This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/lGLQMZq_XCbmYHI0eudt0KQYSVI.roa File: lGLQMZq_XCbmYHI0eudt0KQYSVI.roa (raw, json) Hash identifier: OVcgTJuPkyBhHGFgTd7+CK4jsW6qG86Vqxr240Oicrw= Subject key identifier: 94:62:D0:31:9A:BF:5C:26:E6:60:72:34:7A:E7:6D:D0:A4:18:49:52 Certificate issuer: /CN=5954c7b7e6df7578466d82b52715cb209f7f21c5 Certificate serial: 019B7EA71956324B7A671A6C0FF346B2CD2D Authority key identifier: 59:54:C7:B7:E6:DF:75:78:46:6D:82:B5:27:15:CB:20:9F:7F:21:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/lGLQMZq_XCbmYHI0eudt0KQYSVI.roa Signing time: Fri 02 Jan 2026 12:20:38 +0000 ROA not before: Fri 02 Jan 2026 12:20:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35710 IP address blocks: 45.84.32.0/22 maxlen: 24 91.132.200.0/22 maxlen: 24 185.168.151.0/24 maxlen: 24 193.111.100.0/22 maxlen: 24 2a09:d180::/29 maxlen: 32 2a0e:9580::/29 maxlen: 32 2a12:13c0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.mft rsync://rpki.ripe.net/repository/DEFAULT/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:19:56:32:4b:7a:67:1a:6c:0f:f3:46:b2:cd:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5954c7b7e6df7578466d82b52715cb209f7f21c5 Validity Not Before: Jan 2 12:20:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9462d0319abf5c26e66072347ae76dd0a4184952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:46:db:64:ac:f9:ad:45:61:01:52:37:2a:0a: bc:da:51:d3:4d:32:9d:a1:d6:4a:94:fd:8c:8e:f4: 1f:13:1c:af:2e:cf:17:1d:6b:9a:b8:22:7d:a8:ba: 1c:79:ab:cb:1b:da:13:a4:eb:4a:81:cf:a3:a8:05: 0a:63:bf:49:24:5d:13:2a:5f:b9:de:14:cd:2f:d1: 15:40:aa:87:de:50:72:14:49:1e:bb:f9:46:7b:ff: 4e:d6:5d:5a:a0:16:ff:8b:92:a1:31:e9:d5:1a:81: cb:94:3e:57:ce:23:ab:a8:8c:2a:be:e7:35:e7:9f: 7e:ac:ab:99:3c:09:b7:73:6c:fa:9c:a0:ff:da:24: 3e:6d:31:0b:a9:77:0d:f9:c2:3c:70:85:16:3b:84: 8c:98:5c:9a:14:12:cf:f6:6a:26:47:dd:f8:e7:80: 17:39:4e:0c:49:a4:11:d1:c3:23:bd:79:ea:f1:10: b9:92:05:98:66:7a:2b:fd:7f:9a:70:b9:04:14:09: f7:42:9a:8f:40:ad:07:78:dc:d5:b2:94:68:5c:54: aa:b1:32:82:cf:88:d3:44:69:2f:4d:af:18:4e:62: 6b:ca:f7:ef:82:4e:80:80:3c:70:44:29:09:b8:5c: 14:51:0b:93:5a:6e:a4:dd:05:29:2f:9b:83:55:21: 46:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:62:D0:31:9A:BF:5C:26:E6:60:72:34:7A:E7:6D:D0:A4:18:49:52 X509v3 Authority Key Identifier: keyid:59:54:C7:B7:E6:DF:75:78:46:6D:82:B5:27:15:CB:20:9F:7F:21:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/lGLQMZq_XCbmYHI0eudt0KQYSVI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/e45fd0-e69b-4e32-a427-8b1052ffcf6d/1/WVTHt-bfdXhGbYK1JxXLIJ9_IcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.84.32.0/22 91.132.200.0/22 185.168.151.0/24 