This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/4b8f5a-24e0-4ede-a4ab-50c78916f8e3/1/lfLo0D5ENgt6llv50YfdmRFAQiw.roa File: lfLo0D5ENgt6llv50YfdmRFAQiw.roa (raw, json) Hash identifier: hkIz4lm2sH7tAlv2qyrzV3aAv7hwXQo0U1p5z28Zvks= Subject key identifier: 95:F2:E8:D0:3E:44:36:0B:7A:96:5B:F9:D1:87:DD:99:11:40:42:2C Certificate issuer: /CN=b83b5cdb65ecc5bd746d8b74982831a6d8dc1053 Certificate serial: 019B783546F69FC2E93AB7D070D122FBA5EF Authority key identifier: B8:3B:5C:DB:65:EC:C5:BD:74:6D:8B:74:98:28:31:A6:D8:DC:10:53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uDtc22Xsxb10bYt0mCgxptjcEFM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/4b8f5a-24e0-4ede-a4ab-50c78916f8e3/1/lfLo0D5ENgt6llv50YfdmRFAQiw.roa Signing time: Thu 01 Jan 2026 06:18:36 +0000 ROA not before: Thu 01 Jan 2026 06:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60111 IP address blocks: 185.193.236.0/22 maxlen: 22 2a0a:4140::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/4b8f5a-24e0-4ede-a4ab-50c78916f8e3/1/uDtc22Xsxb10bYt0mCgxptjcEFM.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/4b8f5a-24e0-4ede-a4ab-50c78916f8e3/1/uDtc22Xsxb10bYt0mCgxptjcEFM.mft rsync://rpki.ripe.net/repository/DEFAULT/uDtc22Xsxb10bYt0mCgxptjcEFM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:46:f6:9f:c2:e9:3a:b7:d0:70:d1:22:fb:a5:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b83b5cdb65ecc5bd746d8b74982831a6d8dc1053 Validity Not Before: Jan 1 06:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=95f2e8d03e44360b7a965bf9d187dd991140422c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d3:da:c6:f3:5e:b5:85:93:bc:cb:23:b5:6d: d8:a8:be:4d:ae:6b:c9:fc:fb:54:33:c4:b3:e2:3e: 95:ef:a6:09:25:20:36:d2:42:85:83:c3:60:8d:51: 3c:84:8d:c6:8c:69:36:0b:e5:1a:7e:cf:97:ed:97: 74:41:0f:bb:64:86:64:52:84:b5:f4:ff:96:05:16: 38:a6:11:a2:40:b4:d7:37:5e:1f:52:89:b9:06:b0: 42:b5:9e:47:46:67:5d:f3:46:aa:3b:32:fa:d0:23: 45:4c:91:61:a6:79:8e:f2:9d:a6:09:15:e8:fb:d5: a9:e4:35:65:16:94:b8:e0:83:f1:ca:04:4f:1e:59: 7c:6c:f5:dc:d3:04:7d:55:45:36:a4:03:84:cc:e3: 6e:4b:cf:b9:6d:a2:06:11:1e:45:d9:b8:e2:d7:a0: 1b:d1:8e:24:a8:e6:ba:91:af:ec:d9:f5:c7:0a:54: 0f:0f:df:cf:53:c4:6e:b4:d9:db:99:0f:ad:d5:d7: 21:a2:4a:2b:c7:38:07:ca:48:c5:00:69:6f:a8:99: 10:5a:59:da:e6:2c:18:5b:8e:9b:7e:f7:91:e7:1d: 4a:11:e6:3c:8d:68:5f:31:c2:59:dc:fe:c3:16:73: 28:b3:0a:c2:55:b7:4d:f8:66:e9:df:39:44:bb:49: cb:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F2:E8:D0:3E:44:36:0B:7A:96:5B:F9:D1:87:DD:99:11:40:42:2C X509v3 Authority Key Identifier: keyid:B8:3B:5C:DB:65:EC:C5:BD:74:6D:8B:74:98:28:31:A6:D8:DC:10:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uDtc22Xsxb10bYt0mCgxptjcEFM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/4b8f5a-24e0-4ede-a4ab-50c78916f8e3/1/lfLo0D5ENgt6llv50YfdmRFAQiw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/4b8f5a-24e0-4ede-a4ab-50c78916f8e3/1/uDtc22Xsxb10bYt0mCgxptjcEFM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.193.236.0/22 