This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/67c605-010f-4592-a919-9ece0b25658e/1/Lp1vmXiAHAmwk2iCgx7RB0tjwmg.roa File: Lp1vmXiAHAmwk2iCgx7RB0tjwmg.roa (raw, json) Hash identifier: SGv7A6ro4T2ZdRrPed862yoKpwBaCmoUOMJ9b5UxA+E= Subject key identifier: 2E:9D:6F:99:78:80:1C:09:B0:93:68:82:83:1E:D1:07:4B:63:C2:68 Certificate issuer: /CN=1c2d3755a3501b9cb0d5ebaa499e5ea149bcf08b Certificate serial: 019B79ED045C455CE9BD9EC9B30A92B05DCA Authority key identifier: 1C:2D:37:55:A3:50:1B:9C:B0:D5:EB:AA:49:9E:5E:A1:49:BC:F0:8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HC03VaNQG5yw1euqSZ5eoUm88Is.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/67c605-010f-4592-a919-9ece0b25658e/1/Lp1vmXiAHAmwk2iCgx7RB0tjwmg.roa Signing time: Thu 01 Jan 2026 14:18:54 +0000 ROA not before: Thu 01 Jan 2026 14:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61327 IP address blocks: 185.11.40.0/22 maxlen: 24 185.42.216.0/22 maxlen: 24 2a03:68c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/67c605-010f-4592-a919-9ece0b25658e/1/HC03VaNQG5yw1euqSZ5eoUm88Is.crl rsync://rpki.ripe.net/repository/DEFAULT/38/67c605-010f-4592-a919-9ece0b25658e/1/HC03VaNQG5yw1euqSZ5eoUm88Is.mft rsync://rpki.ripe.net/repository/DEFAULT/HC03VaNQG5yw1euqSZ5eoUm88Is.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 23:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:04:5c:45:5c:e9:bd:9e:c9:b3:0a:92:b0:5d:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c2d3755a3501b9cb0d5ebaa499e5ea149bcf08b Validity Not Before: Jan 1 14:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e9d6f9978801c09b0936882831ed1074b63c268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:63:fe:7a:38:b1:db:ef:5c:ab:cc:f0:a4:7c: ff:e8:18:03:a3:05:84:6c:3d:49:8a:df:00:5a:c6: bc:49:de:e3:2f:7d:da:13:c0:5d:2d:c7:cb:42:39: 91:69:4b:db:7b:96:a9:34:da:ea:c2:db:51:24:3b: ca:a3:40:53:2e:55:f0:34:a1:d2:c8:84:46:97:90: df:3b:a3:aa:63:5c:a4:80:45:92:85:8b:99:92:7b: b7:ae:2d:bb:c3:cc:1c:dc:7b:db:e4:ae:77:b8:21: 28:9c:d9:db:dc:85:31:8a:7b:47:63:de:12:a9:e6: b4:f1:48:58:ba:9d:d5:0a:ac:3e:3a:9d:43:c1:af: 8a:1c:44:40:cf:ef:a3:f6:26:00:55:86:56:db:7b: 2a:a7:5e:fa:3e:63:22:b7:9b:51:68:61:4e:a8:79: 2a:f0:63:6b:68:7e:a1:99:0a:77:fe:e7:27:16:d8: eb:45:99:45:12:2c:e8:9e:ca:52:0c:3c:61:20:48: ea:7a:c1:51:a9:68:d1:52:40:77:51:74:91:be:f7: db:16:66:af:bf:8c:2b:a8:4b:46:10:5b:6e:f3:35: be:c2:12:d4:03:fd:e3:a5:60:38:da:af:8d:92:10: 91:2b:27:45:9e:f9:de:58:09:4f:43:65:18:72:c5: c5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:9D:6F:99:78:80:1C:09:B0:93:68:82:83:1E:D1:07:4B:63:C2:68 X509v3 Authority Key Identifier: keyid:1C:2D:37:55:A3:50:1B:9C:B0:D5:EB:AA:49:9E:5E:A1:49:BC:F0:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HC03VaNQG5yw1euqSZ5eoUm88Is.