This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/l99T-FK5yYY4px9pdlKhIlbZPRc.roa File: l99T-FK5yYY4px9pdlKhIlbZPRc.roa (raw, json) Hash identifier: p/Hh7r12y6v1GNP3LrB2mSwj7gic+vMWivhi5TkoB/I= Subject key identifier: 97:DF:53:F8:52:B9:C9:86:38:A7:1F:69:76:52:A1:22:56:D9:3D:17 Certificate issuer: /CN=0908204d7cf5bc4aab38ffa39da3a681ed217bd4 Certificate serial: 019B7AC8E8478404930E420CA0225B3B422D Authority key identifier: 09:08:20:4D:7C:F5:BC:4A:AB:38:FF:A3:9D:A3:A6:81:ED:21:7B:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/l99T-FK5yYY4px9pdlKhIlbZPRc.roa Signing time: Thu 01 Jan 2026 18:19:05 +0000 ROA not before: Thu 01 Jan 2026 18:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201643 IP address blocks: 185.68.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:e8:47:84:04:93:0e:42:0c:a0:22:5b:3b:42:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0908204d7cf5bc4aab38ffa39da3a681ed217bd4 Validity Not Before: Jan 1 18:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=97df53f852b9c98638a71f697652a12256d93d17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f5:2d:57:4c:5d:17:87:f1:3c:67:dd:0d:43: 90:6a:60:90:38:6a:84:54:06:1c:a4:b9:25:7b:21: 9e:89:c2:36:a7:c7:cb:f7:b7:0b:42:95:39:bf:12: f0:de:2a:f1:0d:42:94:e8:ad:4b:37:cd:98:f2:f0: b4:6f:c8:91:da:d0:c1:35:d9:13:51:0d:c4:88:23: 23:49:80:83:a9:b4:fc:b7:4e:ac:cc:e1:45:35:48: f3:72:10:74:b8:68:81:49:e1:dc:62:40:2c:f3:90: 14:4b:aa:4d:92:9b:f7:dd:61:ec:1f:3a:8c:a7:82: 4c:9a:c1:4e:e2:04:e2:49:1a:83:d2:6e:71:c2:49: d6:49:17:7e:b9:6b:43:b1:ff:6f:c1:7d:01:af:70: bd:f8:6e:47:82:e1:f5:f2:74:c3:96:70:b9:8d:09: 41:d9:9f:bb:cb:31:71:da:f9:de:e9:d3:1c:f5:01: 00:0f:69:5f:e5:59:e2:2d:0f:48:51:3f:93:ee:dd: 3c:5b:6e:0a:23:65:74:d3:e4:80:54:9e:ab:65:60: 60:57:e0:64:fe:ae:7b:03:b5:1f:fd:c7:25:d1:eb: 6f:44:ab:4a:d4:31:a3:72:1b:7f:af:1f:70:34:04: 20:8b:78:9e:9c:3b:37:0c:93:40:90:45:ed:88:98: 3d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:DF:53:F8:52:B9:C9:86:38:A7:1F:69:76:52:A1:22:56:D9:3D:17 X509v3 Authority Key Identifier: keyid:09:08:20:4D:7C:F5:BC:4A:AB:38:FF:A3:9D:A3:A6:81:ED:21:7B:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/l99T-FK5yYY4px9pdlKhIlbZPRc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.68.100.0/22 Signature Algorithm: sha256WithRSAEncryption 7e:c9:5d:28:d0:08:50:b1:a5:d9:a1:4c:c0:ba:ef:bb:54:80: 2f:73:a2:55:8d:3a:79:bc:00:48:33:1e:16:3c:46:7a:17:49: