This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/bc1140-5086-41e2-b4cc-68c804b658e7/1/Lp8uTrh0qW4aXm6dCM5_v_7ksK4.roa File: Lp8uTrh0qW4aXm6dCM5_v_7ksK4.roa (raw, json) Hash identifier: hMn1ax0m0A79uPtTb3kw8nIn6sECB4efeT2DDKCkCVY= Subject key identifier: 2E:9F:2E:4E:B8:74:A9:6E:1A:5E:6E:9D:08:CE:7F:BF:FE:E4:B0:AE Certificate issuer: /CN=753c6e0142aee7a9e5a27d15779b2eecb688dda7 Certificate serial: 019B7E38E55EDA320C91279D00E443FB85E3 Authority key identifier: 75:3C:6E:01:42:AE:E7:A9:E5:A2:7D:15:77:9B:2E:EC:B6:88:DD:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTxuAUKu56nlon0Vd5su7LaI3ac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/bc1140-5086-41e2-b4cc-68c804b658e7/1/Lp8uTrh0qW4aXm6dCM5_v_7ksK4.roa Signing time: Fri 02 Jan 2026 10:20:16 +0000 ROA not before: Fri 02 Jan 2026 10:20:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216251 IP address blocks: 91.242.253.0/24 maxlen: 24 2a11:b440::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/bc1140-5086-41e2-b4cc-68c804b658e7/1/dTxuAUKu56nlon0Vd5su7LaI3ac.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/bc1140-5086-41e2-b4cc-68c804b658e7/1/dTxuAUKu56nlon0Vd5su7LaI3ac.mft rsync://rpki.ripe.net/repository/DEFAULT/dTxuAUKu56nlon0Vd5su7LaI3ac.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:e5:5e:da:32:0c:91:27:9d:00:e4:43:fb:85:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=753c6e0142aee7a9e5a27d15779b2eecb688dda7 Validity Not Before: Jan 2 10:20:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e9f2e4eb874a96e1a5e6e9d08ce7fbffee4b0ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1c:ea:62:f7:33:5e:bf:d4:de:03:e9:de:0b: f6:96:76:10:6c:b5:2a:95:18:e8:75:ef:60:3c:b0: 5e:79:f7:bb:bc:12:91:ba:6c:aa:1f:a9:54:c3:73: 65:c0:b2:71:8e:43:42:74:94:d1:92:1e:78:d3:43: 2e:bd:8d:4c:04:73:e8:74:a6:2e:52:e8:56:dd:fc: 58:73:30:e7:b0:b2:cf:ee:b3:f5:4b:68:66:ad:49: 30:90:f0:5f:5c:91:d4:0e:1d:c6:7c:94:a5:af:de: 41:d0:a0:53:dc:41:11:09:96:92:bd:70:7a:9d:c9: 08:14:bd:36:cf:06:33:78:5f:83:21:2b:4d:70:e4: 1d:c9:01:d4:fb:87:6b:70:2c:9e:c5:f2:15:53:7a: 0f:2a:3f:b6:e7:3f:29:25:0d:16:d3:90:70:4b:34: 62:57:98:27:cc:d1:46:af:2f:bb:e2:39:f3:1f:e4: aa:ad:4e:33:93:91:a2:6c:11:3b:c8:06:fa:8e:60: 93:9d:91:a1:ae:cb:08:c4:86:4e:14:22:2f:cd:3f: 23:23:1f:c8:ba:bb:a9:3a:0e:b4:13:19:5c:91:f8: 25:12:6b:5f:98:98:35:3b:c5:46:c7:ca:97:cd:80: ae:31:a6:dc:3e:84:39:d4:09:0d:0b:79:b4:22:87: 47:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:9F:2E:4E:B8:74:A9:6E:1A:5E:6E:9D:08:CE:7F:BF:FE:E4:B0:AE X509v3 Authority Key Identifier: keyid:75:3C:6E:01:42:AE:E7:A9:E5:A2:7D:15:77:9B:2E:EC:B6:88:DD:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTxuAUKu56nlon0Vd5su7LaI3ac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/bc1140-5086-41e2-b4cc-68c804b658e7/1/Lp8uTrh0qW4aXm6dCM5_v_7ksK4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/bc1140-5086-41e2-b4cc-68c804b658e7/1/dTxuAUKu56nlon0Vd5su7LaI3ac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.242.253.0/24 