This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1lkNsWnlh0M-Rk6WQWBHcrvPJeY.roa File: 1lkNsWnlh0M-Rk6WQWBHcrvPJeY.roa (raw, json) Hash identifier: mr6YLpmR91s/RRunj10iwWBeGbyctv8WdO1x71cqNEo= Subject key identifier: D6:59:0D:B1:69:E5:87:43:3E:46:4E:96:41:60:47:72:BB:CF:25:E6 Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7 Certificate serial: 019B7CEDEAF720220F371456AC8807184534 Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1lkNsWnlh0M-Rk6WQWBHcrvPJeY.roa Signing time: Fri 02 Jan 2026 04:18:45 +0000 ROA not before: Fri 02 Jan 2026 04:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211440 IP address blocks: 81.21.3.0/24 maxlen: 24 176.57.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:ea:f7:20:22:0f:37:14:56:ac:88:07:18:45:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7 Validity Not Before: Jan 2 04:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d6590db169e587433e464e9641604772bbcf25e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f8:3d:e9:59:d7:31:90:31:64:3e:b9:a0:e6: 55:d2:e9:7d:7e:0b:42:67:55:84:50:84:35:5a:1b: 43:33:56:de:77:e1:51:96:bd:37:f5:1a:db:2a:24: 1c:9a:ed:c0:1e:ef:2b:75:22:5e:bd:31:bf:3c:b7: 40:86:df:d7:e0:9b:29:f1:be:b1:b5:ba:a4:1d:73: bb:e7:99:4c:61:5f:27:1e:0e:be:65:d4:db:9b:49: 2a:6d:b3:0b:19:22:32:eb:5c:f5:ad:a7:48:67:2f: f9:a2:dd:a5:f2:f5:56:8d:c4:a2:30:1b:55:cc:fc: e7:7b:36:90:f9:18:47:f0:2d:85:1b:12:44:d0:42: 40:aa:b3:a1:5e:77:cd:db:dc:8a:89:f4:ed:c9:e1: b2:cf:02:e2:f0:11:43:d2:aa:36:1d:90:24:ff:ec: 5e:d3:e4:fd:49:4e:9f:0a:ad:ce:da:cc:4c:b6:d6: 17:d8:ba:93:9e:7c:49:ee:22:83:b2:de:47:ee:29: 7a:0a:64:40:65:bc:84:ce:6b:df:4e:d6:d5:3f:50: 7d:4b:b8:dc:ae:0f:7d:aa:2c:7f:e6:4a:a0:0d:1b: e2:60:28:4e:09:2b:e2:a0:ee:39:8d:4b:23:44:96: 51:66:50:06:82:a1:76:da:5b:72:31:cb:66:80:f3: 66:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:59:0D:B1:69:E5:87:43:3E:46:4E:96:41:60:47:72:BB:CF:25:E6 X509v3 Authority Key Identifier: keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1lkNsWnlh0M-Rk6WQWBHcrvPJeY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.21.3.0/24 176.57.63.0/24 Signature Algorithm: sha256WithRSAEncryption 78:ba:7d:0e:97:30:bb:27:34:56:24:f7:97:e4:ca:06:28:4e: 99:4f:fe:19:ab:6e:ba:bc:d6:7d:9f:f3:8e:76:a0:cd:d7:07: f3:18:b2:36:af:d1:ae:84:f6:f4:7e:bb:54:18:f7:18:61:48: 17:cb:d7:2f:87:7e:ce:7c:ad:16:d0:43:a2:07:b4:93:07:4b: 47:2f:a2:1e:ef:8b:c5:01:83:89:18:61:77:4b:3f:b6:30:be: 8f:ea:a6:8a:11:34:99:38:c2:3f:57:6b:de:d7:f4:10:11:75: b5:4d:a0:e3:46:b6:fd:31:b7:e7:80:7f:f5:bb:b7:22:83:7e: e3:a7:77:84:fd:e0:12:c5:e3:f4:5b:a3:19:f2:20:73:60:06: 8f:7d:93:74:00:06:2d:71:79:00:80:46:99:f0:7c:fd:09:6b: 13:0c:28:85:3e:33:fc:2c:7d:a3:cb:a9:79:a2:bf:77:70:f4: bd:6e:c1:d8:d5:a2:04:af:4d:1e:e8:42:88:38:e6:2f:bb:3f: c9:96:64:e7:a7:fc:0d:a7:67:90:78:f7:9a:4a:e8:96:e1:b1: 38:48:14:5a:9a:46:d7:6d:3a:82:be:22:5e:81:a3:49:92:f8: 9d:11:fa:ad:f7:f1:30:c7:30:74:8a:05:53:0e:da:c3:b2:e1: 05:68:94:ee -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87er3ICIPNxRWrIgHGEU0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl ZTQ2ZDcwHhcNMjYwMTAyMDQxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjU5MGRiMTY5ZTU4NzQzM2U0NjRlOTY0MTYwNDc3MmJiY2YyNWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnPg96VnXMZAxZD65oOZV0ul9fgtC Z1WEUIQ1WhtDM1bed+FRlr039RrbKiQcmu3AHu8rdSJevTG/PLdAht/X4Jsp8b6x tbqkHXO755lMYV8nHg6+ZdTbm0kqbbMLGSIy61z1radIZy/5ot2l8vVWjcSiMBtV zPznezaQ+RhH8C2FGxJE0EJAqrOhXnfN29yKifTtyeGyzwLi8BFD0qo2HZAk/+xe 0+T9SU6fCq3O2sxMttYX2LqTnnxJ7iKDst5H7il6CmRAZbyEzmvfTtbVP1B9S7jc rg99qix/5kqgDRviYChOCSvioO45jUsjRJZRZlAGgqF22ltyMctmgPNmkwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNZZDbFp5YdDPkZOlkFgR3K7zyXmMB8GA1UdIwQY MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt NTYyNDRmNDMwZGNjLzEvMWxrTnNXbmxoME0tUms2V1FXQkhjcnZQSmVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAURUDAwQA sDk/MA0GCSqGSIb3DQEBCwUAA4IBAQB4un0OlzC7JzRWJPeX5MoGKE6ZT/4Zq266 vNZ9n/OOdqDN1wfzGLI2r9GuhPb0frtUGPcYYUgXy9cvh37OfK0W0EOiB7STB0tH L6Ie74vFAYOJGGF3Sz+2ML6P6qaKETSZOMI/V2ve1/QQEXW1TaDjRrb9MbfngH/1 u7cig37jp3eE/eASxeP0W6MZ8iBzYAaPfZN0AAYtcXkAgEaZ8Hz9CWsTDCiFPjP8 LH2jy6l5or93cPS9bsHY1aIEr00e6EKIOOYvuz/JlmTnp/wNp2eQePeaSuiW4bE4 SBRamkbXbTqCviJegaNJkvidEfqt9/EwxzB0igVTDtrDsuEFaJTu -----END CERTIFICATE-----Generated at Fri Jan 2 17:57:30 2026 by rpki-client