This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/41c79d-592b-44ad-8693-f2e058957bc9/1/lqVBKhe9BI1k73opGPRpRu7Tjm8.roa File: lqVBKhe9BI1k73opGPRpRu7Tjm8.roa (raw, json) Hash identifier: ANewMCPdr9EPXxV8b7rhqmy3E65gN7TANy2BLw8Q6mg= Subject key identifier: 96:A5:41:2A:17:BD:04:8D:64:EF:7A:29:18:F4:69:46:EE:D3:8E:6F Certificate issuer: /CN=48afa1174b0eeea28e7031f017a93ebe5de428e4 Certificate serial: 019B77C698BEE434CAA65E48C3BA7504C196 Authority key identifier: 48:AF:A1:17:4B:0E:EE:A2:8E:70:31:F0:17:A9:3E:BE:5D:E4:28:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SK-hF0sO7qKOcDHwF6k-vl3kKOQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/41c79d-592b-44ad-8693-f2e058957bc9/1/lqVBKhe9BI1k73opGPRpRu7Tjm8.roa Signing time: Thu 01 Jan 2026 04:17:42 +0000 ROA not before: Thu 01 Jan 2026 04:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200981 IP address blocks: 148.64.56.0/24 maxlen: 24 148.64.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/41c79d-592b-44ad-8693-f2e058957bc9/1/SK-hF0sO7qKOcDHwF6k-vl3kKOQ.crl rsync://rpki.ripe.net/repository/DEFAULT/03/41c79d-592b-44ad-8693-f2e058957bc9/1/SK-hF0sO7qKOcDHwF6k-vl3kKOQ.mft rsync://rpki.ripe.net/repository/DEFAULT/SK-hF0sO7qKOcDHwF6k-vl3kKOQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:98:be:e4:34:ca:a6:5e:48:c3:ba:75:04:c1:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48afa1174b0eeea28e7031f017a93ebe5de428e4 Validity Not Before: Jan 1 04:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=96a5412a17bd048d64ef7a2918f46946eed38e6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:64:5f:66:d5:8c:f3:39:75:21:16:9c:da:51: ab:1d:49:04:6a:85:9b:10:36:f8:a2:e6:a8:1f:49: 6a:94:95:14:30:ce:87:a2:bd:30:36:8c:26:0e:01: f1:33:96:c1:b7:d1:20:40:ee:9f:5c:f2:39:03:2a: f6:6d:93:81:11:22:78:5f:ed:a6:38:d3:32:30:62: 7f:39:78:2e:eb:29:4c:5a:19:55:75:57:4b:75:0f: 32:cd:e5:f9:14:5a:1c:97:ce:26:80:ab:53:e8:46: 34:70:25:89:09:f9:98:d7:75:31:c6:00:2a:a0:34: 63:f9:43:c4:7f:55:8f:f6:ad:6f:49:05:45:5f:15: d6:33:42:5c:65:9a:8f:6e:da:db:30:23:ba:40:c0: 3d:fa:50:0e:51:14:13:34:1d:71:6a:b4:d5:9f:d7: 9f:59:b7:e8:8e:c0:99:29:22:b6:90:4a:87:5f:20: 9e:71:cc:e1:b4:91:d2:b0:6e:d8:75:1c:98:2a:6f: 98:53:40:1e:54:77:42:1e:b0:fb:47:23:e4:f9:33: db:03:b9:2d:cf:02:9c:65:78:9e:f1:7a:6e:44:6a: 55:fb:ac:3f:50:ba:8f:18:3f:ec:60:bf:5f:fd:42: be:44:8d:c1:c6:65:f3:a9:3a:30:ee:5c:8f:6f:24: d6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A5:41:2A:17:BD:04:8D:64:EF:7A:29:18:F4:69:46:EE:D3:8E:6F X509v3 Authority Key Identifier: keyid:48:AF:A1:17:4B:0E:EE:A2:8E:70:31:F0:17:A9:3E:BE:5D:E4:28:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SK-hF0sO7qKOcDHwF6k-vl3kKOQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/41c79d-592b-44ad-8693-f2e058957bc9/1/lqVBKhe9BI1k73opGPRpRu7Tjm8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/41c79d-592b-44ad-8693-f2e058957bc9/1/SK-hF0sO7qKOcDHwF6k-vl3kKOQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 