This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/rLOMqZT_GPb_kAqiy4Tac7XWQSY.roa File: rLOMqZT_GPb_kAqiy4Tac7XWQSY.roa (raw, json) Hash identifier: jjGCuniJtmOl9PVD/xJjf68/Ks+X5NplY+UAGpuUkqE= Subject key identifier: AC:B3:8C:A9:94:FF:18:F6:FF:90:0A:A2:CB:84:DA:73:B5:D6:41:26 Certificate issuer: /CN=58bb8ee3a747ed8b578657cdd4737586f5fdb931 Certificate serial: 019B7B35E61890D1768B9E75144F204CC58A Authority key identifier: 58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLuO46dH7YtXhlfN1HN1hvX9uTE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/rLOMqZT_GPb_kAqiy4Tac7XWQSY.roa Signing time: Thu 01 Jan 2026 20:18:08 +0000 ROA not before: Thu 01 Jan 2026 20:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8676 IP address blocks: 31.7.8.0/21 maxlen: 24 185.109.136.0/23 maxlen: 24 185.109.138.0/24 maxlen: 24 217.65.160.0/20 maxlen: 24 2001:1420::/30 maxlen: 48 2a03:9f00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/WLuO46dH7YtXhlfN1HN1hvX9uTE.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/WLuO46dH7YtXhlfN1HN1hvX9uTE.mft rsync://rpki.ripe.net/repository/DEFAULT/WLuO46dH7YtXhlfN1HN1hvX9uTE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:e6:18:90:d1:76:8b:9e:75:14:4f:20:4c:c5:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58bb8ee3a747ed8b578657cdd4737586f5fdb931 Validity Not Before: Jan 1 20:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=acb38ca994ff18f6ff900aa2cb84da73b5d64126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:90:f5:ab:9c:48:70:0a:22:b0:5b:89:61:4e: 5c:63:2d:8c:ac:38:aa:45:da:ee:ed:20:e4:1f:e5: 93:29:f9:da:bc:02:b4:57:e6:3a:3b:9e:4f:8b:3a: fe:5c:ce:87:4e:8e:1a:a9:d6:2c:ff:8f:06:9a:8e: b7:48:f2:86:5e:d4:05:3f:3f:fd:64:3f:14:3d:a2: 60:65:5a:ca:ba:97:b4:0a:45:a8:48:d9:f9:ed:0d: d9:00:7b:af:6c:95:cf:81:2c:22:6d:db:a3:b8:fd: ab:cf:c1:a1:e7:ee:16:b6:6c:fa:7f:5d:9e:6a:29: e0:dd:70:31:92:d3:97:b8:e2:a1:6d:70:5c:d8:e3: b9:2b:7a:22:43:33:c9:ac:02:85:42:85:1b:c0:1d: 1c:c4:fa:e3:96:be:23:73:4b:ae:0f:36:76:3e:4a: 12:4e:16:da:3c:3b:88:4d:33:20:17:9b:b0:94:93: 61:13:36:c7:cc:8f:16:b5:96:2c:5e:2e:52:88:d3: 46:12:b0:f7:31:ec:67:83:73:1a:8d:4b:9e:dd:07: 83:33:84:21:72:48:3c:0d:2a:ea:e5:79:8d:82:fc: db:45:78:b1:b6:e7:42:40:70:9b:cf:4c:56:86:c3: 8f:60:ad:65:d0:ff:16:14:96:3f:29:9d:a5:a9:3d: 7e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B3:8C:A9:94:FF:18:F6:FF:90:0A:A2:CB:84:DA:73:B5:D6:41:26 X509v3 Authority Key Identifier: keyid:58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLuO46dH7YtXhlfN1HN1hvX9uTE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/rLOMqZT_GPb_kAqiy4Tac7XWQSY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/WLuO46dH7YtXhlfN1HN1hvX9uTE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.7.8.0/21 