cf:90:06:68:5c:58:f2:3a:ec:be:28:9c:39:9c:4a:89:79:13: 3a:28:92:d1:c1:e2:da:72:b0:52:b3:b6:a6:05:e8:a3:5b:89: 5c:ca:c3:d8:c7:90:6b:e1:27:6f:e1:de:c9:34:ce:5b:1f:d5: 39:45:00:04:1a:24:93:64:18:19:6a:fe:8a:da:94:1e:78:88: b1:64:ec:49:1e:74:b3:06:2b:86:8d:0f:38:ae:88:8c:10:1a: 28:e5:da:87:b3:ab:ab:63:1b:37:95:9f:41:bc:c0:59:b0:48: cc:dd:89:72:6c:82:4b:61:49:ea:01:11:7b:f2:b6:0d:ff:93: fa:bf:b8:4f:e8:a6:91:26:37:2a:b8:29:26:38:93:46:a8:ee: b8:87:4e:12:3b:36:c7:77:4c:40:bf:99:8a:17:c7:47:a9:a9: b4:bd:5e:96:33:0c:21:ff:51:89:45:5d:d4:c8:84:7a:78:02: df:56:ce:82:c1:a1:d0:0e:27:fc:3a:95:fc:28:81:a7:f0:c1: 46:d5:1e:8b:60:c6:b7:48:67:17:b9:0d:dc:a1:c3:21:a6:ee: b5:07:81:7e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yOhHhASTDkIMoCJbO0ItMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MDgyMDRkN2NmNWJjNGFhYjM4ZmZhMzlkYTNhNjgxZWQy MTdiZDQwHhcNMjYwMTAxMTgxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5N2RmNTNmODUyYjljOTg2MzhhNzFmNjk3NjUyYTEyMjU2ZDkzZDE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApfUtV0xdF4fxPGfdDUOQamCQOGqE VAYcpLkleyGeicI2p8fL97cLQpU5vxLw3irxDUKU6K1LN82Y8vC0b8iR2tDBNdkT UQ3EiCMjSYCDqbT8t06szOFFNUjzchB0uGiBSeHcYkAs85AUS6pNkpv33WHsHzqM p4JMmsFO4gTiSRqD0m5xwknWSRd+uWtDsf9vwX0Br3C9+G5HguH18nTDlnC5jQlB 2Z+7yzFx2vne6dMc9QEAD2lf5VniLQ9IUT+T7t08W24KI2V00+SAVJ6rZWBgV+Bk /q57A7Uf/ccl0etvRKtK1DGjcht/rx9wNAQgi3ienDs3DJNAkEXtiJg9bwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJffU/hSucmGOKcfaXZSoSJW2T0XMB8GA1UdIwQY MBaAFAkIIE189bxKqzj/o52jpoHtIXvUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1FnZ1RYejF2RXFyT1Atam5hT21nZTBoZTlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9kYjllNTgtZWU0Mi00YTEwLTgyMjIt ODgyM2YxMTFkZjA3LzEvbDk5VC1GSzV5WVk0cHg5cGRsS2hJbGJaUFJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9kYjllNTgtZWU0Mi00YTEwLTgyMjItODgyM2YxMTFkZjA3 LzEvQ1FnZ1RYejF2RXFyT1Atam5hT21nZTBoZTlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuURkMA0G CSqGSIb3DQEBCwUAA4IBAQB+yV0o0AhQsaXZoUzAuu+7VIAvc6JVjTp5vABIMx4W PEZ6F0nPkAZoXFjyOuy+KJw5nEqJeRM6KJLRweLacrBSs7amBeijW4lcysPYx5Br 4Sdv4d7JNM5bH9U5RQAEGiSTZBgZav6K2pQeeIixZOxJHnSzBiuGjQ84roiMEBoo 5dqHs6urYxs3lZ9BvMBZsEjM3YlybIJLYUnqARF78rYN/5P6v7hP6KaRJjcquCkm OJNGqO64h04SOzbHd0xAv5mKF8dHqam0vV6WMwwh/1GJRV3UyIR6eALfVs6CwaHQ Dif8OpX8KIGn8MFG1R6LYMa3SGcXuQ3cocMhpu61B4F+ -----END CERTIFICATE-----Generated at Mon Feb 9 21:25:26 2026 by rpki-client