This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/LiEVK06b_iEfWKONoW7STd84p8o.roa File: LiEVK06b_iEfWKONoW7STd84p8o.roa (raw, json) Hash identifier: KP0hMh+NQgDSgDAVVXQlg1eOWnVVyRKaORcdjPcukmI= Subject key identifier: 2E:21:15:2B:4E:9B:FE:21:1F:58:A3:8D:A1:6E:D2:4D:DF:38:A7:CA Certificate issuer: /CN=5ea68c853810d0320b156844f29317701b58610d Certificate serial: 019B77C736F515971E31B4235FCC9007193D Authority key identifier: 5E:A6:8C:85:38:10:D0:32:0B:15:68:44:F2:93:17:70:1B:58:61:0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/LiEVK06b_iEfWKONoW7STd84p8o.roa Signing time: Thu 01 Jan 2026 04:18:22 +0000 ROA not before: Thu 01 Jan 2026 04:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41901 IP address blocks: 194.34.12.0/24 maxlen: 24 194.169.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:36:f5:15:97:1e:31:b4:23:5f:cc:90:07:19:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ea68c853810d0320b156844f29317701b58610d Validity Not Before: Jan 1 04:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e21152b4e9bfe211f58a38da16ed24ddf38a7ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:58:5d:e0:c2:90:b5:68:66:ac:d4:b2:c7:73: 90:4f:e6:3f:6a:df:0e:a3:97:c7:47:67:21:5e:26: 87:c5:9a:34:7c:16:c2:c9:24:28:47:fc:4c:ff:db: 50:cf:06:47:b6:f8:75:50:e0:f6:51:4e:42:ac:2e: e0:82:7b:c5:8c:e1:ca:6a:2d:97:71:4c:83:34:76: 51:7d:97:c4:ae:00:8e:bd:1b:bd:1f:55:96:1d:0c: 95:4e:c6:34:31:24:9f:11:4b:28:92:31:f0:49:55: 87:aa:95:9a:54:91:93:df:76:d7:bc:5a:9a:1b:36: 45:6e:4f:0c:07:48:4e:07:e1:19:db:bc:e7:5a:83: 88:74:17:6b:12:db:e6:0a:0f:ae:5f:d4:b0:cb:6a: 3e:55:8c:1f:28:49:a1:1c:44:5f:ff:0b:0b:70:cf: 93:6e:10:a8:76:79:50:80:b3:08:6f:ec:26:dd:33: f9:18:d9:06:8d:02:ff:56:05:5b:78:d4:35:15:05: 39:a2:26:49:7c:ce:2e:e9:6b:b9:fc:5e:17:e4:b4: e5:95:92:c7:27:dc:40:f9:c7:6d:d8:a7:b9:03:59: 5d:f1:a7:5d:e9:29:15:65:59:1b:34:9f:29:9f:78: 14:c8:c3:4d:96:4a:bc:52:74:b2:fe:65:66:5b:33: d2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:21:15:2B:4E:9B:FE:21:1F:58:A3:8D:A1:6E:D2:4D:DF:38:A7:CA X509v3 Authority Key Identifier: keyid:5E:A6:8C:85:38:10:D0:32:0B:15:68:44:F2:93:17:70:1B:58:61:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/LiEVK06b_iEfWKONoW7STd84p8o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/3e23d7-a3b7-416f-8810-1efa7cf773a0/1/XqaMhTgQ0DILFWhE8pMXcBtYYQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.34.12.0/24 194.169.231.