This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/Lfs6BstrmZxglB6NzeIcAn5Ecgg.roa File: Lfs6BstrmZxglB6NzeIcAn5Ecgg.roa (raw, json) Hash identifier: GCu25rg6JmUHgPzrD5apuulfXOFbXsjPKJgQYmFXjNA= Subject key identifier: 2D:FB:3A:06:CB:6B:99:9C:60:94:1E:8D:CD:E2:1C:02:7E:44:72:08 Certificate issuer: /CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Certificate serial: 019B78A31F164E7EC0BF367A1724AEF726F4 Authority key identifier: F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/Lfs6BstrmZxglB6NzeIcAn5Ecgg.roa Signing time: Thu 01 Jan 2026 08:18:34 +0000 ROA not before: Thu 01 Jan 2026 08:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43641 IP address blocks: 109.205.193.0/24 maxlen: 24 2a01:fb01::/32 maxlen: 32 2a01:fb02::/34 maxlen: 34 2a01:fb05:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.mft rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:1f:16:4e:7e:c0:bf:36:7a:17:24:ae:f7:26:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Validity Not Before: Jan 1 08:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2dfb3a06cb6b999c60941e8dcde21c027e447208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9f:1a:ae:2a:39:98:c5:25:95:66:fe:9f:b2: a1:40:11:98:83:61:a5:07:44:ce:a2:c5:60:bb:e8: 5c:a2:9c:dd:f2:a8:f2:50:36:36:80:d6:70:7f:bb: 8d:fe:14:e8:6e:f4:4e:33:70:05:c7:76:1d:e3:bb: 23:64:06:43:51:8d:b4:90:00:0e:26:23:b3:f7:84: 6c:50:22:d0:38:e6:33:32:c9:7d:35:32:f2:ef:eb: bf:02:1c:1f:85:18:99:f0:55:95:46:01:b6:be:b3: be:70:07:11:9d:0c:70:4d:55:78:c2:7a:bc:30:75: 2f:cb:ac:84:5c:a4:64:16:c0:f9:06:8b:e4:b3:18: 7a:d8:26:27:e0:cf:a8:72:1d:3b:83:6b:2e:3b:b1: 2b:7c:ff:7e:af:3b:bc:e3:93:a2:62:c8:1e:cf:1d: 34:cd:ea:c8:b4:b2:2c:ad:d9:f0:53:7d:af:cc:7f: 17:cb:6a:21:39:b2:c9:ff:a1:a3:66:c0:f7:53:45: c0:44:31:80:b8:c7:e3:9d:61:51:e5:70:bf:9d:ba: 02:ca:d4:d3:c5:2f:44:bc:ed:a3:e6:76:20:84:e4: be:09:45:68:6c:0c:ea:92:e6:f7:f4:5b:8b:e6:6b: 92:ad:80:3e:10:cf:e9:b6:f7:50:57:4d:2e:f0:d4: 3e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:FB:3A:06:CB:6B:99:9C:60:94:1E:8D:CD:E2:1C:02:7E:44:72:08 X509v3 Authority Key Identifier: keyid:F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/Lfs6BstrmZxglB6NzeIcAn5Ecgg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.193.0/24 IPv6: 2a01:fb01::-2a01:fb02:3fff:ffff:ffff:ffff:ffff:ffff 2a01:fb05:1000::/36 Signature Algorithm: sha256WithRSAEncryption 