This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/1-lKuVKhCVrO5WiQohNxkR8g1FUA.roa File: 1-lKuVKhCVrO5WiQohNxkR8g1FUA.roa (raw, json) Hash identifier: YEWH8wKRA1QrsFxsw0VOTxI7BH1Fb71l8zk7BdLJSOQ= Subject key identifier: FA:52:AE:54:A8:42:56:B3:B9:5A:24:28:84:DC:64:47:C8:35:15:40 Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722 Certificate serial: 019B7B3575BF98DEAC4337CAC3EFED956C18 Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/1-lKuVKhCVrO5WiQohNxkR8g1FUA.roa Signing time: Thu 01 Jan 2026 20:17:39 +0000 ROA not before: Thu 01 Jan 2026 20:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47690 IP address blocks: 81.180.205.0/24 maxlen: 24 81.181.132.0/22 maxlen: 24 81.181.174.0/24 maxlen: 24 85.120.45.0/24 maxlen: 24 85.120.185.0/24 maxlen: 24 194.153.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:75:bf:98:de:ac:43:37:ca:c3:ef:ed:95:6c:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722 Validity Not Before: Jan 1 20:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa52ae54a84256b3b95a242884dc6447c8351540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:93:70:5f:22:43:36:74:9a:a3:15:a4:95:89: 70:db:6d:ef:4d:68:83:8c:a7:5a:fd:24:73:b0:a7: 13:57:69:a2:53:bf:f0:db:4c:d2:5f:7f:29:ad:16: 1b:c9:99:36:4e:d3:e1:a0:47:ab:52:de:ac:e0:65: aa:cc:6f:2f:ce:e0:fd:8e:f1:82:30:07:83:e1:a1: 80:93:39:08:7b:5e:a7:91:8b:61:96:f7:a7:12:24: f3:1e:9f:b6:44:84:e4:9a:d8:40:fe:15:c6:8c:a1: 26:b5:70:b3:0f:8a:0c:85:03:a8:3b:61:c1:51:4d: 52:5a:20:d9:d8:a0:b0:16:7c:b1:1f:6d:2c:ec:9f: ab:97:42:90:71:da:82:fd:6c:f6:6b:e1:7c:bb:d2: 4c:49:23:da:ed:b6:4a:fa:dd:f5:cf:06:9a:91:59: 22:7c:5a:c9:20:6d:90:64:cb:d4:81:fb:d9:d4:b0: b5:25:ef:4a:3c:26:3b:90:86:74:06:9e:66:32:37: ef:10:57:7a:65:3c:2e:a2:02:1d:99:df:52:e9:9f: ca:e6:c2:6e:38:50:5d:49:39:55:a0:13:55:ae:b2: c3:c6:00:c7:2c:a4:b6:ef:56:f1:4e:fb:ea:7c:25: 19:41:28:ca:59:4d:f7:fc:fc:cf:53:9a:34:0b:6b: a2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:52:AE:54:A8:42:56:B3:B9:5A:24:28:84:DC:64:47:C8:35:15:40 X509v3 Authority Key Identifier: keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/1-lKuVKhCVrO5WiQohNxkR8g1FUA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.180.205.0/24 81.181.132.0/22 81.181.174.0/24 85.120.45.0/24 85.120.185.0/24 194.153.252.0/22 Signature Algorithm: sha256WithRSAEncryption 