This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/75785f-0e82-4d46-8456-759ac50414de/1/LY2SZaS4pei18ToSlPlrLXW5sMk.roa File: LY2SZaS4pei18ToSlPlrLXW5sMk.roa (raw, json) Hash identifier: nROSVRfoddVkaul+J1xodezFnhIj684VanT5Ow2R/wE= Subject key identifier: 2D:8D:92:65:A4:B8:A5:E8:B5:F1:3A:12:94:F9:6B:2D:75:B9:B0:C9 Certificate issuer: /CN=4a4b17d032b9fb5f7e5bc9fd268dfb80edeed21d Certificate serial: 019B7AC86D4D73997EEA5509ACE70EEBDA4D Authority key identifier: 4A:4B:17:D0:32:B9:FB:5F:7E:5B:C9:FD:26:8D:FB:80:ED:EE:D2:1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SksX0DK5-19-W8n9Jo37gO3u0h0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/75785f-0e82-4d46-8456-759ac50414de/1/LY2SZaS4pei18ToSlPlrLXW5sMk.roa Signing time: Thu 01 Jan 2026 18:18:34 +0000 ROA not before: Thu 01 Jan 2026 18:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210150 IP address blocks: 152.89.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/75785f-0e82-4d46-8456-759ac50414de/1/SksX0DK5-19-W8n9Jo37gO3u0h0.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/75785f-0e82-4d46-8456-759ac50414de/1/SksX0DK5-19-W8n9Jo37gO3u0h0.mft rsync://rpki.ripe.net/repository/DEFAULT/SksX0DK5-19-W8n9Jo37gO3u0h0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:6d:4d:73:99:7e:ea:55:09:ac:e7:0e:eb:da:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a4b17d032b9fb5f7e5bc9fd268dfb80edeed21d Validity Not Before: Jan 1 18:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2d8d9265a4b8a5e8b5f13a1294f96b2d75b9b0c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c0:83:60:db:f0:a7:06:f3:1b:7f:f7:9f:18: 99:94:e2:0a:51:43:78:1c:ef:fa:9b:da:03:31:1a: da:d9:6e:94:b1:0f:70:4e:ad:81:bb:7a:99:34:4b: ad:e5:c2:81:51:6b:ec:cf:45:63:75:a5:48:3b:c7: 5a:48:96:16:a6:8f:29:86:91:42:d5:21:ce:79:f4: 19:77:b1:28:b0:cb:ee:cf:c1:bc:e6:d7:1d:43:78: 43:d9:60:31:8d:20:54:94:8d:e0:96:3f:9f:ad:51: aa:4a:dd:d1:3d:91:89:9a:5e:9e:76:44:df:10:22: 95:e9:18:31:c6:19:7c:4f:1a:e5:bb:87:5c:0b:43: 46:e9:4b:9a:72:b0:03:46:24:b0:fc:bd:2d:53:11: 77:4e:59:6e:46:a1:19:3a:e3:68:6b:8f:7b:9d:bc: 07:2b:11:c7:1a:26:87:f4:0f:62:8a:e6:4a:3c:df: 09:da:1d:36:93:ac:0a:9e:9e:86:5d:0d:e5:61:4c: e4:0c:b0:d1:9c:86:49:ac:02:32:29:11:5f:3b:4f: 2b:21:82:82:37:0c:a2:77:70:91:b9:6d:3c:ac:68: 80:a2:4c:bc:4c:14:7c:89:9a:50:db:e7:36:0c:58: 09:0d:d3:06:e1:2a:3b:51:15:a0:15:c3:c9:b0:14: 8c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:8D:92:65:A4:B8:A5:E8:B5:F1:3A:12:94:F9:6B:2D:75:B9:B0:C9 X509v3 Authority Key Identifier: keyid:4A:4B:17:D0:32:B9:FB:5F:7E:5B:C9:FD:26:8D:FB:80:ED:EE:D2:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SksX0DK5-19-W8n9Jo37gO3u0h0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/75785f-0e82-4d46-8456-759ac50414de/1/LY2SZaS4pei18ToSlPlrLXW5sMk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/75785f-0e82-4d46-8456-759ac50414de/1/SksX0DK5-19-W8n9Jo37gO3u0h0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.89.184.