This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/lPWWQevNsda2N1I1VadJawKiplI.roa File: lPWWQevNsda2N1I1VadJawKiplI.roa (raw, json) Hash identifier: pQ7tS7+kmeaTzyqhFYJ/zHHShZ9PvvornHdIyI3kWYU= Subject key identifier: 94:F5:96:41:EB:CD:B1:D6:B6:37:52:35:55:A7:49:6B:02:A2:A6:52 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B783473DFD0B41AA0185C2DCCCBD57204 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/lPWWQevNsda2N1I1VadJawKiplI.roa Signing time: Thu 01 Jan 2026 06:17:41 +0000 ROA not before: Thu 01 Jan 2026 06:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 153589 IP address blocks: 192.71.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:73:df:d0:b4:1a:a0:18:5c:2d:cc:cb:d5:72:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=94f59641ebcdb1d6b637523555a7496b02a2a652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:58:16:74:d7:db:b1:70:28:c8:7c:a8:ef:aa: af:03:22:6b:12:a1:03:bf:d7:9b:e1:66:be:53:ca: e0:a0:82:35:48:25:8d:3e:9a:c3:b7:5f:7d:a5:76: 3a:b3:02:d1:ff:02:f9:67:14:ad:5e:3f:a3:55:f0: 9e:e7:30:45:b9:5d:c7:35:bc:1c:42:ae:4d:b7:79: 5f:52:b8:a0:47:48:36:b7:03:94:6c:18:f7:c9:8d: 3f:00:58:84:9c:03:5b:84:b2:4e:39:5c:b4:5e:d5: 0e:2b:f1:a1:b8:f2:dd:7d:b8:7d:34:48:f2:2c:a6: 98:cf:f3:36:dc:b7:20:a0:56:fe:56:4c:cd:ea:0c: d2:7a:f3:b7:7b:4f:c9:e8:08:e7:06:36:e0:c1:0a: a4:f2:fe:53:b4:82:85:77:d3:62:dc:43:94:67:8c: fa:dd:34:70:9f:75:2f:26:f7:6b:cb:5e:c7:d1:ae: 92:ee:a3:b0:71:5d:65:14:04:3e:1b:37:82:17:85: bd:b3:b2:62:f9:51:f7:6a:95:b2:38:1c:bc:16:49: b8:84:6d:16:a7:d7:1b:81:f7:58:eb:a6:67:d4:07: 7c:87:50:e1:44:19:d4:63:c7:f8:e5:93:42:21:92: 99:f9:7f:41:55:e8:16:98:5d:00:e2:99:89:d1:94: 4a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F5:96:41:EB:CD:B1:D6:B6:37:52:35:55:A7:49:6B:02:A2:A6:52 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/lPWWQevNsda2N1I1VadJawKiplI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.71.161.0/24 Signature Algorithm: sha256WithRSAEncryption 94:8f:ab:98:82:b6:65:ac:a9:78:6d:1f:a2:07:16:83:58:f4: fc:f2:7c:f4:a4:47:21:ee:75:b7:c1:1f:ab:28:7b:1c:e4:1d: e9:ca:2f:d1:bd:a8:38:fc:81:6e:c1:35:9f:b9:4f:a7:8e:80: ce:9d:59:d7:d2:5d:65:b5:3a:e5:6e:79:50:f8:b9:bc:a4:1f: 1b:42:cf:e1:da:c9:9d:25:84:ae:ca:ad:31:ed:1b:99:24:b3: 07:ca:c6:98:b9:52:02:a6:27:c0:40:c3:56:ef:0e:53:71:92: f9:3f:e2:0b:46:fa:b1:18:b8:25:6a:6f:53:68:d8:62:5f:78: ed:1e:59:ee:73:f9:33:d5:88:ef:78:6c:12:4c:8d:d0:d6:ca: 5a:dc:4b:72:97:71:76:86:8a:e8:e6:69:75:35:86:66:c3:1c: 6d:cf:87:ce:2b:50:9c:67:25:17:a6:73:fe:38:45:6e:e2:aa: 65:66:f3:7f:e2:4d:90:eb:a6:77:93:b5:86:bf:d4:13:40:ac: 57:79:78:9a:0f:29:24:6a:be:52:f6:c1:42:da:16:b7:99:9b: 6d:35:8f:f0:03:6b:e3:4d:76:8c:6e:d8:87:b9:69:13:e9:c0: 79:44:5d:52:7c:d7:a4:2c:b4:41:8c:c9:10:80:d4:1e:49:73: 8c:bb:11:4b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NHPf0LQaoBhcLczL1XIEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NGY1OTY0MWViY2RiMWQ2YjYzNzUyMzU1NWE3NDk2YjAyYTJhNjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFgWdNfbsXAoyHyo76qvAyJrEqED v9eb4Wa+U8rgoII1SCWNPprDt199pXY6swLR/wL5ZxStXj+jVfCe5zBFuV3HNbwc Qq5Nt3lfUrigR0g2twOUbBj3yY0/AFiEnANbhLJOOVy0XtUOK/GhuPLdfbh9NEjy LKaYz/M23LcgoFb+VkzN6gzSevO3e0/J6AjnBjbgwQqk8v5TtIKFd9Ni3EOUZ4z6 3TRwn3UvJvdry17H0a6S7qOwcV1lFAQ+GzeCF4W9s7Ji+VH3apWyOBy8Fkm4hG0W p9cbgfdY66Zn1Ad8h1DhRBnUY8f45ZNCIZKZ+X9BVegWmF0A4pmJ0ZRKuQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJT1lkHrzbHWtjdSNVWnSWsCoqZSMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvbFBXV1Fldk5zZGEyTjFJMVZhZEphd0tpcGxJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwEehMA0G CSqGSIb3DQEBCwUAA4IBAQCUj6uYgrZlrKl4bR+iBxaDWPT88nz0pEch7nW3wR+r KHsc5B3pyi/Rvag4/IFuwTWfuU+njoDOnVnX0l1ltTrlbnlQ+Lm8pB8bQs/h2smd JYSuyq0x7RuZJLMHysaYuVICpifAQMNW7w5TcZL5P+ILRvqxGLglam9TaNhiX3jt Hlnuc/kz1YjveGwSTI3Q1spa3Etyl3F2horo5ml1NYZmwxxtz4fOK1CcZyUXpnP+ OEVu4qplZvN/4k2Q66Z3k7WGv9QTQKxXeXiaDykkar5S9sFC2ha3mZttNY/wA2vj TXaMbtiHuWkT6cB5RF1SfNekLLRBjMkQgNQeSXOMuxFL -----END CERTIFICATE-----Generated at Sun Jan 25 12:06:24 2026 by rpki-client