IPv6: 2a11:b440::/29 Signature Algorithm: sha256WithRSAEncryption 7e:7f:1b:74:d1:13:58:5f:f2:b8:ee:4e:d5:b0:49:43:07:96: 4c:13:89:c1:62:f3:da:44:ed:d9:83:b4:da:0b:06:4a:e6:1d: 9f:a0:f3:07:44:65:b7:40:d2:ac:6b:ad:76:13:9f:b9:97:da: 15:b4:90:64:23:1a:ef:59:d9:99:61:d9:d7:5b:af:f6:91:ae: c7:b6:86:46:12:c1:75:bc:0c:59:63:85:ce:e1:e4:48:e7:d0: 35:0b:86:51:13:8a:1f:32:e8:1a:cd:89:1b:f1:de:ee:18:5e: 2b:f4:88:0e:65:08:6f:b8:68:5e:be:1c:c6:a1:34:c3:f6:54: 67:10:cf:60:1b:30:77:bd:62:47:90:51:ac:7b:ef:55:53:af: ef:7c:24:81:91:42:ce:42:f3:1a:79:75:1f:a2:58:08:b9:ae: 63:fa:43:59:16:9f:fa:a4:83:d1:81:c5:53:5d:65:84:c0:70: 0a:bf:63:cc:8b:e4:b9:0e:a5:d8:ba:b0:f2:4f:98:06:a4:17: 77:a8:30:c9:25:87:46:9c:0b:56:a4:48:58:50:32:60:08:3a: 95:e2:4d:38:7c:e7:65:54:dd:03:40:86:98:f1:b4:8e:a1:39: de:6f:ae:0d:c7:df:e0:ad:ca:5a:45:09:0b:d5:0e:81:c4:5d: cb:4e:28:2c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+OOVe2jIMkSedAORD+4XjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1M2M2ZTAxNDJhZWU3YTllNWEyN2QxNTc3OWIyZWVjYjY4 OGRkYTcwHhcNMjYwMTAyMTAyMDE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTlmMmU0ZWI4NzRhOTZlMWE1ZTZlOWQwOGNlN2ZiZmZlZTRiMGFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshzqYvczXr/U3gPp3gv2lnYQbLUq lRjode9gPLBeefe7vBKRumyqH6lUw3NlwLJxjkNCdJTRkh5400MuvY1MBHPodKYu UuhW3fxYczDnsLLP7rP1S2hmrUkwkPBfXJHUDh3GfJSlr95B0KBT3EERCZaSvXB6 nckIFL02zwYzeF+DIStNcOQdyQHU+4drcCyexfIVU3oPKj+25z8pJQ0W05BwSzRi V5gnzNFGry+74jnzH+SqrU4zk5GibBE7yAb6jmCTnZGhrssIxIZOFCIvzT8jIx/I urupOg60ExlckfglEmtfmJg1O8VGx8qXzYCuMabcPoQ51AkNC3m0IodHqQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFC6fLk64dKluGl5unQjOf7/+5LCuMB8GA1UdIwQY MBaAFHU8bgFCruep5aJ9FXebLuy2iN2nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFR4dUFVS3U1Nm5sb24wVmQ1c3U3TGFJM2FjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9iYzExNDAtNTA4Ni00MWUyLWI0Y2Mt NjhjODA0YjY1OGU3LzEvTHA4dVRyaDBxVzRhWG02ZENNNV92Xzdrc0s0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS9iYzExNDAtNTA4Ni00MWUyLWI0Y2MtNjhjODA0YjY1OGU3 LzEvZFR4dUFVS3U1Nm5sb24wVmQ1c3U3TGFJM2FjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAW/L9MA0E AgACMAcDBQMqEbRAMA0GCSqGSIb3DQEBCwUAA4IBAQB+fxt00RNYX/K47k7VsElD B5ZME4nBYvPaRO3Zg7TaCwZK5h2foPMHRGW3QNKsa612E5+5l9oVtJBkIxrvWdmZ YdnXW6/2ka7HtoZGEsF1vAxZY4XO4eRI59A1C4ZRE4ofMugazYkb8d7uGF4r9IgO ZQhvuGhevhzGoTTD9lRnEM9gGzB3vWJHkFGse+9VU6/vfCSBkULOQvMaeXUfolgI ua5j+kNZFp/6pIPRgcVTXWWEwHAKv2PMi+S5DqXYurDyT5gGpBd3qDDJJYdGnAtW pEhYUDJgCDqV4k04fOdlVN0DQIaY8bSOoTneb64Nx9/grcpaRQkL1Q6BxF3LTigs -----END CERTIFICATE-----Generated at Mon Feb 9 20:05:15 2026 by rpki-client