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:f5:a8:f0:51:b9:dd:51:27:49:32:13:61:a1:a1:c7:6f:6a: b0:c4:35:48:f8:93:f5:0f:23:da:e9:a1:73:02:6c:26:f4:64: ca:72:74:7c:fd:3e:7c:c7:c3:4e:2c:b0:ba:7e:a8:8d:ec:cf: 07:76:68:b5:18:3f:48:11:6e:74:ba:7c:7f:4c:da:c9:cb:41: 5c:9a:4f:c3:1c:b0:65:09:2a:02:18:91:8f:b6:b5:e0:22:b5: 6a:ce:19:a4:6f:e9:e9:e5:bb:bf:06:68:7b:f4:06:b0:78:20: d1:a8:77:d6:8b:c0:a4:42:ce:02:44:ac:3d:06:54:5e:7b:07: 22:15:fe:c7:7a:ef:a4:94:cd:90:fc:8f:33:6e:fe:42:d8:10: b6:ae:53:e1:22:5c:a8:92:89:97:d3:4c:13:c2:8a:7c:68:1f: 43:08:7a:8c:83:fa:88:fc:3f:63:5c:52:49:3c:95:14:07:fc: 4f:16:34:f3:9f:1d:19:7d:d1:17:7f:63:55:1d:d1:8c:dd:58: b4:5b:f3:f2:6c:0a:bb:f1:16:d7:54:78:9e:f1:78:74:0d:03: 2b:2a:fd:4f:d8:da:be:5c:11:de:4c:3d:61:b5:a0:66:d8:d2: 98:37:ef:ea:b9:28:76:c7:f9:0a:87:b5:5b:53:ea:68:a4:95: 68:34:85:2d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xzb1FZceMbQjX8yQBxk9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlYTY4Yzg1MzgxMGQwMzIwYjE1Njg0NGYyOTMxNzcwMWI1 ODYxMGQwHhcNMjYwMTAxMDQxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTIxMTUyYjRlOWJmZTIxMWY1OGEzOGRhMTZlZDI0ZGRmMzhhN2NhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFhd4MKQtWhmrNSyx3OQT+Y/at8O o5fHR2chXiaHxZo0fBbCySQoR/xM/9tQzwZHtvh1UOD2UU5CrC7ggnvFjOHKai2X cUyDNHZRfZfErgCOvRu9H1WWHQyVTsY0MSSfEUsokjHwSVWHqpWaVJGT33bXvFqa GzZFbk8MB0hOB+EZ27znWoOIdBdrEtvmCg+uX9Swy2o+VYwfKEmhHERf/wsLcM+T bhCodnlQgLMIb+wm3TP5GNkGjQL/VgVbeNQ1FQU5oiZJfM4u6Wu5/F4X5LTllZLH J9xA+cdt2Ke5A1ld8add6SkVZVkbNJ8pn3gUyMNNlkq8UnSy/mVmWzPSLwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFC4hFStOm/4hH1ijjaFu0k3fOKfKMB8GA1UdIwQY MBaAFF6mjIU4ENAyCxVoRPKTF3AbWGENMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHFhTWhUZ1EwRElMRldoRThwTVhjQnRZWVEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8zZTIzZDctYTNiNy00MTZmLTg4MTAt MWVmYTdjZjc3M2EwLzEvTGlFVkswNmJfaUVmV0tPTm9XN1NUZDg0cDhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8zZTIzZDctYTNiNy00MTZmLTg4MTAtMWVmYTdjZjc3M2Ew LzEvWHFhTWhUZ1EwRElMRldoRThwTVhjQnRZWVEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwiIMAwQA wqnnMA0GCSqGSIb3DQEBCwUAA4IBAQBs9ajwUbndUSdJMhNhoaHHb2qwxDVI+JP1 DyPa6aFzAmwm9GTKcnR8/T58x8NOLLC6fqiN7M8Hdmi1GD9IEW50unx/TNrJy0Fc mk/DHLBlCSoCGJGPtrXgIrVqzhmkb+np5bu/Bmh79AaweCDRqHfWi8CkQs4CRKw9 BlReewciFf7Heu+klM2Q/I8zbv5C2BC2rlPhIlyokomX00wTwop8aB9DCHqMg/qI /D9jXFJJPJUUB/xPFjTznx0ZfdEXf2NVHdGM3Vi0W/PybAq78RbXVHie8Xh0DQMr Kv1P2Nq+XBHeTD1htaBm2NKYN+/quSh2x/kKh7VbU+popJVoNIUt -----END CERTIFICATE-----Generated at Tue Feb 10 01:14:11 2026 by rpki-client