This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/accde8-f46f-4ef9-94af-8dd81e4b3e33/1/lDkFS134PLdNwq1XhPeVSuXWQw0.roa File: lDkFS134PLdNwq1XhPeVSuXWQw0.roa (raw, json) Hash identifier: sWC1chnNML5lu5ldTASbLUnaff4GQPJ6rkXZBHVvz6g= Subject key identifier: 94:39:05:4B:5D:F8:3C:B7:4D:C2:AD:57:84:F7:95:4A:E5:D6:43:0D Certificate issuer: /CN=2e6b33413faa5e5e1d279a2a25ff81d8d15325df Certificate serial: 019B7BA3B4ADDC15A1CEC69F5EF9584A0324 Authority key identifier: 2E:6B:33:41:3F:AA:5E:5E:1D:27:9A:2A:25:FF:81:D8:D1:53:25:DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LmszQT-qXl4dJ5oqJf-B2NFTJd8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/accde8-f46f-4ef9-94af-8dd81e4b3e33/1/lDkFS134PLdNwq1XhPeVSuXWQw0.roa Signing time: Thu 01 Jan 2026 22:18:04 +0000 ROA not before: Thu 01 Jan 2026 22:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2614 IP address blocks: 37.128.224.0/20 maxlen: 20 46.243.112.0/21 maxlen: 24 176.126.208.0/21 maxlen: 21 178.23.64.0/21 maxlen: 21 185.118.200.0/22 maxlen: 22 217.73.160.0/20 maxlen: 20 2001:b30::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/accde8-f46f-4ef9-94af-8dd81e4b3e33/1/LmszQT-qXl4dJ5oqJf-B2NFTJd8.crl rsync://rpki.ripe.net/repository/DEFAULT/af/accde8-f46f-4ef9-94af-8dd81e4b3e33/1/LmszQT-qXl4dJ5oqJf-B2NFTJd8.mft rsync://rpki.ripe.net/repository/DEFAULT/LmszQT-qXl4dJ5oqJf-B2NFTJd8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:b4:ad:dc:15:a1:ce:c6:9f:5e:f9:58:4a:03:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e6b33413faa5e5e1d279a2a25ff81d8d15325df Validity Not Before: Jan 1 22:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9439054b5df83cb74dc2ad5784f7954ae5d6430d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:96:68:c9:22:d4:78:c1:6f:02:87:b1:12:d0: 0c:41:fc:ab:b7:7b:45:8e:d0:2a:04:cb:18:79:33: e9:93:f6:34:a4:e2:6a:07:12:ca:a5:b1:21:0b:94: 73:80:21:30:6a:83:46:cd:29:d3:49:83:e8:f3:12: c6:57:65:09:a9:5f:a5:07:ee:4f:b4:f4:b3:5d:d7: 01:26:75:38:4c:fd:11:7a:dc:8d:02:d5:19:af:d4: 11:1c:70:ed:59:7d:00:26:af:3b:b4:ea:6b:3b:55: 42:98:ce:61:82:5f:58:b7:aa:9a:6a:f4:18:68:30: ee:f6:25:ce:61:b7:66:93:22:69:3a:a7:65:37:df: 8e:9a:da:c0:87:15:e2:78:48:1b:d8:a9:a7:32:f8: 0e:fa:bb:e1:ff:f4:8e:94:af:f1:0a:1e:0f:89:da: 44:7d:ce:b9:52:1e:ee:f8:bb:aa:76:33:9a:fc:74: 6d:8d:6a:9e:f7:5d:e0:ff:99:58:df:9d:73:75:c6: f7:30:1f:50:db:5e:4d:c9:6e:b2:0e:28:f2:9d:dd: 32:04:8f:3d:ed:18:58:98:d9:75:5b:b9:0a:b2:ad: b6:2e:ae:ff:b5:82:8b:87:74:0e:b5:de:06:da:e2: cb:97:20:04:52:97:17:94:ea:03:a3:a9:58:35:a8: e4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:39:05:4B:5D:F8:3C:B7:4D:C2:AD:57:84:F7:95:4A:E5:D6:43:0D X509v3 Authority Key Identifier: keyid:2E:6B:33:41:3F:AA:5E:5E:1D:27:9A:2A:25:FF:81:D8:D1:53:25:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LmszQT-qXl4dJ5oqJf-B2NFTJd8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/accde8-f46f-4ef9-94af-8dd81e4b3e33/1/lDkFS134PLdNwq1XhPeVSuXWQw0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/accde8-f46f-4ef9-94af-8dd81e4b3e33/1/LmszQT-qXl4dJ5oqJf-B2NFTJd8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.128.224.0/20 