This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/dc2c1f-14c1-45e0-9e3b-ee34ae61549f/1/lnDM7sD_RAt_sM0f7QmBz4qOgYA.roa File: lnDM7sD_RAt_sM0f7QmBz4qOgYA.roa (raw, json) Hash identifier: 1AImBJ5UNIT+sFRT9lpZkZKmyIOcl6ryDbLO+EP3i0E= Subject key identifier: 96:70:CC:EE:C0:FF:44:0B:7F:B0:CD:1F:ED:09:81:CF:8A:8E:81:80 Certificate issuer: /CN=0a670ed2bc71191cb60bd9660148510b236d3acf Certificate serial: 019B76EB8FCD3B7CD63686D184179F4D05AD Authority key identifier: 0A:67:0E:D2:BC:71:19:1C:B6:0B:D9:66:01:48:51:0B:23:6D:3A:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CmcO0rxxGRy2C9lmAUhRCyNtOs8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/dc2c1f-14c1-45e0-9e3b-ee34ae61549f/1/lnDM7sD_RAt_sM0f7QmBz4qOgYA.roa Signing time: Thu 01 Jan 2026 00:18:27 +0000 ROA not before: Thu 01 Jan 2026 00:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33659 IP address blocks: 185.252.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/dc2c1f-14c1-45e0-9e3b-ee34ae61549f/1/CmcO0rxxGRy2C9lmAUhRCyNtOs8.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/dc2c1f-14c1-45e0-9e3b-ee34ae61549f/1/CmcO0rxxGRy2C9lmAUhRCyNtOs8.mft rsync://rpki.ripe.net/repository/DEFAULT/CmcO0rxxGRy2C9lmAUhRCyNtOs8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:8f:cd:3b:7c:d6:36:86:d1:84:17:9f:4d:05:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a670ed2bc71191cb60bd9660148510b236d3acf Validity Not Before: Jan 1 00:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9670cceec0ff440b7fb0cd1fed0981cf8a8e8180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:40:c4:f5:43:ef:b2:cb:0a:98:9d:79:6c:d7: cf:da:12:46:89:a2:20:07:0a:13:d3:36:5c:a1:fa: 85:08:23:0b:d0:38:22:cd:06:d7:34:51:70:62:50: 17:ef:03:be:2d:c4:b5:ad:8b:73:a4:49:72:0d:62: 67:fd:2c:78:74:f1:08:07:15:4c:4e:8d:2a:2f:fb: 91:9d:95:2e:8f:82:12:07:57:a1:4f:a4:0a:d3:34: ef:f7:19:c8:f3:e5:0f:9a:34:ca:72:bd:b4:5d:b6: 06:15:e8:a7:72:a9:f0:13:16:cb:f4:28:4a:46:3a: b7:f7:51:b7:cd:06:08:88:c1:a5:62:b1:1f:ae:68: 62:99:35:c4:56:79:8b:d7:1c:83:39:e2:ce:52:54: 08:81:44:96:f2:82:38:74:bc:aa:8d:c7:cc:5a:32: a1:e4:a8:09:8c:d3:06:ae:fe:43:29:30:cb:d8:ae: 4a:e2:e6:5b:cb:3a:b7:4c:3e:11:3a:b4:cf:8a:9f: c3:79:6c:ac:86:5f:e7:d1:1f:69:57:10:57:3b:b1: f2:50:c0:18:1a:24:df:02:19:e9:7d:8f:58:34:26: 1a:2a:19:fb:78:7a:f4:60:83:37:c1:99:4e:22:d1: 42:1d:ca:8a:57:95:1a:41:ee:db:a3:77:36:32:d6: 1e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:70:CC:EE:C0:FF:44:0B:7F:B0:CD:1F:ED:09:81:CF:8A:8E:81:80 X509v3 Authority Key Identifier: keyid:0A:67:0E:D2:BC:71:19:1C:B6:0B:D9:66:01:48:51:0B:23:6D:3A:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CmcO0rxxGRy2C9lmAUhRCyNtOs8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/dc2c1f-14c1-45e0-9e3b-ee34ae61549f/1/lnDM7sD_RAt_sM0f7QmBz4qOgYA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/dc2c1f-14c1-45e0-9e3b-ee34ae61549f/1/CmcO0rxxGRy2C9lmAUhRCyNtOs8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.252.193.0/24 