This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/LlO-oDfJy4kmeYaGOwPxnumHLi4.roa File: LlO-oDfJy4kmeYaGOwPxnumHLi4.roa (raw, json) Hash identifier: FM9KBf9FUdp23hU0mhHesx5vQrM70l5mTBbeBlqThWA= Subject key identifier: 2E:53:BE:A0:37:C9:CB:89:26:79:86:86:3B:03:F1:9E:E9:87:2E:2E Certificate issuer: /CN=41a59b0960ea65d6b92393ee0347a1a832f9b984 Certificate serial: 019B791032616A3316D3CCCEEDFD173A1C01 Authority key identifier: 41:A5:9B:09:60:EA:65:D6:B9:23:93:EE:03:47:A1:A8:32:F9:B9:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QaWbCWDqZda5I5PuA0ehqDL5uYQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/LlO-oDfJy4kmeYaGOwPxnumHLi4.roa Signing time: Thu 01 Jan 2026 10:17:43 +0000 ROA not before: Thu 01 Jan 2026 10:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60012 IP address blocks: 185.204.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/QaWbCWDqZda5I5PuA0ehqDL5uYQ.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/QaWbCWDqZda5I5PuA0ehqDL5uYQ.mft rsync://rpki.ripe.net/repository/DEFAULT/QaWbCWDqZda5I5PuA0ehqDL5uYQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:32:61:6a:33:16:d3:cc:ce:ed:fd:17:3a:1c:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41a59b0960ea65d6b92393ee0347a1a832f9b984 Validity Not Before: Jan 1 10:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e53bea037c9cb89267986863b03f19ee9872e2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6c:2d:0b:b5:f1:56:9f:8f:c0:b4:a7:8e:d7: 38:df:98:ce:c2:b3:e7:6e:25:93:a8:17:0a:03:6a: 92:d2:17:4e:81:ce:a7:ed:f0:bb:d5:78:74:7f:24: e3:a9:19:85:4a:44:74:ca:2d:e4:f3:82:72:b8:eb: 12:2c:e2:3a:79:08:95:ce:84:eb:37:75:39:c6:94: f6:42:b1:63:c7:81:0d:20:7b:23:1b:c3:c5:6b:07: 28:a9:f1:fb:06:b2:12:18:9c:f0:da:ee:b5:82:b9: 3d:10:f0:4a:42:64:18:a9:04:13:8e:ff:65:3e:86: 3e:ad:dc:46:1f:d6:af:c1:5c:92:98:f2:1f:44:4e: 8a:c2:bf:cd:08:6c:13:44:95:53:e5:17:22:db:b5: 67:a3:32:7b:43:36:36:b4:c1:4d:85:29:42:86:c9: ed:a4:2c:ff:57:3a:6f:2d:48:7d:dc:48:3d:ad:e8: e3:cc:98:8f:6e:b7:2e:6a:d0:82:d6:63:0d:61:3a: f8:7e:f6:2a:be:c8:6e:a1:8c:85:0e:25:90:10:f3: 5d:b6:67:ab:42:18:4c:88:bc:de:36:33:87:07:ee: 14:ff:41:5d:ec:77:7e:78:71:cd:25:f3:51:74:93: 35:d1:1b:e4:59:0a:5d:e8:56:ab:5f:d2:99:53:05: 5c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:53:BE:A0:37:C9:CB:89:26:79:86:86:3B:03:F1:9E:E9:87:2E:2E X509v3 Authority Key Identifier: keyid:41:A5:9B:09:60:EA:65:D6:B9:23:93:EE:03:47:A1:A8:32:F9:B9:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QaWbCWDqZda5I5PuA0ehqDL5uYQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/LlO-oDfJy4kmeYaGOwPxnumHLi4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/QaWbCWDqZda5I5PuA0ehqDL5uYQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.204.44.0/22 