This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/LJKhD8fk07zXDMBgH7_ZquUEkWo.roa File: LJKhD8fk07zXDMBgH7_ZquUEkWo.roa (raw, json) Hash identifier: lpLkxTnWA14ekLx427upuk7B/wpO8bahUjpiRWlX+pc= Subject key identifier: 2C:92:A1:0F:C7:E4:D3:BC:D7:0C:C0:60:1F:BF:D9:AA:E5:04:91:6A Certificate issuer: /CN=1c020297839c7390df20251a5c0930e6a672bee3 Certificate serial: 019B78A296A68D362B18C2A681EB57433E88 Authority key identifier: 1C:02:02:97:83:9C:73:90:DF:20:25:1A:5C:09:30:E6:A6:72:BE:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAICl4Occ5DfICUaXAkw5qZyvuM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/LJKhD8fk07zXDMBgH7_ZquUEkWo.roa Signing time: Thu 01 Jan 2026 08:17:59 +0000 ROA not before: Thu 01 Jan 2026 08:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50558 IP address blocks: 37.32.112.0/20 maxlen: 24 37.32.112.0/21 maxlen: 21 37.32.120.0/21 maxlen: 24 37.32.120.0/24 maxlen: 24 37.32.124.0/24 maxlen: 24 37.32.126.0/24 maxlen: 24 185.49.96.0/22 maxlen: 24 2a01:9180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/HAICl4Occ5DfICUaXAkw5qZyvuM.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/HAICl4Occ5DfICUaXAkw5qZyvuM.mft rsync://rpki.ripe.net/repository/DEFAULT/HAICl4Occ5DfICUaXAkw5qZyvuM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:96:a6:8d:36:2b:18:c2:a6:81:eb:57:43:3e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c020297839c7390df20251a5c0930e6a672bee3 Validity Not Before: Jan 1 08:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2c92a10fc7e4d3bcd70cc0601fbfd9aae504916a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:22:4e:67:90:bd:c4:df:d3:14:5c:8f:7f:85: 3f:b8:6e:fc:27:7f:d2:ab:19:92:3d:cb:f9:14:06: dd:e4:55:ec:53:6b:e9:8a:8b:5a:09:2a:28:41:a9: 23:31:58:f4:fd:dc:9a:fd:61:ed:12:c5:8b:2d:8c: 2f:67:ab:cb:71:70:16:29:76:e3:b2:51:55:a9:74: bd:3b:75:16:ab:3e:27:c9:47:59:12:a5:69:c8:2a: db:39:2e:82:db:52:34:53:2d:e7:c2:ec:69:74:23: 8b:60:b5:40:32:d6:87:bf:93:9f:8a:cf:b0:ec:13: 9d:e9:26:86:92:26:f3:28:cc:3f:73:30:11:73:82: 69:d9:e5:f8:ff:6a:e3:e7:f2:aa:89:60:8c:2a:e7: 34:d0:8e:59:98:86:25:34:4d:6f:01:42:eb:94:e5: fb:0a:c0:c2:9f:c4:a8:36:3b:57:e8:62:5d:1f:68: f5:0a:36:00:bb:f5:5d:46:8d:80:70:b4:46:57:94: e1:62:de:05:ad:0a:7f:63:43:43:85:52:40:16:3a: f7:25:13:6a:11:23:38:c0:10:8d:57:c0:e2:3b:67: 77:5d:cd:48:89:8c:ea:95:ef:eb:b1:82:85:6c:88: cd:f0:f7:34:33:a0:f7:8f:28:52:c6:0a:d6:50:cd: f5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:92:A1:0F:C7:E4:D3:BC:D7:0C:C0:60:1F:BF:D9:AA:E5:04:91:6A X509v3 Authority Key Identifier: keyid:1C:02:02:97:83:9C:73:90:DF:20:25:1A:5C:09:30:E6:A6:72:BE:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAICl4Occ5DfICUaXAkw5qZyvuM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/LJKhD8fk07zXDMBgH7_ZquUEkWo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/79733f-5332-451b-86af-142a2b98f4c8/1/HAICl4Occ5DfICUaXAkw5qZyvuM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.32.112.0/20 