This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/LBsEkxwQTYhHk4PbiWkcMNY_VwM.roa File: LBsEkxwQTYhHk4PbiWkcMNY_VwM.roa (raw, json) Hash identifier: 3yJGlq/sSfsWxxmZU2mXpZuXHcJRJ3V2hkCfCCtg9JI= Subject key identifier: 2C:1B:04:93:1C:10:4D:88:47:93:83:DB:89:69:1C:30:D6:3F:57:03 Certificate issuer: /CN=ba77301e14d65b3a3d686daac16dfc49ac48c7cd Certificate serial: 019B7BA4FDD71432C4A3D01F6C08CD8E0408 Authority key identifier: BA:77:30:1E:14:D6:5B:3A:3D:68:6D:AA:C1:6D:FC:49:AC:48:C7:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uncwHhTWWzo9aG2qwW38SaxIx80.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/LBsEkxwQTYhHk4PbiWkcMNY_VwM.roa Signing time: Thu 01 Jan 2026 22:19:29 +0000 ROA not before: Thu 01 Jan 2026 22:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12779 IP address blocks: 194.180.52.0/24 maxlen: 24 194.180.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/uncwHhTWWzo9aG2qwW38SaxIx80.crl rsync://rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/uncwHhTWWzo9aG2qwW38SaxIx80.mft rsync://rpki.ripe.net/repository/DEFAULT/uncwHhTWWzo9aG2qwW38SaxIx80.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:fd:d7:14:32:c4:a3:d0:1f:6c:08:cd:8e:04:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba77301e14d65b3a3d686daac16dfc49ac48c7cd Validity Not Before: Jan 1 22:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2c1b04931c104d88479383db89691c30d63f5703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:66:9f:1a:15:10:34:22:35:cd:20:3b:a0:9c: 1f:eb:bd:11:57:f3:06:60:05:71:35:b5:9d:da:67: 78:8a:58:b1:d0:dd:8e:09:e8:ab:c6:05:58:c7:20: fe:13:f4:56:11:aa:d2:e2:7c:3c:3e:34:cc:85:78: ff:4a:87:5e:c6:f8:99:98:db:81:47:c9:9b:46:9b: f5:7c:8e:c0:17:14:2a:84:4e:61:81:0b:1e:e1:16: 0b:c6:cf:a5:36:04:2a:64:cf:1e:f6:23:e4:bf:e7: 1e:66:05:a4:d8:51:ba:3e:98:d6:8e:d4:db:4a:9f: 78:f3:0b:53:c1:8d:f3:e0:d1:2a:f1:ed:4f:28:f6: 88:42:10:5a:32:e3:e9:77:8f:b3:af:a2:9b:3e:76: af:98:32:2e:21:7c:97:f8:f1:25:4a:94:da:29:f1: 44:ee:1d:05:46:eb:34:48:17:41:b0:98:c3:fa:1d: e6:72:bf:f9:6c:a6:db:25:58:68:0e:b5:fc:8f:36: ad:82:19:28:8b:f9:51:43:96:cb:ff:69:36:07:bb: e1:2a:76:3e:b4:d0:cc:56:69:26:a7:52:a8:5a:3d: 60:f8:8a:bc:fc:50:71:f6:47:4f:f3:17:88:9f:e2: 61:9b:ea:02:20:4c:c8:fa:f2:74:1b:35:b5:bf:51: 87:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1B:04:93:1C:10:4D:88:47:93:83:DB:89:69:1C:30:D6:3F:57:03 X509v3 Authority Key Identifier: keyid:BA:77:30:1E:14:D6:5B:3A:3D:68:6D:AA:C1:6D:FC:49:AC:48:C7:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uncwHhTWWzo9aG2qwW38SaxIx80.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/LBsEkxwQTYhHk4PbiWkcMNY_VwM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b7393b-6818-48d3-b081-5c68f6b0b2c7/1/uncwHhTWWzo9aG2qwW38SaxIx80.