This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Lc1jl7QVxqLwMWxBrIVxsneb__U.roa File: Lc1jl7QVxqLwMWxBrIVxsneb__U.roa (raw, json) Hash identifier: E1vTmbk4SrydL0KXJtJee0AsNy8nI/ShD3+SVqKy/u4= Subject key identifier: 2D:CD:63:97:B4:15:C6:A2:F0:31:6C:41:AC:85:71:B2:77:9B:FF:F5 Certificate issuer: /CN=43af2e987d2b63addaa5adc178f31e90d876aaa7 Certificate serial: 019B7AC89660E742015C75F80080713650A9 Authority key identifier: 43:AF:2E:98:7D:2B:63:AD:DA:A5:AD:C1:78:F3:1E:90:D8:76:AA:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q68umH0rY63apa3BePMekNh2qqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Lc1jl7QVxqLwMWxBrIVxsneb__U.roa Signing time: Thu 01 Jan 2026 18:18:44 +0000 ROA not before: Thu 01 Jan 2026 18:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60185 IP address blocks: 185.2.244.0/22 maxlen: 22 185.2.244.0/23 maxlen: 23 185.2.244.0/24 maxlen: 24 185.2.245.0/24 maxlen: 24 185.2.246.0/23 maxlen: 23 185.2.246.0/24 maxlen: 24 185.2.247.0/24 maxlen: 24 2a02:4440::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Q68umH0rY63apa3BePMekNh2qqc.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Q68umH0rY63apa3BePMekNh2qqc.mft rsync://rpki.ripe.net/repository/DEFAULT/Q68umH0rY63apa3BePMekNh2qqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 06:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:96:60:e7:42:01:5c:75:f8:00:80:71:36:50:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43af2e987d2b63addaa5adc178f31e90d876aaa7 Validity Not Before: Jan 1 18:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2dcd6397b415c6a2f0316c41ac8571b2779bfff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9b:77:7f:38:52:21:29:0a:03:40:08:a8:1e: 0e:45:ef:e4:ec:7d:ca:76:b0:bc:e9:56:00:1e:68: 79:7a:cb:d2:97:bc:8c:47:1d:67:c3:f2:39:63:58: 45:5d:56:62:64:6b:55:9b:ed:b3:94:79:a1:da:01: 88:7c:c4:77:d0:cc:4e:c3:01:95:db:65:8f:00:c2: da:3d:50:64:98:a6:1a:7c:ac:38:c1:04:37:31:86: 1c:ea:52:b8:37:0d:84:c9:10:57:43:5f:14:4a:c7: 77:53:e7:dc:26:90:fc:44:a8:a9:f9:3f:51:76:83: 23:cd:9e:ab:bc:d8:a2:da:2b:7d:10:24:cc:2e:9f: 94:7c:82:6c:92:a8:49:c1:c1:43:01:e8:0e:4d:38: 2a:8c:3e:54:e8:96:80:df:b5:87:30:24:5c:cf:b5: f2:46:53:39:9b:69:89:1f:2c:68:51:ec:c8:af:5e: 6d:d2:c5:32:37:c4:a6:11:d2:1b:72:fd:c5:02:dd: b1:44:87:79:56:25:23:36:df:a1:c8:c6:37:87:c3: c4:c2:36:f0:80:4d:f9:20:ca:4b:2f:c1:59:14:f8: af:c3:6c:89:87:b5:7b:8d:37:dc:66:73:b3:e0:6d: 47:5a:a8:0a:10:06:12:f5:01:fc:84:96:c7:8f:d8: 6d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:CD:63:97:B4:15:C6:A2:F0:31:6C:41:AC:85:71:B2:77:9B:FF:F5 X509v3 Authority Key Identifier: