This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/loJlqq3qXuCu-dkSIlY72SrCnbU.roa File: loJlqq3qXuCu-dkSIlY72SrCnbU.roa (raw, json) Hash identifier: 5OLtUAD6inbOq/tzv2K1YJFeXJFtMDnKAXlws3rJ/lw= Subject key identifier: 96:82:65:AA:AD:EA:5E:E0:AE:F9:D9:12:22:56:3B:D9:2A:C2:9D:B5 Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b Certificate serial: 019B7B36CB753EC0C7397D091639EA9725E3 Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/loJlqq3qXuCu-dkSIlY72SrCnbU.roa Signing time: Thu 01 Jan 2026 20:19:07 +0000 ROA not before: Thu 01 Jan 2026 20:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12325 IP address blocks: 194.8.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.mft rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:cb:75:3e:c0:c7:39:7d:09:16:39:ea:97:25:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b Validity Not Before: Jan 1 20:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=968265aaadea5ee0aef9d91222563bd92ac29db5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0d:76:48:7b:2e:0b:22:10:2a:f3:ad:4a:90: 34:65:c9:a0:a3:9d:97:a5:56:65:bb:d2:d1:34:2a: a1:30:6e:33:ee:b6:30:47:2c:22:cc:fe:1e:f4:f5: c9:19:4f:45:c4:96:da:05:71:91:4e:a8:67:5b:eb: 4a:43:61:73:3a:ce:99:77:36:ca:1e:10:2c:cf:06: d8:d5:eb:83:4f:84:ce:71:b1:c2:5a:d4:3c:b6:cb: 69:6a:04:79:9a:48:1f:3a:2e:0d:8b:23:4c:25:56: b1:a7:5d:38:b9:ce:16:3a:9e:f9:d5:61:0c:d5:26: 37:1b:6b:0a:72:ec:94:b5:c2:81:2a:06:3d:df:a8: 65:d1:a9:7e:05:43:27:6a:1e:7c:33:9c:8a:07:08: 2a:a2:ec:0f:c0:e1:26:c1:dd:8c:6d:cb:20:b7:1c: 11:ee:e3:65:d5:48:20:48:36:88:ff:be:e6:73:83: d9:fb:7f:cf:a3:41:96:40:13:48:10:d8:bd:64:fb: d0:6b:a6:a2:e3:ae:66:15:98:c9:ea:19:4a:6f:f3: 48:b5:8d:d5:8e:5d:59:a9:bc:7c:97:01:3a:c2:ed: 15:25:d9:51:c0:a9:73:10:7b:b3:51:7d:99:21:06: b4:62:a1:aa:36:1e:8f:f7:d7:31:76:ad:f6:76:e9: 31:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:82:65:AA:AD:EA:5E:E0:AE:F9:D9:12:22:56:3B:D9:2A:C2:9D:B5 X509v3 Authority Key Identifier: keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/loJlqq3qXuCu-dkSIlY72SrCnbU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.8.80.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:e1:d2:be:fa:90:a8:56:7d:32:5e:d1:12:be:f8:72:45:af: e4:32:34:c9:2f:95:cc:f8:59:77:ad:d1:ac:aa:07:3f:c8:0a: be:ad:26:2d:29:2c:d8:c7:33:07:49:9e:4f:a1:d6:98:7f:74: 99:a2:b8:9f:e8:2e:a7:8a:c3:d5:06:d1:29:b7:5c:74:a4:94: 2c:5c:fb:43:32:c9:cc:96:7d:d6:dd:18:e7:19:74:af:e0:ef: 82:8f:80:89:e4:f8:59:d0:3e:c9:46:23:91:d4:65:cf:1f:21: b1:dd:df:b1:3e:3b:64:1e:f0:13:d1:3b:dd:91:50:3c:f3:b7: 77:f1:91:22:1b:47:78:87:d0:b8:37:e5:a3:27:98:8a:98:e5: 85:a2:7a:81:a5:95:37:d7:65:f6:aa:d0:62:1b:c2:27:b1:6a: 16:c3:16:77:90:6a:63:e9:d6:8c:32:9e:be:3b:da:47:f1:ac: 20:60:bf:bb:65:41:f7:70:8f:b6:9a:33:ab:40:c0:8d:7e:bb: f0:97:47:d2:3d:35:cc:ab:78:a0:62:43:5e:d5:3f:2a:8e:36: 46:13:c4:53:45:a2:5b:e5:11:18:e7:67:c0:da:f9:0c:37:a0: 44:bd:2c:67:ed:ec:0c:dc:cc:bb:8c:57:e8:76:46:8e:90:52: 89:4c:01:55 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Nst1PsDHOX0JFjnqlyXjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwNGRiNzYyMzI0MWQ3ZTY2NzhmYzI1NzUxZmE0ZTBiNjY2 NTE4NmIwHhcNMjYwMTAxMjAxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjgyNjVhYWFkZWE1ZWUwYWVmOWQ5MTIyMjU2M2JkOTJhYzI5ZGI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQ12SHsuCyIQKvOtSpA0Zcmgo52X pVZlu9LRNCqhMG4z7rYwRywizP4e9PXJGU9FxJbaBXGRTqhnW+tKQ2FzOs6ZdzbK HhAszwbY1euDT4TOcbHCWtQ8tstpagR5mkgfOi4NiyNMJVaxp104uc4WOp751WEM 1SY3G2sKcuyUtcKBKgY936hl0al+BUMnah58M5yKBwgqouwPwOEmwd2MbcsgtxwR 7uNl1UggSDaI/77mc4PZ+3/Po0GWQBNIENi9ZPvQa6ai465mFZjJ6hlKb/NItY3V jl1Zqbx8lwE6wu0VJdlRwKlzEHuzUX2ZIQa0YqGqNh6P99cxdq32dukxuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJaCZaqt6l7grvnZEiJWO9kqwp21MB8GA1UdIwQY MBaAFMBNt2IyQdfmZ4/CV1H6TgtmZRhrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0UyM1lqSkIxLVpuajhKWFVmcE9DMlpsR0dzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82ZTg3NGUtNzNmZS00ZGJiLWI3NGMt MDQyM2YyNjNmMmNiLzEvbG9KbHFxM3FYdUN1LWRrU0lsWTcyU3JDbmJVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC82ZTg3NGUtNzNmZS00ZGJiLWI3NGMtMDQyM2YyNjNmMmNi LzEvd0UyM1lqSkIxLVpuajhKWFVmcE9DMlpsR0dzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwghQMA0G CSqGSIb3DQEBCwUAA4IBAQA+4dK++pCoVn0yXtESvvhyRa/kMjTJL5XM+Fl3rdGs qgc/yAq+rSYtKSzYxzMHSZ5PodaYf3SZorif6C6nisPVBtEpt1x0pJQsXPtDMsnM ln3W3RjnGXSv4O+Cj4CJ5PhZ0D7JRiOR1GXPHyGx3d+xPjtkHvAT0TvdkVA887d3 8ZEiG0d4h9C4N+WjJ5iKmOWFonqBpZU312X2qtBiG8InsWoWwxZ3kGpj6daMMp6+ O9pH8awgYL+7ZUH3cI+2mjOrQMCNfrvwl0fSPTXMq3igYkNe1T8qjjZGE8RTRaJb 5REY52fA2vkMN6BEvSxn7ewM3My7jFfodkaOkFKJTAFV -----END CERTIFICATE-----Generated at Mon Jan 26 10:16:04 2026 by rpki-client