84:fe:c4:fc:36:e1:83:eb:4b:0f:2c:e1:52:cb:99:53:dd:4a: 4f:e8:1d:81:82:dc:83:40:95:e6:97:4a:01:14:25:a3:dd:bb: 2d:e3:c6:26:c7:f5:cd:82:c8:14:37:20:23:c8:22:8f:5d:da: a9:bf:bc:29:cc:f3:15:ba:38:a2:74:ff:73:bb:78:c5:7d:6a: 9c:23:92:2a:41:e0:75:bf:e5:6d:33:87:cc:2f:7f:49:f2:23: cb:79:55:4a:7c:dc:05:c0:6a:b0:2f:bf:93:f0:ac:0e:6f:a2: 7f:a6:d4:ff:78:c4:50:a7:f5:14:46:ff:6d:19:42:36:de:8f: d6:9c:98:f8:7f:69:1c:4c:2c:f3:4b:17:64:fb:78:34:7c:90: 90:17:f7:f7:90:57:f2:08:9b:aa:e6:3c:d9:6e:a3:9d:03:56: fb:d4:7c:7e:bb:da:63:ab:85:31:32:8d:10:91:59:97:f9:3c: b8:9a:2c:57:bb:52:5c:32:07:9a:0b:45:12:1c:5f:f3:17:1e: 25:43:d4:7a:62:31:a0:6e:9d:11:83:55:ab:c1:ed:78:19:72: d4:f0:dd:3f:30:d6:9b:fe:59:e4:93:aa:7a:fe:46:f9:a5:05: fd:01:53:e6:b8:84:5b:a4:4f:cf:b6:4d:0e:87:88:c4:e8:2c: 81:ca:86:c7 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgISAZt7NXW/mN6sQzfKw+/tlWwYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh MTU3MjIwHhcNMjYwMTAxMjAxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTUyYWU1NGE4NDI1NmIzYjk1YTI0Mjg4NGRjNjQ0N2M4MzUxNTQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3pNwXyJDNnSaoxWklYlw223vTWiD jKda/SRzsKcTV2miU7/w20zSX38prRYbyZk2TtPhoEerUt6s4GWqzG8vzuD9jvGC MAeD4aGAkzkIe16nkYthlvenEiTzHp+2RITkmthA/hXGjKEmtXCzD4oMhQOoO2HB UU1SWiDZ2KCwFnyxH20s7J+rl0KQcdqC/Wz2a+F8u9JMSSPa7bZK+t31zwaakVki fFrJIG2QZMvUgfvZ1LC1Je9KPCY7kIZ0Bp5mMjfvEFd6ZTwuogIdmd9S6Z/K5sJu OFBdSTlVoBNVrrLDxgDHLKS271bxTvvqfCUZQSjKWU33/PzPU5o0C2uiIQIDAQAB o4ICKDCCAiQwHQYDVR0OBBYEFPpSrlSoQlazuVokKITcZEfINRVAMB8GA1UdIwQY MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt ZjUyYzQ3YzIyNWRiLzEvMS1sS3VWS2hDVnJPNVdpUW9oTnhrUjhnMUZVQS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMTUvNzE5M2RiLTdmODUtNDJiYi1iMDlhLWY1MmM0N2MyMjVk Yi8xL01ZTjRXUmJObU5mSGNOYUZGRlNacUtDaFZ5SS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjA9BggrBgEFBQcBBwEB/wQuMCwwKgQCAAEwJAMEAFG0zQME AlG1hAMEAFG1rgMEAFV4LQMEAFV4uQMEAsKZ/DANBgkqhkiG9w0BAQsFAAOCAQEA hP7E/Dbhg+tLDyzhUsuZU91KT+gdgYLcg0CV5pdKARQlo927LePGJsf1zYLIFDcg I8gij13aqb+8KczzFbo4onT/c7t4xX1qnCOSKkHgdb/lbTOHzC9/SfIjy3lVSnzc BcBqsC+/k/CsDm+if6bU/3jEUKf1FEb/bRlCNt6P1pyY+H9pHEws80sXZPt4NHyQ kBf395BX8gibquY82W6jnQNW+9R8frvaY6uFMTKNEJFZl/k8uJosV7tSXDIHmgtF Ehxf8xceJUPUemIxoG6dEYNVq8HteBly1PDdPzDWm/5Z5JOqev5G+aUF/QFT5riE W6RPz7ZNDoeIxOgsgcqGxw== -----END CERTIFICATE-----Generated at Tue Jan 20 02:50:01 2026 by rpki-client