This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/LtoQvzCaMW0D-GhISv0hO8NnPOs.roa File: LtoQvzCaMW0D-GhISv0hO8NnPOs.roa (raw, json) Hash identifier: NcaX+GMamiFW/3NMIXtO3ttNk67Gbq5SGUiAVxBO82M= Subject key identifier: 2E:DA:10:BF:30:9A:31:6D:03:F8:68:48:4A:FD:21:3B:C3:67:3C:EB Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd Certificate serial: 019B7DCA2A890686F3088207010D77A49E7A Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/LtoQvzCaMW0D-GhISv0hO8NnPOs.roa Signing time: Fri 02 Jan 2026 08:19:19 +0000 ROA not before: Fri 02 Jan 2026 08:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59729 IP address blocks: 45.140.7.0/24 maxlen: 24 45.152.139.0/24 maxlen: 24 77.83.20.0/22 maxlen: 24 77.83.20.0/24 maxlen: 24 77.83.21.0/24 maxlen: 24 77.83.22.0/24 maxlen: 24 77.83.23.0/24 maxlen: 24 80.243.228.0/24 maxlen: 24 84.252.66.0/24 maxlen: 24 84.252.67.0/24 maxlen: 24 88.218.239.0/24 maxlen: 24 91.245.239.0/24 maxlen: 24 95.214.80.0/24 maxlen: 24 95.214.81.0/24 maxlen: 24 95.214.82.0/24 maxlen: 24 95.214.92.0/24 maxlen: 24 176.118.188.0/24 maxlen: 24 176.118.189.0/24 maxlen: 24 185.177.76.0/23 maxlen: 24 185.177.76.0/24 maxlen: 24 185.177.77.0/24 maxlen: 24 193.160.73.0/24 maxlen: 24 194.28.156.0/24 maxlen: 24 194.28.158.0/24 maxlen: 24 194.28.159.0/24 maxlen: 24 194.104.5.0/24 maxlen: 24 194.104.6.0/24 maxlen: 24 212.69.132.0/24 maxlen: 24 212.69.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.mft rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:2a:89:06:86:f3:08:82:07:01:0d:77:a4:9e:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd Validity Not Before: Jan 2 08:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2eda10bf309a316d03f868484afd213bc3673ceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:a3:3c:93:94:a9:fb:12:54:55:5d:7c:7c:dc: 9b:82:48:b7:1d:3b:28:92:23:dd:40:fc:ee:69:c3: 2d:25:87:76:be:54:f3:26:a3:71:47:18:56:7f:32: d3:0f:cb:09:b2:bf:06:02:30:5f:3d:41:3c:81:25: 33:db:72:9b:39:be:d2:d5:7f:1a:b4:58:5a:ea:f9: b0:24:f5:a8:a8:94:43:da:7e:5f:5a:0f:1b:f4:76: 7f:63:31:aa:60:e8:62:f7:ac:be:f1:4d:e3:4e:f4: 4c:d5:c9:a5:18:8f:99:a6:7e:11:aa:e0:cc:ff:93: ea:b1:74:81:3a:69:53:be:81:ee:10:7e:14:f6:0e: 6a:da:07:52:eb:85:16:7d:74:d1:7d:3d:43:e9:9a: e3:8b:27:6e:1e:2e:79:8b:ad:59:28:06:0d:9e:a7: e3:ef:8a:77:60:b7:50:06:7b:11:43:18:0b:bc:66: b4:d8:c9:52:1a:69:c2:35:8a:31:ba:ef:00:8e:c0: a1:da:4a:fd:8f:a5:f9:3f:47:bd:3e:fa:7a:c5:23: f9:30:31:0d:db:61:06:cc:56:6c:38:c2:dc:8d:a4: c2:27:39:38:5f:64:47:f7:2b:bd:34:01:1f:e1:83: d5:6e:a6:f9:86:9c:aa:20:05:f9:c6:dd:e1:ac:86: 8d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:DA:10:BF:30:9A:31:6D:03:F8:68:48:4A:FD:21:3B:C3:67:3C:EB X509v3 Authority Key Identifier: keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/LtoQvzCaMW0D-GhISv0hO8NnPOs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.140.7.0/24 