46.243.112.0/21 176.126.208.0/21 178.23.64.0/21 185.118.200.0/22 217.73.160.0/20 IPv6: 2001:b30::/29 Signature Algorithm: sha256WithRSAEncryption 0f:45:e1:35:47:46:e3:a1:66:31:cc:76:ea:50:7f:09:0d:04: 59:e8:87:f5:8c:0b:fb:22:90:87:da:10:31:df:33:8d:ea:78: d3:9e:b9:46:b7:e7:0f:08:7a:b0:fa:07:a0:b5:b4:94:cb:fa: 90:d6:a5:4e:fa:6b:57:1d:ee:33:0b:a6:22:4e:3b:ef:d2:7c: 29:b3:4d:42:76:2b:ca:a5:df:cc:89:33:7e:86:76:8a:d8:46: 35:f7:b6:16:f7:d2:8d:d5:9d:ff:2b:98:c3:4c:85:b7:e4:eb: 30:21:f6:33:c8:2c:d3:fb:f7:30:da:2f:e6:a0:5a:be:1c:1d: 0f:b0:db:60:fd:ee:9d:2e:6e:e2:00:9b:ec:e2:0c:b0:fb:e6: ca:7f:a4:c0:25:9a:74:d9:ee:35:85:98:a5:f6:90:b7:9c:da: 09:88:52:eb:28:62:ad:2f:50:a0:9f:ff:02:6a:c5:8e:74:42: e0:b0:64:1d:bf:f6:37:35:90:48:4d:80:df:45:98:f7:68:f0: a2:d8:0c:1a:a7:fe:bb:ab:5c:5e:a3:08:ea:11:93:32:e1:c3: e8:bd:1f:15:64:c3:73:9d:9f:0f:bd:56:96:fc:15:0a:fb:aa: 29:24:c0:30:90:b7:fb:92:42:02:a8:a7:2e:65:8f:82:c8:d3: ba:20:91:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt7o7St3BWhzsafXvlYSgMkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlNmIzMzQxM2ZhYTVlNWUxZDI3OWEyYTI1ZmY4MWQ4ZDE1 MzI1ZGYwHhcNMjYwMTAxMjIxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDM5MDU0YjVkZjgzY2I3NGRjMmFkNTc4NGY3OTU0YWU1ZDY0MzBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1pZoySLUeMFvAoexEtAMQfyrt3tF jtAqBMsYeTPpk/Y0pOJqBxLKpbEhC5RzgCEwaoNGzSnTSYPo8xLGV2UJqV+lB+5P tPSzXdcBJnU4TP0RetyNAtUZr9QRHHDtWX0AJq87tOprO1VCmM5hgl9Yt6qaavQY aDDu9iXOYbdmkyJpOqdlN9+OmtrAhxXieEgb2KmnMvgO+rvh//SOlK/xCh4PidpE fc65Uh7u+LuqdjOa/HRtjWqe913g/5lY351zdcb3MB9Q215NyW6yDijynd0yBI89 7RhYmNl1W7kKsq22Lq7/tYKLh3QOtd4G2uLLlyAEUpcXlOoDo6lYNajk4QIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFJQ5BUtd+Dy3TcKtV4T3lUrl1kMNMB8GA1UdIwQY MBaAFC5rM0E/ql5eHSeaKiX/gdjRUyXfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG1zelFULXFYbDRkSjVvcUpmLUIyTkZUSmQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9hY2NkZTgtZjQ2Zi00ZWY5LTk0YWYt OGRkODFlNGIzZTMzLzEvbERrRlMxMzRQTGROd3ExWGhQZVZTdVhXUXcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9hY2NkZTgtZjQ2Zi00ZWY5LTk0YWYtOGRkODFlNGIzZTMz LzEvTG1zelFULXFYbDRkSjVvcUpmLUIyTkZUSmQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQEJYDgAwQD LvNwAwQDsH7QAwQDshdAAwQCuXbIAwQE2UmgMA0EAgACMAcDBQMgAQswMA0GCSqG SIb3DQEBCwUAA4IBAQAPReE1R0bjoWYxzHbqUH8JDQRZ6If1jAv7IpCH2hAx3zON 6njTnrlGt+cPCHqw+gegtbSUy/qQ1qVO+mtXHe4zC6YiTjvv0nwps01CdivKpd/M iTN+hnaK2EY197YW99KN1Z3/K5jDTIW35OswIfYzyCzT+/cw2i/moFq+HB0PsNtg /e6dLm7iAJvs4gyw++bKf6TAJZp02e41hZil9pC3nNoJiFLrKGKtL1Cgn/8CasWO dELgsGQdv/Y3NZBITYDfRZj3aPCi2Awap/67q1xeowjqEZMy4cPovR8VZMNznZ8P vVaW/BUK+6opJMAwkLf7kkICqKcuZY+CyNO6IJG6 -----END CERTIFICATE-----Generated at Tue Jan 20 06:04:30 2026 by rpki-client