This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/LhUnaGoQNmNa8oeExTBFraSPy88.roa File: LhUnaGoQNmNa8oeExTBFraSPy88.roa (raw, json) Hash identifier: VBpIS/nz3p69MYnTOuNMqJ+blijtHIfMEncJAEPTXF8= Subject key identifier: 2E:15:27:68:6A:10:36:63:5A:F2:87:84:C5:30:45:AD:A4:8F:CB:CF Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82BE549F5BA43A4FF07D938A997E70 Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/LhUnaGoQNmNa8oeExTBFraSPy88.roa Signing time: Fri 02 Jan 2026 16:20:33 +0000 ROA not before: Fri 02 Jan 2026 16:20:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49870 IP address blocks: 2.56.167.0/24 maxlen: 24 45.81.22.0/23 maxlen: 23 45.140.222.0/23 maxlen: 23 77.83.240.0/24 maxlen: 24 89.190.156.0/24 maxlen: 24 89.190.159.0/24 maxlen: 24 194.50.16.0/23 maxlen: 24 212.107.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:be:54:9f:5b:a4:3a:4f:f0:7d:93:8a:99:7e:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e1527686a1036635af28784c53045ada48fcbcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:35:0f:e6:a3:44:10:b2:d2:44:52:56:90:62: 3f:65:ef:cd:9a:67:01:25:76:e5:2c:ca:cb:8b:2f: ba:6d:2d:3d:65:fa:2b:23:d7:96:ab:21:3d:4e:89: e5:28:e0:7a:1f:6f:59:c7:1a:a8:fb:6c:0d:ce:87: ee:8c:6e:ac:a7:7c:8f:40:68:74:ad:be:5f:16:94: c8:f2:34:18:49:d7:c9:bd:4e:e2:cc:54:fc:42:8f: fb:6d:a6:57:90:46:c3:03:cd:7f:ca:25:e3:70:63: a4:f8:58:d4:14:d8:ee:01:56:9a:e8:aa:f5:28:fa: d2:49:a5:f1:35:1b:36:b8:7d:11:6e:af:63:a0:5b: 9d:fc:45:e5:b3:d4:bc:5a:89:3a:18:2a:88:6b:d6: 07:9a:b9:a3:dc:8d:bd:15:f2:35:23:18:2f:80:66: db:66:bc:b8:09:a1:ca:10:27:da:47:3b:29:db:ca: da:36:d9:02:5a:69:55:09:bc:b0:fb:cf:e1:80:69: 13:72:33:63:4b:74:18:35:97:62:a7:04:dc:85:5a: cf:2e:32:d1:91:14:2b:e2:1e:e3:0d:46:32:0c:cd: d7:0c:10:48:cb:31:91:c9:e6:67:5e:c4:c1:36:5f: 3b:5d:90:34:c9:c0:eb:98:64:04:b5:a5:33:95:9e: e3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:15:27:68:6A:10:36:63:5A:F2:87:84:C5:30:45:AD:A4:8F:CB:CF X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/LhUnaGoQNmNa8oeExTBFraSPy88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.167.0/24 45.81.22.0/23 45.140.222.0/23 77.83.240.0/24 89.190.156.0/24 89.190.159.0/24 194.50.16.0/23 212.107.12.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:a1:d4:cd:3a:55:a9:a8:98:4d:86:2b:29:40:aa:ff:02:4f: 93:33:f6:bf:3e:f0:67:af:59:88:f3:77:ca:e9:e2:aa:cc:d6: ee:29:a5:d4:d2:41:50:6c:9d:c4:7b:a6:4d:98:85:34:bd:da: f8:92:2c:6a:c9:5f:59:ec:36:bc:0c:ec:d8:c1:ae:84:18:d3: 54:0b:fd:0d:14:10:91:d1:21:6d:7f:f5:68:63:07:72:4e:d6: 1b:82:8e:17:28:a8:f5:da:f6:76:8f:95:0a:9e:66:e9:2e:52: f7:cd:6a:3a:f5:bd:5a:92:40:42:98:d0:8b:a5:e7:30:84:63: ed:2e:60:96:92:ff:72:58:cc:a8:49:09:6a:b3:4e:59:1a:60: be:ce:70:10:e5:38:8d:38:86:2d:71:10:91:fc:59:ef:c9:84: 67:79:23:11:a9:5d:00:96:a6:d0:f8:52:3c:c6:ce:b7:60:d6: 58:5b:fc:54:6b:1d:f1:79:37:74:66:19:8d:fd:10:17:83:f4: 5f:2c:40:35:e9:22:60:0e:b5:3a:41:f8:09:b7:f8:cc:cf:d0: 3d:b1:ba:8a:cb:03:4e:07:07:16:c9:84:29:5a:9a:07:21:08: fa:d7:4e:44:66:1d:99:39:16:c7:a8:6d:a5:91:20:36:a0:99: 64:7d:80:37 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt/gr5Un1ukOk/wfZOKmX5wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTE1Mjc2ODZhMTAzNjYzNWFmMjg3ODRjNTMwNDVhZGE0OGZjYmNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTUP5qNEELLSRFJWkGI/Ze/NmmcB JXblLMrLiy+6bS09ZforI9eWqyE9TonlKOB6H29Zxxqo+2wNzofujG6sp3yPQGh0 rb5fFpTI8jQYSdfJvU7izFT8Qo/7baZXkEbDA81/yiXjcGOk+FjUFNjuAVaa6Kr1 KPrSSaXxNRs2uH0Rbq9joFud/EXls9S8Wok6GCqIa9YHmrmj3I29FfI1IxgvgGbb Zry4CaHKECfaRzsp28raNtkCWmlVCbyw+8/hgGkTcjNjS3QYNZdipwTchVrPLjLR kRQr4h7jDUYyDM3XDBBIyzGRyeZnXsTBNl87XZA0ycDrmGQEtaUzlZ7jrQIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFC4VJ2hqEDZjWvKHhMUwRa2kj8vPMB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEvTGhVbmFHb1FObU5hOG9lRXhUQkZyYVNQeTg4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAAjinAwQB LVEWAwQBLYzeAwQATVPwAwQAWb6cAwQAWb6fAwQBwjIQAwQA1GsMMA0GCSqGSIb3 DQEBCwUAA4IBAQCPodTNOlWpqJhNhispQKr/Ak+TM/a/PvBnr1mI83fK6eKqzNbu KaXU0kFQbJ3Ee6ZNmIU0vdr4kixqyV9Z7Da8DOzYwa6EGNNUC/0NFBCR0SFtf/Vo YwdyTtYbgo4XKKj12vZ2j5UKnmbpLlL3zWo69b1akkBCmNCLpecwhGPtLmCWkv9y WMyoSQlqs05ZGmC+znAQ5TiNOIYtcRCR/FnvyYRneSMRqV0AlqbQ+FI8xs63YNZY W/xUax3xeTd0ZhmN/RAXg/RfLEA16SJgDrU6QfgJt/jMz9A9sbqKywNOBwcWyYQp WpoHIQj6105EZh2ZORbHqG2lkSA2oJlkfYA3 -----END CERTIFICATE-----Generated at Tue Jan 20 15:17:49 2026 by rpki-client