This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/lTiIdOCkR7HQgUlBuUv00XWG8n8.roa File: lTiIdOCkR7HQgUlBuUv00XWG8n8.roa (raw, json) Hash identifier: 5GQQkbQ8C7wWLUQ4RuOd8R+85EFkyHaFY8FEJbVGNpw= Subject key identifier: 95:38:88:74:E0:A4:47:B1:D0:81:49:41:B9:4B:F4:D1:75:86:F2:7F Certificate issuer: /CN=b321cb828908f430749ee3a5f2a62de5f822f7d1 Certificate serial: 019B7C12D2E39B5189B260E325290FE53F6F Authority key identifier: B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/lTiIdOCkR7HQgUlBuUv00XWG8n8.roa Signing time: Fri 02 Jan 2026 00:19:27 +0000 ROA not before: Fri 02 Jan 2026 00:19:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41789 IP address blocks: 46.16.8.0/24 maxlen: 24 46.16.9.0/24 maxlen: 24 46.16.10.0/24 maxlen: 24 46.16.11.0/24 maxlen: 24 46.227.24.0/24 maxlen: 24 46.227.25.0/24 maxlen: 24 46.227.26.0/24 maxlen: 24 46.227.27.0/24 maxlen: 24 46.227.28.0/24 maxlen: 24 46.227.29.0/24 maxlen: 24 46.227.30.0/24 maxlen: 24 46.227.31.0/24 maxlen: 24 91.142.144.0/24 maxlen: 24 91.142.145.0/24 maxlen: 24 91.142.146.0/24 maxlen: 24 91.142.147.0/24 maxlen: 24 91.142.148.0/24 maxlen: 24 91.142.149.0/24 maxlen: 24 91.142.150.0/24 maxlen: 24 91.142.151.0/24 maxlen: 24 91.142.152.0/21 maxlen: 21 91.142.158.0/24 maxlen: 24 159.255.0.0/20 maxlen: 20 159.255.16.0/24 maxlen: 24 159.255.17.0/24 maxlen: 24 159.255.18.0/24 maxlen: 24 159.255.19.0/24 maxlen: 24 159.255.20.0/24 maxlen: 24 159.255.21.0/24 maxlen: 24 159.255.22.0/24 maxlen: 24 159.255.23.0/24 maxlen: 24 159.255.28.0/24 maxlen: 24 159.255.29.0/24 maxlen: 24 159.255.30.0/24 maxlen: 24 159.255.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:d2:e3:9b:51:89:b2:60:e3:25:29:0f:e5:3f:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b321cb828908f430749ee3a5f2a62de5f822f7d1 Validity Not Before: Jan 2 00:19:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=95388874e0a447b1d0814941b94bf4d17586f27f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:38:d6:a4:f9:b4:84:9b:e1:86:f6:6e:27:d0: 19:1d:e9:d3:45:af:f4:d2:76:33:da:87:b9:c0:ea: c9:7f:86:b2:09:2d:6c:b7:57:77:48:f5:da:04:70: c0:2c:e0:2e:0f:20:67:93:b1:c9:0a:2b:ec:22:0a: b1:03:48:db:97:db:89:5e:6c:3d:d7:be:31:7d:f3: ba:e8:f2:83:2d:13:c6:f4:46:b7:97:f0:92:60:91: db:98:29:82:55:f7:f6:fc:37:cb:b6:c5:1e:e8:09: 34:e2:99:c6:fe:83:4d:62:00:6b:17:0d:d6:ff:ae: e2:fa:a9:36:d1:98:fb:fa:cd:ea:3c:38:f1:5a:61: 5f:42:06:3f:09:38:2c:5a:a7:77:ae:1f:9d:5f:83: e7:ad:44:b6:b0:02:da:8a:b4:56:95:47:1f:cd:a0: 63:b8:a3:06:d2:d3:c4:cb:b9:8f:49:e5:3f:49:e1: df:f5:1f:2d:6a:b5:c7:db:e6:16:2c:6f:29:57:a3: 04:96:6a:f0:c1:69:7a:1a:b5:06:77:be:41:18:a0: 6e:ef:0d:2d:f0:8a:00:24:4b:f9:98:a2:23:c9:a8: f7:89:98:1e:19:0e:bd:54:c1:89:4c:4c:b2:03:58: 02:e6:14:f1:2c:7a:df:11:71:38:18:b4:9d:d1:ff: fc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:38:88:74:E0:A4:47:B1:D0:81:49:41:B9:4B:F4:D1:75:86:F2:7F X509v3 