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:a9:79:dc:e5:9b:f0:0c:1b:00:83:b2:a5:04:5d:95:24:ca: d8:cf:76:ee:02:21:f2:b2:94:5a:4b:39:d1:2e:62:77:a7:2b: 42:16:50:bd:d2:8e:88:2a:da:52:e7:e0:88:39:28:17:b8:a7: fe:6f:47:e2:af:f1:bb:78:0b:e4:4c:88:a8:95:2e:73:7a:ab: 07:e4:5b:83:d1:9b:f1:20:5a:d9:2b:2f:0f:05:4b:cc:bd:b4: 55:a6:19:cf:df:dc:9f:42:0d:b0:7f:23:33:df:f1:ba:c7:96: dd:3c:d3:e3:bb:ab:ba:93:65:2c:de:e2:18:e2:f1:ee:1b:88: c7:4e:13:99:5b:54:50:4e:08:ca:d6:c0:de:39:ee:0b:7c:16: 6c:2f:81:c5:92:82:38:bc:05:63:ec:9b:06:b5:63:38:bb:b1: f3:5b:e3:72:85:24:84:d2:bc:c7:2a:02:bd:fa:4b:93:bd:07: 6d:6b:b8:fa:bd:cb:4e:36:3d:92:c4:68:ee:5c:db:cc:d9:b7: 8d:67:e3:a4:46:26:ac:cb:f1:66:18:7b:e8:d6:e1:cb:ba:b5: 2d:d9:27:fe:fd:5c:8c:1e:f5:09:ba:a2:dd:dd:8b:fc:7d:a4: 61:39:87:79:04:5a:67:e4:0f:96:78:4a:5a:b1:ba:3f:7f:3b: 2c:78:d9:7a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yG1Nc5l+6lUJrOcO69pNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhNGIxN2QwMzJiOWZiNWY3ZTViYzlmZDI2OGRmYjgwZWRl ZWQyMWQwHhcNMjYwMTAxMTgxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDhkOTI2NWE0YjhhNWU4YjVmMTNhMTI5NGY5NmIyZDc1YjliMGM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsCDYNvwpwbzG3/3nxiZlOIKUUN4 HO/6m9oDMRra2W6UsQ9wTq2Bu3qZNEut5cKBUWvsz0VjdaVIO8daSJYWpo8phpFC 1SHOefQZd7EosMvuz8G85tcdQ3hD2WAxjSBUlI3glj+frVGqSt3RPZGJml6edkTf ECKV6Rgxxhl8Txrlu4dcC0NG6UuacrADRiSw/L0tUxF3TlluRqEZOuNoa497nbwH KxHHGiaH9A9iiuZKPN8J2h02k6wKnp6GXQ3lYUzkDLDRnIZJrAIyKRFfO08rIYKC Nwyid3CRuW08rGiAoky8TBR8iZpQ2+c2DFgJDdMG4So7URWgFcPJsBSMzQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC2NkmWkuKXotfE6EpT5ay11ubDJMB8GA1UdIwQY MBaAFEpLF9AyuftfflvJ/SaN+4Dt7tIdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2tzWDBESzUtMTktVzhuOUpvMzdnTzN1MGgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi83NTc4NWYtMGU4Mi00ZDQ2LTg0NTYt NzU5YWM1MDQxNGRlLzEvTFkyU1phUzRwZWkxOFRvU2xQbHJMWFc1c01rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi83NTc4NWYtMGU4Mi00ZDQ2LTg0NTYtNzU5YWM1MDQxNGRl LzEvU2tzWDBESzUtMTktVzhuOUpvMzdnTzN1MGgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmFm4MA0G CSqGSIb3DQEBCwUAA4IBAQBPqXnc5ZvwDBsAg7KlBF2VJMrYz3buAiHyspRaSznR LmJ3pytCFlC90o6IKtpS5+CIOSgXuKf+b0fir/G7eAvkTIiolS5zeqsH5FuD0Zvx IFrZKy8PBUvMvbRVphnP39yfQg2wfyMz3/G6x5bdPNPju6u6k2Us3uIY4vHuG4jH ThOZW1RQTgjK1sDeOe4LfBZsL4HFkoI4vAVj7JsGtWM4u7HzW+NyhSSE0rzHKgK9 +kuTvQdta7j6vctONj2SxGjuXNvM2beNZ+OkRiasy/FmGHvo1uHLurUt2Sf+/VyM HvUJuqLd3Yv8faRhOYd5BFpn5A+WeEpasbo/fzsseNl6 -----END CERTIFICATE-----Generated at Tue Jan 27 08:47:14 2026 by rpki-client