45.152.139.0/24 77.83.20.0/22 80.243.228.0/24 84.252.66.0/23 88.218.239.0/24 91.245.239.0/24 95.214.80.0-95.214.82.255 95.214.92.0/24 176.118.188.0/23 185.177.76.0/23 193.160.73.0/24 194.28.156.0/24 194.28.158.0/23 194.104.5.0-194.104.6.255 212.69.132.0/24 212.69.134.0/24 Signature Algorithm: sha256WithRSAEncryption 39:f5:0c:89:08:fd:ff:d2:ed:ab:0f:be:cc:9f:70:ba:4b:0f: 77:6a:ca:aa:39:7c:bd:90:a2:d5:27:3a:cf:18:0a:12:0f:e4: 2a:f6:df:a9:89:17:8e:fd:d3:e6:81:8b:16:88:30:ff:48:cd: 6f:f0:a2:48:cf:4f:8a:71:bf:b4:50:d1:c3:75:0b:c7:7c:02: 8d:c0:b6:7a:1f:96:48:de:e5:33:f3:a6:0c:41:97:2b:35:44: 11:24:6b:62:f6:b1:ec:b4:2d:90:6a:2d:aa:c9:d1:99:53:bb: c5:7e:f0:dd:2a:24:4a:53:f2:c8:c3:76:95:b0:92:a9:82:12: d4:87:73:aa:20:2c:f7:62:b9:a2:c9:68:94:7a:8a:55:53:16: 8d:c3:a9:b4:da:07:58:eb:86:a6:e6:78:37:8c:6e:6b:37:94: e3:d6:7b:0c:e1:e1:e4:d1:5a:fb:b3:38:08:52:0c:45:66:c0: bb:14:3c:20:e8:92:3f:03:a3:4e:35:5f:ef:b4:dd:b6:ad:a8: a9:e9:7b:51:23:62:1d:04:b3:22:68:bd:ce:f6:3a:df:4d:c8: 18:fc:e5:df:75:6e:29:4f:f0:ef:37:95:e8:54:9c:fc:aa:da: 04:6c:31:75:b3:4c:65:e0:23:5e:87:0a:58:c1:11:a4:7f:f4: ff:17:49:55 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgISAZt9yiqJBobzCIIHAQ13pJ56MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyYzJiODM0ZmJjOTFhZjBlYzZiMWQzNGZkNjQwNTRkMjI2 OWExZmQwHhcNMjYwMTAyMDgxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZWRhMTBiZjMwOWEzMTZkMDNmODY4NDg0YWZkMjEzYmMzNjczY2ViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj6M8k5Sp+xJUVV18fNybgki3HTso kiPdQPzuacMtJYd2vlTzJqNxRxhWfzLTD8sJsr8GAjBfPUE8gSUz23KbOb7S1X8a tFha6vmwJPWoqJRD2n5fWg8b9HZ/YzGqYOhi96y+8U3jTvRM1cmlGI+Zpn4RquDM /5PqsXSBOmlTvoHuEH4U9g5q2gdS64UWfXTRfT1D6ZrjiyduHi55i61ZKAYNnqfj 74p3YLdQBnsRQxgLvGa02MlSGmnCNYoxuu8AjsCh2kr9j6X5P0e9Pvp6xSP5MDEN 22EGzFZsOMLcjaTCJzk4X2RH9yu9NAEf4YPVbqb5hpyqIAX5xt3hrIaN8wIDAQAB o4ICezCCAncwHQYDVR0OBBYEFC7aEL8wmjFtA/hoSEr9ITvDZzzrMB8GA1UdIwQY MBaAFOLCuDT7yRrw7GsdNP1kBU0iaaH9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2Et OTk0ODA2ZjA4MWYwLzEvTHRvUXZ6Q2FNVzBELUdoSVN2MGhPOE5uUE9zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2EtOTk0ODA2ZjA4MWYw LzEvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGQBggrBgEFBQcBBwEB/wSBgDB+MHwEAgABMHYDBAAtjAcD BAAtmIsDBAJNUxQDBABQ8+QDBAFU/EIDBABY2u8DBABb9e8wDAMEBF/WUAMEAF/W UgMEAF/WXAMEAbB2vAMEAbmxTAMEAMGgSQMEAMIcnAMEAcIcnjAMAwQAwmgFAwQA wmgGAwQA1EWEAwQA1EWGMA0GCSqGSIb3DQEBCwUAA4IBAQA59QyJCP3/0u2rD77M n3C6Sw93asqqOXy9kKLVJzrPGAoSD+Qq9t+piReO/dPmgYsWiDD/SM1v8KJIz0+K cb+0UNHDdQvHfAKNwLZ6H5ZI3uUz86YMQZcrNUQRJGti9rHstC2Qai2qydGZU7vF fvDdKiRKU/LIw3aVsJKpghLUh3OqICz3YrmiyWiUeopVUxaNw6m02gdY64am5ng3 jG5rN5Tj1nsM4eHk0Vr7szgIUgxFZsC7FDwg6JI/A6NONV/vtN22raip6XtRI2Id BLMiaL3O9jrfTcgY/OXfdW4pT/DvN5XoVJz8qtoEbDF1s0xl4CNehwpYwRGkf/T/ F0lV -----END CERTIFICATE-----Generated at Mon Jan 19 21:26:26 2026 by rpki-client