Authority Key Identifier: keyid:B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/lTiIdOCkR7HQgUlBuUv00XWG8n8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.16.8.0/22 46.227.24.0/21 91.142.144.0/20 159.255.0.0-159.255.23.255 159.255.28.0/22 Signature Algorithm: sha256WithRSAEncryption d3:89:0b:58:87:79:58:b8:b9:3f:a0:4f:16:20:f3:69:05:6b: 17:ee:98:99:14:75:44:3b:1b:e2:aa:e7:36:70:67:39:73:b7: 18:c6:88:b6:ac:2c:12:25:01:98:cb:86:3f:bb:bb:07:b6:4e: 4d:1b:4f:21:5f:b8:7b:03:70:36:b6:12:7d:80:79:8e:81:7a: 45:53:8d:ba:9c:fd:63:b4:01:5d:7a:5e:95:2e:d9:95:93:8d: 43:74:b1:03:e5:41:cd:60:03:ae:15:80:e0:de:f3:d6:5c:7f: c4:ab:94:fe:b7:af:43:b1:96:e4:bd:3a:3c:7c:81:a4:0b:c6: 1a:df:e1:20:9b:50:97:05:1e:49:0a:f0:9a:bf:ee:83:67:fd: a4:79:83:ab:0d:9c:63:49:91:2b:a5:b0:49:82:5c:8e:19:78: 99:be:52:0f:71:8d:79:ff:2b:09:10:0e:4a:fa:d8:6a:ed:55: 49:57:b3:68:99:6d:ff:a0:87:5d:d9:8f:52:f2:c5:34:c0:46: 57:04:14:51:84:bc:df:55:78:1e:7a:e1:07:46:85:4d:ed:46: 4a:68:99:1d:3d:a4:d3:0c:08:61:d7:58:86:d2:b8:10:0b:66: c5:8a:8f:69:06:09:d0:52:3c:bb:d8:b5:d9:c0:ef:ee:69:1d: b8:3d:6b:f5 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgISAZt8EtLjm1GJsmDjJSkP5T9vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMjFjYjgyODkwOGY0MzA3NDllZTNhNWYyYTYyZGU1Zjgy MmY3ZDEwHhcNMjYwMTAyMDAxOTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NTM4ODg3NGUwYTQ0N2IxZDA4MTQ5NDFiOTRiZjRkMTc1ODZmMjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3jjWpPm0hJvhhvZuJ9AZHenTRa/0 0nYz2oe5wOrJf4ayCS1st1d3SPXaBHDALOAuDyBnk7HJCivsIgqxA0jbl9uJXmw9 174xffO66PKDLRPG9Ea3l/CSYJHbmCmCVff2/DfLtsUe6Ak04pnG/oNNYgBrFw3W /67i+qk20Zj7+s3qPDjxWmFfQgY/CTgsWqd3rh+dX4PnrUS2sALairRWlUcfzaBj uKMG0tPEy7mPSeU/SeHf9R8tarXH2+YWLG8pV6MElmrwwWl6GrUGd75BGKBu7w0t 8IoAJEv5mKIjyaj3iZgeGQ69VMGJTEyyA1gC5hTxLHrfEXE4GLSd0f/8jQIDAQAB o4ICKDCCAiQwHQYDVR0OBBYEFJU4iHTgpEex0IFJQblL9NF1hvJ/MB8GA1UdIwQY MBaAFLMhy4KJCPQwdJ7jpfKmLeX4IvfRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3lITGdva0k5REIwbnVPbDhxWXQ1ZmdpOTlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jY2FhMWEtOWRhYS00NGI4LTllMjYt ODdmMzQxODg4NTYwLzEvbFRpSWRPQ2tSN0hRZ1VsQnVVdjAwWFdHOG44LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9jY2FhMWEtOWRhYS00NGI4LTllMjYtODdmMzQxODg4NTYw LzEvc3lITGdva0k5REIwbnVPbDhxWXQ1ZmdpOTlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD4GCCsGAQUFBwEHAQH/BC8wLTArBAIAATAlAwQCLhAIAwQD LuMYAwQEW46QMAsDAwCf/wMEA5//EAMEAp//HDANBgkqhkiG9w0BAQsFAAOCAQEA 04kLWId5WLi5P6BPFiDzaQVrF+6YmRR1RDsb4qrnNnBnOXO3GMaItqwsEiUBmMuG P7u7B7ZOTRtPIV+4ewNwNrYSfYB5joF6RVONupz9Y7QBXXpelS7ZlZONQ3SxA+VB zWADrhWA4N7z1lx/xKuU/revQ7GW5L06PHyBpAvGGt/hIJtQlwUeSQrwmr/ug2f9 pHmDqw2cY0mRK6WwSYJcjhl4mb5SD3GNef8rCRAOSvrYau1VSVezaJlt/6CHXdmP UvLFNMBGVwQUUYS831V4HnrhB0aFTe1GSmiZHT2k0wwIYddYhtK4EAtmxYqPaQYJ 0FI8u9i12cDv7mkduD1r9Q== -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:20 2026 by rpki-client