148.64.56.0/23 Signature Algorithm: sha256WithRSAEncryption c1:b8:a9:14:99:d8:db:d0:a9:59:f0:87:91:a0:bc:4f:b9:ad: 2f:a5:15:cf:c9:30:0f:1d:b2:45:19:58:39:10:56:c2:d0:e5: 62:e4:b3:5e:af:93:ef:de:72:92:a3:a2:3d:26:b2:3b:fa:43: 2f:39:75:5a:be:b2:26:ed:30:66:0d:b7:3e:b3:67:46:88:45: fd:54:0e:47:c0:38:65:9c:91:6c:4d:24:e8:09:fd:59:76:95: d5:8b:a3:5d:eb:88:0d:16:46:d9:33:98:e9:e9:ae:39:51:cb: 1c:85:32:33:e1:61:58:97:50:b2:81:84:a4:b1:09:90:53:cd: 02:a5:ea:b4:07:6f:d0:ce:9a:a1:59:69:4c:eb:da:c0:d2:68: db:ad:05:a7:7a:33:d4:06:85:54:93:ac:41:e9:a7:35:4c:96: 50:7f:ec:3a:49:fc:57:26:96:30:f0:e6:0e:f6:a6:89:db:f9: 71:29:5b:75:2f:56:3e:35:3f:3b:48:f1:05:38:7a:d6:e9:05: 8e:4c:44:ca:ba:c5:69:1b:b8:3d:c4:6e:1e:df:51:5e:71:2e: 2b:fb:c1:57:38:19:7c:ff:35:7d:4e:c0:20:b8:65:ed:ce:22: 70:a9:67:0a:1f:5f:30:98:d7:c0:07:04:72:22:1e:f8:39:f5: 36:14:7d:9f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xpi+5DTKpl5Iw7p1BMGWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4YWZhMTE3NGIwZWVlYTI4ZTcwMzFmMDE3YTkzZWJlNWRl NDI4ZTQwHhcNMjYwMTAxMDQxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NmE1NDEyYTE3YmQwNDhkNjRlZjdhMjkxOGY0Njk0NmVlZDM4ZTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWRfZtWM8zl1IRac2lGrHUkEaoWb EDb4ouaoH0lqlJUUMM6Hor0wNowmDgHxM5bBt9EgQO6fXPI5Ayr2bZOBESJ4X+2m ONMyMGJ/OXgu6ylMWhlVdVdLdQ8yzeX5FFocl84mgKtT6EY0cCWJCfmY13UxxgAq oDRj+UPEf1WP9q1vSQVFXxXWM0JcZZqPbtrbMCO6QMA9+lAOURQTNB1xarTVn9ef WbfojsCZKSK2kEqHXyCecczhtJHSsG7YdRyYKm+YU0AeVHdCHrD7RyPk+TPbA7kt zwKcZXie8XpuRGpV+6w/ULqPGD/sYL9f/UK+RI3BxmXzqTow7lyPbyTWYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJalQSoXvQSNZO96KRj0aUbu045vMB8GA1UdIwQY MBaAFEivoRdLDu6ijnAx8BepPr5d5CjkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU0staEYwc083cUtPY0RId0Y2ay12bDNrS09RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy80MWM3OWQtNTkyYi00NGFkLTg2OTMt ZjJlMDU4OTU3YmM5LzEvbHFWQktoZTlCSTFrNzNvcEdQUnBSdTdUam04LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy80MWM3OWQtNTkyYi00NGFkLTg2OTMtZjJlMDU4OTU3YmM5 LzEvU0staEYwc083cUtPY0RId0Y2ay12bDNrS09RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBlEA4MA0G CSqGSIb3DQEBCwUAA4IBAQDBuKkUmdjb0KlZ8IeRoLxPua0vpRXPyTAPHbJFGVg5 EFbC0OVi5LNer5Pv3nKSo6I9JrI7+kMvOXVavrIm7TBmDbc+s2dGiEX9VA5HwDhl nJFsTSToCf1ZdpXVi6Nd64gNFkbZM5jp6a45UcschTIz4WFYl1CygYSksQmQU80C peq0B2/QzpqhWWlM69rA0mjbrQWnejPUBoVUk6xB6ac1TJZQf+w6SfxXJpYw8OYO 9qaJ2/lxKVt1L1Y+NT87SPEFOHrW6QWOTETKusVpG7g9xG4e31FecS4r+8FXOBl8 /zV9TsAguGXtziJwqWcKH18wmNfABwRyIh74OfU2FH2f -----END CERTIFICATE-----Generated at Tue Feb 10 00:03:38 2026 by rpki-client