This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/9d5ce5-b6c9-48da-8e8a-6a3bb92443fc/1/LS1I0LR07OhJxEEUNJqhn1-nNT0.roa File: LS1I0LR07OhJxEEUNJqhn1-nNT0.roa (raw, json) Hash identifier: 05VWudDvTZxRagJ/ZMpYgYcO8jy0CMReHlty6IA1+UM= Subject key identifier: 2D:2D:48:D0:B4:74:EC:E8:49:C4:41:14:34:9A:A1:9F:5F:A7:35:3D Certificate issuer: /CN=f260075c0944fb1634b628bb10b67f12c873e424 Certificate serial: 019B7C1102B4EBBFA0600A3334DBB9370D2C Authority key identifier: F2:60:07:5C:09:44:FB:16:34:B6:28:BB:10:B6:7F:12:C8:73:E4:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mAHXAlE-xY0tii7ELZ_Eshz5CQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/9d5ce5-b6c9-48da-8e8a-6a3bb92443fc/1/LS1I0LR07OhJxEEUNJqhn1-nNT0.roa Signing time: Fri 02 Jan 2026 00:17:27 +0000 ROA not before: Fri 02 Jan 2026 00:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208008 IP address blocks: 91.216.114.0/24 maxlen: 24 2001:678:b48::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/9d5ce5-b6c9-48da-8e8a-6a3bb92443fc/1/8mAHXAlE-xY0tii7ELZ_Eshz5CQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/9d5ce5-b6c9-48da-8e8a-6a3bb92443fc/1/8mAHXAlE-xY0tii7ELZ_Eshz5CQ.mft rsync://rpki.ripe.net/repository/DEFAULT/8mAHXAlE-xY0tii7ELZ_Eshz5CQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:02:b4:eb:bf:a0:60:0a:33:34:db:b9:37:0d:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f260075c0944fb1634b628bb10b67f12c873e424 Validity Not Before: Jan 2 00:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2d2d48d0b474ece849c44114349aa19f5fa7353d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:0a:4f:9a:dd:36:a7:13:ad:69:f1:19:9e:3a: 9d:a8:01:22:b2:90:34:09:90:7b:87:b2:6b:86:7e: 41:d3:49:42:41:38:b1:c4:67:d1:64:2e:97:ac:9a: af:29:4c:4f:a4:ce:64:0a:0e:e4:6c:26:1d:2a:2e: af:c7:a0:ef:f8:c4:6e:26:24:af:85:89:79:b3:20: 61:1b:e1:fd:95:c1:0e:01:71:31:45:43:8e:da:7a: 24:07:c6:3b:2d:3f:c8:1a:ee:7c:e5:8d:93:d7:9c: 39:90:e9:a9:22:ec:58:c2:e4:11:b1:1b:d1:8a:12: 9f:c7:8f:33:0c:12:b1:9c:36:57:be:e3:fd:d0:62: 39:c4:c2:54:3f:cf:87:2a:98:97:aa:f1:f1:df:7a: 9d:be:e5:8d:38:19:83:88:ab:55:4a:2b:4b:f9:62: e8:b2:bb:8d:1e:b9:0f:db:bd:82:3e:7c:66:b0:a3: 1c:c2:06:dd:4b:40:9e:1a:1a:0b:20:90:9c:c2:80: 0a:a3:10:4c:7a:1b:ff:2e:d5:7c:3e:6e:5a:f2:90: 5d:0c:4d:d4:ae:28:9d:db:59:e4:c9:43:c7:ab:60: 4e:76:cc:c1:42:a8:7b:81:c8:09:26:a8:3a:c1:47: 16:ef:10:b8:1e:fa:6e:30:f6:ad:fa:ba:09:8a:8d: 00:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:2D:48:D0:B4:74:EC:E8:49:C4:41:14:34:9A:A1:9F:5F:A7:35:3D X509v3 Authority Key Identifier: keyid:F2:60:07:5C:09:44:FB:16:34:B6:28:BB:10:B6:7F:12:C8:73:E4:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mAHXAlE-xY0tii7ELZ_Eshz5CQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/9d5ce5-b6c9-48da-8e8a-6a3bb92443fc/1/LS1I0LR07OhJxEEUNJqhn1-nNT0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/9d5ce5-b6c9-48da-8e8a-6a3bb92443fc/1/8mAHXAlE-xY0tii7ELZ_Eshz5CQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.114.0/24 