This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/L2us4XYIluXkOsFm9J7dSNDwZm4.roa File: L2us4XYIluXkOsFm9J7dSNDwZm4.roa (raw, json) Hash identifier: gJqSk17T95h4Sy3x6XTP760PLlpUDAkllkBjLL3UPHI= Subject key identifier: 2F:6B:AC:E1:76:08:96:E5:E4:3A:C1:66:F4:9E:DD:48:D0:F0:66:6E Certificate issuer: /CN=55096c61153d2ab55077f1a30c245986001ba1d9 Certificate serial: 019B797E02A233D839DF0470139339707880 Authority key identifier: 55:09:6C:61:15:3D:2A:B5:50:77:F1:A3:0C:24:59:86:00:1B:A1:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VQlsYRU9KrVQd_GjDCRZhgAbodk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/L2us4XYIluXkOsFm9J7dSNDwZm4.roa Signing time: Thu 01 Jan 2026 12:17:39 +0000 ROA not before: Thu 01 Jan 2026 12:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205934 IP address blocks: 195.245.235.0/24 maxlen: 24 2a0b:a340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/VQlsYRU9KrVQd_GjDCRZhgAbodk.crl rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/VQlsYRU9KrVQd_GjDCRZhgAbodk.mft rsync://rpki.ripe.net/repository/DEFAULT/VQlsYRU9KrVQd_GjDCRZhgAbodk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:02:a2:33:d8:39:df:04:70:13:93:39:70:78:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55096c61153d2ab55077f1a30c245986001ba1d9 Validity Not Before: Jan 1 12:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2f6bace1760896e5e43ac166f49edd48d0f0666e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ae:a5:81:a6:4f:92:c7:24:2a:96:48:85:94: d0:76:3b:29:56:d8:3f:39:9d:d5:dc:fb:99:e8:d9: 19:0e:d2:d5:d6:29:4f:8f:02:be:8e:1c:0c:59:74: 67:ba:c4:81:4b:dc:1e:ed:fc:ad:41:00:4b:be:37: b3:9c:26:cf:07:4e:62:bb:54:64:87:13:91:40:3e: 0f:41:51:b6:d2:34:5e:b5:06:25:e2:8f:7b:26:7c: a6:4d:47:50:98:a7:ab:57:9d:38:32:35:4a:e9:6b: 19:29:a9:cf:50:26:c6:c5:f2:98:06:c4:5b:32:b3: e4:a2:08:ac:60:13:6b:cc:cb:73:c2:f6:6c:b1:64: c2:e5:45:18:8b:63:04:24:55:b3:72:17:4c:15:ec: 08:bd:03:17:95:e3:1e:6e:6d:9c:6b:d6:4a:42:06: c1:55:54:a9:e0:cf:0c:11:17:de:dc:b6:ee:78:ea: fd:07:e8:b6:d6:c6:e7:aa:be:34:3f:ba:44:9c:c8: 8c:64:21:44:98:c5:82:9f:5e:fb:9e:5d:a5:d8:ad: 94:2a:f1:a5:02:a6:84:c2:b3:59:a1:e3:b5:68:8e: 88:ff:0b:df:62:51:57:38:68:11:aa:38:fe:b8:2b: 28:56:0e:42:cb:0a:c5:ab:da:4b:4f:c3:ed:e3:3c: 43:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:6B:AC:E1:76:08:96:E5:E4:3A:C1:66:F4:9E:DD:48:D0:F0:66:6E X509v3 Authority Key Identifier: keyid:55:09:6C:61:15:3D:2A:B5:50:77:F1:A3:0C:24:59:86:00:1B:A1:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VQlsYRU9KrVQd_GjDCRZhgAbodk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/L2us4XYIluXkOsFm9J7dSNDwZm4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/VQlsYRU9KrVQd_GjDCRZhgAbodk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.245.235.0/24 