This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/liurjQr2aFUZ4RN7sB5e2xaGm1M.roa File: liurjQr2aFUZ4RN7sB5e2xaGm1M.roa (raw, json) Hash identifier: YNt6MjSDV5Wvd3Oc5pFyN0vEC7cDDHJYrDTH0YBIpGY= Subject key identifier: 96:2B:AB:8D:0A:F6:68:55:19:E1:13:7B:B0:1E:5E:DB:16:86:9B:53 Certificate issuer: /CN=1ea0a9eb47d824b51f154442481a257168394551 Certificate serial: 019B77592E2D8D95D07ECF36F785195359D7 Authority key identifier: 1E:A0:A9:EB:47:D8:24:B5:1F:15:44:42:48:1A:25:71:68:39:45:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqCp60fYJLUfFURCSBolcWg5RVE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/liurjQr2aFUZ4RN7sB5e2xaGm1M.roa Signing time: Thu 01 Jan 2026 02:18:11 +0000 ROA not before: Thu 01 Jan 2026 02:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41044 IP address blocks: 194.24.228.0/23 maxlen: 23 194.24.228.0/24 maxlen: 24 194.24.229.0/24 maxlen: 24 217.113.204.0/24 maxlen: 24 217.113.205.0/24 maxlen: 24 217.113.206.0/24 maxlen: 24 217.113.207.0/24 maxlen: 24 2a11:fac0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/HqCp60fYJLUfFURCSBolcWg5RVE.crl rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/HqCp60fYJLUfFURCSBolcWg5RVE.mft rsync://rpki.ripe.net/repository/DEFAULT/HqCp60fYJLUfFURCSBolcWg5RVE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:2e:2d:8d:95:d0:7e:cf:36:f7:85:19:53:59:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ea0a9eb47d824b51f154442481a257168394551 Validity Not Before: Jan 1 02:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=962bab8d0af6685519e1137bb01e5edb16869b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:16:78:87:a7:49:c1:da:65:47:d7:3b:e3:be: 5b:02:73:4c:4e:f9:34:00:67:97:60:91:38:0f:da: d5:e1:d0:04:88:bb:65:59:26:1e:9f:a2:8d:4f:6f: 7e:15:4c:19:6a:d2:81:9f:c3:bd:b8:12:ed:5d:0c: a4:b7:a0:1a:f2:f9:3f:5c:6f:a7:4c:ec:ca:eb:79: 23:26:f3:4e:81:31:72:71:bd:2f:25:7d:23:c1:aa: 11:e5:ef:d5:47:4a:aa:3f:ad:72:53:c5:30:08:ea: 6c:dd:97:f3:ac:fd:f0:88:93:ce:6e:76:b2:4a:17: a0:47:0d:bc:8c:89:12:f0:fa:0f:46:f1:c9:c1:a4: 0d:09:78:49:1f:20:8b:02:74:87:5d:53:ad:9c:5c: dd:c0:e1:23:a4:8c:62:43:08:3d:49:36:72:9c:2d: 7b:73:33:53:f1:89:f1:51:85:64:6f:af:96:99:5b: c8:c8:8f:15:fa:82:e4:ad:d3:89:e5:bb:2e:82:82: 6c:34:ac:c0:b8:09:d1:27:f1:fd:81:ba:75:58:ea: f1:f4:51:9d:37:c1:c8:89:42:68:14:0c:40:cb:94: b1:51:49:31:28:b1:0c:00:02:6d:90:87:95:81:0e: 66:c2:41:23:f0:e3:64:18:16:c5:d4:20:99:0a:bd: ac:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:2B:AB:8D:0A:F6:68:55:19:E1:13:7B:B0:1E:5E:DB:16:86:9B:53 X509v3 Authority Key Identifier: keyid:1E:A0:A9:EB:47:D8:24:B5:1F:15:44:42:48:1A:25:71:68:39:45:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqCp60fYJLUfFURCSBolcWg5RVE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/liurjQr2aFUZ4RN7sB5e2xaGm1M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/HqCp60fYJLUfFURCSBolcWg5RVE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.24.228.0/23 