a:d8:c5:ed:1c:f3:a3:ce:12:b4:81:cf:71:88:51:f1:b5:3f: 59:d4:01:39:e1:d9:d3:59:2f:8b:c4:5f:de:4e:0d:75:f0:00: 48:9a:c1:bb:c9:4d:4b:ec:4b:a7:3d:c4:36:4d:77:7d:9e:b4: 36:01:31:0e:88:f2:85:25:c9:89:4b:2c:7e:08:86:98:c5:3a: a0:86:63:f9:81:0a:a5:83:93:f7:04:eb:98:50:9d:c4:3a:4c: f0:f2:fb:2b:9d:b1:9e:b6:16:b0:a0:5b:24:2e:c1:2b:f6:cc: 3d:5b:38:23:a5:10:e0:7e:04:0d:34:99:3b:f6:f4:85:22:5a: 9a:df:5b:d0:07:85:12:26:60:ab:97:02:85:17:70:47:e1:08: 3d:97:a9:6b:01:64:d7:23:69:ae:cb:bf:e2:67:80:08:c8:39: d1:13:8d:6d:e9:2e:47:af:11:a3:2b:5d:7c:80:c5:a7:20:7c: 08:2d:c9:d0 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt87jVCuJsoGcO7yPPiFXjrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxY2YyYTcxYjJjN2JmNTQxYzZjYzA0MTUxY2QwMjA3OGQz Njk5MjYwHhcNMjYwMTAyMDQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NWQ4YzRkZjg2Mzk1MDdjOTA5YmQ1MGZiOGM0NTcxZGFhNGJkYWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIfX98CHMpTa9gqI8OMaes3octmS kKLjO/FKtIHRLo87I7mPUISBHD8x9b8NffPoN8LTPaSL+Ti7P24zpa+wzkQAEWq3 SNMPaDIpQhFoCxBZQ9pBa1Ge8OZMHkdE3GOrnSrX0+auiPlZD9JNdeixtHwjXBx9 rIb7+p33BchjaQUW0NQ2Uqidqb0KYdjwk9Kxc6iEIoFWK0sB6uicaUWGJIeh7Ns2 birxAftcgynOJB0bVKHcJZ8EvtRcuFpXL/qRuRjHIF3EG/MPw1SU258nrr9UgB4X Mrv6sAesKB/m8a8lCzEYEPYk60D9DWbisac3GaGPRV11ZIEcKiS4nI0alQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFJXYxN+GOVB8kJvVD7jEVx2qS9rUMB8GA1UdIwQY MBaAFAHPKnGyx79UHGzAQVHNAgeNNpkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWM4cWNiTEh2MVFjYk1CQlVjMENCNDAybVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9jMjRlZTEtMmNiMi00OTA3LTgwNDgt YjBmNGZiZTI2YjYxLzEvbGRqRTM0WTVVSHlRbTlVUHVNUlhIYXBMMnRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC9jMjRlZTEtMmNiMi00OTA3LTgwNDgtYjBmNGZiZTI2YjYx LzEvQWM4cWNiTEh2MVFjYk1CQlVjMENCNDAybVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuVKMAwQA wRhvMA0EAgACMAcDBQMqBZDAMA0GCSqGSIb3DQEBCwUAA4IBAQA5Qge9HLRti9p/ GZCf2YSrfcZ4KeW7op8uAElBERQsgoLdsd6kGIrmmQpZhyw19hPxSBMs4yK2LAWa HlYngdchijrLgr+H0EeK2MXtHPOjzhK0gc9xiFHxtT9Z1AE54dnTWS+LxF/eTg11 8ABImsG7yU1L7EunPcQ2TXd9nrQ2ATEOiPKFJcmJSyx+CIaYxTqghmP5gQqlg5P3 BOuYUJ3EOkzw8vsrnbGethawoFskLsEr9sw9WzgjpRDgfgQNNJk79vSFIlqa31vQ B4USJmCrlwKFF3BH4Qg9l6lrAWTXI2muy7/iZ4AIyDnRE41t6S5HrxGjK118gMWn IHwILcnQ -----END CERTIFICATE-----Generated at Mon Jan 26 16:23:27 2026 by rpki-client