This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LZrjGzbG0yP1gapCvplNu6bKGp4.roa File: LZrjGzbG0yP1gapCvplNu6bKGp4.roa (raw, json) Hash identifier: IOljre9WMXrFLY3gJ4bzNaMLmTqYXAusSCNRAaUJINM= Subject key identifier: 2D:9A:E3:1B:36:C6:D3:23:F5:81:AA:42:BE:99:4D:BB:A6:CA:1A:9E Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA554D72F934381D48A8864538CAAE2 Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LZrjGzbG0yP1gapCvplNu6bKGp4.roa Signing time: Thu 01 Jan 2026 22:19:50 +0000 ROA not before: Thu 01 Jan 2026 22:19:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60781 IP address blocks: 185.51.192.0/24 maxlen: 24 2a01:b2e0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:54:d7:2f:93:43:81:d4:8a:88:64:53:8c:aa:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2d9ae31b36c6d323f581aa42be994dbba6ca1a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:20:48:97:05:84:bd:42:2c:82:f9:2a:7a:07: c6:c7:14:d7:95:87:1a:b8:fa:01:3b:f4:1c:0b:68: ba:64:2f:17:21:fb:1c:5a:09:70:df:3d:ec:21:bd: fc:b5:07:a4:71:3b:e0:d5:70:dd:d2:bd:a7:57:aa: 25:3d:70:47:6b:49:19:02:52:9d:13:de:a1:36:d7: 99:30:4a:79:92:75:63:5e:04:95:63:97:97:dc:34: 19:42:2a:dd:55:33:bf:35:b2:3b:f3:54:35:00:1a: ca:48:15:b9:2c:72:a6:c0:bc:d0:5f:2c:54:04:21: 25:7a:60:c9:a8:37:94:41:bb:af:2f:17:53:a3:65: 64:bc:5c:72:a7:79:2d:97:c0:35:63:7e:bb:d1:36: f1:2b:9a:ea:c7:01:31:35:79:99:e6:6b:64:9e:b2: ca:88:97:c7:1e:ff:0c:82:ef:90:d4:32:d5:b2:a8: 9d:62:96:4f:b6:f0:ff:a9:da:bd:86:43:69:3f:c6: 1f:1c:cf:af:fa:4e:81:55:d7:5e:ea:46:5d:e8:98: 6d:0d:65:c5:30:33:38:36:73:40:3d:b1:a9:62:2e: c5:a1:43:6d:d0:18:54:09:eb:95:97:42:87:94:3d: d6:36:d7:0b:e2:b7:89:5f:b2:8f:e9:c9:c4:72:43: 8b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:9A:E3:1B:36:C6:D3:23:F5:81:AA:42:BE:99:4D:BB:A6:CA:1A:9E X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LZrjGzbG0yP1gapCvplNu6bKGp4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.51.192.0/24 IPv6: 2a01:b2e0::/29 Signature Algorithm: sha256WithRSAEncryption 28:ca:80:b1:ec:f3:d6:0f:85:25:1a:43:d3:21:7e:29:23:de: cc:7e:63:da:b9:09:36:ea:aa:6f:58:2b:86:d7:4d:a3:14:b6: ac:5d:44:99:fa:cf:32:98:ab:c9:97:07:34:02:bd:e7:28:1a: aa:9b:4b:e9:ea:5c:38:2c:de:08:25:46:22:ac:95:0d:2f:bc: cf:74:75:25:62:a9:0d:9d:f8:59:83:29:ad:2e:6c:fc:e9:23: 0d:a7:dd:98:a8:bf:2f:88:c8:18:b8:11:54:40:a1:4b:97:c5: 40:37:0f:a5:88:22:fb:b7:3e:bf:58:ce:2c:46:22:87:35:73: e5:10:a7:6d:15:93:b6:10:1a:8c:00:55:ee:7d:d8:87:79:d7: d5:d1:87:6c:36:38:88:d0:c6:fd:08:22:e8:e8:4d:d4:8c:37: 69:92:47:0a:a9:a6:a3:b6:91:80:ee:9a:a6:8d:9c:6a:77:ad: 32:5a:b9:82:72:bf:e2:8e:4f:66:0e:9d:a8:7b:3e:e7:2f:e8: 14:78:cd:0d:61:0d:e1:6c:2e:dc:b6:db:bd:f5:75:56:9a:cb: 80:46:a4:ce:cf:ef:5d:c2:f1:15:a2:47:dd:fa:35:94:f0:5e: 05:e0:fc:20:2b:38:04:b4:d8:4c:71:d3:b4:be:87:97:6f:9e: 80:37:64:22 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pVTXL5NDgdSKiGRTjKriMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDlhZTMxYjM2YzZkMzIzZjU4MWFhNDJiZTk5NGRiYmE2Y2ExYTllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoiBIlwWEvUIsgvkqegfGxxTXlYca uPoBO/QcC2i6ZC8XIfscWglw3z3sIb38tQekcTvg1XDd0r2nV6olPXBHa0kZAlKd E96hNteZMEp5knVjXgSVY5eX3DQZQirdVTO/NbI781Q1ABrKSBW5LHKmwLzQXyxU BCElemDJqDeUQbuvLxdTo2VkvFxyp3ktl8A1Y3670TbxK5rqxwExNXmZ5mtknrLK iJfHHv8Mgu+Q1DLVsqidYpZPtvD/qdq9hkNpP8YfHM+v+k6BVdde6kZd6JhtDWXF MDM4NnNAPbGpYi7FoUNt0BhUCeuVl0KHlD3WNtcL4reJX7KP6cnEckOLBQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFC2a4xs2xtMj9YGqQr6ZTbumyhqeMB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEvTFpyakd6YkcweVAxZ2FwQ3ZwbE51NmJLR3A0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuTPAMA0E AgACMAcDBQMqAbLgMA0GCSqGSIb3DQEBCwUAA4IBAQAoyoCx7PPWD4UlGkPTIX4p I97MfmPauQk26qpvWCuG102jFLasXUSZ+s8ymKvJlwc0Ar3nKBqqm0vp6lw4LN4I JUYirJUNL7zPdHUlYqkNnfhZgymtLmz86SMNp92YqL8viMgYuBFUQKFLl8VANw+l iCL7tz6/WM4sRiKHNXPlEKdtFZO2EBqMAFXufdiHedfV0YdsNjiI0Mb9CCLo6E3U jDdpkkcKqaajtpGA7pqmjZxqd60yWrmCcr/ijk9mDp2oez7nL+gUeM0NYQ3hbC7c ttu99XVWmsuARqTOz+9dwvEVokfd+jWU8F4F4PwgKzgEtNhMcdO0voeXb56AN2Qi -----END CERTIFICATE-----Generated at Mon Jan 19 16:54:22 2026 by rpki-client