This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/LSc0zZT14Jo7EI4R2womLi4BWXw.roa File: LSc0zZT14Jo7EI4R2womLi4BWXw.roa (raw, json) Hash identifier: /t+Y52iuLvhD9G1Nt7yXlLrqwqdhR3k7UUDI+0b7Jck= Subject key identifier: 2D:27:34:CD:94:F5:E0:9A:3B:10:8E:11:DB:0A:26:2E:2E:01:59:7C Certificate issuer: /CN=26bddae04dbcb1f82f55b078307ba4b084b994bb Certificate serial: 019B76EB9E810959FBAA699B2200F71CC549 Authority key identifier: 26:BD:DA:E0:4D:BC:B1:F8:2F:55:B0:78:30:7B:A4:B0:84:B9:94:BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jr3a4E28sfgvVbB4MHuksIS5lLs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/LSc0zZT14Jo7EI4R2womLi4BWXw.roa Signing time: Thu 01 Jan 2026 00:18:31 +0000 ROA not before: Thu 01 Jan 2026 00:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49596 IP address blocks: 103.231.136.0/24 maxlen: 24 103.231.137.0/24 maxlen: 24 103.231.138.0/24 maxlen: 24 103.231.139.0/24 maxlen: 24 185.137.108.0/22 maxlen: 22 185.137.108.0/24 maxlen: 24 185.137.109.0/24 maxlen: 24 185.137.110.0/24 maxlen: 24 185.137.111.0/24 maxlen: 24 2a07:380::/29 maxlen: 29 2a07:387::/32 maxlen: 32 2a0a:40c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/Jr3a4E28sfgvVbB4MHuksIS5lLs.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/Jr3a4E28sfgvVbB4MHuksIS5lLs.mft rsync://rpki.ripe.net/repository/DEFAULT/Jr3a4E28sfgvVbB4MHuksIS5lLs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:9e:81:09:59:fb:aa:69:9b:22:00:f7:1c:c5:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26bddae04dbcb1f82f55b078307ba4b084b994bb Validity Not Before: Jan 1 00:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2d2734cd94f5e09a3b108e11db0a262e2e01597c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3f:c0:c3:ce:27:93:35:01:33:94:7c:e8:88: 8e:be:5c:0c:05:2b:83:76:41:c3:5d:24:75:52:68: a0:ff:f5:ea:62:e0:fd:8f:78:5f:f3:99:a3:93:b6: 31:c9:d6:b6:35:c1:12:35:10:27:ee:dc:0e:e3:87: c9:44:79:04:98:cd:c7:70:f4:5a:80:67:33:43:f1: fe:df:47:49:7e:60:ff:6e:2b:80:bf:c1:88:a2:53: e2:42:61:1f:40:ca:72:28:eb:42:ec:48:1d:54:a6: 3e:19:f3:fe:a3:84:9b:4e:44:4c:8e:5a:39:a3:a3: 63:34:60:ab:18:ab:53:1e:ee:1c:3e:99:bc:11:1c: 12:73:92:16:69:b6:2b:b6:90:f9:ff:e0:8e:01:a9: 75:f0:ca:92:9e:d1:28:40:64:dc:17:c5:19:78:f0: ec:b4:2c:e8:e4:c9:19:96:13:e2:a1:47:27:97:f6: c1:e4:a9:5d:e4:e2:da:c8:c3:78:af:87:d7:b5:7d: e1:db:86:9d:c5:51:b5:b0:ea:cf:ea:05:bc:aa:e9: d4:eb:4b:96:c6:b8:f6:55:ad:ed:0e:fa:18:85:06: aa:84:ea:f0:4b:7a:e3:97:49:76:ef:9a:ab:5c:24: 1c:41:6c:60:ba:a9:c6:39:c7:28:93:40:b6:cb:29: 0b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:27:34:CD:94:F5:E0:9A:3B:10:8E:11:DB:0A:26:2E:2E:01:59:7C X509v3 Authority Key Identifier: keyid:26:BD:DA:E0:4D:BC:B1:F8:2F:55:B0:78:30:7B:A4:B0:84:B9:94:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jr3a4E28sfgvVbB4MHuksIS5lLs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/LSc0zZT14Jo7EI4R2womLi4BWXw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/Jr3a4E28sfgvVbB4MHuksIS5lLs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.136.0/22 185.137.108.0/22 IPv6: 2a07:380::/29 2a0a:40c0::/29 Signature Algorithm: sha256WithRSAEncryption 90:61:e0:86:1e:83:e5:9d:37:e7:82:45:10:e1:14:a5:f9:b3: 4a:01:f8:46:59:93:48:f4:b5:b0:b7:14:4c:7a:28:88:19:e2: 56:f3:8f:f0:65:47:cb:47:7f:c2:be:80:5a:d8:3d:ba:bf:5b: 44:73:60:7f:15:d7:18:65:32:c7:83:b3:48:40:49:2c:d5:d5: 84:2d:e3:54:6e:46:d8:48:90:66:46:86:a4:99:74:31:8e:5b: b4:bb:82:90:cd:e8:35:0e:a6:22:fe:d2:bf:6c:f8:47:5e:b8: 86:50:e5:a8:58:96:8d:fe:9f:b1:9e:8a:1e:ab:42:88:ba:39: a1:ad:67:7d:b9:01:35:63:18:c6:fb:fd:1d:8f:83:a9:33:57: 53:51:3c:fb:a9:3d:6c:08:e2:d1:b0:85:3b:d2:2a:7e:3c:63: ca:f5:01:3e:60:ea:6b:a8:5c:53:d3:9a:fb:d8:f2:06:b7:21: 13:ac:49:a0:e1:ed:ae:03:5d:2f:b7:bc:5a:fe:7c:52:75:dc: 90:7a:d9:61:5b:04:03:79:7b:22:26:f2:f5:b4:49:d2:1c:c7: 88:74:94:16:18:29:99:64:07:b1:d4:6e:80:7e:e5:c9:04:49: 21:56:dd:88:92:67:04:2c:37:75:d9:2f:22:b2:81:d9:02:f5: 5b:a5:cb:4f -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt2656BCVn7qmmbIgD3HMVJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2YmRkYWUwNGRiY2IxZjgyZjU1YjA3ODMwN2JhNGIwODRi OTk0YmIwHhcNMjYwMTAxMDAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDI3MzRjZDk0ZjVlMDlhM2IxMDhlMTFkYjBhMjYyZTJlMDE1OTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsz/Aw84nkzUBM5R86IiOvlwMBSuD dkHDXSR1Umig//XqYuD9j3hf85mjk7Yxyda2NcESNRAn7twO44fJRHkEmM3HcPRa gGczQ/H+30dJfmD/biuAv8GIolPiQmEfQMpyKOtC7EgdVKY+GfP+o4SbTkRMjlo5 o6NjNGCrGKtTHu4cPpm8ERwSc5IWabYrtpD5/+COAal18MqSntEoQGTcF8UZePDs tCzo5MkZlhPioUcnl/bB5Kld5OLayMN4r4fXtX3h24adxVG1sOrP6gW8qunU60uW xrj2Va3tDvoYhQaqhOrwS3rjl0l275qrXCQcQWxguqnGOccok0C2yykLMwIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFC0nNM2U9eCaOxCOEdsKJi4uAVl8MB8GA1UdIwQY MBaAFCa92uBNvLH4L1WweDB7pLCEuZS7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSnIzYTRFMjhzZmd2VmJCNE1IdWtzSVM1bExzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9mZWIzYmEtZWU5MC00ZjAzLTllMDAt ZjYxNzlhOTEwYjE1LzEvTFNjMHpaVDE0Sm83RUk0UjJ3b21MaTRCV1h3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi9mZWIzYmEtZWU5MC00ZjAzLTllMDAtZjYxNzlhOTEwYjE1 LzEvSnIzYTRFMjhzZmd2VmJCNE1IdWtzSVM1bExzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjASBAIAATAMAwQCZ+eIAwQC uYlsMBQEAgACMA4DBQMqBwOAAwUDKgpAwDANBgkqhkiG9w0BAQsFAAOCAQEAkGHg hh6D5Z0354JFEOEUpfmzSgH4RlmTSPS1sLcUTHooiBniVvOP8GVHy0d/wr6AWtg9 ur9bRHNgfxXXGGUyx4OzSEBJLNXVhC3jVG5G2EiQZkaGpJl0MY5btLuCkM3oNQ6m Iv7Sv2z4R164hlDlqFiWjf6fsZ6KHqtCiLo5oa1nfbkBNWMYxvv9HY+DqTNXU1E8 +6k9bAji0bCFO9IqfjxjyvUBPmDqa6hcU9Oa+9jyBrchE6xJoOHtrgNdL7e8Wv58 UnXckHrZYVsEA3l7Iiby9bRJ0hzHiHSUFhgpmWQHsdRugH7lyQRJIVbdiJJnBCw3 ddkvIrKB2QL1W6XLTw== -----END CERTIFICATE-----Generated at Mon Jan 26 06:03:21 2026 by rpki-client