This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/2LHgN_7jeOEmEp49TXPoGseMKE0.roa File: 2LHgN_7jeOEmEp49TXPoGseMKE0.roa (raw, json) Hash identifier: u3Ghkv3e1+pxpIVGrLETupfGggN3KGBiZERj/lx/mTg= Subject key identifier: D8:B1:E0:37:FE:E3:78:E1:26:12:9E:3D:4D:73:E8:1A:C7:8C:28:4D Certificate issuer: /CN=04a2ae2cd094333018c41daafb474c6cfa80d07d Certificate serial: 019B7910634FE354054DA1D07C192568DCF4 Authority key identifier: 04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/2LHgN_7jeOEmEp49TXPoGseMKE0.roa Signing time: Thu 01 Jan 2026 10:17:55 +0000 ROA not before: Thu 01 Jan 2026 10:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8257 IP address blocks: 85.135.128.0/17 maxlen: 20 176.61.192.0/18 maxlen: 20 176.61.192.0/20 maxlen: 20 176.61.208.0/20 maxlen: 20 176.61.224.0/21 maxlen: 21 176.61.232.0/21 maxlen: 21 178.253.128.0/18 maxlen: 18 178.253.128.0/19 maxlen: 19 178.253.160.0/19 maxlen: 19 185.37.240.0/22 maxlen: 22 188.112.64.0/18 maxlen: 18 188.112.64.0/19 maxlen: 19 188.112.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/BKKuLNCUMzAYxB2q-0dMbPqA0H0.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/BKKuLNCUMzAYxB2q-0dMbPqA0H0.mft rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:63:4f:e3:54:05:4d:a1:d0:7c:19:25:68:dc:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04a2ae2cd094333018c41daafb474c6cfa80d07d Validity Not Before: Jan 1 10:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d8b1e037fee378e126129e3d4d73e81ac78c284d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0c:c9:c9:6f:09:60:db:2f:c3:ef:f9:77:93: 55:f6:9f:24:75:d2:7f:6a:a2:4d:04:c7:e2:fc:ea: e5:36:e7:d0:2c:45:0f:04:1b:b0:2a:dc:17:6a:7a: 1a:8f:f6:48:2c:38:9f:0a:23:86:15:ee:5b:cb:51: a0:1a:1b:fb:d5:24:c7:eb:81:08:d9:7c:8a:f9:62: da:d2:d1:30:02:c0:fc:35:72:4e:03:1a:57:83:1c: af:9f:ba:55:ca:a6:bc:4c:f0:42:a0:63:8e:b7:bd: 8a:70:60:1c:2e:e8:85:7d:3d:b3:1c:e2:25:a9:24: 9d:c7:4b:7e:15:d0:f3:7a:aa:cb:1d:13:0d:bb:80: ac:ec:21:c1:7f:3d:9a:fc:02:a3:ab:9e:f6:9d:fd: ec:ae:f3:92:d1:55:1f:65:97:4c:b8:73:66:ae:c5: f9:9f:5f:3b:23:3b:41:74:3e:c9:32:0c:67:b9:30: 33:c8:d4:b4:b9:eb:06:2d:30:c4:29:2d:64:9f:a8: e1:b7:6e:4d:a5:db:98:f2:2c:d0:76:a0:f1:9f:0e: 41:d6:85:6a:4d:55:17:aa:90:6c:e5:41:ce:af:d3: 16:cd:ed:79:6c:8d:a1:2c:89:52:5a:a5:05:00:b9: 10:2a:bb:64:f1:2a:04:fc:e1:55:5d:58:a7:3b:3a: bd:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B1:E0:37:FE:E3:78:E1:26:12:9E:3D:4D:73:E8:1A:C7:8C:28:4D X509v3 Authority Key Identifier: keyid:04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/2LHgN_7jeOEmEp49TXPoGseMKE0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/BKKuLNCUMzAYxB2q-0dMbPqA0H0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.135.128.0/17 