This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/1LEFsPM_H8xQ-_ougrkdy_5rKNU.roa File: 1LEFsPM_H8xQ-_ougrkdy_5rKNU.roa (raw, json) Hash identifier: vqS3TtpAElEQP9C4hD+5YU/4Tth0LEZ2oFRo5KORXho= Subject key identifier: D4:B1:05:B0:F3:3F:1F:CC:50:FB:FA:2E:82:B9:1D:CB:FE:6B:28:D5 Certificate issuer: /CN=ba77301e14d65b3a3d686daac16dfc49ac48c7cd Certificate serial: 019B7BA4FEE72A8D9BC3DB3C3822F424FA31 Authority key identifier: BA:77:30:1E:14:D6:5B:3A:3D:68:6D:AA:C1:6D:FC:49:AC:48:C7:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uncwHhTWWzo9aG2qwW38SaxIx80.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/1LEFsPM_H8xQ-_ougrkdy_5rKNU.roa Signing time: Thu 01 Jan 2026 22:19:29 +0000 ROA not before: Thu 01 Jan 2026 22:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211896 IP address blocks: 194.180.20.0/24 maxlen: 24 194.180.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/uncwHhTWWzo9aG2qwW38SaxIx80.crl rsync://rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/uncwHhTWWzo9aG2qwW38SaxIx80.mft rsync://rpki.ripe.net/repository/DEFAULT/uncwHhTWWzo9aG2qwW38SaxIx80.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 01:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:fe:e7:2a:8d:9b:c3:db:3c:38:22:f4:24:fa:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba77301e14d65b3a3d686daac16dfc49ac48c7cd Validity Not Before: Jan 1 22:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d4b105b0f33f1fcc50fbfa2e82b91dcbfe6b28d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0e:fe:8e:75:5b:5c:99:88:ef:dc:3e:91:99: 2c:ec:6d:43:31:bc:3e:d2:e4:45:60:95:93:7a:8a: c0:fc:60:a5:51:74:bb:2e:23:61:5b:a3:e0:b8:ae: 55:06:41:ec:e0:65:4b:5d:10:69:58:cd:7c:d8:70: 73:f8:7d:9b:51:a9:4d:44:7a:26:dd:cd:d1:29:63: d2:dc:0a:16:10:32:fd:58:b3:18:ca:b2:f4:5a:1b: 54:1c:dc:28:5b:b4:87:82:fc:ad:e6:99:8f:52:2c: 64:d0:1e:91:dd:63:60:87:e9:b2:b0:02:9d:e0:42: 13:b9:9d:ea:0f:06:56:34:65:b4:02:b1:52:ae:81: 08:65:49:55:53:04:c0:ec:e8:10:84:a7:1a:ba:0f: ab:5e:9c:12:52:ae:1b:37:35:88:bd:c7:6e:c4:9f: 10:b1:f1:27:fd:c8:b9:7c:cd:3c:98:41:e4:05:16: 0a:c9:4f:db:13:29:83:1b:42:bb:7e:6c:3a:2c:c0: d7:78:d3:ce:39:8f:94:63:a2:03:f4:e1:9f:e2:a8: d1:9e:18:84:c8:8d:51:65:49:8f:cf:93:13:98:0e: 6a:6b:cf:b1:58:3c:11:e0:f8:3f:7e:23:29:11:32: 9c:5a:53:f3:40:a5:6d:0d:94:e8:5d:57:fd:24:8a: 6c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B1:05:B0:F3:3F:1F:CC:50:FB:FA:2E:82:B9:1D:CB:FE:6B:28:D5 X509v3 Authority Key Identifier: keyid:BA:77:30:1E:14:D6:5B:3A:3D:68:6D:AA:C1:6D:FC:49:AC:48:C7:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uncwHhTWWzo9aG2qwW38SaxIx80.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/1LEFsPM_H8xQ-_ougrkdy_5rKNU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/uncwHhTWWzo9aG2qwW38SaxIx80.