This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/c1d9b7-393d-4625-afe7-f3c887281eba/1/LgEQFbr6DfaKxHT0opE-rJchHzU.roa File: LgEQFbr6DfaKxHT0opE-rJchHzU.roa (raw, json) Hash identifier: p1Ib6SCkOlVl2vZjNlb0ktrjTCjuEUefHqGrnq38IDo= Subject key identifier: 2E:01:10:15:BA:FA:0D:F6:8A:C4:74:F4:A2:91:3E:AC:97:21:1F:35 Certificate issuer: /CN=b59be6ee549f335c728497a79f1441034e852c35 Certificate serial: 019B77590A6DA7DD692278B421E8BF329A37 Authority key identifier: B5:9B:E6:EE:54:9F:33:5C:72:84:97:A7:9F:14:41:03:4E:85:2C:35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZvm7lSfM1xyhJennxRBA06FLDU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/c1d9b7-393d-4625-afe7-f3c887281eba/1/LgEQFbr6DfaKxHT0opE-rJchHzU.roa Signing time: Thu 01 Jan 2026 02:18:02 +0000 ROA not before: Thu 01 Jan 2026 02:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15576 IP address blocks: 195.137.172.0/24 maxlen: 24 2a06:5100::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/c1d9b7-393d-4625-afe7-f3c887281eba/1/tZvm7lSfM1xyhJennxRBA06FLDU.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/c1d9b7-393d-4625-afe7-f3c887281eba/1/tZvm7lSfM1xyhJennxRBA06FLDU.mft rsync://rpki.ripe.net/repository/DEFAULT/tZvm7lSfM1xyhJennxRBA06FLDU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:0a:6d:a7:dd:69:22:78:b4:21:e8:bf:32:9a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b59be6ee549f335c728497a79f1441034e852c35 Validity Not Before: Jan 1 02:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e011015bafa0df68ac474f4a2913eac97211f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a7:90:a5:06:64:55:31:80:59:a5:4a:f1:79: 70:14:af:cf:59:69:88:8d:36:93:90:d3:ea:ad:03: 1b:a5:4b:ea:5c:37:36:81:a9:6a:33:5f:2c:a4:68: 57:63:ff:3d:18:e6:19:9a:87:79:e8:ff:f4:89:6b: c5:d1:0f:88:3f:af:24:d6:39:2e:de:75:d4:e8:6a: 6d:2e:20:29:ac:bb:93:77:c7:27:de:9f:f7:ce:d7: 62:16:43:bb:91:24:c5:e7:e1:bc:38:8f:32:e7:7a: ad:04:e1:71:a2:f1:4e:35:3e:cd:b2:83:c3:2b:33: 54:3e:b8:50:eb:de:93:7c:27:1f:34:f3:d7:a1:b9: d1:f0:57:2a:ae:10:d5:49:79:76:59:3c:1a:f7:03: 80:98:83:66:8b:55:31:06:84:f4:2b:29:7a:0b:ed: d9:60:95:e2:eb:4d:38:79:4c:67:70:68:c1:a4:a1: 59:c7:cf:e3:16:d7:92:e5:3c:5b:f6:d3:ac:46:cf: 95:75:d9:85:01:32:48:05:3d:ef:25:09:b0:a6:0a: af:82:33:5d:26:e3:6b:02:9b:5b:80:f3:ae:8f:a6: 88:f2:c5:ec:a9:a3:8b:7a:de:1e:27:2f:ad:a4:be: ae:c2:a8:31:3a:c1:f2:7d:47:b9:07:ae:1f:fe:4e: 47:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:01:10:15:BA:FA:0D:F6:8A:C4:74:F4:A2:91:3E:AC:97:21:1F:35 X509v3 Authority Key Identifier: keyid:B5:9B:E6:EE:54:9F:33:5C:72:84:97:A7:9F:14:41:03:4E:85:2C:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZvm7lSfM1xyhJennxRBA06FLDU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/c1d9b7-393d-4625-afe7-f3c887281eba/1/LgEQFbr6DfaKxHT0opE-rJchHzU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/c1d9b7-393d-4625-afe7-f3c887281eba/1/tZvm7lSfM1xyhJennxRBA06FLDU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.137.172.0/24 