185.109.136.0-185.109.138.255 217.65.160.0/20 IPv6: 2001:1420::/30 2a03:9f00::/32 Signature Algorithm: sha256WithRSAEncryption 01:62:f6:8a:0b:63:c7:2a:e7:57:d2:fc:73:21:dd:fd:21:b8: 78:f0:e9:09:88:82:88:fe:55:1d:c1:d6:c9:f2:31:26:a4:0b: d6:50:ed:e9:30:8c:ec:e6:6c:3b:95:d5:0b:f5:d9:7d:a1:e7: a0:25:a5:ce:cc:88:b3:20:3d:da:c7:8f:a1:d8:2e:cb:e8:15: e5:92:62:0f:2a:09:63:13:ba:36:b5:d0:b4:6d:cb:dd:8c:33: 2f:13:e6:fa:9e:66:c3:1a:f5:33:ae:bc:84:8a:d6:fc:f9:6c: 47:d4:c1:81:73:d9:70:51:48:82:9a:ef:3b:32:f8:39:69:08: 17:a4:2f:6a:06:fd:d5:72:95:1f:0c:19:0d:c2:df:4a:c3:aa: d5:d7:09:5c:d8:c0:5b:40:9e:34:07:49:b5:5d:12:25:ff:79: af:64:6a:ef:f9:5c:1f:ad:60:9f:c5:e5:35:e2:f8:57:fd:92: bc:aa:79:04:c1:b2:f7:df:b1:21:ad:8d:ab:d2:d4:5e:41:ca: 86:12:06:5c:90:dc:ed:2f:2b:78:5f:36:08:60:08:d8:ff:6d: 2a:e2:02:97:80:0f:85:1e:d4:cf:a9:01:cd:f1:c6:b8:93:45: 77:18:9b:27:94:9e:80:0b:ae:e4:dc:ca:80:63:05:2c:46:dd: ae:4e:77:b6 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt7NeYYkNF2i551FE8gTMWKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YmI4ZWUzYTc0N2VkOGI1Nzg2NTdjZGQ0NzM3NTg2ZjVm ZGI5MzEwHhcNMjYwMTAxMjAxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2IzOGNhOTk0ZmYxOGY2ZmY5MDBhYTJjYjg0ZGE3M2I1ZDY0MTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1pD1q5xIcAoisFuJYU5cYy2MrDiq Rdru7SDkH+WTKfnavAK0V+Y6O55Pizr+XM6HTo4aqdYs/48Gmo63SPKGXtQFPz/9 ZD8UPaJgZVrKupe0CkWoSNn57Q3ZAHuvbJXPgSwibdujuP2rz8Gh5+4Wtmz6f12e aing3XAxktOXuOKhbXBc2OO5K3oiQzPJrAKFQoUbwB0cxPrjlr4jc0uuDzZ2PkoS ThbaPDuITTMgF5uwlJNhEzbHzI8WtZYsXi5SiNNGErD3Mexng3MajUue3QeDM4Qh ckg8DSrq5XmNgvzbRXixtudCQHCbz0xWhsOPYK1l0P8WFJY/KZ2lqT1+AwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFKyzjKmU/xj2/5AKosuE2nO11kEmMB8GA1UdIwQY MBaAFFi7juOnR+2LV4ZXzdRzdYb1/bkxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0x1TzQ2ZEg3WXRYaGxmTjFITjFodlg5dVRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wM2E3MGItM2JjNi00MzM5LTllNDkt YTgzZjkxNDAzNWIzLzEvckxPTXFaVF9HUGJfa0FxaXk0VGFjN1hXUVNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8wM2E3MGItM2JjNi00MzM5LTllNDktYTgzZjkxNDAzNWIz LzEvV0x1TzQ2ZEg3WXRYaGxmTjFITjFodlg5dVRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODAgBAIAATAaAwQDHwcIMAwD BAO5bYgDBAC5bYoDBATZQaAwFAQCAAIwDgMFAiABFCADBQAqA58AMA0GCSqGSIb3 DQEBCwUAA4IBAQABYvaKC2PHKudX0vxzId39Ibh48OkJiIKI/lUdwdbJ8jEmpAvW UO3pMIzs5mw7ldUL9dl9oeegJaXOzIizID3ax4+h2C7L6BXlkmIPKgljE7o2tdC0 bcvdjDMvE+b6nmbDGvUzrryEitb8+WxH1MGBc9lwUUiCmu87Mvg5aQgXpC9qBv3V cpUfDBkNwt9Kw6rV1wlc2MBbQJ40B0m1XRIl/3mvZGrv+VwfrWCfxeU14vhX/ZK8 qnkEwbL337EhrY2r0tReQcqGEgZckNztLyt4XzYIYAjY/20q4gKXgA+FHtTPqQHN 8ca4k0V3GJsnlJ6AC67k3MqAYwUsRt2uTne2 -----END CERTIFICATE-----Generated at Mon Feb 2 14:22:48 2026 by rpki-client