Signature Algorithm: sha256WithRSAEncryption 73:fb:af:5c:73:df:50:52:38:47:8c:f1:68:cb:32:11:5d:7d: 25:0d:11:b6:3c:92:32:bb:e2:cd:4f:22:3c:fa:b2:5d:d1:34: 71:26:b7:dc:5e:cc:43:06:7b:45:09:b3:9f:e9:49:fc:9f:bd: a0:e9:e8:fa:26:5c:51:de:6b:ca:46:cb:83:07:ad:6e:1e:cd: d1:a0:16:e6:72:cb:dd:52:a6:43:ee:38:1a:67:46:1b:56:b7: 45:40:a5:dc:c2:c9:f3:55:16:d5:7c:ba:56:e8:1a:aa:8a:8c: ce:0c:c7:1f:97:d3:6d:ae:31:88:75:12:a3:6a:bc:b4:1d:5b: a3:4d:79:00:e0:9b:28:32:79:bd:65:ab:7d:9b:1a:65:2d:e7: e6:f2:91:a4:a5:d4:2a:18:02:53:0a:fa:e3:13:44:28:15:c8: 15:1f:7f:36:2e:c0:8d:2c:2d:f3:4f:bf:82:a7:e2:49:56:5d: 26:7f:83:d2:3f:a7:52:7d:69:5a:ba:7f:34:2b:78:f1:36:4b: 19:4b:f9:ef:6e:f9:8c:89:9f:20:8d:fc:9c:99:5d:6d:e9:10: ed:54:41:ea:a4:2a:88:e5:30:54:bc:df:76:73:dd:f7:0d:e0: 24:9f:d6:10:0c:80:9b:c3:2a:24:0e:fa:ff:50:41:45:03:db: ab:50:93:c2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EDJhajMW08zO7f0XOhwBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxYTU5YjA5NjBlYTY1ZDZiOTIzOTNlZTAzNDdhMWE4MzJm OWI5ODQwHhcNMjYwMTAxMTAxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTUzYmVhMDM3YzljYjg5MjY3OTg2ODYzYjAzZjE5ZWU5ODcyZTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnGwtC7XxVp+PwLSnjtc435jOwrPn biWTqBcKA2qS0hdOgc6n7fC71Xh0fyTjqRmFSkR0yi3k84JyuOsSLOI6eQiVzoTr N3U5xpT2QrFjx4ENIHsjG8PFawcoqfH7BrISGJzw2u61grk9EPBKQmQYqQQTjv9l PoY+rdxGH9avwVySmPIfRE6Kwr/NCGwTRJVT5Rci27VnozJ7QzY2tMFNhSlChsnt pCz/VzpvLUh93Eg9rejjzJiPbrcuatCC1mMNYTr4fvYqvshuoYyFDiWQEPNdtmer QhhMiLzeNjOHB+4U/0Fd7Hd+eHHNJfNRdJM10RvkWQpd6FarX9KZUwVcbQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC5TvqA3ycuJJnmGhjsD8Z7phy4uMB8GA1UdIwQY MBaAFEGlmwlg6mXWuSOT7gNHoagy+bmEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWFXYkNXRHFaZGE1STVQdUEwZWhxREw1dVlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8wYTFiODMtODZiYS00MDFhLWE1NDMt YmZkZWMwYzExMmUzLzEvTGxPLW9EZkp5NGttZVlhR093UHhudW1ITGk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS8wYTFiODMtODZiYS00MDFhLWE1NDMtYmZkZWMwYzExMmUz LzEvUWFXYkNXRHFaZGE1STVQdUEwZWhxREw1dVlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucwsMA0G CSqGSIb3DQEBCwUAA4IBAQBz+69cc99QUjhHjPFoyzIRXX0lDRG2PJIyu+LNTyI8 +rJd0TRxJrfcXsxDBntFCbOf6Un8n72g6ej6JlxR3mvKRsuDB61uHs3RoBbmcsvd UqZD7jgaZ0YbVrdFQKXcwsnzVRbVfLpW6BqqiozODMcfl9NtrjGIdRKjary0HVuj TXkA4JsoMnm9Zat9mxplLefm8pGkpdQqGAJTCvrjE0QoFcgVH382LsCNLC3zT7+C p+JJVl0mf4PSP6dSfWlaun80K3jxNksZS/nvbvmMiZ8gjfycmV1t6RDtVEHqpCqI 5TBUvN92c933DeAkn9YQDICbwyokDvr/UEFFA9urUJPC -----END CERTIFICATE-----Generated at Tue Jan 27 02:06:54 2026 by rpki-client