This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/l8n8v1Q9xLXyXtlabOOWci2qntk.roa File: l8n8v1Q9xLXyXtlabOOWci2qntk.roa (raw, json) Hash identifier: xWhlXP2IJd0U6kdyJQ+E6Zy+knqtLNo213NLa8JvO3E= Subject key identifier: 97:C9:FC:BF:54:3D:C4:B5:F2:5E:D9:5A:6C:E3:96:72:2D:AA:9E:D9 Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Certificate serial: 019BBD5BA8D8B5227DF0AB3C3BDBB8B0ACE9 Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/l8n8v1Q9xLXyXtlabOOWci2qntk.roa Signing time: Wed 14 Jan 2026 16:34:19 +0000 ROA not before: Wed 14 Jan 2026 16:34:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213035 IP address blocks: 194.87.132.0/24 maxlen: 24 195.133.16.0/24 maxlen: 24 212.192.216.0/24 maxlen: 24 212.192.240.0/24 maxlen: 24 212.192.243.0/24 maxlen: 24 212.193.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:bd:5b:a8:d8:b5:22:7d:f0:ab:3c:3b:db:b8:b0:ac:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Validity Not Before: Jan 14 16:34:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=97c9fcbf543dc4b5f25ed95a6ce396722daa9ed9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:89:cd:f2:0f:64:28:16:69:73:72:72:1c:f3: c7:66:74:4f:bd:25:c0:f9:9f:8d:7e:d3:77:4c:ed: ad:a3:a7:68:a8:94:b6:be:a4:5c:a0:61:9a:56:1c: 3d:53:06:d3:cd:73:da:af:ff:04:79:c9:24:cd:81: d5:a3:d9:d9:94:8e:c0:6e:9f:2c:a8:b7:a0:62:96: a7:9e:f3:f5:e2:bf:41:b6:cd:b9:18:98:f3:e5:63: cb:a9:00:d2:07:f9:2a:63:44:10:8a:f8:e7:b7:f4: 28:8f:07:19:a8:ef:79:8b:f9:5a:e6:7c:2a:80:0e: fc:a6:c4:b8:f8:e4:56:b7:af:9d:56:d1:7d:ff:68: e1:70:31:5e:fa:7a:55:c8:5b:3c:ff:5d:2d:0c:cd: 21:29:72:c9:54:57:bf:c0:9a:85:83:ee:da:d7:8d: 43:7f:35:98:df:f7:b7:37:70:0c:db:10:b5:d0:2a: 76:4a:2f:ef:87:f7:05:73:42:b9:6a:82:2d:6c:51: fd:62:07:ef:d4:46:46:21:c4:38:cd:ff:a9:ea:2c: 1a:c5:67:38:4c:a5:b2:40:b9:49:17:ac:72:be:7f: 8a:12:c0:9d:08:44:6f:17:2a:54:55:76:a6:3a:02: 06:22:b8:61:74:9b:b4:28:a9:ee:3a:f3:22:65:c1: 6a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C9:FC:BF:54:3D:C4:B5:F2:5E:D9:5A:6C:E3:96:72:2D:AA:9E:D9 X509v3 Authority Key Identifier: keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/l8n8v1Q9xLXyXtlabOOWci2qntk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.87.132.0/24 195.133.16.0/24 212.192.216.0/24 212.192.240.0/24 212.192.243.0/24 212.193.29.0/24 Signature Algorithm: sha256WithRSAEncryption 28:78:ee:1d:69:52:0a:7f:31:b3:b6:9f:e0:20:de:73:c0:61: 29:2c:38:b2:07:33:de:db:f6:45:4e:3f:d0:96:13:1e:28:96: 1b:f5:ff:c7:ac:ca:9f:2a:de:b2:7d:7e:4c:8b:46:d2:4f:fb: d5:48:14:8b:9d:07:3d:b7:91:8d:19:f7:5a:6b:dc:d2:72:bb: 4f:6f:8c:65:b1:50:4b:f9:0e:cc:1f:4c:b5:5e:aa:a8:c1:2e: b4:80:1f:2f:5a:6d:5c:0d:f4:fb:bf:3a:9e:13:3f:8d:c6:93: f9:de:e9:f4:9c:01:e1:28:4e:f8:18:2f:dd:c5:f4:d4:32:ea: 4e:53:98:e0:33:47:2a:93:8e:3c:4c:8b:3d:8a:2d:6a:d7:e8: e9:62:81:15:8c:f4:48:d2:94:a6:53:88:2d:b0:95:a7:85:44: e1:df:1e:c8:f6:8a:86:c9:f6:45:24:be:5e:70:20:ca:48:2b: 1c:2d:37:09:f6:bf:7b:96:85:31:4f:2e:02:1b:8c:67:fb:5f: be:ab:fe:5e:66:6f:76:0a:e3:ac:33:b6:a5:3d:eb:7c:aa:45: 09:c7:a5:c8:2a:5b:78:ee:91:20:25:e1:6d:b1:45:0e:a9:6b: 78:a5:98:fb:2c:7b:6a:25:3a:58:8b:0f:c8:90:47:e5:53:c4: 41:36:38:78 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZu9W6jYtSJ98Ks8O9u4sKzpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw ZTFhYzcwHhcNMjYwMTE0MTYzNDE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5N2M5ZmNiZjU0M2RjNGI1ZjI1ZWQ5NWE2Y2UzOTY3MjJkYWE5ZWQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA04nN8g9kKBZpc3JyHPPHZnRPvSXA +Z+NftN3TO2to6doqJS2vqRcoGGaVhw9UwbTzXPar/8EeckkzYHVo9nZlI7Abp8s qLegYpannvP14r9Bts25GJjz5WPLqQDSB/kqY0QQivjnt/QojwcZqO95i/la5nwq gA78psS4+ORWt6+dVtF9/2jhcDFe+npVyFs8/10tDM0hKXLJVFe/wJqFg+7a141D fzWY3/e3N3AM2xC10Cp2Si/vh/cFc0K5aoItbFH9Ygfv1EZGIcQ4zf+p6iwaxWc4 TKWyQLlJF6xyvn+KEsCdCERvFypUVXamOgIGIrhhdJu0KKnuOvMiZcFq6QIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFJfJ/L9UPcS18l7ZWmzjlnItqp7ZMB8GA1UdIwQY MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt NWE0MjQyOGYxMTQzLzEvbDhuOHYxUTl4TFh5WHRsYWJPT1djaTJxbnRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAwleEAwQA w4UQAwQA1MDYAwQA1MDwAwQA1MDzAwQA1MEdMA0GCSqGSIb3DQEBCwUAA4IBAQAo eO4daVIKfzGztp/gIN5zwGEpLDiyBzPe2/ZFTj/QlhMeKJYb9f/HrMqfKt6yfX5M i0bST/vVSBSLnQc9t5GNGfdaa9zScrtPb4xlsVBL+Q7MH0y1XqqowS60gB8vWm1c DfT7vzqeEz+NxpP53un0nAHhKE74GC/dxfTUMupOU5jgM0cqk448TIs9ii1q1+jp YoEVjPRI0pSmU4gtsJWnhUTh3x7I9oqGyfZFJL5ecCDKSCscLTcJ9r97loUxTy4C G4xn+1++q/5eZm92CuOsM7alPet8qkUJx6XIKlt47pEgJeFtsUUOqWt4pZj7LHtq JTpYiw/IkEflU8RBNjh4 -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:00 2026 by rpki-client