This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/lSU5-TVpHhT9tGKtGsAojuxW5K0.roa File: lSU5-TVpHhT9tGKtGsAojuxW5K0.roa (raw, json) Hash identifier: +uzTmcuM9GIefKeGbalnx2cUfB+YMnjPBiLHcbUUgFw= Subject key identifier: 95:25:39:F9:35:69:1E:14:FD:B4:62:AD:1A:C0:28:8E:EC:56:E4:AD Certificate issuer: /CN=90620638ca1d835650e08ddcf363f10789b53057 Certificate serial: 019B7A5B93EB7B06CAC1F7F58BD6C0989B7D Authority key identifier: 90:62:06:38:CA:1D:83:56:50:E0:8D:DC:F3:63:F1:07:89:B5:30:57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGIGOModg1ZQ4I3c82PxB4m1MFc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/lSU5-TVpHhT9tGKtGsAojuxW5K0.roa Signing time: Thu 01 Jan 2026 16:19:40 +0000 ROA not before: Thu 01 Jan 2026 16:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 397918 IP address blocks: 206.195.48.0/24 maxlen: 24 2a04:5781:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/kGIGOModg1ZQ4I3c82PxB4m1MFc.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/kGIGOModg1ZQ4I3c82PxB4m1MFc.mft rsync://rpki.ripe.net/repository/DEFAULT/kGIGOModg1ZQ4I3c82PxB4m1MFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 21:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:93:eb:7b:06:ca:c1:f7:f5:8b:d6:c0:98:9b:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90620638ca1d835650e08ddcf363f10789b53057 Validity Not Before: Jan 1 16:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=952539f935691e14fdb462ad1ac0288eec56e4ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f0:65:dc:d3:0e:a1:04:d9:aa:1a:1b:e3:62: 5e:62:52:3c:18:81:2c:e6:fe:e5:eb:15:4d:83:a5: 3b:45:a1:1b:fb:1b:ce:d8:22:60:c2:d9:e1:3a:19: 58:f6:6c:a0:f4:68:87:b6:28:4d:2f:d8:d5:05:b8: fa:10:1b:c1:7f:f3:de:36:5c:57:92:6a:78:49:ea: 19:ab:9b:b0:17:7e:75:1d:9d:62:e8:5c:70:b3:8e: b3:61:a5:5b:4f:8f:6c:69:e6:76:06:34:80:f3:63: c6:88:ce:fd:4d:b4:35:ca:64:79:df:66:44:d4:00: 9e:22:1f:63:b8:04:14:30:64:2c:db:16:d8:e4:34: f4:f2:b1:fc:73:f2:78:cf:0b:1f:41:9c:cd:0f:32: c6:b2:38:14:e1:33:65:a8:35:b1:fc:44:10:e7:5e: 86:ec:7b:2b:a2:76:5c:dd:9b:b5:81:7c:66:3b:47: a6:68:72:3b:36:67:30:ab:33:c8:8c:0b:ab:be:57: 72:05:cb:78:bd:5d:5c:ab:39:fd:2e:39:c0:1b:f5: a9:cf:53:13:a7:c6:53:16:d5:06:a3:c3:c8:44:57: 11:c2:0e:c5:8f:4a:ad:bb:5c:f7:3f:8d:c9:18:92: 6c:1a:b5:75:93:03:df:6c:d4:5c:2d:70:62:9b:6b: 91:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:25:39:F9:35:69:1E:14:FD:B4:62:AD:1A:C0:28:8E:EC:56:E4:AD X509v3 Authority Key Identifier: keyid:90:62:06:38:CA:1D:83:56:50:E0:8D:DC:F3:63:F1:07:89:B5:30:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGIGOModg1ZQ4I3c82PxB4m1MFc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/lSU5-TVpHhT9tGKtGsAojuxW5K0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/kGIGOModg1ZQ4I3c82PxB4m1MFc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.195.48.0/24 