193.111.100.0/22 IPv6: 2a09:d180::/29 2a0e:9580::/29 2a12:13c0::/29 Signature Algorithm: sha256WithRSAEncryption ac:fe:4c:5d:51:e9:04:79:e5:11:3c:eb:0a:58:5a:e0:43:12: d3:3e:78:ba:94:7c:01:60:1b:cf:13:fc:06:65:87:48:53:ae: 90:56:80:33:d1:5a:f1:35:ee:67:26:f7:a1:a2:00:cc:49:a7: 8f:d3:62:b3:4f:3c:bc:77:5e:d7:a4:2d:0b:97:97:6d:07:c0: 5d:49:48:fe:6c:50:90:de:ef:90:da:99:5c:07:43:0e:35:bd: 0c:07:0e:31:e0:d9:8e:a3:f9:76:71:b7:0c:c5:be:84:a4:cb: 08:d7:2f:d4:0e:7e:3c:c2:fd:8e:a0:53:e0:20:1c:bf:31:b3: e2:97:1b:cd:3c:57:dc:4b:84:18:fe:d2:27:f7:4e:1a:8e:e5: 91:de:5d:9d:df:ab:50:f1:8a:0a:51:44:21:3d:96:74:92:e5: bd:79:af:e9:6a:a1:1b:4a:8f:20:e2:5f:b2:cb:d6:05:d9:c1: b3:78:1d:a8:03:86:bd:da:e2:b6:9c:f4:ef:b4:f8:48:a6:0e: 09:83:c1:63:86:88:f7:6a:09:e3:1d:74:73:95:32:51:21:ed: 9f:0b:0e:30:da:e9:99:59:7b:75:9d:dd:2b:42:a5:32:e3:ca: b8:9d:f5:fa:51:7c:d8:09:98:67:c7:6f:35:15:ff:b3:5d:27: da:a1:ca:56 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgISAZt+pxlWMkt6ZxpsD/NGss0tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5NTRjN2I3ZTZkZjc1Nzg0NjZkODJiNTI3MTVjYjIwOWY3 ZjIxYzUwHhcNMjYwMTAyMTIyMDM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDYyZDAzMTlhYmY1YzI2ZTY2MDcyMzQ3YWU3NmRkMGE0MTg0OTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0bbZKz5rUVhAVI3Kgq82lHTTTKd odZKlP2MjvQfExyvLs8XHWuauCJ9qLoceavLG9oTpOtKgc+jqAUKY79JJF0TKl+5 3hTNL9EVQKqH3lByFEkeu/lGe/9O1l1aoBb/i5KhMenVGoHLlD5XziOrqIwqvuc1 559+rKuZPAm3c2z6nKD/2iQ+bTELqXcN+cI8cIUWO4SMmFyaFBLP9momR93454AX OU4MSaQR0cMjvXnq8RC5kgWYZnor/X+acLkEFAn3QpqPQK0HeNzVspRoXFSqsTKC z4jTRGkvTa8YTmJryvfvgk6AgDxwRCkJuFwUUQuTWm6k3QUpL5uDVSFGQQIDAQAB o4ICODCCAjQwHQYDVR0OBBYEFJRi0DGav1wm5mByNHrnbdCkGElSMB8GA1UdIwQY MBaAFFlUx7fm33V4Rm2CtScVyyCffyHFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV1ZUSHQtYmZkWGhHYllLMUp4WExJSjlfSWNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9lNDVmZDAtZTY5Yi00ZTMyLWE0Mjct OGIxMDUyZmZjZjZkLzEvbEdMUU1acV9YQ2JtWUhJMGV1ZHQwS1FZU1ZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9lNDVmZDAtZTY5Yi00ZTMyLWE0MjctOGIxMDUyZmZjZjZk LzEvV1ZUSHQtYmZkWGhHYllLMUp4WExJSjlfSWNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAeBAIAATAYAwQCLVQgAwQC W4TIAwQAuaiXAwQCwW9kMBsEAgACMBUDBQMqCdGAAwUDKg6VgAMFAyoSE8AwDQYJ KoZIhvcNAQELBQADggEBAKz+TF1R6QR55RE86wpYWuBDEtM+eLqUfAFgG88T/AZl h0hTrpBWgDPRWvE17mcm96GiAMxJp4/TYrNPPLx3XtekLQuXl20HwF1JSP5sUJDe 75DamVwHQw41vQwHDjHg2Y6j+XZxtwzFvoSkywjXL9QOfjzC/Y6gU+AgHL8xs+KX G808V9xLhBj+0if3ThqO5ZHeXZ3fq1DxigpRRCE9lnSS5b15r+lqoRtKjyDiX7LL 1gXZwbN4HagDhr3a4rac9O+0+EimDgmDwWOGiPdqCeMddHOVMlEh7Z8LDjDa6ZlZ e3Wd3StCpTLjyrid9fpRfNgJmGfHbzUV/7NdJ9qhylY= -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:43 2026 by rpki-client