IPv6: 2a0a:4140::/29 Signature Algorithm: sha256WithRSAEncryption 7a:92:06:d3:7c:f0:86:6e:bc:b2:00:cb:b3:c4:44:91:ec:fe: fa:75:87:99:5e:b1:e6:8f:74:61:ab:72:a0:59:24:cf:a2:a4: 68:29:a2:2c:f2:2b:52:50:4c:bb:b6:2a:14:0a:46:96:9c:ea: 1c:a3:c8:df:db:bb:c3:0d:ec:4e:d9:4f:ab:c1:63:9d:b6:0f: c4:dd:83:87:ae:cd:24:90:0d:ae:17:df:8c:2e:7d:eb:8a:b6: e5:0d:e9:bf:12:ff:bd:da:7b:70:31:be:fc:b9:f8:2c:88:6c: db:f9:8a:ba:23:7e:ec:ad:5d:b0:81:9b:47:58:f6:bd:87:c2: 9f:e8:2c:17:3e:44:38:6b:7d:c5:3f:54:26:c8:9e:28:fa:62: 8a:ed:01:85:19:b2:df:cf:b5:73:66:cf:d4:69:26:e7:33:66: 63:fb:52:df:8c:99:1e:f9:a7:98:21:f8:54:ee:fe:fb:5b:d8: 18:23:35:75:f8:59:92:84:62:31:1f:f9:58:7b:ca:a2:81:22: 85:7c:d6:53:0c:7e:30:17:13:aa:e3:b8:f6:62:74:20:ba:2a: c9:19:21:4c:37:ae:4b:96:05:6b:5a:75:0a:73:bd:3c:cb:37: 08:17:f7:87:a8:0d:70:05:dc:e4:fc:2d:6d:57:c8:b5:05:f2: 06:67:28:e9 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NUb2n8LpOrfQcNEi+6XvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4M2I1Y2RiNjVlY2M1YmQ3NDZkOGI3NDk4MjgzMWE2ZDhk YzEwNTMwHhcNMjYwMTAxMDYxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NWYyZThkMDNlNDQzNjBiN2E5NjViZjlkMTg3ZGQ5OTExNDA0MjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNPaxvNetYWTvMsjtW3YqL5NrmvJ /PtUM8Sz4j6V76YJJSA20kKFg8NgjVE8hI3GjGk2C+Uafs+X7Zd0QQ+7ZIZkUoS1 9P+WBRY4phGiQLTXN14fUom5BrBCtZ5HRmdd80aqOzL60CNFTJFhpnmO8p2mCRXo +9Wp5DVlFpS44IPxygRPHll8bPXc0wR9VUU2pAOEzONuS8+5baIGER5F2bji16Ab 0Y4kqOa6ka/s2fXHClQPD9/PU8RutNnbmQ+t1dchokorxzgHykjFAGlvqJkQWlna 5iwYW46bfveR5x1KEeY8jWhfMcJZ3P7DFnMoswrCVbdN+Gbp3zlEu0nLRwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJXy6NA+RDYLepZb+dGH3ZkRQEIsMB8GA1UdIwQY MBaAFLg7XNtl7MW9dG2LdJgoMabY3BBTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUR0YzIyWHN4YjEwYll0MG1DZ3hwdGpjRUZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS80YjhmNWEtMjRlMC00ZWRlLWE0YWIt NTBjNzg5MTZmOGUzLzEvbGZMbzBENUVOZ3Q2bGx2NTBZZmRtUkZBUWl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS80YjhmNWEtMjRlMC00ZWRlLWE0YWItNTBjNzg5MTZmOGUz LzEvdUR0YzIyWHN4YjEwYll0MG1DZ3hwdGpjRUZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCucHsMA0E AgACMAcDBQMqCkFAMA0GCSqGSIb3DQEBCwUAA4IBAQB6kgbTfPCGbryyAMuzxESR 7P76dYeZXrHmj3Rhq3KgWSTPoqRoKaIs8itSUEy7tioUCkaWnOoco8jf27vDDexO 2U+rwWOdtg/E3YOHrs0kkA2uF9+MLn3rirblDem/Ev+92ntwMb78ufgsiGzb+Yq6 I37srV2wgZtHWPa9h8Kf6CwXPkQ4a33FP1QmyJ4o+mKK7QGFGbLfz7VzZs/UaSbn M2Zj+1LfjJke+aeYIfhU7v77W9gYIzV1+FmShGIxH/lYe8qigSKFfNZTDH4wFxOq 47j2YnQguirJGSFMN65LlgVrWnUKc708yzcIF/eHqA1wBdzk/C1tV8i1BfIGZyjp -----END CERTIFICATE-----Generated at Mon Feb 9 20:09:08 2026 by rpki-client