keyid:43:AF:2E:98:7D:2B:63:AD:DA:A5:AD:C1:78:F3:1E:90:D8:76:AA:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q68umH0rY63apa3BePMekNh2qqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Lc1jl7QVxqLwMWxBrIVxsneb__U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Q68umH0rY63apa3BePMekNh2qqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.2.244.0/22 IPv6: 2a02:4440::/32 Signature Algorithm: sha256WithRSAEncryption 0f:cd:8d:b1:66:50:fe:a9:89:9d:f1:39:00:7b:e6:0d:f4:fe: 33:93:69:d0:52:47:7c:e6:83:f5:f4:a1:68:01:fa:a8:43:55: db:42:2d:b8:ef:09:bc:ca:b5:dd:8e:20:91:f3:e9:95:c2:95: af:5a:7f:24:e7:4c:c7:22:3d:99:2c:e4:50:73:c3:90:4c:a1: c4:c2:22:51:c8:09:11:15:cc:d7:b4:42:86:ac:7a:41:9e:8e: 4a:cb:4c:7e:8f:96:e6:20:51:8a:64:6d:41:6e:d7:17:68:ec: 12:0e:e0:8f:08:8c:df:38:8e:d1:b5:6e:70:4f:d1:34:59:ab: 5d:2e:be:ec:b3:e0:40:4d:5d:17:9e:e0:90:e7:01:9a:83:38: 44:fe:55:05:b0:11:ee:de:34:6c:7c:8e:72:08:5e:9d:77:a8: e1:65:ff:2f:ef:0e:49:34:fc:5d:df:56:d4:bf:34:c4:8c:99: 47:16:02:a2:59:75:d7:cb:7b:9a:1b:f4:bc:e6:1a:02:84:9c: 7b:3e:2a:51:a1:62:7b:ed:b2:44:65:89:b0:c8:4f:d0:36:3f: 8b:01:0c:23:02:c1:31:ad:77:c0:f6:69:ac:88:fb:65:e3:ed: 97:bc:90:3f:97:5d:04:67:d0:26:c9:de:66:c5:fd:6d:50:e0: d9:9b:82:65 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6yJZg50IBXHX4AIBxNlCpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzYWYyZTk4N2QyYjYzYWRkYWE1YWRjMTc4ZjMxZTkwZDg3 NmFhYTcwHhcNMjYwMTAxMTgxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZGNkNjM5N2I0MTVjNmEyZjAzMTZjNDFhYzg1NzFiMjc3OWJmZmY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZt3fzhSISkKA0AIqB4ORe/k7H3K drC86VYAHmh5esvSl7yMRx1nw/I5Y1hFXVZiZGtVm+2zlHmh2gGIfMR30MxOwwGV 22WPAMLaPVBkmKYafKw4wQQ3MYYc6lK4Nw2EyRBXQ18USsd3U+fcJpD8RKip+T9R doMjzZ6rvNii2it9ECTMLp+UfIJskqhJwcFDAegOTTgqjD5U6JaA37WHMCRcz7Xy RlM5m2mJHyxoUezIr15t0sUyN8SmEdIbcv3FAt2xRId5ViUjNt+hyMY3h8PEwjbw gE35IMpLL8FZFPivw2yJh7V7jTfcZnOz4G1HWqgKEAYS9QH8hJbHj9httwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFC3NY5e0Fcai8DFsQayFcbJ3m//1MB8GA1UdIwQY MBaAFEOvLph9K2Ot2qWtwXjzHpDYdqqnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTY4dW1IMHJZNjNhcGEzQmVQTWVrTmgycXFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi82Njg0MzctOTdjMi00OGMyLWI3Yzgt Y2M3NzQ2NzE5NDA2LzEvTGMxamw3UVZ4cUx3TVd4QnJJVnhzbmViX19VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi82Njg0MzctOTdjMi00OGMyLWI3YzgtY2M3NzQ2NzE5NDA2 LzEvUTY4dW1IMHJZNjNhcGEzQmVQTWVrTmgycXFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuQL0MA0E AgACMAcDBQAqAkRAMA0GCSqGSIb3DQEBCwUAA4IBAQAPzY2xZlD+qYmd8TkAe+YN 9P4zk2nQUkd85oP19KFoAfqoQ1XbQi247wm8yrXdjiCR8+mVwpWvWn8k50zHIj2Z LORQc8OQTKHEwiJRyAkRFczXtEKGrHpBno5Ky0x+j5bmIFGKZG1BbtcXaOwSDuCP CIzfOI7RtW5wT9E0WatdLr7ss+BATV0XnuCQ5wGagzhE/lUFsBHu3jRsfI5yCF6d d6jhZf8v7w5JNPxd31bUvzTEjJlHFgKiWXXXy3uaG/S85hoChJx7PipRoWJ77bJE ZYmwyE/QNj+LAQwjAsExrXfA9mmsiPtl4+2XvJA/l10EZ9Amyd5mxf1tUODZm4Jl -----END CERTIFICATE-----Generated at Tue Jan 27 14:25:16 2026 by rpki-client