This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/LKiMBkWlsSF8nkXRXmyS63T3H-0.roa File: LKiMBkWlsSF8nkXRXmyS63T3H-0.roa (raw, json) Hash identifier: uU/CIMuftQCInpgJK21Hi0O0qaPghLirmvKHuuIzMmY= Subject key identifier: 2C:A8:8C:06:45:A5:B1:21:7C:9E:45:D1:5E:6C:92:EB:74:F7:1F:ED Certificate issuer: /CN=8b19f3d7ffea957261501e91664ff6823ed936ad Certificate serial: 019B7DCA6C68201F18055B731A626D20CE2C Authority key identifier: 8B:19:F3:D7:FF:EA:95:72:61:50:1E:91:66:4F:F6:82:3E:D9:36:AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ixnz1__qlXJhUB6RZk_2gj7ZNq0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/LKiMBkWlsSF8nkXRXmyS63T3H-0.roa Signing time: Fri 02 Jan 2026 08:19:36 +0000 ROA not before: Fri 02 Jan 2026 08:19:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8758 IP address blocks: 185.166.96.0/22 maxlen: 22 2a0a:de00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/ixnz1__qlXJhUB6RZk_2gj7ZNq0.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/ixnz1__qlXJhUB6RZk_2gj7ZNq0.mft rsync://rpki.ripe.net/repository/DEFAULT/ixnz1__qlXJhUB6RZk_2gj7ZNq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:6c:68:20:1f:18:05:5b:73:1a:62:6d:20:ce:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b19f3d7ffea957261501e91664ff6823ed936ad Validity Not Before: Jan 2 08:19:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2ca88c0645a5b1217c9e45d15e6c92eb74f71fed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b7:90:9f:11:94:54:06:30:02:38:85:50:d6: 89:59:72:6a:f2:40:90:7a:59:58:7f:4a:b9:65:ff: 85:5f:74:68:ef:99:fe:db:db:fa:64:c2:75:ee:1a: 37:84:80:b5:88:78:45:df:73:56:93:f8:2d:a1:64: 0c:44:8f:1f:7c:c8:ee:c6:69:7c:ea:d1:02:8b:bc: 0f:e7:6d:ab:7f:53:8c:08:cb:bc:e1:26:96:15:9c: 5a:b5:59:35:cd:2a:9b:26:99:0c:34:d3:8c:6c:49: 89:9b:97:93:a8:ad:86:84:4e:76:e4:f3:68:70:b9: ba:ba:79:fd:f5:eb:a0:12:09:8a:fb:eb:18:b1:25: 57:ac:2a:97:23:df:79:45:0b:20:eb:9f:20:27:a9: 3d:f0:65:ba:49:88:fc:74:40:51:11:72:7f:12:a9: 03:b2:21:52:1d:d5:2e:54:8d:95:e2:10:00:9a:53: d3:8e:7f:ad:94:67:99:b7:98:16:43:58:b3:88:2a: 32:85:ee:24:82:51:89:24:04:36:2d:34:98:64:01: 1b:67:ce:7b:e1:05:98:10:0e:41:35:8a:1d:db:8d: 1b:79:d9:16:b0:7f:51:d4:6f:de:ae:ec:f8:66:91: 32:47:60:66:9a:f8:0c:d8:06:82:d9:6d:30:e9:53: 16:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:A8:8C:06:45:A5:B1:21:7C:9E:45:D1:5E:6C:92:EB:74:F7:1F:ED X509v3 Authority Key Identifier: keyid:8B:19:F3:D7:FF:EA:95:72:61:50:1E:91:66:4F:F6:82:3E:D9:36:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ixnz1__qlXJhUB6RZk_2gj7ZNq0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/LKiMBkWlsSF8nkXRXmyS63T3H-0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/ixnz1__qlXJhUB6RZk_2gj7ZNq0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.166.96.0/22 