This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/RNlrCb2bgZP1uE6OBL-JLmmPeiQ.roa File: RNlrCb2bgZP1uE6OBL-JLmmPeiQ.roa (raw, json) Hash identifier: NLeGU8A8Auep2RrS/Amrd7izsL0qgsRcosjWY8m5VQc= Subject key identifier: 44:D9:6B:09:BD:9B:81:93:F5:B8:4E:8E:04:BF:89:2E:69:8F:7A:24 Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c Certificate serial: 019B7F143771CCBB86D46E394EA19B14C660 Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/RNlrCb2bgZP1uE6OBL-JLmmPeiQ.roa Signing time: Fri 02 Jan 2026 14:19:49 +0000 ROA not before: Fri 02 Jan 2026 14:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209854 IP address blocks: 45.141.232.0/24 maxlen: 24 45.141.235.0/24 maxlen: 24 91.92.47.0/24 maxlen: 24 93.152.205.0/24 maxlen: 24 93.152.206.0/24 maxlen: 24 93.152.208.0/24 maxlen: 24 93.152.209.0/24 maxlen: 24 93.152.210.0/24 maxlen: 24 93.152.211.0/24 maxlen: 24 93.152.212.0/24 maxlen: 24 93.152.213.0/24 maxlen: 24 93.152.214.0/24 maxlen: 24 93.152.215.0/24 maxlen: 24 93.152.216.0/24 maxlen: 24 93.152.220.0/24 maxlen: 24 93.152.221.0/24 maxlen: 24 93.152.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.mft rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:37:71:cc:bb:86:d4:6e:39:4e:a1:9b:14:c6:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c Validity Not Before: Jan 2 14:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=44d96b09bd9b8193f5b84e8e04bf892e698f7a24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:32:a4:53:93:e4:3c:8d:8c:e5:2b:80:3e:5d: ea:ec:7a:30:9a:c0:87:01:ea:65:12:ab:09:46:a4: 63:08:14:66:90:92:c0:e7:c6:1b:63:37:8b:0c:6f: cd:52:34:6a:d6:e7:3e:b0:75:7f:a8:d5:b4:1a:b8: 45:25:79:a1:fb:4a:eb:c2:bb:9d:13:e2:c3:1e:a0: 72:fe:43:e0:dc:97:a3:81:1e:65:88:42:f9:25:af: 60:71:de:03:f0:54:d0:0c:74:a8:83:fa:9c:c5:e1: de:b1:03:5e:a5:eb:26:15:8b:d9:da:64:fa:b9:5d: 75:7f:54:3b:ec:5c:70:cf:3f:e5:36:64:52:7e:61: 26:3c:50:4d:fc:9e:9a:69:93:cc:9c:30:0a:98:ec: 21:b5:d8:67:95:20:05:86:01:dc:ee:87:26:b5:84: 17:c4:01:1a:c8:50:e7:9e:6f:a2:9f:38:e8:b4:d8: d4:48:00:2f:90:65:56:93:44:89:4e:e6:ea:53:04: 81:ba:b7:b4:8d:54:87:3e:95:37:34:ee:33:75:b5: ac:2a:7d:ab:dc:fd:54:d2:d6:01:11:10:dd:c8:a6: 1c:41:28:af:46:a5:d0:28:04:d7:58:70:79:31:01: 4d:6e:01:a6:4e:af:ef:f2:e6:f6:d4:77:4e:97:da: b2:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D9:6B:09:BD:9B:81:93:F5:B8:4E:8E:04:BF:89:2E:69:8F:7A:24 X509v3 Authority Key Identifier: keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/RNlrCb2bgZP1uE6OBL-JLmmPeiQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.141.232.0/24 