This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/lkhPxJCun2Z5dUraPSN6RULYRDg.roa File: lkhPxJCun2Z5dUraPSN6RULYRDg.roa (raw, json) Hash identifier: eFqAJaFBxk27IgOacKteSGKbRvtbv4VmDnVEga8GwnE= Subject key identifier: 96:48:4F:C4:90:AE:9F:66:79:75:4A:DA:3D:23:7A:45:42:D8:44:38 Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d Certificate serial: 019B797E735AEF97E649E550E06EC8FBB3F4 Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/lkhPxJCun2Z5dUraPSN6RULYRDg.roa Signing time: Thu 01 Jan 2026 12:18:08 +0000 ROA not before: Thu 01 Jan 2026 12:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200017 IP address blocks: 87.237.167.0/24 maxlen: 24 89.251.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.mft rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:73:5a:ef:97:e6:49:e5:50:e0:6e:c8:fb:b3:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d Validity Not Before: Jan 1 12:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=96484fc490ae9f6679754ada3d237a4542d84438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c4:df:56:f7:9a:4a:f2:a3:f9:ab:9d:91:50: 3a:58:00:88:b3:31:8f:c4:c4:31:46:ad:23:93:db: 6f:70:4b:0b:f8:0e:17:7c:c9:dd:7f:d3:44:c3:c8: 5d:f3:f5:0c:79:b4:a6:1a:80:2c:3b:b6:47:b3:3b: b0:bf:5b:ff:e9:82:11:79:76:58:21:2a:7b:11:d9: ee:06:cd:97:85:08:8c:63:f4:11:64:66:f8:53:2d: ee:d6:57:5f:c9:c8:69:79:08:c7:e5:76:36:85:df: bb:48:5b:8f:58:c1:d3:a2:a9:0b:eb:49:a6:45:2c: a0:c9:a1:e4:92:25:0c:e9:38:04:5b:8f:15:b5:c1: 6a:f7:d0:57:b2:1d:7d:cb:cf:98:f2:df:ee:63:e0: d0:d6:bd:eb:71:3e:50:b5:cf:c9:81:6d:4c:b9:b9: d6:d0:9c:6e:7e:22:3a:94:5c:f0:94:71:2e:2f:7f: 4c:38:09:a9:45:6a:3e:38:99:1a:78:3c:33:cc:6e: 64:53:e3:60:50:40:e3:68:1d:bb:08:0e:dc:a3:e4: b9:69:fd:36:ae:a1:c4:1c:e5:fb:04:9a:96:cc:6f: e1:55:01:8a:74:24:e1:92:19:36:43:2c:28:2a:08: cb:c6:f2:da:b5:d3:bf:3a:f6:f4:c6:67:5a:f7:5e: a0:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:48:4F:C4:90:AE:9F:66:79:75:4A:DA:3D:23:7A:45:42:D8:44:38 X509v3 Authority Key Identifier: keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/lkhPxJCun2Z5dUraPSN6RULYRDg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.237.167.0/24 89.251.30.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:40:d7:ff:50:cc:c3:56:dd:74:cd:cc:d3:2a:24:84:d9:d6: 48:3d:95:1e:27:2e:29:bf:a1:fc:a3:2a:a7:aa:3b:2b:70:5e: 93:60:f4:00:53:c7:78:54:7b:7f:0d:84:7b:3e:a6:0c:4b:18: 21:03:1d:93:5e:4b:0d:7f:98:93:ea:40:0d:da:12:30:d0:8a: 3c:cb:c0:92:8c:e2:48:5b:3f:9d:12:91:30:b4:39:aa:79:18: be:9b:15:e4:b5:70:d3:36:b2:f5:a9:55:dd:c4:aa:74:fb:52: aa:3c:e3:16:99:bf:ed:9c:bc:ea:b4:33:63:cb:09:7c:c7:ce: 9e:ed:1b:5d:fa:04:c5:d8:b7:ed:f5:b0:00:32:d7:1e:7d:9b: 76:d5:f7:67:1c:33:11:96:14:ab:b0:c6:e4:d8:2c:ae:29:4c: 9d:99:81:c8:76:5a:cb:3f:3c:3e:f0:52:75:44:72:48:ca:50: b7:f1:ff:52:d2:44:14:dc:75:d1:ca:5a:e1:65:65:07:35:a6: 0b:ff:d7:f3:22:ac:26:2a:ad:f5:bc:5d:1a:e9:63:d5:4d:16: d5:3f:17:9f:94:c0:27:32:e4:92:32:4f:25:00:87:3f:57:4e: 2b:d8:b0:b1:b2:e1:7d:d0:85:86:fb:a9:dc:4b:02:92:88:23: 92:be:11:52 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5fnNa75fmSeVQ4G7I+7P0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj NWFjOGQwHhcNMjYwMTAxMTIxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjQ4NGZjNDkwYWU5ZjY2Nzk3NTRhZGEzZDIzN2E0NTQyZDg0NDM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6sTfVveaSvKj+audkVA6WACIszGP xMQxRq0jk9tvcEsL+A4XfMndf9NEw8hd8/UMebSmGoAsO7ZHszuwv1v/6YIReXZY ISp7EdnuBs2XhQiMY/QRZGb4Uy3u1ldfychpeQjH5XY2hd+7SFuPWMHToqkL60mm RSygyaHkkiUM6TgEW48VtcFq99BXsh19y8+Y8t/uY+DQ1r3rcT5Qtc/JgW1MubnW 0JxufiI6lFzwlHEuL39MOAmpRWo+OJkaeDwzzG5kU+NgUEDjaB27CA7co+S5af02 rqHEHOX7BJqWzG/hVQGKdCThkhk2QywoKgjLxvLatdO/Ovb0xmda916gDQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJZIT8SQrp9meXVK2j0jekVC2EQ4MB8GA1UdIwQY MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt MzE4YTI2ZDRhOGM5LzEvbGtoUHhKQ3VuMlo1ZFVyYVBTTjZSVUxZUkRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5 LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAV+2nAwQA WfseMA0GCSqGSIb3DQEBCwUAA4IBAQAsQNf/UMzDVt10zczTKiSE2dZIPZUeJy4p v6H8oyqnqjsrcF6TYPQAU8d4VHt/DYR7PqYMSxghAx2TXksNf5iT6kAN2hIw0Io8 y8CSjOJIWz+dEpEwtDmqeRi+mxXktXDTNrL1qVXdxKp0+1KqPOMWmb/tnLzqtDNj ywl8x86e7Rtd+gTF2Lft9bAAMtcefZt21fdnHDMRlhSrsMbk2CyuKUydmYHIdlrL Pzw+8FJ1RHJIylC38f9S0kQU3HXRylrhZWUHNaYL/9fzIqwmKq31vF0a6WPVTRbV PxeflMAnMuSSMk8lAIc/V04r2LCxsuF90IWG+6ncSwKSiCOSvhFS -----END CERTIFICATE-----Generated at Mon Jan 19 13:54:02 2026 by rpki-client