This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/LyXo3omYYFGu0x-1vxCVc0jOXXk.roa File: LyXo3omYYFGu0x-1vxCVc0jOXXk.roa (raw, json) Hash identifier: tP3+/CoTgyHttLpNnNbTKpXPtaBjJcLwdaSRY8FXziI= Subject key identifier: 2F:25:E8:DE:89:98:60:51:AE:D3:1F:B5:BF:10:95:73:48:CE:5D:79 Certificate issuer: /CN=7a350d024af01f8eaf125717caa03aafad184e1d Certificate serial: 019B7DC9E749BBF67DFE08EC7B5DBC0D569C Authority key identifier: 7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/LyXo3omYYFGu0x-1vxCVc0jOXXk.roa Signing time: Fri 02 Jan 2026 08:19:02 +0000 ROA not before: Fri 02 Jan 2026 08:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56974 IP address blocks: 109.104.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.mft rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:e7:49:bb:f6:7d:fe:08:ec:7b:5d:bc:0d:56:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a350d024af01f8eaf125717caa03aafad184e1d Validity Not Before: Jan 2 08:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2f25e8de89986051aed31fb5bf10957348ce5d79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f6:75:35:25:c6:3f:da:30:05:30:4a:e3:84: c8:8f:22:a2:64:ba:d8:81:52:e0:57:eb:84:f3:2a: 76:a3:f3:1e:53:f9:78:d7:77:86:ad:1b:6f:60:01: e6:ab:e7:52:54:47:e5:cd:2b:99:4f:4b:6f:a4:18: 2c:0d:ac:6b:e4:e5:e4:1e:d0:c7:d9:99:e9:c4:aa: 82:68:fa:ad:c0:ae:72:c9:b4:2d:4e:8c:80:66:b1: 8a:84:a4:ad:0b:b4:9a:04:5f:90:bf:21:11:51:ca: 6d:8b:b3:90:d1:70:91:44:61:a2:ce:a9:b7:d3:02: 05:51:42:28:b0:d7:f7:cb:3e:e0:09:07:dd:10:d3: 0d:02:28:5e:80:f6:8d:54:05:ca:4a:76:e1:46:2e: df:4e:e0:4e:4b:3a:ba:a1:23:06:90:cc:f8:6d:35: fd:1d:55:b3:72:f7:2a:09:9d:d3:08:57:f4:32:4f: 4c:8e:1a:b0:9f:d6:f6:df:b7:1e:e1:3f:64:3f:cb: 29:25:db:4a:4e:a1:d3:e7:83:fe:18:a1:3f:e4:95: de:40:a1:0d:5b:bc:c9:d9:47:7d:ec:fd:91:fa:fa: 08:44:a6:a1:47:d6:f3:27:78:e6:d4:48:56:86:67: a1:1e:ab:d2:36:ff:9e:71:42:7d:db:49:2d:e1:7b: 76:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:25:E8:DE:89:98:60:51:AE:D3:1F:B5:BF:10:95:73:48:CE:5D:79 X509v3 Authority Key Identifier: keyid:7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/LyXo3omYYFGu0x-1vxCVc0jOXXk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.104.248.