This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/f413c2-c2ec-41f1-9d85-5d8634ab7d91/1/CLmdmooWNxcU-kmyE2LkK21dBaw.roa File: CLmdmooWNxcU-kmyE2LkK21dBaw.roa (raw, json) Hash identifier: yLZwdYQ73CKrUJ802L5qs6LFog/ShbqlJ37FK0/xssw= Subject key identifier: 08:B9:9D:9A:8A:16:37:17:14:FA:49:B2:13:62:E4:2B:6D:5D:05:AC Certificate issuer: /CN=e7507db088a7c81a0dbec8f1addb52f95bd10143 Certificate serial: 019B7DCB595FD28E1242047EBBB23A06E745 Authority key identifier: E7:50:7D:B0:88:A7:C8:1A:0D:BE:C8:F1:AD:DB:52:F9:5B:D1:01:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51B9sIinyBoNvsjxrdtS-VvRAUM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/f413c2-c2ec-41f1-9d85-5d8634ab7d91/1/CLmdmooWNxcU-kmyE2LkK21dBaw.roa Signing time: Fri 02 Jan 2026 08:20:37 +0000 ROA not before: Fri 02 Jan 2026 08:20:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213822 IP address blocks: 185.36.229.0/24 maxlen: 24 2a07:cd40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/f413c2-c2ec-41f1-9d85-5d8634ab7d91/1/51B9sIinyBoNvsjxrdtS-VvRAUM.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/f413c2-c2ec-41f1-9d85-5d8634ab7d91/1/51B9sIinyBoNvsjxrdtS-VvRAUM.mft rsync://rpki.ripe.net/repository/DEFAULT/51B9sIinyBoNvsjxrdtS-VvRAUM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:59:5f:d2:8e:12:42:04:7e:bb:b2:3a:06:e7:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7507db088a7c81a0dbec8f1addb52f95bd10143 Validity Not Before: Jan 2 08:20:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=08b99d9a8a16371714fa49b21362e42b6d5d05ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a6:d2:3c:14:d7:8a:c3:e0:73:ce:ea:08:b7: b8:2a:b0:1b:7a:b6:cf:e2:f7:29:53:04:ec:fd:86: f0:8c:8d:e0:13:f2:92:14:d0:74:29:c0:96:94:e5: 45:19:c1:a8:4c:f1:32:1e:c5:27:14:2b:45:0c:c4: 35:23:8f:cd:ac:87:76:01:44:95:38:c0:a6:03:85: b1:fe:2f:b2:98:c8:9e:c3:2b:22:fc:53:4d:27:f9: fa:91:2f:cd:23:87:07:1c:2d:39:1c:0e:2c:5a:31: a1:46:ae:d4:ba:14:39:85:e3:29:aa:16:0e:db:5b: 39:53:50:b3:be:dc:4e:78:4b:0f:c6:6c:86:49:54: b4:0f:3f:3f:f6:a1:2f:a5:69:2d:e3:02:33:cd:f7: 55:22:69:45:24:f1:81:62:4b:a1:56:b5:3a:e4:6c: d3:61:91:21:09:e1:de:8b:91:b6:44:7e:33:aa:a8: 94:79:fc:1a:0b:46:8f:a7:9b:77:42:33:b6:3c:fe: 0f:f5:5d:f9:48:4c:c7:ea:ba:27:9c:a4:d6:38:39: 93:34:ce:80:26:64:d8:69:f8:2c:9e:d5:91:ee:7c: 21:c4:73:4f:c7:84:11:99:2c:4e:32:b7:83:51:66: 5d:ef:18:f5:0e:8e:c2:91:54:e0:53:8a:13:fa:14: 2d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B9:9D:9A:8A:16:37:17:14:FA:49:B2:13:62:E4:2B:6D:5D:05:AC X509v3 Authority Key Identifier: keyid:E7:50:7D:B0:88:A7:C8:1A:0D:BE:C8:F1:AD:DB:52:F9:5B:D1:01:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51B9sIinyBoNvsjxrdtS-VvRAUM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f413c2-c2ec-41f1-9d85-5d8634ab7d91/1/CLmdmooWNxcU-kmyE2LkK21dBaw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f413c2-c2ec-41f1-9d85-5d8634ab7d91/1/51B9sIinyBoNvsjxrdtS-VvRAUM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.36.229.0/24 