This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/l4I0d-2QSNxm-8IJy9LHnheP1Lo.roa File: l4I0d-2QSNxm-8IJy9LHnheP1Lo.roa (raw, json) Hash identifier: GEOYp5avEZR2sEy40QrdDcc1+R3ftqFBUw/3LTp08L8= Subject key identifier: 97:82:34:77:ED:90:48:DC:66:FB:C2:09:CB:D2:C7:9E:17:8F:D4:BA Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96 Certificate serial: 019B8FA205A57CD64C3CD59BFCE27F52DA4B Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/l4I0d-2QSNxm-8IJy9LHnheP1Lo.roa Signing time: Mon 05 Jan 2026 19:28:38 +0000 ROA not before: Mon 05 Jan 2026 19:28:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211484 IP address blocks: 213.109.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:8f:a2:05:a5:7c:d6:4c:3c:d5:9b:fc:e2:7f:52:da:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96 Validity Not Before: Jan 5 19:28:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=97823477ed9048dc66fbc209cbd2c79e178fd4ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a4:f1:56:79:73:47:05:7b:c1:75:c6:55:9e: 90:3e:9c:12:bb:87:25:54:cd:a3:4d:98:9f:1c:58: 72:58:47:99:a2:64:c5:69:74:6c:95:7b:2c:60:3f: c2:27:db:4e:ab:f7:a5:e7:13:09:50:fd:56:c4:c6: ff:bb:83:8b:48:da:48:83:ff:65:00:3f:6b:57:fe: 84:59:72:a5:8b:be:ed:ef:e5:e4:d6:37:9d:42:7c: 17:ae:d3:d0:a7:2d:28:ed:be:44:f8:cb:74:85:4f: cc:77:98:61:c8:36:50:eb:6f:27:f2:48:ee:0a:89: d7:1c:e7:58:8e:43:23:c0:2a:6a:ab:ea:23:a8:5d: b9:b9:f5:e0:43:f1:d1:c8:21:43:3c:fd:62:15:59: f0:27:05:fa:14:04:9c:34:81:f0:2d:5b:c6:e2:fd: 5e:ca:f8:cb:cc:6c:59:86:c6:0b:14:bf:b1:34:97: 6a:82:20:cc:84:b9:20:92:53:86:67:ac:79:72:de: 1c:6b:b5:ea:db:34:67:cc:fe:17:c5:00:be:d5:76: 5a:57:f7:50:7b:66:6e:b3:ee:83:0d:47:7d:7a:a2: 1e:de:d2:47:74:aa:4d:e6:ef:0e:66:1c:11:16:73: c6:64:e2:be:f6:32:e1:4e:f2:ef:aa:34:0e:30:49: 0d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:82:34:77:ED:90:48:DC:66:FB:C2:09:CB:D2:C7:9E:17:8F:D4:BA X509v3 Authority Key Identifier: keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/l4I0d-2QSNxm-8IJy9LHnheP1Lo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.109.154.0/24 Signature Algorithm: sha256WithRSAEncryption 21:4e:46:57:61:db:18:d4:e1:7c:dc:cb:d4:06:d8:41:dd:94: 52:89:a8:8d:8b:25:6b:18:79:ec:98:09:20:f6:cb:ee:71:06: 8c:4f:85:c9:a8:c4:31:7f:36:38:ad:b6:5a:f8:5f:1d:da:d5: f5:a8:5f:83:7c:7c:17:29:6f:6b:b8:0d:32:4a:b5:60:3f:5e: 15:f0:2e:03:6d:5f:da:9b:e7:93:7e:d0:b0:6f:ea:7a:e9:35: e3:0d:1e:9f:b4:3f:e2:4f:e4:89:0e:5d:00:b2:62:9e:7d:d6: ed:ef:10:72:11:b3:a6:51:80:ed:17:ac:88:d6:06:de:14:6f: 2e:83:88:88:b2:fa:ad:ba:27:85:a9:0e:70:29:f9:62:0e:34: 36:a4:08:ba:45:fd:fc:a4:a5:7b:43:b4:e2:c9:10:05:9d:38: 61:d2:57:1d:8f:b2:ee:7f:e1:08:ee:ee:7f:c9:31:7d:51:59: e5:81:9c:87:cc:a0:c7:77:22:81:77:d3:67:0d:67:40:81:fc: 51:62:d3:f2:c7:58:99:a5:73:e5:47:d5:fe:75:f7:4a:3f:05: e8:df:ef:26:b5:07:6b:c6:e9:3d:e9:01:81:99:64:aa:b7:ab: 44:9d:a6:6b:0f:84:eb:b9:ac:5c:0d:e7:ab:a8:ea:6e:9f:10: b4:f9:12:ae -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZuPogWlfNZMPNWb/OJ/UtpLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4ODQ2NWIzN2IyZDRlOWY0MTNhMzFkYzdiN2U2Y2JhMmEz M2RiOTYwHhcNMjYwMTA1MTkyODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NzgyMzQ3N2VkOTA0OGRjNjZmYmMyMDljYmQyYzc5ZTE3OGZkNGJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKTxVnlzRwV7wXXGVZ6QPpwSu4cl VM2jTZifHFhyWEeZomTFaXRslXssYD/CJ9tOq/el5xMJUP1WxMb/u4OLSNpIg/9l AD9rV/6EWXKli77t7+Xk1jedQnwXrtPQpy0o7b5E+Mt0hU/Md5hhyDZQ628n8kju ConXHOdYjkMjwCpqq+ojqF25ufXgQ/HRyCFDPP1iFVnwJwX6FAScNIHwLVvG4v1e yvjLzGxZhsYLFL+xNJdqgiDMhLkgklOGZ6x5ct4ca7Xq2zRnzP4XxQC+1XZaV/dQ e2Zus+6DDUd9eqIe3tJHdKpN5u8OZhwRFnPGZOK+9jLhTvLvqjQOMEkNZwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJeCNHftkEjcZvvCCcvSx54Xj9S6MB8GA1UdIwQY MBaAFAiEZbN7LU6fQTox3Ht+bLoqM9uWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0lSbHMzc3RUcDlCT2pIY2UzNXN1aW96MjVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8zZTJiMTgtNTVjOS00MTgwLThjNmUt MmM3MDg2ZmRlZDkzLzEvbDRJMGQtMlFTTnhtLThJSnk5TEhuaGVQMUxvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8zZTJiMTgtNTVjOS00MTgwLThjNmUtMmM3MDg2ZmRlZDkz LzEvQ0lSbHMzc3RUcDlCT2pIY2UzNXN1aW96MjVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1W2aMA0G CSqGSIb3DQEBCwUAA4IBAQAhTkZXYdsY1OF83MvUBthB3ZRSiaiNiyVrGHnsmAkg 9svucQaMT4XJqMQxfzY4rbZa+F8d2tX1qF+DfHwXKW9ruA0ySrVgP14V8C4DbV/a m+eTftCwb+p66TXjDR6ftD/iT+SJDl0AsmKefdbt7xByEbOmUYDtF6yI1gbeFG8u g4iIsvqtuieFqQ5wKfliDjQ2pAi6Rf38pKV7Q7TiyRAFnThh0lcdj7Luf+EI7u5/ yTF9UVnlgZyHzKDHdyKBd9NnDWdAgfxRYtPyx1iZpXPlR9X+dfdKPwXo3+8mtQdr xuk96QGBmWSqt6tEnaZrD4TruaxcDeerqOpunxC0+RKu -----END CERTIFICATE-----Generated at Tue Jan 20 06:03:51 2026 by rpki-client