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/67c605-010f-4592-a919-9ece0b25658e/1/Lp1vmXiAHAmwk2iCgx7RB0tjwmg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/67c605-010f-4592-a919-9ece0b25658e/1/HC03VaNQG5yw1euqSZ5eoUm88Is.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.11.40.0/22 185.42.216.0/22 IPv6: 2a03:68c0::/32 Signature Algorithm: sha256WithRSAEncryption 5c:90:bf:a8:71:e0:6c:0e:e5:4b:1b:c1:cb:83:a0:f7:47:50: 34:b0:d6:9a:8d:30:be:66:bf:5c:97:29:a2:da:ab:e0:ad:37: c2:54:3d:59:63:73:0a:1a:86:80:8e:8b:ea:52:af:03:82:4b: d6:ed:47:3d:ab:f7:f0:fe:e2:c6:39:75:d5:44:8b:0c:9c:a7: 0f:37:f6:c6:75:a9:fa:85:0d:9f:a7:8a:9a:ee:a3:58:1a:fe: 76:66:b3:37:a6:af:42:44:f6:80:30:e2:16:e6:a0:15:5d:56: fb:3d:7e:6a:2b:cc:cd:ba:75:d2:44:cb:04:49:94:d2:1a:ed: a5:4f:64:b8:7d:34:65:23:09:b9:5d:36:b3:bf:2c:e2:11:14: f8:a2:42:9b:d7:32:bc:f5:b3:1f:86:13:3f:80:5f:cb:99:3f: e0:9d:75:59:59:c5:bf:25:14:21:dc:4f:f0:2e:5d:49:c2:dd: 97:a0:43:84:1d:e3:32:eb:34:6a:58:86:d3:32:36:3e:e0:9c: 6f:c9:07:21:3f:b5:d9:c9:68:2a:c2:64:e4:dd:1f:b1:de:ea: e3:3f:4f:f2:60:fa:f1:65:cf:da:0d:9d:df:4d:50:13:56:ff: c6:16:57:52:b9:44:0a:93:8d:53:53:74:a9:58:33:9a:25:ad: 5b:be:26:f9 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt57QRcRVzpvZ7JswqSsF3KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMmQzNzU1YTM1MDFiOWNiMGQ1ZWJhYTQ5OWU1ZWExNDli Y2YwOGIwHhcNMjYwMTAxMTQxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTlkNmY5OTc4ODAxYzA5YjA5MzY4ODI4MzFlZDEwNzRiNjNjMjY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGP+ejix2+9cq8zwpHz/6BgDowWE bD1Jit8AWsa8Sd7jL33aE8BdLcfLQjmRaUvbe5apNNrqwttRJDvKo0BTLlXwNKHS yIRGl5DfO6OqY1ykgEWShYuZknu3ri27w8wc3Hvb5K53uCEonNnb3IUxintHY94S qea08UhYup3VCqw+Op1Dwa+KHERAz++j9iYAVYZW23sqp176PmMit5tRaGFOqHkq 8GNraH6hmQp3/ucnFtjrRZlFEizonspSDDxhIEjqesFRqWjRUkB3UXSRvvfbFmav v4wrqEtGEFtu8zW+whLUA/3jpWA42q+NkhCRKydFnvneWAlPQ2UYcsXF2QIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFC6db5l4gBwJsJNogoMe0QdLY8JoMB8GA1UdIwQY MBaAFBwtN1WjUBucsNXrqkmeXqFJvPCLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEMwM1ZhTlFHNXl3MWV1cVNaNWVvVW04OElzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC82N2M2MDUtMDEwZi00NTkyLWE5MTkt OWVjZTBiMjU2NThlLzEvTHAxdm1YaUFIQW13azJpQ2d4N1JCMHRqd21nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC82N2M2MDUtMDEwZi00NTkyLWE5MTktOWVjZTBiMjU2NThl LzEvSEMwM1ZhTlFHNXl3MWV1cVNaNWVvVW04OElzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuQsoAwQC uSrYMA0EAgACMAcDBQAqA2jAMA0GCSqGSIb3DQEBCwUAA4IBAQBckL+oceBsDuVL G8HLg6D3R1A0sNaajTC+Zr9clymi2qvgrTfCVD1ZY3MKGoaAjovqUq8DgkvW7Uc9 q/fw/uLGOXXVRIsMnKcPN/bGdan6hQ2fp4qa7qNYGv52ZrM3pq9CRPaAMOIW5qAV XVb7PX5qK8zNunXSRMsESZTSGu2lT2S4fTRlIwm5XTazvyziERT4okKb1zK89bMf hhM/gF/LmT/gnXVZWcW/JRQh3E/wLl1Jwt2XoEOEHeMy6zRqWIbTMjY+4JxvyQch P7XZyWgqwmTk3R+x3urjP0/yYPrxZc/aDZ3fTVATVv/GFldSuUQKk41TU3SpWDOa Ja1bvib5 -----END CERTIFICATE-----Generated at Tue Feb 10 08:19:02 2026 by rpki-client