IPv6: 2a0b:a340::/32 Signature Algorithm: sha256WithRSAEncryption 55:e3:c6:7e:f7:e7:60:0b:38:c1:0f:48:c3:61:b2:3a:29:f5: cc:60:f8:2e:c0:9b:40:1c:91:b5:ac:02:bc:41:5c:6c:8f:00: 56:a8:c6:7e:7b:24:10:16:28:42:1b:e1:d0:a1:71:3a:0f:22: b6:a6:00:c3:45:87:2d:8f:d7:eb:d5:73:36:32:7a:af:7a:5b: 52:7a:cd:77:10:aa:e0:fe:81:b7:eb:bf:a1:c9:46:f4:e2:53: bb:05:f4:6c:23:fb:81:a3:69:1c:90:82:5a:8c:f6:3a:0b:54: 74:8b:03:16:84:ca:a3:8d:34:cd:08:8a:af:14:b7:db:86:d3: 85:02:0b:a9:79:18:ce:87:ba:73:32:f6:7b:80:9f:53:42:08: 17:9c:d7:9c:62:ca:79:64:08:aa:5a:19:be:ac:9f:5a:39:81: 7c:ae:e2:03:de:07:74:fd:8c:82:36:3f:69:a2:bf:10:97:2f: f7:ce:82:c4:6b:a4:d6:6e:6b:71:2e:86:e5:50:84:96:7c:00: 01:2d:ee:d0:3e:9b:3b:db:0a:86:eb:62:20:a1:64:9f:3c:87: 32:c7:cd:36:d1:e9:df:45:02:00:a3:34:94:c4:be:1a:00:ac: 3e:5d:eb:fe:9a:e1:e7:1e:62:3d:05:80:c3:df:f4:19:b4:7f: ff:4c:b2:b0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5fgKiM9g53wRwE5M5cHiAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1MDk2YzYxMTUzZDJhYjU1MDc3ZjFhMzBjMjQ1OTg2MDAx YmExZDkwHhcNMjYwMTAxMTIxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZjZiYWNlMTc2MDg5NmU1ZTQzYWMxNjZmNDllZGQ0OGQwZjA2NjZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnq6lgaZPksckKpZIhZTQdjspVtg/ OZ3V3PuZ6NkZDtLV1ilPjwK+jhwMWXRnusSBS9we7fytQQBLvjeznCbPB05iu1Rk hxORQD4PQVG20jRetQYl4o97JnymTUdQmKerV504MjVK6WsZKanPUCbGxfKYBsRb MrPkogisYBNrzMtzwvZssWTC5UUYi2MEJFWzchdMFewIvQMXleMebm2ca9ZKQgbB VVSp4M8MERfe3LbueOr9B+i21sbnqr40P7pEnMiMZCFEmMWCn177nl2l2K2UKvGl AqaEwrNZoeO1aI6I/wvfYlFXOGgRqjj+uCsoVg5CywrFq9pLT8Pt4zxDzQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFC9rrOF2CJbl5DrBZvSe3UjQ8GZuMB8GA1UdIwQY MBaAFFUJbGEVPSq1UHfxowwkWYYAG6HZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVlFsc1lSVTlLclZRZF9HakRDUlpoZ0Fib2RrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi80OWJmZWMtNzU3Zi00MzE5LWI0NWQt OWI1ZDYzYjVjYmY1LzEvTDJ1czRYWUlsdVhrT3NGbTlKN2RTTkR3Wm00LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi80OWJmZWMtNzU3Zi00MzE5LWI0NWQtOWI1ZDYzYjVjYmY1 LzEvVlFsc1lSVTlLclZRZF9HakRDUlpoZ0Fib2RrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw/XrMA0E AgACMAcDBQAqC6NAMA0GCSqGSIb3DQEBCwUAA4IBAQBV48Z+9+dgCzjBD0jDYbI6 KfXMYPguwJtAHJG1rAK8QVxsjwBWqMZ+eyQQFihCG+HQoXE6DyK2pgDDRYctj9fr 1XM2MnqveltSes13EKrg/oG367+hyUb04lO7BfRsI/uBo2kckIJajPY6C1R0iwMW hMqjjTTNCIqvFLfbhtOFAgupeRjOh7pzMvZ7gJ9TQggXnNecYsp5ZAiqWhm+rJ9a OYF8ruID3gd0/YyCNj9por8Qly/3zoLEa6TWbmtxLoblUISWfAABLe7QPps72wqG 62IgoWSfPIcyx8020enfRQIAozSUxL4aAKw+Xev+muHnHmI9BYDD3/QZtH//TLKw -----END CERTIFICATE-----Generated at Tue Feb 10 01:13:28 2026 by rpki-client