185.49.96.0/22 IPv6: 2a01:9180::/32 Signature Algorithm: sha256WithRSAEncryption 0b:76:f9:7f:a4:41:45:4b:a5:90:08:51:09:5c:15:e2:96:17: 19:fc:88:26:d1:37:53:02:f3:69:0d:4a:d2:39:9f:c1:93:10: 59:e8:46:9c:c2:fc:ca:7f:3c:9b:bc:33:01:96:f9:06:05:67: 5a:06:aa:12:5b:8c:0a:f2:71:2a:10:2a:3a:96:b3:f4:2d:04: 22:f4:85:f1:2a:fa:49:98:73:88:8b:15:40:c0:62:8a:bf:72: 3c:21:9a:c6:e1:46:f8:5d:b3:5d:da:37:a7:43:05:1f:a6:d7: 05:9a:80:cb:ba:d6:43:6e:26:65:5c:18:2b:d9:9e:bd:fb:56: 55:8b:81:c2:0d:df:65:ee:85:c6:d0:06:7e:c8:70:81:5f:79: 9d:54:f6:c3:b9:4a:09:e6:53:8a:d7:7b:00:fc:10:64:65:1c: 2b:dc:c6:0f:74:d3:f3:8b:61:88:24:58:d4:e5:c1:ec:16:84: a6:e6:dc:44:26:41:f0:fa:9a:37:78:a4:ba:48:3d:db:a0:f7: d1:cf:34:5a:f0:36:69:02:2c:07:c0:5d:a0:aa:b2:db:25:80: 17:94:af:d9:a9:31:4d:d6:45:b1:dd:b1:88:b1:6b:b1:ae:9b: 6f:54:d5:bf:87:c7:72:ad:cf:a2:8f:fc:f4:a5:ee:1a:5c:37: 73:4b:2c:7e -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt4opamjTYrGMKmgetXQz6IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMDIwMjk3ODM5YzczOTBkZjIwMjUxYTVjMDkzMGU2YTY3 MmJlZTMwHhcNMjYwMTAxMDgxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYzkyYTEwZmM3ZTRkM2JjZDcwY2MwNjAxZmJmZDlhYWU1MDQ5MTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCJOZ5C9xN/TFFyPf4U/uG78J3/S qxmSPcv5FAbd5FXsU2vpiotaCSooQakjMVj0/dya/WHtEsWLLYwvZ6vLcXAWKXbj slFVqXS9O3UWqz4nyUdZEqVpyCrbOS6C21I0Uy3nwuxpdCOLYLVAMtaHv5Ofis+w 7BOd6SaGkibzKMw/czARc4Jp2eX4/2rj5/KqiWCMKuc00I5ZmIYlNE1vAULrlOX7 CsDCn8SoNjtX6GJdH2j1CjYAu/VdRo2AcLRGV5ThYt4FrQp/Y0NDhVJAFjr3JRNq ESM4wBCNV8DiO2d3Xc1IiYzqle/rsYKFbIjN8Pc0M6D3jyhSxgrWUM31qwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFCySoQ/H5NO81wzAYB+/2arlBJFqMB8GA1UdIwQY MBaAFBwCApeDnHOQ3yAlGlwJMOamcr7jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEFJQ2w0T2NjNURmSUNVYVhBa3c1cVp5dnVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy83OTczM2YtNTMzMi00NTFiLTg2YWYt MTQyYTJiOThmNGM4LzEvTEpLaEQ4ZmswN3pYRE1CZ0g3X1pxdVVFa1dvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy83OTczM2YtNTMzMi00NTFiLTg2YWYtMTQyYTJiOThmNGM4 LzEvSEFJQ2w0T2NjNURmSUNVYVhBa3c1cVp5dnVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQEJSBwAwQC uTFgMA0EAgACMAcDBQAqAZGAMA0GCSqGSIb3DQEBCwUAA4IBAQALdvl/pEFFS6WQ CFEJXBXilhcZ/Igm0TdTAvNpDUrSOZ/BkxBZ6EacwvzKfzybvDMBlvkGBWdaBqoS W4wK8nEqECo6lrP0LQQi9IXxKvpJmHOIixVAwGKKv3I8IZrG4Ub4XbNd2jenQwUf ptcFmoDLutZDbiZlXBgr2Z69+1ZVi4HCDd9l7oXG0AZ+yHCBX3mdVPbDuUoJ5lOK 13sA/BBkZRwr3MYPdNPzi2GIJFjU5cHsFoSm5txEJkHw+po3eKS6SD3boPfRzzRa 8DZpAiwHwF2gqrLbJYAXlK/ZqTFN1kWx3bGIsWuxrptvVNW/h8dyrc+ij/z0pe4a XDdzSyx+ -----END CERTIFICATE-----Generated at Tue Jan 27 06:21:13 2026 by rpki-client