Signature Algorithm: sha256WithRSAEncryption 77:19:e3:3a:15:10:98:78:39:dc:7e:04:a7:61:d9:8e:da:58: fc:f0:0d:27:cd:60:26:ad:5d:cf:c1:86:41:0b:46:4e:2e:4e: b1:eb:de:fc:51:39:10:bc:2c:96:eb:c0:83:5b:70:80:1c:86: 05:c0:cd:36:7f:2a:1f:32:dd:d4:f9:4f:b3:6d:7b:55:81:89: 3a:b4:28:a4:ae:c2:66:ff:87:d4:3a:db:d8:43:18:fe:31:e3: 20:96:d5:00:fa:25:27:16:8a:d1:9d:10:17:3c:be:64:e0:d4: 19:ac:ec:49:0c:69:48:63:54:52:66:17:71:9b:d6:55:05:40: e6:69:02:95:b0:34:05:39:52:ee:23:8a:59:dc:cc:d8:e3:65: fc:e8:3f:9c:eb:f6:6d:c3:ac:80:da:a8:62:98:28:23:13:8c: a5:9d:07:c6:dc:14:a2:fd:de:36:77:9d:01:1c:88:b9:bf:23: f5:eb:da:e8:a9:45:b7:90:43:92:98:87:25:0a:3a:13:43:e1: a8:9d:bc:40:88:69:00:d1:65:72:93:fa:29:3d:9f:5d:c6:c8: 99:18:20:ca:6f:f3:60:b9:ca:4b:60:47:d1:85:bc:11:a3:23: 14:65:ef:ec:b5:47:f7:23:c4:c7:dd:34:4d:75:c7:2a:a2:97: b0:1d:3e:db -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt264/NO3zWNobRhBefTQWtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhNjcwZWQyYmM3MTE5MWNiNjBiZDk2NjAxNDg1MTBiMjM2 ZDNhY2YwHhcNMjYwMTAxMDAxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjcwY2NlZWMwZmY0NDBiN2ZiMGNkMWZlZDA5ODFjZjhhOGU4MTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmEDE9UPvsssKmJ15bNfP2hJGiaIg BwoT0zZcofqFCCML0DgizQbXNFFwYlAX7wO+LcS1rYtzpElyDWJn/Sx4dPEIBxVM To0qL/uRnZUuj4ISB1ehT6QK0zTv9xnI8+UPmjTKcr20XbYGFeincqnwExbL9ChK Rjq391G3zQYIiMGlYrEfrmhimTXEVnmL1xyDOeLOUlQIgUSW8oI4dLyqjcfMWjKh 5KgJjNMGrv5DKTDL2K5K4uZbyzq3TD4ROrTPip/DeWyshl/n0R9pVxBXO7HyUMAY GiTfAhnpfY9YNCYaKhn7eHr0YIM3wZlOItFCHcqKV5UaQe7bo3c2MtYeIwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJZwzO7A/0QLf7DNH+0Jgc+KjoGAMB8GA1UdIwQY MBaAFApnDtK8cRkctgvZZgFIUQsjbTrPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ21jTzByeHhHUnkyQzlsbUFVaFJDeU50T3M4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9kYzJjMWYtMTRjMS00NWUwLTllM2It ZWUzNGFlNjE1NDlmLzEvbG5ETTdzRF9SQXRfc00wZjdRbUJ6NHFPZ1lBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy9kYzJjMWYtMTRjMS00NWUwLTllM2ItZWUzNGFlNjE1NDlm LzEvQ21jTzByeHhHUnkyQzlsbUFVaFJDeU50T3M4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufzBMA0G CSqGSIb3DQEBCwUAA4IBAQB3GeM6FRCYeDncfgSnYdmO2lj88A0nzWAmrV3PwYZB C0ZOLk6x6978UTkQvCyW68CDW3CAHIYFwM02fyofMt3U+U+zbXtVgYk6tCikrsJm /4fUOtvYQxj+MeMgltUA+iUnForRnRAXPL5k4NQZrOxJDGlIY1RSZhdxm9ZVBUDm aQKVsDQFOVLuI4pZ3MzY42X86D+c6/Ztw6yA2qhimCgjE4ylnQfG3BSi/d42d50B HIi5vyP169roqUW3kEOSmIclCjoTQ+GonbxAiGkA0WVyk/opPZ9dxsiZGCDKb/Ng ucpLYEfRhbwRoyMUZe/stUf3I8TH3TRNdccqopewHT7b -----END CERTIFICATE-----Generated at Tue Jan 20 22:47:37 2026 by rpki-client