This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/LrvP2Z0cjFRqmLYiApVT3jJ98UU.roa File: LrvP2Z0cjFRqmLYiApVT3jJ98UU.roa (raw, json) Hash identifier: 5YQBrYuaiVtBkE+i+x1V3fP75u5I8cFtQ+HuRNndJN4= Subject key identifier: 2E:BB:CF:D9:9D:1C:8C:54:6A:98:B6:22:02:95:53:DE:32:7D:F1:45 Certificate issuer: /CN=a2c891100e500fb5c64f30f1603fe545dab49016 Certificate serial: 019B7FF21C4D3398FB85DA9686E67236371A Authority key identifier: A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/LrvP2Z0cjFRqmLYiApVT3jJ98UU.roa Signing time: Fri 02 Jan 2026 18:22:11 +0000 ROA not before: Fri 02 Jan 2026 18:22:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49850 IP address blocks: 193.202.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.crl rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.mft rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:1c:4d:33:98:fb:85:da:96:86:e6:72:36:37:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2c891100e500fb5c64f30f1603fe545dab49016 Validity Not Before: Jan 2 18:22:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2ebbcfd99d1c8c546a98b622029553de327df145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:da:43:0b:d0:9e:91:88:f0:c0:ba:3a:ac:01: 66:f3:c6:99:e9:ac:f0:6d:85:04:57:92:6c:4e:bc: 5c:aa:72:ff:7b:07:4d:42:36:6c:3a:e5:18:be:3b: c7:94:38:13:1a:24:6f:a5:57:a7:9e:11:23:a0:fb: c6:9f:8c:e6:f9:a1:26:7c:91:9a:4f:c8:b8:38:45: 88:82:0a:78:17:30:b9:fe:eb:f1:b0:02:54:1a:fe: 12:81:48:94:3c:8a:f3:76:cd:13:d3:ee:5f:2a:c2: 00:7f:ea:27:0e:22:aa:66:bf:67:00:90:88:ca:ff: ee:e8:5f:d5:c6:2a:b4:0c:de:04:1f:a0:53:5f:b3: 08:b4:97:1c:36:92:09:41:21:38:bc:f4:88:e1:ea: f8:9f:dd:83:4f:0a:33:b9:1d:79:3d:db:91:3b:b3: 3e:66:12:57:2f:9b:e7:3d:06:ca:96:2e:d5:c6:13: 7b:58:00:48:c1:20:1c:55:5d:a0:98:f6:d1:bd:f9: 45:74:98:2e:45:33:c9:b4:83:b0:5f:4b:3f:0f:e3: f2:54:9a:f1:a4:1b:dc:7f:62:9d:47:e5:40:49:e1: cb:d7:9f:48:71:51:08:7e:d1:c2:82:6f:a9:4b:8d: 88:5a:18:57:c9:3a:18:cc:fe:7a:63:f6:49:aa:ec: 03:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:BB:CF:D9:9D:1C:8C:54:6A:98:B6:22:02:95:53:DE:32:7D:F1:45 X509v3 Authority Key Identifier: keyid:A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/LrvP2Z0cjFRqmLYiApVT3jJ98UU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.202.108.0/24 Signature Algorithm: sha256WithRSAEncryption 01:0d:5b:cb:7d:28:26:9c:4a:df:77:5d:e0:b3:08:af:11:8b: 3c:fc:e7:e0:b7:dc:eb:bc:c4:7e:98:b4:dd:da:d7:f6:b8:38: