This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/LmB2MYMxNgUJ59HkzaXP8nXh0xQ.roa File: LmB2MYMxNgUJ59HkzaXP8nXh0xQ.roa (raw, json) Hash identifier: Jc/e+cQXtvoRy8CJ502VG5p3rbc0OztFHir4imY41rA= Subject key identifier: 2E:60:76:31:83:31:36:05:09:E7:D1:E4:CD:A5:CF:F2:75:E1:D3:14 Certificate issuer: /CN=46224dc9396e580ff7120f257353a70c72379c93 Certificate serial: 019B79ED2B4DB7CD3E743DAF2D44F28BC93A Authority key identifier: 46:22:4D:C9:39:6E:58:0F:F7:12:0F:25:73:53:A7:0C:72:37:9C:93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RiJNyTluWA_3Eg8lc1OnDHI3nJM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/LmB2MYMxNgUJ59HkzaXP8nXh0xQ.roa Signing time: Thu 01 Jan 2026 14:19:04 +0000 ROA not before: Thu 01 Jan 2026 14:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31704 IP address blocks: 91.216.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/RiJNyTluWA_3Eg8lc1OnDHI3nJM.crl rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/RiJNyTluWA_3Eg8lc1OnDHI3nJM.mft rsync://rpki.ripe.net/repository/DEFAULT/RiJNyTluWA_3Eg8lc1OnDHI3nJM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:2b:4d:b7:cd:3e:74:3d:af:2d:44:f2:8b:c9:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46224dc9396e580ff7120f257353a70c72379c93 Validity Not Before: Jan 1 14:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e6076318331360509e7d1e4cda5cff275e1d314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:bd:0e:ad:37:33:57:9e:c5:d1:d3:5b:0d:aa: 12:cd:01:2d:c5:5c:e6:fe:d0:f2:eb:d7:ba:27:0b: 8a:e3:49:1e:e8:a8:bc:8a:a2:a6:f6:81:d5:e3:b6: 71:4d:90:8f:7e:0e:25:e0:30:94:25:70:6c:dd:0d: 79:23:8a:47:25:e7:91:66:46:d6:4b:9a:dd:eb:ce: 34:35:b1:cb:4c:33:e3:3d:e6:65:0c:da:bb:d4:2b: 3b:0e:37:4a:f9:0e:0a:fd:22:34:4d:d3:88:b5:33: 67:a3:80:49:d1:46:88:b2:64:2c:67:97:58:3a:59: 96:69:42:b4:c4:35:c7:87:af:a8:a3:35:a5:fc:64: 17:2a:7f:30:29:3b:ef:65:02:4b:fe:f4:a3:a8:b1: 8f:ad:d7:c0:a9:ce:d0:a2:89:c0:f9:af:89:1c:b0: 9f:33:9d:75:7a:c5:ff:e3:0b:2c:77:77:50:79:28: 35:d7:a1:52:54:04:41:4c:eb:e5:ba:b2:cc:40:8e: d7:97:a4:b8:77:8e:44:5e:24:fc:f6:c4:d4:98:bc: 33:1d:bb:e5:55:84:65:21:61:2f:7a:f7:91:98:e4: 95:49:87:fa:31:ad:fd:bc:0e:fd:71:89:75:dd:ee: ed:fc:bf:43:23:4a:45:6c:a0:9c:c5:2c:65:bd:f6: a9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:60:76:31:83:31:36:05:09:E7:D1:E4:CD:A5:CF:F2:75:E1:D3:14 X509v3 Authority Key Identifier: keyid:46:22:4D:C9:39:6E:58:0F:F7:12:0F:25:73:53:A7:0C:72:37:9C:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RiJNyTluWA_3Eg8lc1OnDHI3nJM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/LmB2MYMxNgUJ59HkzaXP8nXh0xQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/RiJNyTluWA_3Eg8lc1OnDHI3nJM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.170.0/24 