This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/4c3e19-a489-4e3a-a3a2-7e52e749c3ad/1/LSmA9aVfYN8vZx-gz7lEvcEIFtY.roa File: LSmA9aVfYN8vZx-gz7lEvcEIFtY.roa (raw, json) Hash identifier: NeSU5/g2soRo6L8ictxWw8A5QCSPK8gFyqkHuAKeHv8= Subject key identifier: 2D:29:80:F5:A5:5F:60:DF:2F:67:1F:A0:CF:B9:44:BD:C1:08:16:D6 Certificate issuer: /CN=b587bc12eb2de29a1026b8f56be8d469f2f58cf3 Certificate serial: 019B7F81F33A4722E6C6E7E66DA37AD45734 Authority key identifier: B5:87:BC:12:EB:2D:E2:9A:10:26:B8:F5:6B:E8:D4:69:F2:F5:8C:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYe8Eust4poQJrj1a-jUafL1jPM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/4c3e19-a489-4e3a-a3a2-7e52e749c3ad/1/LSmA9aVfYN8vZx-gz7lEvcEIFtY.roa Signing time: Fri 02 Jan 2026 16:19:41 +0000 ROA not before: Fri 02 Jan 2026 16:19:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31481 IP address blocks: 195.225.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/4c3e19-a489-4e3a-a3a2-7e52e749c3ad/1/tYe8Eust4poQJrj1a-jUafL1jPM.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/4c3e19-a489-4e3a-a3a2-7e52e749c3ad/1/tYe8Eust4poQJrj1a-jUafL1jPM.mft rsync://rpki.ripe.net/repository/DEFAULT/tYe8Eust4poQJrj1a-jUafL1jPM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:f3:3a:47:22:e6:c6:e7:e6:6d:a3:7a:d4:57:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b587bc12eb2de29a1026b8f56be8d469f2f58cf3 Validity Not Before: Jan 2 16:19:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2d2980f5a55f60df2f671fa0cfb944bdc10816d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0e:75:1d:64:d5:6f:77:04:e3:db:5e:73:1d: d2:8d:11:98:ab:44:8f:a5:0f:27:f7:f3:d4:d0:79: c5:4b:05:8f:77:07:39:d4:be:1a:c3:e5:01:fa:13: 6e:3f:ff:08:cb:28:97:c2:ee:d2:42:43:f1:72:ba: 77:e1:6b:b2:79:b0:34:e9:cf:bf:ed:55:74:67:bc: 53:be:9e:e7:9e:62:cc:86:e1:92:98:67:37:2e:11: 32:ff:a8:da:c4:8c:20:b7:bb:26:af:54:f3:3e:af: ff:e7:c3:2b:e5:91:e0:e7:79:e9:d3:8d:59:2f:05: c5:ad:0d:6d:bc:f0:9c:5c:10:0d:d4:ec:3a:08:89: a0:37:b9:b4:f8:a5:ff:43:b8:4c:2b:e9:39:30:83: 20:60:e3:be:d9:19:f9:88:99:3e:72:a0:f1:2e:78: be:19:1b:8f:a1:92:af:49:8f:9c:42:35:b2:f4:02: 83:a2:fb:84:87:1d:b1:b8:c8:b3:ee:70:c3:9f:9d: 1a:6b:8d:90:f9:86:90:65:9c:06:72:50:50:86:df: 01:1b:e7:d8:fa:52:80:06:67:68:44:93:9a:39:74: bb:9f:73:8e:ac:37:13:65:bb:e2:7b:3b:4d:7b:52: 44:ee:df:3b:20:0d:0b:4f:51:2d:16:97:cb:66:5d: 91:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:29:80:F5:A5:5F:60:DF:2F:67:1F:A0:CF:B9:44:BD:C1:08:16:D6 X509v3 Authority Key Identifier: keyid:B5:87:BC:12:EB:2D:E2:9A:10:26:B8:F5:6B:E8:D4:69:F2:F5:8C:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYe8Eust4poQJrj1a-jUafL1jPM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/4c3e19-a489-4e3a-a3a2-7e52e749c3ad/1/LSmA9aVfYN8vZx-gz7lEvcEIFtY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/4c3e19-a489-4e3a-a3a2-7e52e749c3ad/1/tYe8Eust4poQJrj1a-jUafL1jPM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.225.152.0/22 