f7:73:0c:8f:a3:84:79:12:ae:68:3a:b7:58:9c:04:12:d1:e2: ba:a1:07:45:5e:0e:58:77:5a:b9:20:9a:e1:a4:67:f1:85:21: a1:80:4e:f9:39:84:f7:79:fe:11:a5:65:17:39:82:23:0d:f2: eb:43:26:fa:08:a4:f9:fd:7e:8a:67:83:9d:c8:f9:79:9d:88: ab:ae:8c:4e:db:8d:08:e9:d0:24:8f:07:70:e4:ec:39:03:45: c2:c2:99:bc:53:28:f9:3a:26:08:1b:48:92:ae:23:34:85:60: 52:b1:af:2f:27:3e:68:72:9f:f2:38:4e:5e:ba:67:75:28:52: 0f:49:09:cd:42:24:4a:f1:35:ab:d8:a7:8b:31:eb:a5:45:a3: 8f:fb:3d:46:51:71:b6:0a:c2:02:23:bd:43:5b:a8:08:32:7b: 5c:66:a3:57:00:07:b8:61:cd:f4:9b:4b:3b:bf:37:31:2a:cd: 5c:78:a9:f9:cc:27:14:b6:29:85:64:a3:00:6f:f4:81:ea:b8: 6a:04:90:5e:fa:7c:e3:05:a5:7e:a7:44:61:b7:b9:54:12:e3: 9b:00:d1:01 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8hxNM5j7hdqWhuZyNjcaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyYzg5MTEwMGU1MDBmYjVjNjRmMzBmMTYwM2ZlNTQ1ZGFi NDkwMTYwHhcNMjYwMTAyMTgyMjExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZWJiY2ZkOTlkMWM4YzU0NmE5OGI2MjIwMjk1NTNkZTMyN2RmMTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl9pDC9CekYjwwLo6rAFm88aZ6azw bYUEV5JsTrxcqnL/ewdNQjZsOuUYvjvHlDgTGiRvpVennhEjoPvGn4zm+aEmfJGa T8i4OEWIggp4FzC5/uvxsAJUGv4SgUiUPIrzds0T0+5fKsIAf+onDiKqZr9nAJCI yv/u6F/Vxiq0DN4EH6BTX7MItJccNpIJQSE4vPSI4er4n92DTwozuR15PduRO7M+ ZhJXL5vnPQbKli7VxhN7WABIwSAcVV2gmPbRvflFdJguRTPJtIOwX0s/D+PyVJrx pBvcf2KdR+VASeHL159IcVEIftHCgm+pS42IWhhXyToYzP56Y/ZJquwDSQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC67z9mdHIxUapi2IgKVU94yffFFMB8GA1UdIwQY MBaAFKLIkRAOUA+1xk8w8WA/5UXatJAWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3NpUkVBNVFEN1hHVHpEeFlEX2xSZHEwa0JZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy8yOGI1NmMtNmFhYy00OGQ3LWFiYTIt OGNhMGM5MGY1NzdlLzEvTHJ2UDJaMGNqRlJxbUxZaUFwVlQzako5OFVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy8yOGI1NmMtNmFhYy00OGQ3LWFiYTItOGNhMGM5MGY1Nzdl LzEvb3NpUkVBNVFEN1hHVHpEeFlEX2xSZHEwa0JZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwcpsMA0G CSqGSIb3DQEBCwUAA4IBAQABDVvLfSgmnErfd13gswivEYs8/Ofgt9zrvMR+mLTd 2tf2uDj3cwyPo4R5Eq5oOrdYnAQS0eK6oQdFXg5Yd1q5IJrhpGfxhSGhgE75OYT3 ef4RpWUXOYIjDfLrQyb6CKT5/X6KZ4OdyPl5nYirroxO240I6dAkjwdw5Ow5A0XC wpm8Uyj5OiYIG0iSriM0hWBSsa8vJz5ocp/yOE5eumd1KFIPSQnNQiRK8TWr2KeL MeulRaOP+z1GUXG2CsICI71DW6gIMntcZqNXAAe4Yc30m0s7vzcxKs1ceKn5zCcU timFZKMAb/SB6rhqBJBe+nzjBaV+p0Rht7lUEuObANEB -----END CERTIFICATE-----Generated at Mon Feb 9 20:09:04 2026 by rpki-client