This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/_L0-mJYKBeETfgxfUI4qSUwQEHc.roa File: _L0-mJYKBeETfgxfUI4qSUwQEHc.roa (raw, json) Hash identifier: Si5YkV8SJK9SKg4jIz8r4YmcjacrqSKSCKVjzrSWPTc= Subject key identifier: FC:BD:3E:98:96:0A:05:E1:13:7E:0C:5F:50:8E:2A:49:4C:10:10:77 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37A7538EF532CC5C0EEBBE88FE52C1 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/_L0-mJYKBeETfgxfUI4qSUwQEHc.roa Signing time: Fri 02 Jan 2026 10:18:55 +0000 ROA not before: Fri 02 Jan 2026 10:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3257 IP address blocks: 203.188.182.0/24 maxlen: 24 203.188.183.0/24 maxlen: 24 212.56.48.0/24 maxlen: 24 212.56.49.0/24 maxlen: 24 212.56.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 10:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:a7:53:8e:f5:32:cc:5c:0e:eb:be:88:fe:52:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fcbd3e98960a05e1137e0c5f508e2a494c101077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:42:29:ff:99:5b:b7:9b:8d:52:af:96:b3:54: b6:75:e2:9c:e9:1e:d6:64:a7:4c:dd:2c:7c:4d:12: 03:97:9a:9c:4d:59:4b:b0:7c:47:3e:25:98:a0:8d: 6d:b5:ec:03:d5:20:88:37:8c:3f:94:49:f2:4f:72: 1e:ca:03:77:df:c4:d9:dd:b6:21:96:ec:59:36:a4: 3f:d3:6a:6c:b1:97:f4:78:a1:b8:1d:30:0f:5b:3b: d0:73:a6:de:c1:aa:ad:e1:f1:6e:e8:71:26:63:6b: f7:d6:c7:05:25:2d:7d:e4:73:ce:6b:33:55:0a:4f: 03:72:bd:e6:2f:f2:55:7d:96:19:9a:e5:a0:e5:65: 0e:81:eb:98:57:a0:a0:d4:11:09:4d:84:93:11:52: 55:b7:d2:27:db:0a:7e:25:ee:51:a7:92:91:6b:1e: 95:5d:99:16:4a:78:ff:fa:f1:25:16:b2:6a:47:bd: 1d:db:ea:b2:b3:3f:5b:12:c7:95:ca:95:0a:1f:e8: c5:33:6a:4a:0a:72:6e:84:e0:82:82:1b:56:3c:26: 45:e1:09:a4:53:f0:7d:c0:42:8a:a9:2b:c9:a0:6b: 71:77:5e:d7:ee:66:1d:25:fb:10:50:42:79:e1:5e: 23:fe:93:cb:0a:bf:dc:c0:14:89:cd:bc:86:cf:f4: 31:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:BD:3E:98:96:0A:05:E1:13:7E:0C:5F:50:8E:2A:49:4C:10:10:77 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/_L0-mJYKBeETfgxfUI4qSUwQEHc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.188.182.0/23 212.56.48.0/23 212.56.52.0/24 Signature Algorithm: sha256WithRSAEncryption b4:4f:c5:c6:b8:45:88:d0:69:3d:fb:46:23:67:43:5c:46:73: ed:c5:71:ac:9d:5f:e6:0e:33:04:b4:15:43:0e:52:ad:8b:9e: f4:3f:0e:a1:a9:31:ba:3e:9c:e8:f2:f7:be:4c:0b:b1:b5:8f: 1f:0c:66:91:e6:02:22:68:e2:94:07:b3:bc:a3:26:45:e9:3b: cb:bb:60:2f:36:0d:46:8d:1d:86:e2:fc:8b:a2:5a:55:5a:06: 5c:23:98:80:fb:59:64:fe:2f:18:94:8d:3d:b7:5e:4d:9a:cc: ab:a8:d1:58:e3:ba:7f:6a:97:2b:5e:fa:47:c3:97:1c:e3:76: 56:d0:44:38:af:fe:34:b7:87:73:d8:a3:22:3e:17:ef:88:6a: b4:f4:79:0b:45:dd:40:26:c3:76:cf:ce:89:ac:94:a8:a9:fc: dc:50:8e:60:de:6b:93:70:a6:2b:de:0f:c3:74:4e:64:ef:89: 8c:82:d1:80:34:fa:f6:c0:37:ab:70:ad:8b:19:00:d3:af:90: fc:1d:a3:1b:2e:d1:fc:26:f7:ba:f4:d3:2e:bc:cb:b7:d6:33: c9:41:7f:7a:1c:4f:70:d8:fe:b8:f7:20:d6:a1:97:0e:cd:8c: 1f:7a:df:56:cd:39:8d:11:76:a4:e5:e4:70:d0:3a:18:af:a5: e7:63:83:2e -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt+N6dTjvUyzFwO676I/lLBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmY2JkM2U5ODk2MGEwNWUxMTM3ZTBjNWY1MDhlMmE0OTRjMTAxMDc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlkIp/5lbt5uNUq+Ws1S2deKc6R7W ZKdM3Sx8TRIDl5qcTVlLsHxHPiWYoI1ttewD1SCIN4w/lEnyT3IeygN338TZ3bYh luxZNqQ/02pssZf0eKG4HTAPWzvQc6bewaqt4fFu6HEmY2v31scFJS195HPOazNV Ck8Dcr3mL/JVfZYZmuWg5WUOgeuYV6Cg1BEJTYSTEVJVt9In2wp+Je5Rp5KRax6V XZkWSnj/+vElFrJqR70d2+qysz9bEseVypUKH+jFM2pKCnJuhOCCghtWPCZF4Qmk U/B9wEKKqSvJoGtxd17X7mYdJfsQUEJ54V4j/pPLCr/cwBSJzbyGz/QxOwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFPy9PpiWCgXhE34MX1COKklMEBB3MB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvX0wwLW1KWUtCZUVUZmd4ZlVJNHFTVXdRRUhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBy7y2AwQB 1DgwAwQA1Dg0MA0GCSqGSIb3DQEBCwUAA4IBAQC0T8XGuEWI0Gk9+0YjZ0NcRnPt xXGsnV/mDjMEtBVDDlKti570Pw6hqTG6Ppzo8ve+TAuxtY8fDGaR5gIiaOKUB7O8 oyZF6TvLu2AvNg1GjR2G4vyLolpVWgZcI5iA+1lk/i8YlI09t15NmsyrqNFY47p/ apcrXvpHw5cc43ZW0EQ4r/40t4dz2KMiPhfviGq09HkLRd1AJsN2z86JrJSoqfzc UI5g3muTcKYr3g/DdE5k74mMgtGANPr2wDercK2LGQDTr5D8HaMbLtH8Jve69NMu vMu31jPJQX96HE9w2P649yDWoZcOzYwfet9WzTmNEXak5eRw0DoYr6XnY4Mu -----END CERTIFICATE-----Generated at Fri Jan 2 16:25:50 2026 by rpki-client