IPv6: 2a07:cd40::/32 Signature Algorithm: sha256WithRSAEncryption 47:43:1f:30:c0:e1:cf:65:29:d0:35:f8:7f:cd:86:70:ef:bd: b0:84:43:5f:59:29:43:58:d2:d2:8b:86:bc:03:32:79:1d:a4: 66:a1:dc:8f:03:f8:0c:c9:33:52:db:75:4d:34:07:c8:80:90: 30:8c:bc:7f:f2:72:8b:ef:86:b3:21:a5:d8:44:50:13:bb:cd: 27:2d:a1:5e:c9:d2:cb:43:2c:94:4f:a5:58:6b:42:ed:63:c1: e6:3e:b3:bf:2c:01:79:80:00:da:64:44:fb:d4:3d:3b:24:6c: 9c:83:53:0f:71:7d:a6:22:39:88:29:19:73:d6:11:9e:75:c0: 70:ab:82:2f:14:6e:17:fc:1b:24:1f:f4:3b:d9:7e:88:bb:28: 47:8d:e7:c1:8b:5b:9d:fb:a5:4a:0f:a5:94:7e:e0:05:bb:1c: 84:5c:57:34:79:81:34:c4:83:fe:73:c1:4d:e6:c5:d4:63:d2: 7f:97:d5:97:c4:1d:e7:90:d7:f5:cc:8a:2d:9a:cd:6b:7e:26: 46:06:a7:05:c7:d1:4a:ff:cb:08:be:7a:b8:c6:93:ab:c3:9b: 39:85:b3:53:fc:61:5b:e3:4a:7d:e8:7c:13:3d:e5:c7:fa:15: df:b6:79:79:61:06:63:aa:eb:01:74:01:f7:5e:e6:9f:71:bd: ec:c7:d6:d0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9y1lf0o4SQgR+u7I6BudFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NTA3ZGIwODhhN2M4MWEwZGJlYzhmMWFkZGI1MmY5NWJk MTAxNDMwHhcNMjYwMTAyMDgyMDM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOGI5OWQ5YThhMTYzNzE3MTRmYTQ5YjIxMzYyZTQyYjZkNWQwNWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8abSPBTXisPgc87qCLe4KrAberbP 4vcpUwTs/YbwjI3gE/KSFNB0KcCWlOVFGcGoTPEyHsUnFCtFDMQ1I4/NrId2AUSV OMCmA4Wx/i+ymMiewysi/FNNJ/n6kS/NI4cHHC05HA4sWjGhRq7UuhQ5heMpqhYO 21s5U1CzvtxOeEsPxmyGSVS0Dz8/9qEvpWkt4wIzzfdVImlFJPGBYkuhVrU65GzT YZEhCeHei5G2RH4zqqiUefwaC0aPp5t3QjO2PP4P9V35SEzH6ronnKTWODmTNM6A JmTYafgsntWR7nwhxHNPx4QRmSxOMreDUWZd7xj1Do7CkVTgU4oT+hQtbwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAi5nZqKFjcXFPpJshNi5CttXQWsMB8GA1UdIwQY MBaAFOdQfbCIp8gaDb7I8a3bUvlb0QFDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTFCOXNJaW55Qm9OdnNqeHJkdFMtVnZSQVVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9mNDEzYzItYzJlYy00MWYxLTlkODUt NWQ4NjM0YWI3ZDkxLzEvQ0xtZG1vb1dOeGNVLWtteUUyTGtLMjFkQmF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi9mNDEzYzItYzJlYy00MWYxLTlkODUtNWQ4NjM0YWI3ZDkx LzEvNTFCOXNJaW55Qm9OdnNqeHJkdFMtVnZSQVVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuSTlMA0E AgACMAcDBQAqB81AMA0GCSqGSIb3DQEBCwUAA4IBAQBHQx8wwOHPZSnQNfh/zYZw 772whENfWSlDWNLSi4a8AzJ5HaRmodyPA/gMyTNS23VNNAfIgJAwjLx/8nKL74az IaXYRFATu80nLaFeydLLQyyUT6VYa0LtY8HmPrO/LAF5gADaZET71D07JGycg1MP cX2mIjmIKRlz1hGedcBwq4IvFG4X/BskH/Q72X6IuyhHjefBi1ud+6VKD6WUfuAF uxyEXFc0eYE0xIP+c8FN5sXUY9J/l9WXxB3nkNf1zIotms1rfiZGBqcFx9FK/8sI vnq4xpOrw5s5hbNT/GFb40p96HwTPeXH+hXftnl5YQZjqusBdAH3Xuafcb3sx9bQ -----END CERTIFICATE-----Generated at Mon Jan 26 06:18:01 2026 by rpki-client