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.180.20.0/24 194.180.25.0/24 Signature Algorithm: sha256WithRSAEncryption 93:a9:b7:41:ff:44:89:46:c5:38:f4:18:34:7b:6c:53:87:d4: 11:0d:76:3b:b1:5c:53:d6:2d:7f:0f:41:8a:b4:46:41:1c:e2: f8:b3:58:40:63:8f:1e:df:fa:98:c4:b7:b5:c9:b8:77:d1:d3: 4f:a6:bd:97:28:1a:7b:3a:14:cb:73:be:bd:69:f2:f4:60:25: 19:96:93:3f:03:ab:c5:73:9b:fc:e4:3c:08:a1:2c:33:66:39: fa:9e:e1:1e:5a:90:af:9f:4a:e9:af:27:0a:1f:43:a9:66:43: c0:33:6a:0c:f3:ba:88:a4:0d:d4:d4:d3:c3:16:f0:ad:d5:d5: ec:bd:48:02:47:df:0d:ec:6a:a6:fe:45:64:a3:e3:1e:ee:8e: 2c:03:6d:6e:81:ec:06:44:6f:0e:fe:48:c5:23:01:da:ce:45: 07:e4:ee:c8:0e:7a:7c:9d:cb:ed:70:b8:89:b9:9d:34:04:5f: ec:63:c8:65:3a:e6:91:ed:5f:8d:bc:a4:b5:d0:c6:af:d2:41: 53:04:d8:16:60:41:00:c6:70:52:62:8b:2e:d5:bd:27:f0:d4: e2:44:49:bb:07:46:9e:6c:ee:e2:b0:c3:71:f5:62:6f:35:f8: f0:d7:10:0c:43:b2:91:79:5d:fa:c5:d6:b5:2c:6b:73:45:2c: bc:aa:56:8a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pP7nKo2bw9s8OCL0JPoxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNzczMDFlMTRkNjViM2EzZDY4NmRhYWMxNmRmYzQ5YWM0 OGM3Y2QwHhcNMjYwMTAxMjIxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNGIxMDViMGYzM2YxZmNjNTBmYmZhMmU4MmI5MWRjYmZlNmIyOGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnw7+jnVbXJmI79w+kZks7G1DMbw+ 0uRFYJWTeorA/GClUXS7LiNhW6PguK5VBkHs4GVLXRBpWM182HBz+H2bUalNRHom 3c3RKWPS3AoWEDL9WLMYyrL0WhtUHNwoW7SHgvyt5pmPUixk0B6R3WNgh+mysAKd 4EITuZ3qDwZWNGW0ArFSroEIZUlVUwTA7OgQhKcaug+rXpwSUq4bNzWIvcduxJ8Q sfEn/ci5fM08mEHkBRYKyU/bEymDG0K7fmw6LMDXeNPOOY+UY6ID9OGf4qjRnhiE yI1RZUmPz5MTmA5qa8+xWDwR4Pg/fiMpETKcWlPzQKVtDZToXVf9JIpsgwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNSxBbDzPx/MUPv6LoK5Hcv+ayjVMB8GA1UdIwQY MBaAFLp3MB4U1ls6PWhtqsFt/EmsSMfNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW5jd0hoVFdXem85YUcycXdXMzhTYXhJeDgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9iNzM5M2ItNjgxOC00OGQzLWIwODEt NWM2OGY2YjBiMmM3LzEvMUxFRnNQTV9IOHhRLV9vdWdya2R5XzVyS05VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9iNzM5M2ItNjgxOC00OGQzLWIwODEtNWM2OGY2YjBiMmM3 LzEvdW5jd0hoVFdXem85YUcycXdXMzhTYXhJeDgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwrQUAwQA wrQZMA0GCSqGSIb3DQEBCwUAA4IBAQCTqbdB/0SJRsU49Bg0e2xTh9QRDXY7sVxT 1i1/D0GKtEZBHOL4s1hAY48e3/qYxLe1ybh30dNPpr2XKBp7OhTLc769afL0YCUZ lpM/A6vFc5v85DwIoSwzZjn6nuEeWpCvn0rprycKH0OpZkPAM2oM87qIpA3U1NPD FvCt1dXsvUgCR98N7Gqm/kVko+Me7o4sA21ugewGRG8O/kjFIwHazkUH5O7IDnp8 ncvtcLiJuZ00BF/sY8hlOuaR7V+NvKS10Mav0kFTBNgWYEEAxnBSYosu1b0n8NTi REm7B0aebO7isMNx9WJvNfjw1xAMQ7KReV36xda1LGtzRSy8qlaK -----END CERTIFICATE-----Generated at Mon Feb 2 12:41:19 2026 by rpki-client