This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/lpSnG-y0Lsx00PzPj6wFEetzroU.roa File: lpSnG-y0Lsx00PzPj6wFEetzroU.roa (raw, json) Hash identifier: 8nc2ssk8ohlYgfLFFN1OlzwafOrvoQKJGYQ+TMSGKjY= Subject key identifier: 96:94:A7:1B:EC:B4:2E:CC:74:D0:FC:CF:8F:AC:05:11:EB:73:AE:85 Certificate issuer: /CN=61b866e323382caea961e7d2423e53cab5099131 Certificate serial: 019B77589155D7E8644497974DE7B793A6B7 Authority key identifier: 61:B8:66:E3:23:38:2C:AE:A9:61:E7:D2:42:3E:53:CA:B5:09:91:31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ybhm4yM4LK6pYefSQj5TyrUJkTE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/lpSnG-y0Lsx00PzPj6wFEetzroU.roa Signing time: Thu 01 Jan 2026 02:17:31 +0000 ROA not before: Thu 01 Jan 2026 02:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 185.111.52.0/24 maxlen: 24 185.111.53.0/24 maxlen: 24 185.111.54.0/24 maxlen: 24 185.111.55.0/24 maxlen: 24 185.111.56.0/24 maxlen: 24 185.111.57.0/24 maxlen: 24 185.111.58.0/24 maxlen: 24 185.111.59.0/24 maxlen: 24 185.112.16.0/24 maxlen: 24 185.112.17.0/24 maxlen: 24 185.112.18.0/24 maxlen: 24 185.112.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/Ybhm4yM4LK6pYefSQj5TyrUJkTE.crl rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/Ybhm4yM4LK6pYefSQj5TyrUJkTE.mft rsync://rpki.ripe.net/repository/DEFAULT/Ybhm4yM4LK6pYefSQj5TyrUJkTE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:91:55:d7:e8:64:44:97:97:4d:e7:b7:93:a6:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b866e323382caea961e7d2423e53cab5099131 Validity Not Before: Jan 1 02:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9694a71becb42ecc74d0fccf8fac0511eb73ae85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7a:98:c5:17:5a:d5:c2:39:a6:16:cc:4b:fb: 54:fa:8e:10:66:79:a2:fa:70:45:b3:90:a4:e8:b1: ca:46:21:51:d8:63:d0:a5:98:3e:60:3f:51:a1:1f: 0f:e9:85:3d:84:24:7a:7c:f1:22:ab:77:24:d0:7c: ad:e2:6d:fd:c5:c0:02:d4:33:7b:f9:b0:2f:d0:e2: 3d:7c:d8:21:4b:ac:f0:bc:21:7f:9b:70:ee:d5:6a: 12:30:81:9e:26:69:ca:14:31:37:a5:9d:8f:ad:b3: 41:a2:09:c4:f0:a8:dd:54:c6:b4:47:18:c2:8a:de: 32:a4:37:e1:ab:20:4e:98:c8:6a:14:96:b7:6f:b4: cb:93:3d:52:92:bc:a3:e9:7f:10:12:02:f3:fd:0a: 38:4d:e9:3e:f0:78:54:7b:4f:bb:6d:73:8f:5e:ec: 7f:46:0a:45:ba:bc:b9:09:51:16:0e:13:3d:6f:ac: fa:22:e5:a1:99:0c:5d:06:e6:52:62:b9:38:81:51: d4:dc:22:38:e0:5c:8e:07:2e:f0:13:6c:ce:7d:5b: 47:8c:6a:d3:16:93:a3:58:29:b9:e9:0b:dd:b7:3a: 99:4f:e5:2b:f9:bc:9c:f5:63:c9:a8:7b:44:fe:dc: 10:f6:e9:08:c4:bd:9b:48:ee:14:b6:3c:be:0d:db: a9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:94:A7:1B:EC:B4:2E:CC:74:D0:FC:CF:8F:AC:05:11:EB:73:AE:85 X509v3 Authority Key Identifier: keyid:61:B8:66:E3:23:38:2C:AE:A9:61:E7:D2:42:3E:53:CA:B5:09:91:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ybhm4yM4LK6pYefSQj5TyrUJkTE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/lpSnG-y0Lsx00PzPj6wFEetzroU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/Ybhm4yM4LK6pYefSQj5TyrUJkTE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.111.52.0-185.111.59.255 185.112.16.0/22 Signature Algorithm: sha256WithRSAEncryption a0:fd:8e:91:71:5f:98:d1:4f:97:16:b9:76:05:bc:cb:0c:1b: 59:f5:b1:01:2a:26:d0:c2:08:9a:95:fd:36:69:3d:54:7b:e1: f1:08:2f:6d:8f:1c:3b:81:22:72:fb:94:a1:c2:69:0d:b5:22: 13:80:db:f7:c5:29:b1:ab:b7:54:b7:d6:dd:83:a3:12:37:2a: 74:f7:dd:f2:ac:16:5f:68:41:2b:83:2a:7f:e1:63:22:12:2a: 46:73:6f:39:45:f9:48:1a:dd:82:85:3d:a6:02:70:6f:64:dc: 1a:3f:16:79:ae:e0:17:be:50:70:9e:f6:aa:63:bd:d4:25:f0: 5e:48:9b:69:0e:18:f2:5a:b6:90:1d:bb:4f:fa:be:f2:07:24: cc:ed:88:cb:69:f4:0b:47:f3:cc:21:26:7c:60:b3:60:ae:ae: 5e:96:9f:4d:82:66:dd:6f:62:ed:ea:b7:98:1a:b8:ee:48:89: 3f:7c:b1:a3:0e:85:be:0d:2a:cf:c7:9d:a7:93:ba:34:27:0d: 51:20:53:ec:e1:85:1a:cc:14:90:c9:40:17:84:49:8d:d9:c7: 2e:d3:6d:73:0f:fa:a4:60:7a:c5:f1:a8:2a:e8:d0:29:cd:87: 9b:15:81:60:e8:73:3b:7a:03:28:99:5c:96:da:f2:af:8f:74: a4:06:02:f5 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt3WJFV1+hkRJeXTee3k6a3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYjg2NmUzMjMzODJjYWVhOTYxZTdkMjQyM2U1M2NhYjUw OTkxMzEwHhcNMjYwMTAxMDIxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Njk0YTcxYmVjYjQyZWNjNzRkMGZjY2Y4ZmFjMDUxMWViNzNhZTg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw3qYxRda1cI5phbMS/tU+o4QZnmi +nBFs5Ck6LHKRiFR2GPQpZg+YD9RoR8P6YU9hCR6fPEiq3ck0Hyt4m39xcAC1DN7 +bAv0OI9fNghS6zwvCF/m3Du1WoSMIGeJmnKFDE3pZ2PrbNBognE8KjdVMa0RxjC it4ypDfhqyBOmMhqFJa3b7TLkz1Skryj6X8QEgLz/Qo4Tek+8HhUe0+7bXOPXux/ RgpFury5CVEWDhM9b6z6IuWhmQxdBuZSYrk4gVHU3CI44FyOBy7wE2zOfVtHjGrT FpOjWCm56QvdtzqZT+Ur+byc9WPJqHtE/twQ9ukIxL2bSO4Utjy+DdupKQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFJaUpxvstC7MdND8z4+sBRHrc66FMB8GA1UdIwQY MBaAFGG4ZuMjOCyuqWHn0kI+U8q1CZExMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWJobTR5TTRMSzZwWWVmU1FqNVR5clVKa1RFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS80ZWY0YTktNmQ5Ni00OTg5LTljODEt ZDkyZTY4ZGZmZmU0LzEvbHBTbkcteTBMc3gwMFB6UGo2d0ZFZXR6cm9VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS80ZWY0YTktNmQ5Ni00OTg5LTljODEtZDkyZTY4ZGZmZmU0 LzEvWWJobTR5TTRMSzZwWWVmU1FqNVR5clVKa1RFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAK5bzQD BAK5bzgDBAK5cBAwDQYJKoZIhvcNAQELBQADggEBAKD9jpFxX5jRT5cWuXYFvMsM G1n1sQEqJtDCCJqV/TZpPVR74fEIL22PHDuBInL7lKHCaQ21IhOA2/fFKbGrt1S3 1t2DoxI3KnT33fKsFl9oQSuDKn/hYyISKkZzbzlF+Uga3YKFPaYCcG9k3Bo/Fnmu 4Be+UHCe9qpjvdQl8F5Im2kOGPJatpAdu0/6vvIHJMztiMtp9AtH88whJnxgs2Cu rl6Wn02CZt1vYu3qt5gauO5IiT98saMOhb4NKs/HnaeTujQnDVEgU+zhhRrMFJDJ QBeESY3Zxy7TbXMP+qRgesXxqCro0CnNh5sVgWDoczt6AyiZXJba8q+PdKQGAvU= -----END CERTIFICATE-----Generated at Tue Jan 20 01:20:49 2026 by rpki-client