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.180.52.0/24 194.180.55.0/24 Signature Algorithm: sha256WithRSAEncryption 88:de:1f:98:cd:95:03:7f:71:65:1f:2a:96:29:a8:da:4c:fe: b7:d9:a2:77:d1:ed:da:c9:de:98:dc:7b:e2:00:a3:23:dd:82: d4:ed:ae:a8:42:a9:8a:4c:49:ca:e1:09:d8:aa:ea:7a:70:9a: 47:4d:8d:3c:a7:c2:1f:f1:0c:f8:26:c8:80:63:8e:f8:1b:b0: 90:4d:82:9a:d0:f8:db:75:cb:b5:86:00:7c:ba:dc:d5:53:25: bf:0b:8c:5f:1c:25:8e:bf:7c:42:ca:c3:26:fa:45:42:2f:23: 2a:32:75:04:4d:71:67:cf:e2:9d:d7:80:ed:bc:11:24:af:83: 10:75:95:63:35:3b:ea:30:7b:aa:8a:e9:55:45:58:00:c4:69: 17:d0:e0:10:46:75:a0:bb:fc:cf:9e:71:f1:1c:6d:47:33:8b: b2:d2:f9:97:43:93:29:cc:2d:6e:67:e4:c9:77:d1:9d:53:89: 39:17:ff:4d:99:dc:59:a8:e2:d0:a6:e2:7c:26:af:c3:59:6d: 8b:cc:d4:14:0b:5f:cd:b1:c9:5c:34:ad:2e:db:77:db:fd:36: 09:08:45:4a:2d:3b:a2:6a:31:13:78:19:ec:ec:67:bd:87:ff: 52:53:27:3f:f0:3c:0b:c9:cf:1f:1d:25:f1:fc:43:1b:1c:40: 61:52:d0:93 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pP3XFDLEo9AfbAjNjgQIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNzczMDFlMTRkNjViM2EzZDY4NmRhYWMxNmRmYzQ5YWM0 OGM3Y2QwHhcNMjYwMTAxMjIxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYzFiMDQ5MzFjMTA0ZDg4NDc5MzgzZGI4OTY5MWMzMGQ2M2Y1NzAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWafGhUQNCI1zSA7oJwf670RV/MG YAVxNbWd2md4ilix0N2OCeirxgVYxyD+E/RWEarS4nw8PjTMhXj/SodexviZmNuB R8mbRpv1fI7AFxQqhE5hgQse4RYLxs+lNgQqZM8e9iPkv+ceZgWk2FG6PpjWjtTb Sp948wtTwY3z4NEq8e1PKPaIQhBaMuPpd4+zr6KbPnavmDIuIXyX+PElSpTaKfFE 7h0FRus0SBdBsJjD+h3mcr/5bKbbJVhoDrX8jzatghkoi/lRQ5bL/2k2B7vhKnY+ tNDMVmkmp1KoWj1g+Iq8/FBx9kdP8xeIn+Jhm+oCIEzI+vJ0GzW1v1GHWQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCwbBJMcEE2IR5OD24lpHDDWP1cDMB8GA1UdIwQY MBaAFLp3MB4U1ls6PWhtqsFt/EmsSMfNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW5jd0hoVFdXem85YUcycXdXMzhTYXhJeDgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9iNzM5M2ItNjgxOC00OGQzLWIwODEt NWM2OGY2YjBiMmM3LzEvTEJzRWt4d1FUWWhIazRQYmlXa2NNTllfVndNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9iNzM5M2ItNjgxOC00OGQzLWIwODEtNWM2OGY2YjBiMmM3 LzEvdW5jd0hoVFdXem85YUcycXdXMzhTYXhJeDgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwrQ0AwQA wrQ3MA0GCSqGSIb3DQEBCwUAA4IBAQCI3h+YzZUDf3FlHyqWKajaTP632aJ30e3a yd6Y3HviAKMj3YLU7a6oQqmKTEnK4QnYqup6cJpHTY08p8If8Qz4JsiAY474G7CQ TYKa0Pjbdcu1hgB8utzVUyW/C4xfHCWOv3xCysMm+kVCLyMqMnUETXFnz+Kd14Dt vBEkr4MQdZVjNTvqMHuqiulVRVgAxGkX0OAQRnWgu/zPnnHxHG1HM4uy0vmXQ5Mp zC1uZ+TJd9GdU4k5F/9NmdxZqOLQpuJ8Jq/DWW2LzNQUC1/NsclcNK0u23fb/TYJ CEVKLTuiajETeBns7Ge9h/9SUyc/8DwLyc8fHSXx/EMbHEBhUtCT -----END CERTIFICATE-----Generated at Mon Feb 2 08:08:17 2026 by rpki-client