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:71:eb:a0:68:53:c4:a1:cf:5f:37:f0:16:32:0c:93:6d:e4: 36:cf:3e:ba:c7:a5:89:db:8a:54:ed:62:8a:72:95:e1:97:f1: 76:bd:7f:5f:57:3b:97:4f:09:17:9a:d3:21:47:cc:62:6e:8c: 80:29:3e:1e:14:e6:fd:71:fd:a6:e1:36:e1:96:b6:b9:3f:ff: 6d:47:9d:cf:4a:90:cc:04:58:7e:c1:7f:e7:0c:f8:17:63:9d: f1:b0:60:a6:f1:ce:6f:85:29:66:0c:73:56:4c:58:90:aa:a1: ec:2c:a3:54:bb:45:2e:d8:35:54:56:70:27:55:ad:07:19:da: 33:dd:9b:0b:0e:5c:16:b5:59:32:90:b5:fe:97:c0:42:17:6f: bc:2f:87:a3:c3:9b:e6:2a:f8:56:df:d4:db:b3:2a:5e:98:34: 7a:b4:21:68:06:6d:f9:cc:2e:27:73:a2:ed:bd:48:bd:f2:14: 8a:02:02:71:fd:7c:ef:71:e8:06:d2:10:8c:18:de:2d:06:f2: 2d:cc:39:7f:4f:95:e5:39:3e:32:00:65:17:f4:3e:23:03:b0: e1:bf:11:d9:ec:4f:e4:d4:49:1f:e7:0e:1b:9a:b6:7d:5d:05: c0:67:ea:28:3d:cb:d8:52:ef:53:ed:54:34:39:0f:27:9b:ac: 6e:f9:67:65 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yedJu/Z9/gjse128DVacMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMzUwZDAyNGFmMDFmOGVhZjEyNTcxN2NhYTAzYWFmYWQx ODRlMWQwHhcNMjYwMTAyMDgxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZjI1ZThkZTg5OTg2MDUxYWVkMzFmYjViZjEwOTU3MzQ4Y2U1ZDc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/Z1NSXGP9owBTBK44TIjyKiZLrY gVLgV+uE8yp2o/MeU/l413eGrRtvYAHmq+dSVEflzSuZT0tvpBgsDaxr5OXkHtDH 2ZnpxKqCaPqtwK5yybQtToyAZrGKhKStC7SaBF+QvyERUcpti7OQ0XCRRGGizqm3 0wIFUUIosNf3yz7gCQfdENMNAihegPaNVAXKSnbhRi7fTuBOSzq6oSMGkMz4bTX9 HVWzcvcqCZ3TCFf0Mk9Mjhqwn9b237ce4T9kP8spJdtKTqHT54P+GKE/5JXeQKEN W7zJ2Ud97P2R+voIRKahR9bzJ3jm1EhWhmehHqvSNv+ecUJ920kt4Xt2jwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC8l6N6JmGBRrtMftb8QlXNIzl15MB8GA1UdIwQY MBaAFHo1DQJK8B+OrxJXF8qgOq+tGE4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWpVTkFrcndINDZ2RWxjWHlxQTZyNjBZVGgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi83OTY2YWUtOWM4OC00M2U5LWI4OTkt ZDAwM2U1NmZlNzUzLzEvTHlYbzNvbVlZRkd1MHgtMXZ4Q1ZjMGpPWFhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi83OTY2YWUtOWM4OC00M2U5LWI4OTktZDAwM2U1NmZlNzUz LzEvZWpVTkFrcndINDZ2RWxjWHlxQTZyNjBZVGgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCbWj4MA0G CSqGSIb3DQEBCwUAA4IBAQAeceugaFPEoc9fN/AWMgyTbeQ2zz66x6WJ24pU7WKK cpXhl/F2vX9fVzuXTwkXmtMhR8xiboyAKT4eFOb9cf2m4Tbhlra5P/9tR53PSpDM BFh+wX/nDPgXY53xsGCm8c5vhSlmDHNWTFiQqqHsLKNUu0Uu2DVUVnAnVa0HGdoz 3ZsLDlwWtVkykLX+l8BCF2+8L4ejw5vmKvhW39TbsypemDR6tCFoBm35zC4nc6Lt vUi98hSKAgJx/XzvcegG0hCMGN4tBvItzDl/T5XlOT4yAGUX9D4jA7DhvxHZ7E/k 1Ekf5w4bmrZ9XQXAZ+ooPcvYUu9T7VQ0OQ8nm6xu+Wdl -----END CERTIFICATE-----Generated at Mon Feb 9 21:24:16 2026 by rpki-client