45.141.235.0/24 91.92.47.0/24 93.152.205.0-93.152.206.255 93.152.208.0-93.152.216.255 93.152.220.0/23 93.152.223.0/24 Signature Algorithm: sha256WithRSAEncryption 29:2a:f0:f6:10:ab:0a:d9:e1:5c:a6:bb:80:d6:28:d0:f9:15: 4f:c3:b6:72:c9:6a:80:0c:5e:fc:35:8a:2f:24:0c:f2:51:68: 86:d6:ba:8f:18:23:56:f3:30:aa:9d:ea:0c:ee:63:0f:9c:35: 12:8d:79:e2:ae:41:99:1e:20:25:65:b1:6d:33:c2:ef:ae:b3: d0:9f:ae:0b:e6:1a:a3:28:6d:b9:2b:6b:b5:44:b6:67:b2:5c: cb:17:33:76:73:ca:3e:65:6a:99:49:29:d5:a4:1f:1c:ce:f9: f1:c2:66:2e:12:94:1a:5d:f1:10:9c:0d:20:d9:81:55:a7:6d: 1b:c0:6a:9b:e0:b7:e5:79:5c:21:f0:b1:5d:5d:c1:7a:35:4d: d0:25:f4:86:b1:4b:25:e3:40:b4:41:41:76:48:ee:d4:d2:23: 6c:44:4e:01:68:87:d1:e1:36:2a:3e:53:dd:6b:5a:73:0a:d3: 9a:98:97:fc:76:6c:0d:0a:6c:a6:57:24:2f:4d:16:08:8e:8d: f6:c1:f7:05:cb:c3:36:1a:1b:aa:c7:b9:ff:2c:d7:a8:13:d8: eb:89:34:5e:9d:73:7a:b9:40:6b:e4:a8:29:c3:09:e3:3b:f7: e2:21:d5:e6:1a:7e:ac:df:79:90:3e:47:a4:55:8d:b1:ad:ef: dc:56:da:55 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZt/FDdxzLuG1G45TqGbFMZgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk MDAxOGMwHhcNMjYwMTAyMTQxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NGQ5NmIwOWJkOWI4MTkzZjViODRlOGUwNGJmODkyZTY5OGY3YTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDKkU5PkPI2M5SuAPl3q7HowmsCH AeplEqsJRqRjCBRmkJLA58YbYzeLDG/NUjRq1uc+sHV/qNW0GrhFJXmh+0rrwrud E+LDHqBy/kPg3JejgR5liEL5Ja9gcd4D8FTQDHSog/qcxeHesQNepesmFYvZ2mT6 uV11f1Q77Fxwzz/lNmRSfmEmPFBN/J6aaZPMnDAKmOwhtdhnlSAFhgHc7ocmtYQX xAEayFDnnm+inzjotNjUSAAvkGVWk0SJTubqUwSBure0jVSHPpU3NO4zdbWsKn2r 3P1U0tYBERDdyKYcQSivRqXQKATXWHB5MQFNbgGmTq/v8ub21HdOl9qyiQIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFETZawm9m4GT9bhOjgS/iS5pj3okMB8GA1UdIwQY MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct MjliMDg1ZGQyM2FkLzEvUk5sckNiMmJnWlAxdUU2T0JMLUpMbW1QZWlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjBABAIAATA6AwQALY3oAwQA LY3rAwQAW1wvMAwDBABdmM0DBABdmM4wDAMEBF2Y0AMEAF2Y2AMEAV2Y3AMEAF2Y 3zANBgkqhkiG9w0BAQsFAAOCAQEAKSrw9hCrCtnhXKa7gNYo0PkVT8O2cslqgAxe /DWKLyQM8lFohta6jxgjVvMwqp3qDO5jD5w1Eo154q5BmR4gJWWxbTPC766z0J+u C+YaoyhtuStrtUS2Z7JcyxczdnPKPmVqmUkp1aQfHM758cJmLhKUGl3xEJwNINmB VadtG8Bqm+C35XlcIfCxXV3BejVN0CX0hrFLJeNAtEFBdkju1NIjbEROAWiH0eE2 Kj5T3WtacwrTmpiX/HZsDQpsplckL00WCI6N9sH3BcvDNhobqse5/yzXqBPY64k0 Xp1zerlAa+SoKcMJ4zv34iHV5hp+rN95kD5HpFWNsa3v3FbaVQ== -----END CERTIFICATE-----Generated at Mon Jan 19 17:32:53 2026 by rpki-client