IPv6: 2a06:5100::/29 Signature Algorithm: sha256WithRSAEncryption 4e:e1:54:97:ca:d6:2e:97:0a:a0:a4:bf:5f:3f:6a:30:1c:c8: 2f:f2:58:bc:9b:72:a7:a1:c5:69:f9:bf:34:a3:95:92:d5:14: 2b:3f:8f:af:5f:75:aa:14:7a:31:4a:f4:82:ac:99:c2:64:45: 12:03:98:58:31:43:48:7f:c3:53:bf:be:6a:ac:91:d3:7c:81: e3:89:77:9d:c6:1f:27:08:8e:2b:64:3f:b9:db:7f:3b:19:e5: 81:0a:c7:a3:98:15:9f:d2:45:c1:cd:4c:c0:e9:3e:94:d3:bd: 22:7c:bc:b9:15:83:a8:24:83:5d:de:cf:85:bb:2d:6d:bf:e0: 5e:de:3e:00:7a:15:28:f1:ed:2d:60:e5:b6:63:36:78:78:65: b1:0f:52:7d:33:9e:ba:08:06:60:20:5f:c6:f2:67:f4:9a:ee: bf:f2:ea:b7:b5:ef:32:3a:1d:cd:c5:97:b9:9c:ff:35:2e:ee: e3:87:af:f1:2d:38:88:2e:a6:47:1c:91:c6:21:8e:f3:26:97: fb:7e:13:fa:db:96:81:7f:d4:b2:54:8d:cb:cf:0b:66:84:4c: 1d:6e:bc:ab:80:81:c4:87:7d:b3:1e:c8:54:d8:08:e0:52:30: 24:64:d0:27:93:48:d8:a0:5f:40:7d:f4:da:bd:24:cd:f7:7e: 15:c0:be:d0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WQptp91pIni0Iei/Mpo3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1OWJlNmVlNTQ5ZjMzNWM3Mjg0OTdhNzlmMTQ0MTAzNGU4 NTJjMzUwHhcNMjYwMTAxMDIxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTAxMTAxNWJhZmEwZGY2OGFjNDc0ZjRhMjkxM2VhYzk3MjExZjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwaeQpQZkVTGAWaVK8XlwFK/PWWmI jTaTkNPqrQMbpUvqXDc2galqM18spGhXY/89GOYZmod56P/0iWvF0Q+IP68k1jku 3nXU6GptLiAprLuTd8cn3p/3ztdiFkO7kSTF5+G8OI8y53qtBOFxovFONT7NsoPD KzNUPrhQ696TfCcfNPPXobnR8FcqrhDVSXl2WTwa9wOAmINmi1UxBoT0Kyl6C+3Z YJXi6004eUxncGjBpKFZx8/jFteS5Txb9tOsRs+VddmFATJIBT3vJQmwpgqvgjNd JuNrAptbgPOuj6aI8sXsqaOLet4eJy+tpL6uwqgxOsHyfUe5B64f/k5HKQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFC4BEBW6+g32isR09KKRPqyXIR81MB8GA1UdIwQY MBaAFLWb5u5UnzNccoSXp58UQQNOhSw1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFp2bTdsU2ZNMXh5aEplbm54UkJBMDZGTERVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9jMWQ5YjctMzkzZC00NjI1LWFmZTct ZjNjODg3MjgxZWJhLzEvTGdFUUZicjZEZmFLeEhUMG9wRS1ySmNoSHpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi9jMWQ5YjctMzkzZC00NjI1LWFmZTctZjNjODg3MjgxZWJh LzEvdFp2bTdsU2ZNMXh5aEplbm54UkJBMDZGTERVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw4msMA0E AgACMAcDBQMqBlEAMA0GCSqGSIb3DQEBCwUAA4IBAQBO4VSXytYulwqgpL9fP2ow HMgv8li8m3KnocVp+b80o5WS1RQrP4+vX3WqFHoxSvSCrJnCZEUSA5hYMUNIf8NT v75qrJHTfIHjiXedxh8nCI4rZD+52387GeWBCsejmBWf0kXBzUzA6T6U070ifLy5 FYOoJINd3s+Fuy1tv+Be3j4AehUo8e0tYOW2YzZ4eGWxD1J9M566CAZgIF/G8mf0 mu6/8uq3te8yOh3NxZe5nP81Lu7jh6/xLTiILqZHHJHGIY7zJpf7fhP625aBf9Sy VI3LzwtmhEwdbryrgIHEh32zHshU2AjgUjAkZNAnk0jYoF9AffTavSTN934VwL7Q -----END CERTIFICATE-----Generated at Mon Jan 26 19:20:03 2026 by rpki-client