68:77:17:ec:89:a7:2b:82:82:55:76:3a:94:64:f3:b1:45:ba: 95:c8:6c:5a:25:ec:fe:42:ef:df:33:73:06:72:71:07:02:a0: 2b:f3:99:5a:bb:8c:06:c0:23:13:17:50:31:ae:30:03:84:0b: ff:e8:0d:cf:6f:7a:af:b6:4a:8c:1d:6e:b4:03:b7:e6:bf:cd: cf:ca:53:65:4a:40:dc:d8:4c:4d:d9:8f:61:15:c6:3b:1d:89: bc:29:08:59:62:3f:39:cb:aa:f8:39:36:57:dc:b6:05:8d:d8: 51:7d:6e:89:10:b0:bc:ca:3b:27:f5:39:63:0a:b2:7c:ba:97: 66:ac:dc:fa:76:76:60:1c:01:48:34:00:d3:c8:b6:fc:60:db: 04:37:f0:e9:25:aa:f6:41:b0:ee:ad:bb:18:ed:a7:3e:d0:23: 01:b6:a5:70:60:03:ec:a5:52:fc:a2:3d:17:d0:cd:e9:f7:33: 49:3c:c7:ce:ec:bc:ea:01:7d:fa:bc:b6:ea:99:8a:1c:72:8d: 8b:c7:4c:c4:0f:b0:d4:7e:d4:b8:17:42:21:bc:e2:73:ec:ce: bf:62:ac:78:9f:9a:8f:1d:0a:e6:6b:61:b4:42:75:0d:18:d8: 01:c9:57:e0:f8:fe:60:50:e0:40:cf:f9:5f:ae:35:2b:87:b3: ed:71:a2:b6 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt4ox8WTn7AvzZ6FySu9yb0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMjQ1ODFlNDM2ODgyNWQ1ZTEzZjRmMmEwZDZmZjhlNDg0 Yzk1ZTYwHhcNMjYwMTAxMDgxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZGZiM2EwNmNiNmI5OTljNjA5NDFlOGRjZGUyMWMwMjdlNDQ3MjA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZ8ario5mMUllWb+n7KhQBGYg2Gl B0TOosVgu+hcopzd8qjyUDY2gNZwf7uN/hTobvROM3AFx3Yd47sjZAZDUY20kAAO JiOz94RsUCLQOOYzMsl9NTLy7+u/AhwfhRiZ8FWVRgG2vrO+cAcRnQxwTVV4wnq8 MHUvy6yEXKRkFsD5Bovksxh62CYn4M+och07g2suO7ErfP9+rzu845OiYsgezx00 zerItLIsrdnwU32vzH8Xy2ohObLJ/6GjZsD3U0XARDGAuMfjnWFR5XC/nboCytTT xS9EvO2j5nYghOS+CUVobAzqkub39FuL5muSrYA+EM/ptvdQV00u8NQ+AwIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFC37OgbLa5mcYJQejc3iHAJ+RHIIMB8GA1UdIwQY MBaAFPMkWB5DaIJdXhP08qDW/45ITJXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMt NmUyZDk3Y2ExNWZmLzEvTGZzNkJzdHJtWnhnbEI2TnplSWNBbjVFY2dnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMtNmUyZDk3Y2ExNWZm LzEvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAMBAIAATAGAwQAbc3BMB8E AgACMBkwDwMFACoB+wEDBgYqAfsCAAMGBCoB+wUQMA0GCSqGSIb3DQEBCwUAA4IB AQBodxfsiacrgoJVdjqUZPOxRbqVyGxaJez+Qu/fM3MGcnEHAqAr85lau4wGwCMT F1AxrjADhAv/6A3Pb3qvtkqMHW60A7fmv83PylNlSkDc2ExN2Y9hFcY7HYm8KQhZ Yj85y6r4OTZX3LYFjdhRfW6JELC8yjsn9TljCrJ8updmrNz6dnZgHAFINADTyLb8 YNsEN/DpJar2QbDurbsY7ac+0CMBtqVwYAPspVL8oj0X0M3p9zNJPMfO7LzqAX36 vLbqmYocco2Lx0zED7DUftS4F0IhvOJz7M6/Yqx4n5qPHQrma2G0QnUNGNgByVfg +P5gUOBAz/lfrjUrh7PtcaK2 -----END CERTIFICATE-----Generated at Mon Jan 19 11:23:48 2026 by rpki-client