Signature Algorithm: sha256WithRSAEncryption 89:16:c2:67:f9:ff:9e:af:76:79:4b:b4:82:78:3d:ec:9a:79: 9b:b1:2a:f6:d8:a4:c8:2f:ad:dc:2e:64:92:4d:d5:1f:00:23: 7c:67:d6:41:c5:00:cf:8e:e9:12:38:78:ee:54:66:30:e4:09: 34:87:4d:d7:59:75:7d:92:99:7e:72:52:11:19:1a:45:1b:4b: 02:d7:0e:92:6f:92:b7:df:34:cb:26:93:d1:d3:cf:20:d1:87: d9:94:15:2e:4a:fd:bd:bb:cb:f5:38:09:55:26:e5:50:4a:9b: 91:e4:94:86:79:30:4b:46:68:bb:a7:9f:08:8b:e7:06:c7:9b: b4:6f:c0:c7:e3:09:52:bd:10:29:2d:57:2a:00:83:5c:32:65: 4f:4c:ec:48:f8:10:74:c8:3d:7c:82:bf:9d:68:57:ae:08:fd: 26:ca:d7:34:c0:3d:6d:f9:7e:4b:38:eb:60:34:c3:9a:32:47: 81:24:f6:56:87:3f:df:70:18:b0:60:eb:3b:d3:25:f0:1b:9a: 7a:a6:61:51:4f:45:cc:fc:be:66:fe:8c:13:35:ad:5d:63:5d: 89:0f:ff:2b:16:a1:5b:a6:03:84:94:82:87:cf:0f:48:39:e8: cc:37:82:e1:d0:eb:e1:a4:6d:c5:79:51:e4:f5:a5:65:0e:24: 15:e7:cd:dc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gfM6RyLmxufmbaN61Fc0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ODdiYzEyZWIyZGUyOWExMDI2YjhmNTZiZThkNDY5ZjJm NThjZjMwHhcNMjYwMTAyMTYxOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDI5ODBmNWE1NWY2MGRmMmY2NzFmYTBjZmI5NDRiZGMxMDgxNmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvA51HWTVb3cE49tecx3SjRGYq0SP pQ8n9/PU0HnFSwWPdwc51L4aw+UB+hNuP/8IyyiXwu7SQkPxcrp34WuyebA06c+/ 7VV0Z7xTvp7nnmLMhuGSmGc3LhEy/6jaxIwgt7smr1TzPq//58Mr5ZHg53np041Z LwXFrQ1tvPCcXBAN1Ow6CImgN7m0+KX/Q7hMK+k5MIMgYOO+2Rn5iJk+cqDxLni+ GRuPoZKvSY+cQjWy9AKDovuEhx2xuMiz7nDDn50aa42Q+YaQZZwGclBQht8BG+fY +lKABmdoRJOaOXS7n3OOrDcTZbvieztNe1JE7t87IA0LT1EtFpfLZl2RHwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC0pgPWlX2DfL2cfoM+5RL3BCBbWMB8GA1UdIwQY MBaAFLWHvBLrLeKaECa49Wvo1Gny9YzzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFllOEV1c3Q0cG9RSnJqMWEtalVhZkwxalBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi80YzNlMTktYTQ4OS00ZTNhLWEzYTIt N2U1MmU3NDljM2FkLzEvTFNtQTlhVmZZTjh2WngtZ3o3bEV2Y0VJRnRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi80YzNlMTktYTQ4OS00ZTNhLWEzYTItN2U1MmU3NDljM2Fk LzEvdFllOEV1c3Q0cG9RSnJqMWEtalVhZkwxalBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw+GYMA0G CSqGSIb3DQEBCwUAA4IBAQCJFsJn+f+er3Z5S7SCeD3smnmbsSr22KTIL63cLmSS TdUfACN8Z9ZBxQDPjukSOHjuVGYw5Ak0h03XWXV9kpl+clIRGRpFG0sC1w6Sb5K3 3zTLJpPR088g0YfZlBUuSv29u8v1OAlVJuVQSpuR5JSGeTBLRmi7p58Ii+cGx5u0 b8DH4wlSvRApLVcqAINcMmVPTOxI+BB0yD18gr+daFeuCP0mytc0wD1t+X5LOOtg NMOaMkeBJPZWhz/fcBiwYOs70yXwG5p6pmFRT0XM/L5m/owTNa1dY12JD/8rFqFb pgOElIKHzw9IOejMN4Lh0OvhpG3FeVHk9aVlDiQV583c -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:29 2026 by rpki-client