This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/345c9b-7b4a-4b21-9b00-4d301684c3bc/1/lnQ2qM12OcTN3Tl66lkxIuHBUCI.roa File: lnQ2qM12OcTN3Tl66lkxIuHBUCI.roa (raw, json) Hash identifier: +iEMNwBTYNtnrtcaCkTfTG4LTW15CLlDWqlFL/QxTSM= Subject key identifier: 96:74:36:A8:CD:76:39:C4:CD:DD:39:7A:EA:59:31:22:E1:C1:50:22 Certificate issuer: /CN=a76abda90346d0cad25dca6f7450bccf8d08e771 Certificate serial: 019B7F14E7F2A8040CB9424343CF7BC3C05F Authority key identifier: A7:6A:BD:A9:03:46:D0:CA:D2:5D:CA:6F:74:50:BC:CF:8D:08:E7:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2q9qQNG0MrSXcpvdFC8z40I53E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/345c9b-7b4a-4b21-9b00-4d301684c3bc/1/lnQ2qM12OcTN3Tl66lkxIuHBUCI.roa Signing time: Fri 02 Jan 2026 14:20:35 +0000 ROA not before: Fri 02 Jan 2026 14:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 193.227.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/345c9b-7b4a-4b21-9b00-4d301684c3bc/1/p2q9qQNG0MrSXcpvdFC8z40I53E.crl rsync://rpki.ripe.net/repository/DEFAULT/86/345c9b-7b4a-4b21-9b00-4d301684c3bc/1/p2q9qQNG0MrSXcpvdFC8z40I53E.mft rsync://rpki.ripe.net/repository/DEFAULT/p2q9qQNG0MrSXcpvdFC8z40I53E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 08:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:e7:f2:a8:04:0c:b9:42:43:43:cf:7b:c3:c0:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a76abda90346d0cad25dca6f7450bccf8d08e771 Validity Not Before: Jan 2 14:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=967436a8cd7639c4cddd397aea593122e1c15022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:79:db:dc:83:66:47:c8:a2:db:8f:0d:75:d1: 0f:95:2c:99:85:bb:fe:83:ac:a1:f6:52:9a:d5:31: b1:ef:eb:d3:3d:85:ae:a4:8d:4b:86:c0:89:1f:3b: ef:69:cd:f6:85:3c:02:a8:35:24:49:ae:d4:06:20: e9:d7:3f:ee:fa:d9:1c:40:12:0e:de:be:11:d2:a8: 71:6a:7e:e3:c0:64:ff:b9:e9:f4:ee:0b:8b:b3:11: 1a:08:cb:34:ac:cb:40:f0:56:12:00:d9:32:cf:cb: e9:b6:b0:32:2d:60:b8:50:00:8f:75:fd:84:3a:d8: bd:87:0d:81:92:e8:2a:b2:67:d4:6a:fe:6d:4b:92: a4:64:44:07:ee:cb:1b:4f:6c:0a:9c:95:68:50:de: 67:4d:9a:3a:a9:ed:5a:32:ee:2e:c6:8c:9e:90:10: d0:77:59:c1:e2:84:fd:a8:7e:4a:53:8b:55:df:78: 88:4f:23:30:99:ce:32:37:69:03:7f:ad:7a:32:5e: 5a:dc:d9:a0:f7:04:4a:6b:c6:2a:f4:ba:9c:4f:44: 01:d2:a3:8e:50:a7:62:47:9c:96:a1:93:7c:f9:35: 16:97:ba:fa:dd:96:b9:91:10:c8:c3:54:8d:3e:8c: 9e:90:ce:1f:2d:5a:49:38:8e:10:3a:32:9b:2e:db: 13:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:74:36:A8:CD:76:39:C4:CD:DD:39:7A:EA:59:31:22:E1:C1:50:22 X509v3 Authority Key Identifier: keyid:A7:6A:BD:A9:03:46:D0:CA:D2:5D:CA:6F:74:50:BC:CF:8D:08:E7:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2q9qQNG0MrSXcpvdFC8z40I53E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/345c9b-7b4a-4b21-9b00-4d301684c3bc/1/lnQ2qM12OcTN3Tl66lkxIuHBUCI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/345c9b-7b4a-4b21-9b00-4d301684c3bc/1/p2q9qQNG0MrSXcpvdFC8z40I53E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.227.82.