IPv6: 2a0a:de00::/32 Signature Algorithm: sha256WithRSAEncryption 5f:7f:9c:71:72:90:a6:82:c2:9d:9d:61:a9:25:35:13:01:bc: dd:9b:78:77:68:f0:f8:9a:2c:75:b7:5f:91:82:2f:16:03:a3: e6:9d:da:e2:70:d4:1c:ac:23:59:7b:9b:0e:a3:30:15:43:e9: 17:31:2d:23:e7:51:80:59:38:6a:00:86:8d:ff:31:22:46:7b: c9:7b:05:4b:c9:21:5a:22:a2:d4:73:4a:37:b3:88:41:b4:c9: 13:c0:d8:50:56:9e:75:f8:a1:48:2a:00:cf:22:6f:e0:0a:43: 92:b0:59:55:3f:a1:f6:7a:c0:dc:67:88:c9:5d:71:2a:57:67: 25:67:60:5f:8a:0f:0e:0e:44:b0:51:17:7d:41:a2:87:94:a6: a1:c6:8e:32:04:36:60:56:ae:55:67:d0:45:66:97:4e:b3:17: 1b:4c:e3:83:52:0c:6d:ad:8d:93:cb:b3:03:a3:bc:4e:65:14: 7a:2a:b2:24:1a:18:bd:f8:f2:1f:cb:b5:8b:19:60:9e:f1:30: f7:cb:a0:cf:5f:6d:34:7c:c1:1c:e2:3e:06:2a:21:b2:e3:50: f3:ad:a4:13:9d:95:2c:cd:c3:02:86:a3:50:a0:0a:67:18:25: 9a:03:55:f8:ec:63:d4:3a:c7:82:f5:dc:6e:8e:11:19:2d:77: 7a:ab:88:5b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9ymxoIB8YBVtzGmJtIM4sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiMTlmM2Q3ZmZlYTk1NzI2MTUwMWU5MTY2NGZmNjgyM2Vk OTM2YWQwHhcNMjYwMTAyMDgxOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyY2E4OGMwNjQ1YTViMTIxN2M5ZTQ1ZDE1ZTZjOTJlYjc0ZjcxZmVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm7eQnxGUVAYwAjiFUNaJWXJq8kCQ ellYf0q5Zf+FX3Ro75n+29v6ZMJ17ho3hIC1iHhF33NWk/gtoWQMRI8ffMjuxml8 6tECi7wP522rf1OMCMu84SaWFZxatVk1zSqbJpkMNNOMbEmJm5eTqK2GhE525PNo cLm6unn99eugEgmK++sYsSVXrCqXI995RQsg658gJ6k98GW6SYj8dEBREXJ/EqkD siFSHdUuVI2V4hAAmlPTjn+tlGeZt5gWQ1iziCoyhe4kglGJJAQ2LTSYZAEbZ857 4QWYEA5BNYod240bedkWsH9R1G/eruz4ZpEyR2BmmvgM2AaC2W0w6VMWGQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCyojAZFpbEhfJ5F0V5skut09x/tMB8GA1UdIwQY MBaAFIsZ89f/6pVyYVAekWZP9oI+2TatMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXhuejFfX3FsWEpoVUI2UlprXzJnajdaTnEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9kMWFkZTctZmJlMi00MjAzLTg1NTEt YjY1NDJlNjQ0N2EwLzEvTEtpTUJrV2xzU0Y4bmtYUlhteVM2M1QzSC0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9kMWFkZTctZmJlMi00MjAzLTg1NTEtYjY1NDJlNjQ0N2Ew LzEvaXhuejFfX3FsWEpoVUI2UlprXzJnajdaTnEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuaZgMA0E AgACMAcDBQAqCt4AMA0GCSqGSIb3DQEBCwUAA4IBAQBff5xxcpCmgsKdnWGpJTUT Abzdm3h3aPD4mix1t1+Rgi8WA6PmndricNQcrCNZe5sOozAVQ+kXMS0j51GAWThq AIaN/zEiRnvJewVLySFaIqLUc0o3s4hBtMkTwNhQVp51+KFIKgDPIm/gCkOSsFlV P6H2esDcZ4jJXXEqV2clZ2Bfig8ODkSwURd9QaKHlKahxo4yBDZgVq5VZ9BFZpdO sxcbTOODUgxtrY2Ty7MDo7xOZRR6KrIkGhi9+PIfy7WLGWCe8TD3y6DPX200fMEc 4j4GKiGy41DzraQTnZUszcMChqNQoApnGCWaA1X47GPUOseC9dxujhEZLXd6q4hb -----END CERTIFICATE-----Generated at Mon Jan 26 14:54:44 2026 by rpki-client