IPv6: 2001:678:b48::/48 Signature Algorithm: sha256WithRSAEncryption 0f:00:c2:75:b3:1b:71:17:eb:dd:a9:de:2b:1d:b8:ef:fe:03: 20:07:b9:b3:de:7b:51:70:46:b0:a6:f7:b9:4b:71:44:21:cd: cf:8e:ef:fc:17:18:b1:59:a3:13:90:4f:9f:ce:5a:bf:ad:f6: e2:68:14:8b:3a:79:96:07:bb:82:40:ad:c7:78:10:36:65:0b: 14:21:09:46:aa:b0:85:32:63:86:72:10:00:ae:8a:1b:1c:a3: f4:e4:59:f6:f9:01:1a:73:40:10:a6:e8:57:9b:ab:74:bd:33: 18:a4:08:9d:5b:a7:07:14:e8:d0:d1:4d:d3:5b:c6:45:ac:26: 3c:67:25:a6:c8:7b:c8:b0:b9:10:5a:32:4f:a1:4d:f9:73:1f: e2:1e:db:27:44:79:be:ee:26:f2:01:62:d4:ef:f9:5c:bc:c9: a3:b2:0a:aa:7b:ac:09:c9:15:05:a2:0d:58:e9:7d:36:e5:b8: 42:0a:b0:4a:2d:dd:c9:8e:5e:a3:ed:c0:8b:e7:71:41:54:a3: e9:9c:6f:cb:4e:72:02:6d:1b:96:ea:03:e5:fe:ee:26:30:85: 4c:58:b2:39:f0:23:a8:b9:8c:fd:70:11:a7:90:17:60:9d:2c: 63:10:2f:02:db:5c:fc:c1:0b:0d:e3:34:7e:15:23:91:fa:60: fb:68:20:5b -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8EQK067+gYAozNNu5Nw0sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyNjAwNzVjMDk0NGZiMTYzNGI2MjhiYjEwYjY3ZjEyYzg3 M2U0MjQwHhcNMjYwMTAyMDAxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDJkNDhkMGI0NzRlY2U4NDljNDQxMTQzNDlhYTE5ZjVmYTczNTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8ApPmt02pxOtafEZnjqdqAEispA0 CZB7h7Jrhn5B00lCQTixxGfRZC6XrJqvKUxPpM5kCg7kbCYdKi6vx6Dv+MRuJiSv hYl5syBhG+H9lcEOAXExRUOO2nokB8Y7LT/IGu585Y2T15w5kOmpIuxYwuQRsRvR ihKfx48zDBKxnDZXvuP90GI5xMJUP8+HKpiXqvHx33qdvuWNOBmDiKtVSitL+WLo sruNHrkP272CPnxmsKMcwgbdS0CeGhoLIJCcwoAKoxBMehv/LtV8Pm5a8pBdDE3U riid21nkyUPHq2BOdszBQqh7gcgJJqg6wUcW7xC4HvpuMPat+roJio0AFQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFC0tSNC0dOzoScRBFDSaoZ9fpzU9MB8GA1UdIwQY MBaAFPJgB1wJRPsWNLYouxC2fxLIc+QkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOG1BSFhBbEUteFkwdGlpN0VMWl9Fc2h6NUNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy85ZDVjZTUtYjZjOS00OGRhLThlOGEt NmEzYmI5MjQ0M2ZjLzEvTFMxSTBMUjA3T2hKeEVFVU5KcWhuMS1uTlQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy85ZDVjZTUtYjZjOS00OGRhLThlOGEtNmEzYmI5MjQ0M2Zj LzEvOG1BSFhBbEUteFkwdGlpN0VMWl9Fc2h6NUNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW9hyMA8E AgACMAkDBwAgAQZ4C0gwDQYJKoZIhvcNAQELBQADggEBAA8AwnWzG3EX692p3isd uO/+AyAHubPee1FwRrCm97lLcUQhzc+O7/wXGLFZoxOQT5/OWr+t9uJoFIs6eZYH u4JArcd4EDZlCxQhCUaqsIUyY4ZyEACuihsco/TkWfb5ARpzQBCm6Febq3S9Mxik CJ1bpwcU6NDRTdNbxkWsJjxnJabIe8iwuRBaMk+hTflzH+Ie2ydEeb7uJvIBYtTv +Vy8yaOyCqp7rAnJFQWiDVjpfTbluEIKsEot3cmOXqPtwIvncUFUo+mcb8tOcgJt G5bqA+X+7iYwhUxYsjnwI6i5jP1wEaeQF2CdLGMQLwLbXPzBCw3jNH4VI5H6YPto IFs= -----END CERTIFICATE-----Generated at Mon Jan 26 12:21:14 2026 by rpki-client