217.113.204.0/22 IPv6: 2a11:fac0::/29 Signature Algorithm: sha256WithRSAEncryption 5a:98:46:98:a4:ec:68:60:c3:03:df:0e:24:d9:ca:82:92:35: 5e:34:bf:44:09:a6:cb:8d:62:e5:a5:ca:54:19:f4:fc:c9:f3: 29:ea:2b:a1:7f:db:9a:4e:8a:1c:01:1d:02:86:94:51:e8:dd: c2:5b:27:eb:7a:4f:76:e0:b6:d1:d8:60:cc:c8:8e:ae:14:44: 0d:2f:bc:6b:ba:7d:3a:c5:f4:23:17:fd:4c:95:03:a8:51:72: 22:54:da:97:16:21:e9:3f:4a:f0:95:ac:de:46:87:0c:e7:88: 58:49:df:e1:f8:fd:3c:f2:a0:44:4b:d3:d3:1d:c9:e2:06:21: 50:a5:60:db:a2:ba:a4:56:34:09:e7:bd:36:08:76:65:f2:80: e2:82:2f:20:62:07:3f:cd:14:76:81:b3:bf:fb:6a:81:c1:ce: f4:56:fe:5a:55:41:17:20:81:13:a5:0d:c3:ca:ae:62:c5:67: a5:82:9c:a1:89:4a:bc:1a:7b:17:2e:15:ff:dd:aa:65:fb:4f: 24:19:75:4b:11:3c:b2:bd:a6:8d:ed:ec:28:89:0d:21:e0:0d: dd:7f:4e:e0:8d:76:01:85:ec:a6:1a:f1:59:b9:80:2a:47:c7: f0:0b:a8:48:7a:af:e6:bb:b9:05:e0:ed:b4:36:f4:ac:d4:b3: 7a:08:0e:a0 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt3WS4tjZXQfs8294UZU1nXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYTBhOWViNDdkODI0YjUxZjE1NDQ0MjQ4MWEyNTcxNjgz OTQ1NTEwHhcNMjYwMTAxMDIxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjJiYWI4ZDBhZjY2ODU1MTllMTEzN2JiMDFlNWVkYjE2ODY5YjUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxZ4h6dJwdplR9c7475bAnNMTvk0 AGeXYJE4D9rV4dAEiLtlWSYen6KNT29+FUwZatKBn8O9uBLtXQykt6Aa8vk/XG+n TOzK63kjJvNOgTFycb0vJX0jwaoR5e/VR0qqP61yU8UwCOps3ZfzrP3wiJPObnay ShegRw28jIkS8PoPRvHJwaQNCXhJHyCLAnSHXVOtnFzdwOEjpIxiQwg9STZynC17 czNT8YnxUYVkb6+WmVvIyI8V+oLkrdOJ5bsugoJsNKzAuAnRJ/H9gbp1WOrx9FGd N8HIiUJoFAxAy5SxUUkxKLEMAAJtkIeVgQ5mwkEj8ONkGBbF1CCZCr2sbQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFJYrq40K9mhVGeETe7AeXtsWhptTMB8GA1UdIwQY MBaAFB6gqetH2CS1HxVEQkgaJXFoOUVRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHFDcDYwZllKTFVmRlVSQ1NCb2xjV2c1UlZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8zMDMzYzYtY2NlOC00NTBkLWEwYzkt ODQxOGE5NmY2Nzk1LzEvbGl1cmpRcjJhRlVaNFJON3NCNWUyeGFHbTFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi8zMDMzYzYtY2NlOC00NTBkLWEwYzktODQxOGE5NmY2Nzk1 LzEvSHFDcDYwZllKTFVmRlVSQ1NCb2xjV2c1UlZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQBwhjkAwQC 2XHMMA0EAgACMAcDBQMqEfrAMA0GCSqGSIb3DQEBCwUAA4IBAQBamEaYpOxoYMMD 3w4k2cqCkjVeNL9ECabLjWLlpcpUGfT8yfMp6iuhf9uaToocAR0ChpRR6N3CWyfr ek924LbR2GDMyI6uFEQNL7xrun06xfQjF/1MlQOoUXIiVNqXFiHpP0rwlazeRocM 54hYSd/h+P088qBES9PTHcniBiFQpWDborqkVjQJ5702CHZl8oDigi8gYgc/zRR2 gbO/+2qBwc70Vv5aVUEXIIETpQ3Dyq5ixWelgpyhiUq8GnsXLhX/3apl+08kGXVL ETyyvaaN7ewoiQ0h4A3df07gjXYBheymGvFZuYAqR8fwC6hIeq/mu7kF4O20NvSs 1LN6CA6g -----END CERTIFICATE-----Generated at Mon Feb 9 22:37:08 2026 by rpki-client