This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/LxGPVJPyHWs5hHWhFZXK4a7O2-M.roa File: LxGPVJPyHWs5hHWhFZXK4a7O2-M.roa (raw, json) Hash identifier: DEIc9UcHZJ6CJFEO4vc1601YJk4dflrb/oBYiYPKpTI= Subject key identifier: 2F:11:8F:54:93:F2:1D:6B:39:84:75:A1:15:95:CA:E1:AE:CE:DB:E3 Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9 Certificate serial: 019B7F15385167DD9AE354794D1394F00040 Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/LxGPVJPyHWs5hHWhFZXK4a7O2-M.roa Signing time: Fri 02 Jan 2026 14:20:55 +0000 ROA not before: Fri 02 Jan 2026 14:20:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8255 IP address blocks: 193.57.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 11:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:38:51:67:dd:9a:e3:54:79:4d:13:94:f0:00:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9 Validity Not Before: Jan 2 14:20:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2f118f5493f21d6b398475a11595cae1aecedbe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:64:ff:b4:b2:09:fa:28:eb:fb:8e:ba:8c:ac: 71:33:66:25:57:23:a4:e3:8b:0b:99:06:d2:5b:57: 1d:38:e6:09:6a:61:c2:46:fd:13:53:88:46:d8:7f: 15:ac:17:4b:92:dd:5f:71:c4:dc:a6:11:c9:0d:e6: a9:0c:77:7a:d3:fc:0e:ec:9b:d0:1a:25:55:33:17: ad:fa:bc:5e:bc:ac:04:2a:e3:b1:9c:3c:e1:20:af: 18:6f:6a:75:9a:4d:43:e0:4e:b6:03:17:4e:01:4d: b0:ff:e8:37:4a:21:9f:58:27:17:26:09:4d:49:e6: 85:7c:e1:5c:eb:f8:45:be:62:8a:c3:0d:d0:b9:32: 4e:50:f0:c7:0c:61:57:5b:54:a8:1d:b1:a9:4a:53: 91:0f:6f:af:e2:ee:de:d3:f4:bb:94:c0:a2:4e:9d: fc:0d:ed:0d:2f:87:c9:82:0a:e6:57:7d:86:a2:94: 86:5d:2b:c0:4e:90:35:38:db:fc:8e:da:53:8c:45: 2b:ec:3b:a0:d4:d4:8d:69:2c:ba:f1:71:11:17:32: f9:68:d2:12:3a:c6:bd:fd:8b:a8:8f:b6:39:8a:75: 5d:4a:70:01:bc:3b:31:e7:ba:75:e1:30:cd:3b:39: 50:aa:2f:27:7e:53:cc:a9:96:e7:a7:65:c2:4d:16: 59:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:11:8F:54:93:F2:1D:6B:39:84:75:A1:15:95:CA:E1:AE:CE:DB:E3 X509v3 Authority Key Identifier: keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/LxGPVJPyHWs5hHWhFZXK4a7O2-M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.57.225.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:20:1d:77:96:34:04:65:1a:1e:8f:ff:e9:f8:fc:54:6c:a9: 52:29:40:97:80:7e:8d:c8:dc:a9:8a:6f:bb:de:3d:29:f5:4f: 54:0e:c5:8d:0f:17:d8:3b:5f:90:a9:3d:92:9d:b5:a6:bf:11: 43:24:9c:90:8c:a0:07:c3:d3:d6:b6:5f:ce:1e:35:af:0b:be: 51:11:fa:35:ba:73:0a:2b:56:fa:55:c2:bc:8f:1e:1a:36:1f: bc:f6:69:97:80:58:29:f6:ef:de:c7:30:42:95:b6:e1:e8:55: 92:2c:0d:56:a7:5b:3d:5d:f7:9b:da:12:61:4a:10:c8:eb:ef: 04:00:0b:36:28:d9:b2:76:1e:1c:39:a3:3f:c8:56:64:2c:46: 8e:7f:6f:65:88:58:e0:05:2d:40:3a:dd:1c:85:42:2f:3b:37: 7b:b9:2e:87:7d:55:0b:d9:1e:0e:8f:d0:75:88:74:49:b7:a5: 11:c5:19:bf:09:c5:6d:f0:6f:93:1d:71:31:cf:e1:b1:a2:c9: 1d:31:50:7e:a3:c0:1d:19:99:8e:8f:f0:a1:bb:21:56:70:35: 6b:37:4b:9b:b7:54:ab:87:f2:18:b3:13:31:10:fa:88:77:ec: 7a:0a:33:8f:bb:59:f7:50:86:69:a8:4b:ab:b7:5d:5f:5b:3b: 9d:4d:aa:76 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FThRZ92a41R5TROU8ABAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxOTVmNzM0MTllODIyMzI5Nzk0Y2YxN2ZiYTdlOTNmMzc1 Mzc0YTkwHhcNMjYwMTAyMTQyMDU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZjExOGY1NDkzZjIxZDZiMzk4NDc1YTExNTk1Y2FlMWFlY2VkYmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA82T/tLIJ+ijr+466jKxxM2YlVyOk 44sLmQbSW1cdOOYJamHCRv0TU4hG2H8VrBdLkt1fccTcphHJDeapDHd60/wO7JvQ GiVVMxet+rxevKwEKuOxnDzhIK8Yb2p1mk1D4E62AxdOAU2w/+g3SiGfWCcXJglN SeaFfOFc6/hFvmKKww3QuTJOUPDHDGFXW1SoHbGpSlORD2+v4u7e0/S7lMCiTp38 De0NL4fJggrmV32GopSGXSvATpA1ONv8jtpTjEUr7Dug1NSNaSy68XERFzL5aNIS Osa9/Yuoj7Y5inVdSnABvDsx57p14TDNOzlQqi8nflPMqZbnp2XCTRZZIwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC8Rj1ST8h1rOYR1oRWVyuGuztvjMB8GA1UdIwQY MBaAFDGV9zQZ6CIyl5TPF/un6T83U3SpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVpYM05Cbm9JaktYbE04WC02ZnBQemRUZEtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81YTQ0OGEtNWU3YS00N2UwLTg3ZGEt Y2RjZmJiMTAwNDQ3LzEvTHhHUFZKUHlIV3M1aEhXaEZaWEs0YTdPMi1NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC81YTQ0OGEtNWU3YS00N2UwLTg3ZGEtY2RjZmJiMTAwNDQ3 LzEvTVpYM05Cbm9JaktYbE04WC02ZnBQemRUZEtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTnhMA0G CSqGSIb3DQEBCwUAA4IBAQAvIB13ljQEZRoej//p+PxUbKlSKUCXgH6NyNypim+7 3j0p9U9UDsWNDxfYO1+QqT2SnbWmvxFDJJyQjKAHw9PWtl/OHjWvC75REfo1unMK K1b6VcK8jx4aNh+89mmXgFgp9u/exzBClbbh6FWSLA1Wp1s9Xfeb2hJhShDI6+8E AAs2KNmydh4cOaM/yFZkLEaOf29liFjgBS1AOt0chUIvOzd7uS6HfVUL2R4Oj9B1 iHRJt6URxRm/CcVt8G+THXExz+GxoskdMVB+o8AdGZmOj/ChuyFWcDVrN0ubt1Sr h/IYsxMxEPqId+x6CjOPu1n3UIZpqEurt11fWzudTap2 -----END CERTIFICATE-----Generated at Sat Jan 10 19:56:10 2026 by rpki-client