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:69:04:e0:7f:b4:20:8c:61:65:27:b8:57:79:a7:04:a1:e1: 7d:5b:10:90:c2:8d:5f:66:05:5c:08:e1:b1:03:bf:23:cb:b9: 2d:fd:56:29:a7:53:95:d3:d8:29:d7:d1:83:49:ce:43:76:55: dc:49:44:5d:5a:40:c1:f7:d3:2c:55:47:05:dd:21:ca:ab:69: 88:7a:c2:c7:8d:79:2c:74:45:9b:b5:e9:8c:54:63:4d:be:9c: da:b3:91:19:e3:53:84:4c:79:20:0b:6f:6a:73:bc:e6:ba:f3: c1:22:11:2f:68:0d:eb:4d:e5:2f:f3:a3:a3:42:8c:81:f7:a3: 93:c9:9b:93:c1:13:bb:42:e5:01:32:d3:f0:9a:cf:62:8c:34: 1d:e8:c7:5e:c3:da:a9:81:8a:25:ba:e3:17:17:b2:d9:16:62: f5:85:7b:bd:83:66:57:51:a8:b8:62:b7:f1:8f:51:7f:be:79: 7e:61:12:c3:f4:ae:e5:f6:d7:46:ca:b2:6a:70:56:0e:1b:7c: 98:d5:1c:9f:8f:7e:0f:dd:c3:bc:a0:c3:a8:6b:24:f6:bb:3f: ee:d8:9a:20:3e:97:fd:e3:97:a7:49:f7:ac:a6:ed:4a:77:bc: e1:c9:2a:23:7f:7f:4d:56:ae:f9:32:18:5e:96:80:c3:6a:e8: 67:76:42:d8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FOfyqAQMuUJDQ897w8BfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3NmFiZGE5MDM0NmQwY2FkMjVkY2E2Zjc0NTBiY2NmOGQw OGU3NzEwHhcNMjYwMTAyMTQyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Njc0MzZhOGNkNzYzOWM0Y2RkZDM5N2FlYTU5MzEyMmUxYzE1MDIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA23nb3INmR8ii248NddEPlSyZhbv+ g6yh9lKa1TGx7+vTPYWupI1LhsCJHzvvac32hTwCqDUkSa7UBiDp1z/u+tkcQBIO 3r4R0qhxan7jwGT/uen07guLsxEaCMs0rMtA8FYSANkyz8vptrAyLWC4UACPdf2E Oti9hw2BkugqsmfUav5tS5KkZEQH7ssbT2wKnJVoUN5nTZo6qe1aMu4uxoyekBDQ d1nB4oT9qH5KU4tV33iITyMwmc4yN2kDf616Ml5a3Nmg9wRKa8Yq9LqcT0QB0qOO UKdiR5yWoZN8+TUWl7r63Za5kRDIw1SNPoyekM4fLVpJOI4QOjKbLtsTDQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJZ0NqjNdjnEzd05eupZMSLhwVAiMB8GA1UdIwQY MBaAFKdqvakDRtDK0l3Kb3RQvM+NCOdxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDJxOXFRTkcwTXJTWGNwdmRGQzh6NDBJNTNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8zNDVjOWItN2I0YS00YjIxLTliMDAt NGQzMDE2ODRjM2JjLzEvbG5RMnFNMTJPY1ROM1RsNjZsa3hJdUhCVUNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni8zNDVjOWItN2I0YS00YjIxLTliMDAtNGQzMDE2ODRjM2Jj LzEvcDJxOXFRTkcwTXJTWGNwdmRGQzh6NDBJNTNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAweNSMA0G CSqGSIb3DQEBCwUAA4IBAQAuaQTgf7QgjGFlJ7hXeacEoeF9WxCQwo1fZgVcCOGx A78jy7kt/VYpp1OV09gp19GDSc5DdlXcSURdWkDB99MsVUcF3SHKq2mIesLHjXks dEWbtemMVGNNvpzas5EZ41OETHkgC29qc7zmuvPBIhEvaA3rTeUv86OjQoyB96OT yZuTwRO7QuUBMtPwms9ijDQd6Mdew9qpgYoluuMXF7LZFmL1hXu9g2ZXUai4Yrfx j1F/vnl+YRLD9K7l9tdGyrJqcFYOG3yY1Ryfj34P3cO8oMOoayT2uz/u2JogPpf9 45enSfespu1Kd7zhySojf39NVq75MhheloDDauhndkLY -----END CERTIFICATE-----Generated at Fri Jan 9 17:06:57 2026 by rpki-client