IPv6: 2a04:5781:3001::/48 Signature Algorithm: sha256WithRSAEncryption 76:f6:b4:de:7c:e7:41:87:de:17:d4:1e:c4:7c:4c:1b:41:3d: c1:22:6b:6c:ea:41:9a:7c:8e:0b:4d:89:55:eb:e1:86:e3:1b: ec:96:08:36:62:af:e9:63:d6:28:83:cf:7a:ea:7e:70:65:bf: 84:f9:0f:95:46:91:b0:a2:83:7a:aa:a4:20:39:26:99:11:8d: 86:e9:30:17:c4:04:ae:81:7b:55:0d:81:df:b4:aa:ae:fc:d2: 55:42:61:52:fc:10:4d:dc:8b:25:b5:10:35:ca:66:44:a9:45: 2b:77:f5:6f:1b:8e:0d:30:93:c9:2f:82:80:e1:c8:c5:3f:2e: 0c:35:cf:45:77:03:26:9c:f4:48:c5:6f:5f:67:32:d4:27:10: f2:ab:ad:5d:f0:ef:66:d2:fc:5c:2a:cf:33:06:15:9a:27:45: 76:7f:cf:cf:33:3f:b9:40:67:49:f9:8a:cf:5b:4f:bb:e3:09: 69:35:22:b4:31:3a:0e:7a:4c:24:c0:81:38:45:02:da:64:1c: 88:eb:0f:17:01:45:6e:7f:fc:64:8f:f5:63:66:a3:92:91:78: 08:3b:61:56:5a:6c:43:c8:2b:90:1e:be:3f:cc:1d:eb:a0:ed: e0:bb:e9:4c:85:f9:56:81:a0:1e:7e:8a:54:28:bd:13:24:7a: f9:ef:bc:2d -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt6W5PrewbKwff1i9bAmJt9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwNjIwNjM4Y2ExZDgzNTY1MGUwOGRkY2YzNjNmMTA3ODli NTMwNTcwHhcNMjYwMTAxMTYxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NTI1MzlmOTM1NjkxZTE0ZmRiNDYyYWQxYWMwMjg4ZWVjNTZlNGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/Bl3NMOoQTZqhob42JeYlI8GIEs 5v7l6xVNg6U7RaEb+xvO2CJgwtnhOhlY9myg9GiHtihNL9jVBbj6EBvBf/PeNlxX kmp4SeoZq5uwF351HZ1i6Fxws46zYaVbT49saeZ2BjSA82PGiM79TbQ1ymR532ZE 1ACeIh9juAQUMGQs2xbY5DT08rH8c/J4zwsfQZzNDzLGsjgU4TNlqDWx/EQQ516G 7HsronZc3Zu1gXxmO0emaHI7NmcwqzPIjAurvldyBct4vV1cqzn9LjnAG/Wpz1MT p8ZTFtUGo8PIRFcRwg7Fj0qtu1z3P43JGJJsGrV1kwPfbNRcLXBim2uR0wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFJUlOfk1aR4U/bRirRrAKI7sVuStMB8GA1UdIwQY MBaAFJBiBjjKHYNWUOCN3PNj8QeJtTBXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0dJR09Nb2RnMVpRNEkzYzgyUHhCNG0xTUZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS80MWFmMmQtZjNkZS00NWQ1LTk0MWMt YzQzYWM0MjllNTNmLzEvbFNVNS1UVnBIaFQ5dEdLdEdzQW9qdXhXNUswLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS80MWFmMmQtZjNkZS00NWQ1LTk0MWMtYzQzYWM0MjllNTNm LzEva0dJR09Nb2RnMVpRNEkzYzgyUHhCNG0xTUZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAzsMwMA8E AgACMAkDBwAqBFeBMAEwDQYJKoZIhvcNAQELBQADggEBAHb2tN5850GH3hfUHsR8 TBtBPcEia2zqQZp8jgtNiVXr4YbjG+yWCDZir+lj1iiDz3rqfnBlv4T5D5VGkbCi g3qqpCA5JpkRjYbpMBfEBK6Be1UNgd+0qq780lVCYVL8EE3ciyW1EDXKZkSpRSt3 9W8bjg0wk8kvgoDhyMU/Lgw1z0V3Ayac9EjFb19nMtQnEPKrrV3w72bS/FwqzzMG FZonRXZ/z88zP7lAZ0n5is9bT7vjCWk1IrQxOg56TCTAgThFAtpkHIjrDxcBRW5/ /GSP9WNmo5KReAg7YVZabEPIK5Aevj/MHeug7eC76UyF+VaBoB5+ilQovRMkevnv vC0= -----END CERTIFICATE-----Generated at Thu Jan 22 04:13:48 2026 by rpki-client