Signature Algorithm: sha256WithRSAEncryption 39:aa:25:94:a4:09:3d:a7:a4:f2:bc:f4:d0:18:f5:0a:ca:4a: 57:3c:ee:72:fd:52:a9:ff:43:cf:4a:5d:62:6b:2f:27:84:64: 39:b7:f8:84:11:1e:0a:e5:b7:d1:9f:8f:6d:1f:bf:a1:78:0c: 08:a2:c7:d2:91:f6:af:d6:8d:29:d5:24:1d:6d:02:12:07:8d: 07:84:7e:e1:b8:1e:f9:3e:a8:90:e2:ad:2a:32:9e:70:86:c8: 0d:2f:df:e7:d5:7e:96:1b:21:67:c5:a1:9b:9a:06:ec:a9:40: e2:66:3a:8c:02:0d:29:7b:ce:e0:19:70:44:d8:2b:15:7b:77: 52:55:09:02:27:e0:c2:02:a6:bb:af:e0:9c:07:9c:c3:ef:7f: a2:7a:a7:f5:fb:0d:93:b4:ab:40:a6:26:06:c5:83:6c:cb:56: 77:58:bd:32:28:9b:63:24:c3:df:48:72:eb:1e:2e:53:9f:4b: da:f8:84:eb:76:9d:23:48:04:46:bb:e7:f2:6b:0b:17:e7:f8: 3c:98:eb:61:a2:66:6a:84:42:30:b6:4d:85:a3:26:0b:00:79: bf:d7:49:d8:57:b8:a1:3a:bd:95:57:17:50:6e:70:62:36:78: 65:d4:44:7c:2e:de:bf:6b:12:91:a5:ba:86:35:49:95:ec:54: d0:4e:85:29 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57StNt80+dD2vLUTyi8k6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2MjI0ZGM5Mzk2ZTU4MGZmNzEyMGYyNTczNTNhNzBjNzIz NzljOTMwHhcNMjYwMTAxMTQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTYwNzYzMTgzMzEzNjA1MDllN2QxZTRjZGE1Y2ZmMjc1ZTFkMzE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAib0OrTczV57F0dNbDaoSzQEtxVzm /tDy69e6JwuK40ke6Ki8iqKm9oHV47ZxTZCPfg4l4DCUJXBs3Q15I4pHJeeRZkbW S5rd6840NbHLTDPjPeZlDNq71Cs7DjdK+Q4K/SI0TdOItTNno4BJ0UaIsmQsZ5dY OlmWaUK0xDXHh6+oozWl/GQXKn8wKTvvZQJL/vSjqLGPrdfAqc7QoonA+a+JHLCf M511esX/4wssd3dQeSg116FSVARBTOvlurLMQI7Xl6S4d45EXiT89sTUmLwzHbvl VYRlIWEveveRmOSVSYf6Ma39vA79cYl13e7t/L9DI0pFbKCcxSxlvfapUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC5gdjGDMTYFCefR5M2lz/J14dMUMB8GA1UdIwQY MBaAFEYiTck5blgP9xIPJXNTpwxyN5yTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmlKTnlUbHVXQV8zRWc4bGMxT25ESEkzbkpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9lMDVkZmYtYmUxMi00ZTgyLTg3M2Qt ZDMxYTMzZmM1ZTk5LzEvTG1CMk1ZTXhOZ1VKNTlIa3phWFA4blhoMHhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9lMDVkZmYtYmUxMi00ZTgyLTg3M2QtZDMxYTMzZmM1ZTk5 LzEvUmlKTnlUbHVXQV8zRWc4bGMxT25ESEkzbkpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9iqMA0G CSqGSIb3DQEBCwUAA4IBAQA5qiWUpAk9p6TyvPTQGPUKykpXPO5y/VKp/0PPSl1i ay8nhGQ5t/iEER4K5bfRn49tH7+heAwIosfSkfav1o0p1SQdbQISB40HhH7huB75 PqiQ4q0qMp5whsgNL9/n1X6WGyFnxaGbmgbsqUDiZjqMAg0pe87gGXBE2CsVe3dS VQkCJ+DCAqa7r+CcB5zD73+ieqf1+w2TtKtApiYGxYNsy1Z3WL0yKJtjJMPfSHLr Hi5Tn0va+ITrdp0jSARGu+fyawsX5/g8mOthomZqhEIwtk2FoyYLAHm/10nYV7ih Or2VVxdQbnBiNnhl1ER8Lt6/axKRpbqGNUmV7FTQToUp -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:29 2026 by rpki-client