This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/Lmb8EqeT0HKrCmiUMDZIX3xNIzo.roa File: Lmb8EqeT0HKrCmiUMDZIX3xNIzo.roa (raw, json) Hash identifier: 7dt+AfZ3KHHDElYbVbB8Rs6kEOXzo9dSbGaBaxM/G64= Subject key identifier: 2E:66:FC:12:A7:93:D0:72:AB:0A:68:94:30:36:48:5F:7C:4D:23:3A Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b Certificate serial: 019B7C133BCD6F748863170617EAF7277150 Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/Lmb8EqeT0HKrCmiUMDZIX3xNIzo.roa Signing time: Fri 02 Jan 2026 00:19:53 +0000 ROA not before: Fri 02 Jan 2026 00:19:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202423 IP address blocks: 185.180.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.mft rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 13:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:3b:cd:6f:74:88:63:17:06:17:ea:f7:27:71:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b Validity Not Before: Jan 2 00:19:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e66fc12a793d072ab0a68943036485f7c4d233a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:41:04:7a:ab:23:b2:23:b5:86:a1:fd:e2:c0: 0c:46:9e:5a:11:d3:f9:05:a7:34:d9:ea:a4:88:0a: 53:f6:f9:67:e3:55:5e:81:02:b7:4a:19:f2:3d:2d: 33:6a:ff:f1:d2:a6:8e:3b:e5:f3:4c:43:69:69:65: 07:16:dc:68:f4:c2:c7:e0:30:b5:5f:b4:c9:21:25: e4:4e:f0:7c:09:19:c7:63:50:86:24:86:99:70:85: 84:d6:39:ba:bf:f6:dc:fe:e7:8f:a5:4b:11:d8:9f: 44:be:e2:cc:5c:92:22:13:4c:cf:aa:98:27:20:48: 3e:ca:90:b4:d6:b9:ba:01:53:68:93:95:5c:e2:0f: 98:e0:ac:f1:09:1f:cd:3f:23:32:5e:3c:86:1e:6c: ab:82:84:60:d8:61:3a:2e:29:07:33:c3:d6:6c:3e: 84:b1:10:b7:e4:96:1c:d6:59:48:fd:4c:13:b3:b6: 32:bc:b3:cf:e3:11:8e:b8:ef:c6:0b:7a:70:98:29: b4:a3:e1:bf:e7:31:23:92:33:33:28:68:08:66:c8: ba:08:bc:81:39:37:0e:d2:ef:a9:a1:9a:ef:81:cc: 3b:90:08:9c:d5:9e:24:cf:1b:21:56:ff:8d:50:17: 08:33:17:31:7d:2a:6d:22:07:f8:7f:69:ea:9f:f5: 40:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:66:FC:12:A7:93:D0:72:AB:0A:68:94:30:36:48:5F:7C:4D:23:3A X509v3 Authority Key Identifier: keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/Lmb8EqeT0HKrCmiUMDZIX3xNIzo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.180.109.0/24 Signature Algorithm: sha256WithRSAEncryption 47:bd:b9:16:15:a2:06:0c:26:2b:b1:db:3b:94:d2:62:fa:bd: b0:cc:6a:d5:12:d8:94:d7:44:89:ff:1d:bc:c4:a9:99:e8:1b: 51:d2:64:82:a4:57:65:6b:33:24:12:25:97:f4:03:25:eb:82: 8f:81:16:c1:86:dc:02:e7:25:88:5d:ff:ae:c7:8e:22:b0:56: 67:a2:c4:62:1a:7d:54:02:b4:15:54:fe:73:c1:67:80:9f:db: 5a:3e:9e:98:c1:21:47:0f:8e:9a:c0:04:65:1b:5f:08:3e:34: be:c1:09:a7:14:66:1e:2a:90:15:24:1c:49:7e:ee:88:e8:58: ad:b7:72:cb:32:3f:38:94:72:74:b5:fc:2a:04:f6:27:53:e9: 9e:98:18:eb:ee:f0:fd:c6:84:85:6c:e6:03:a5:4f:25:24:dd: 04:3f:c5:4f:5a:08:fb:1d:ac:67:45:cc:76:07:72:c1:ab:be: 4e:6b:ef:3a:cd:78:be:bd:62:4c:2f:c1:43:48:ab:c8:ed:77: a0:03:b8:1f:01:33:f2:94:1a:b7:c4:3a:14:fe:a4:42:61:0c: b7:22:4b:c6:a1:c0:c9:ab:8a:c2:b4:9a:65:a8:91:b2:11:10: aa:8b:ad:69:0f:34:81:c3:38:5d:64:3f:03:e4:67:58:d4:49: c9:9e:84:85 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EzvNb3SIYxcGF+r3J3FQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4 OWU4NWIwHhcNMjYwMTAyMDAxOTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTY2ZmMxMmE3OTNkMDcyYWIwYTY4OTQzMDM2NDg1ZjdjNGQyMzNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUEEeqsjsiO1hqH94sAMRp5aEdP5 Bac02eqkiApT9vln41VegQK3ShnyPS0zav/x0qaOO+XzTENpaWUHFtxo9MLH4DC1 X7TJISXkTvB8CRnHY1CGJIaZcIWE1jm6v/bc/uePpUsR2J9EvuLMXJIiE0zPqpgn IEg+ypC01rm6AVNok5Vc4g+Y4KzxCR/NPyMyXjyGHmyrgoRg2GE6LikHM8PWbD6E sRC35JYc1llI/UwTs7YyvLPP4xGOuO/GC3pwmCm0o+G/5zEjkjMzKGgIZsi6CLyB OTcO0u+poZrvgcw7kAic1Z4kzxshVv+NUBcIMxcxfSptIgf4f2nqn/VAiwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC5m/BKnk9ByqwpolDA2SF98TSM6MB8GA1UdIwQY MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt NmVlNTM0ZDkyZTUyLzEvTG1iOEVxZVQwSEtyQ21pVU1EWklYM3hOSXpvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubRtMA0G CSqGSIb3DQEBCwUAA4IBAQBHvbkWFaIGDCYrsds7lNJi+r2wzGrVEtiU10SJ/x28 xKmZ6BtR0mSCpFdlazMkEiWX9AMl64KPgRbBhtwC5yWIXf+ux44isFZnosRiGn1U ArQVVP5zwWeAn9taPp6YwSFHD46awARlG18IPjS+wQmnFGYeKpAVJBxJfu6I6Fit t3LLMj84lHJ0tfwqBPYnU+memBjr7vD9xoSFbOYDpU8lJN0EP8VPWgj7HaxnRcx2 B3LBq75Oa+86zXi+vWJML8FDSKvI7XegA7gfATPylBq3xDoU/qRCYQy3IkvGocDJ q4rCtJplqJGyERCqi61pDzSBwzhdZD8D5GdY1EnJnoSF -----END CERTIFICATE-----Generated at Tue Jan 20 19:51:20 2026 by rpki-client