176.61.192.0/18 178.253.128.0/18 185.37.240.0/22 188.112.64.0/18 Signature Algorithm: sha256WithRSAEncryption ae:70:02:82:d4:7f:83:6a:a2:92:fa:56:de:7a:0d:5d:e5:fb: 56:a2:a5:bc:1b:b3:27:ab:2d:7f:36:4a:88:6e:c2:98:10:fc: b3:6f:83:a5:61:65:ef:53:b0:e9:1d:1a:f3:f7:f8:52:02:d1: 52:30:3c:1b:75:da:c6:0c:aa:22:51:c0:d5:12:58:5a:ff:00: 1c:70:2c:d4:5c:d5:46:00:aa:23:e9:32:11:2e:7d:19:80:03: 1e:95:d5:aa:99:d9:db:7b:3f:8b:8f:ae:33:37:9c:40:1d:f9: 0c:fc:9c:00:15:76:52:9f:a1:c2:fc:4b:f6:d8:e8:c5:0c:61: b2:41:89:1a:b3:cd:23:34:df:1b:2e:83:df:11:e1:0b:4c:8d: 9e:e3:03:5b:6d:0b:ee:12:27:6b:f8:4a:d3:66:10:f8:50:43: 8a:51:73:ee:90:cc:3c:d3:3d:02:d2:e0:89:f8:bb:f8:4b:8c: f3:3b:1b:15:c7:b4:47:f0:0e:0d:f8:f0:78:8e:5a:cb:7b:fa: d6:71:4e:ee:56:4d:38:f5:04:72:4c:54:16:a7:5c:f6:46:60: 84:ad:eb:87:bd:b2:f4:c2:65:55:e2:eb:be:dc:80:e2:5a:6a: 11:11:32:a1:d1:89:05:ab:9d:9f:38:20:bd:72:a7:ed:8c:64: 81:7b:0f:f3 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt5EGNP41QFTaHQfBklaNz0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0YTJhZTJjZDA5NDMzMzAxOGM0MWRhYWZiNDc0YzZjZmE4 MGQwN2QwHhcNMjYwMTAxMTAxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOGIxZTAzN2ZlZTM3OGUxMjYxMjllM2Q0ZDczZTgxYWM3OGMyODRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2gzJyW8JYNsvw+/5d5NV9p8kddJ/ aqJNBMfi/OrlNufQLEUPBBuwKtwXanoaj/ZILDifCiOGFe5by1GgGhv71STH64EI 2XyK+WLa0tEwAsD8NXJOAxpXgxyvn7pVyqa8TPBCoGOOt72KcGAcLuiFfT2zHOIl qSSdx0t+FdDzeqrLHRMNu4Cs7CHBfz2a/AKjq572nf3srvOS0VUfZZdMuHNmrsX5 n187IztBdD7JMgxnuTAzyNS0uesGLTDEKS1kn6jht25NpduY8izQdqDxnw5B1oVq TVUXqpBs5UHOr9MWze15bI2hLIlSWqUFALkQKrtk8SoE/OFVXVinOzq9JwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFNix4Df+43jhJhKePU1z6BrHjChNMB8GA1UdIwQY MBaAFASirizQlDMwGMQdqvtHTGz6gNB9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQktLdUxOQ1VNekFZeEIycS0wZE1iUHFBMEgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS82MzRhMTItZTU4Yy00NTVjLTg5MzMt NmU2ZThkOTMwM2U5LzEvMkxIZ05fN2plT0VtRXA0OVRYUG9Hc2VNS0UwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS82MzRhMTItZTU4Yy00NTVjLTg5MzMtNmU2ZThkOTMwM2U5 LzEvQktLdUxOQ1VNekFZeEIycS0wZE1iUHFBMEgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQHVYeAAwQG sD3AAwQGsv2AAwQCuSXwAwQGvHBAMA0GCSqGSIb3DQEBCwUAA4IBAQCucAKC1H+D aqKS+lbeeg1d5ftWoqW8G7Mnqy1/NkqIbsKYEPyzb4OlYWXvU7DpHRrz9/hSAtFS MDwbddrGDKoiUcDVElha/wAccCzUXNVGAKoj6TIRLn0ZgAMeldWqmdnbez+Lj64z N5xAHfkM/JwAFXZSn6HC/Ev22OjFDGGyQYkas80jNN8bLoPfEeELTI2e4wNbbQvu Eidr+ErTZhD4UEOKUXPukMw80z0C0uCJ+Lv4S4zzOxsVx7RH8A4N+PB4jlrLe/rW cU7uVk049QRyTFQWp1z2RmCEreuHvbL0wmVV4uu+3IDiWmoRETKh0YkFq52fOCC9 cqftjGSBew/z -----END CERTIFICATE-----Generated at Mon Jan 26 17:46:25 2026 by rpki-client