This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/lTzV12OyW6xdIWMBiN9FukKZ0iQ.roa File: lTzV12OyW6xdIWMBiN9FukKZ0iQ.roa (raw, json) Hash identifier: QQ84Zgi4BUbvoffh1ymJ43nM7iuXA7F8Sv6Ix0cOmoQ= Subject key identifier: 95:3C:D5:D7:63:B2:5B:AC:5D:21:63:01:88:DF:45:BA:42:99:D2:24 Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815 Certificate serial: 019B7AC7E280C266FFFC86E004E6BDD239E6 Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/lTzV12OyW6xdIWMBiN9FukKZ0iQ.roa Signing time: Thu 01 Jan 2026 18:17:58 +0000 ROA not before: Thu 01 Jan 2026 18:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34549 IP address blocks: 194.50.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.mft rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:e2:80:c2:66:ff:fc:86:e0:04:e6:bd:d2:39:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815 Validity Not Before: Jan 1 18:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=953cd5d763b25bac5d21630188df45ba4299d224 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5e:00:85:a7:bd:8e:4d:8b:c3:44:dc:35:69: db:1d:45:91:6f:a7:7d:47:d3:0c:79:ce:6b:fb:16: 57:21:28:8d:bb:5b:77:6f:59:8e:19:f2:aa:5a:cf: 05:26:04:a6:20:eb:a7:16:09:ed:cb:3d:1b:84:a2: 25:e0:3f:4d:a3:a9:a5:2c:7f:d1:a4:dd:0a:9b:ad: 37:8e:34:64:93:d3:dd:8d:28:0c:27:ea:30:69:9d: 82:f1:3d:4a:94:69:ed:e8:80:3c:b6:14:f0:8e:fd: 91:1c:cf:66:f5:89:bb:77:43:1c:ce:95:94:9b:bc: 67:66:51:6c:54:2d:d1:8e:78:21:70:d9:a9:b7:d9: 63:7f:5b:0f:5c:8c:38:c4:9f:9c:3a:a9:22:80:76: 8b:53:93:18:19:4a:84:e0:9f:72:54:f2:21:ee:fc: e7:11:57:23:fe:e5:88:40:4e:44:1e:5d:6a:b1:57: 11:4e:bb:09:86:13:a5:1c:ad:ec:2b:5b:4e:2c:2b: 53:f0:9b:42:d0:1f:03:ca:e4:06:42:72:64:e0:28: 35:93:15:a5:f8:0b:44:d4:2f:12:c6:20:7f:4e:eb: 83:cd:ab:7b:4f:df:5d:39:54:aa:1a:f0:92:48:24: 8e:02:cd:1d:a9:7c:2a:63:67:65:f7:e7:cf:63:04: 9e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:3C:D5:D7:63:B2:5B:AC:5D:21:63:01:88:DF:45:BA:42:99:D2:24 X509v3 Authority Key Identifier: keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/lTzV12OyW6xdIWMBiN9FukKZ0iQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.50.52.0/24 Signature Algorithm: sha256WithRSAEncryption 92:ca:f2:24:00:3e:09:aa:eb:3e:5e:f1:1b:3f:25:a5:ce:9a: 09:ad:fb:51:18:8c:06:5f:e1:96:ec:4d:b5:7a:06:fe:9e:a4: e1:40:44:41:d7:4d:87:de:fa:1f:93:e0:a6:d6:b9:66:59:1a: 74:1b:a9:17:62:97:c5:97:39:3c:08:08:e2:20:f8:ad:ce:45: 81:03:c2:80:90:24:0b:14:10:bb:9f:5b:e6:da:52:98:06:ec: 3f:cf:23:5d:6a:29:17:a0:22:9b:35:ce:6e:35:f0:05:45:2b: bf:76:4d:02:1f:c2:10:38:c0:20:a0:23:5c:80:77:b9:17:7e: 54:6a:0a:c7:d7:df:d6:cb:0c:48:45:bf:c5:c9:09:ae:c9:92: cb:ec:44:b3:ff:e2:c1:cf:bf:11:26:44:7b:96:3e:24:07:96: 50:5d:a2:61:ca:b4:ac:e8:c3:80:b1:ee:04:3c:52:51:ff:71: 87:2b:dc:b0:52:fa:de:5d:0c:01:d1:1d:f3:05:e8:ab:72:14: c2:5f:d5:d3:5c:17:5b:88:6b:2d:01:b5:26:01:1b:1a:ed:f7: 5a:99:a3:4e:9f:32:5e:18:05:fc:d3:74:ae:97:e1:33:29:4c: 76:30:d0:e8:cf:3e:47:8a:ca:6d:e4:e2:45:70:9f:b3:a3:e1: 13:58:e5:4f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x+KAwmb//IbgBOa90jnmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NTMxMGY1MDMxMzdhZThiMzVkNGYzMjlmNDZmMDY5ZGQ3 MDM4MTUwHhcNMjYwMTAxMTgxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NTNjZDVkNzYzYjI1YmFjNWQyMTYzMDE4OGRmNDViYTQyOTlkMjI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArF4Ahae9jk2Lw0TcNWnbHUWRb6d9 R9MMec5r+xZXISiNu1t3b1mOGfKqWs8FJgSmIOunFgntyz0bhKIl4D9No6mlLH/R pN0Km603jjRkk9PdjSgMJ+owaZ2C8T1KlGnt6IA8thTwjv2RHM9m9Ym7d0MczpWU m7xnZlFsVC3RjnghcNmpt9ljf1sPXIw4xJ+cOqkigHaLU5MYGUqE4J9yVPIh7vzn EVcj/uWIQE5EHl1qsVcRTrsJhhOlHK3sK1tOLCtT8JtC0B8DyuQGQnJk4Cg1kxWl +AtE1C8SxiB/TuuDzat7T99dOVSqGvCSSCSOAs0dqXwqY2dl9+fPYwSetQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJU81ddjslusXSFjAYjfRbpCmdIkMB8GA1UdIwQY MBaAFKhTEPUDE3ros11PMp9G8GndcDgVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUZNUTlRTVRldWl6WFU4eW4wYndhZDF3T0JVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iNDI5NDktZWUwYS00MTIzLTg3YmYt MzAxODlhNWE0ZWJhLzEvbFR6VjEyT3lXNnhkSVdNQmlOOUZ1a0taMGlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9iNDI5NDktZWUwYS00MTIzLTg3YmYtMzAxODlhNWE0ZWJh LzEvcUZNUTlRTVRldWl6WFU4eW4wYndhZDF3T0JVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjI0MA0G CSqGSIb3DQEBCwUAA4IBAQCSyvIkAD4Jqus+XvEbPyWlzpoJrftRGIwGX+GW7E21 egb+nqThQERB102H3vofk+Cm1rlmWRp0G6kXYpfFlzk8CAjiIPitzkWBA8KAkCQL FBC7n1vm2lKYBuw/zyNdaikXoCKbNc5uNfAFRSu/dk0CH8IQOMAgoCNcgHe5F35U agrH19/WywxIRb/FyQmuyZLL7ESz/+LBz78RJkR7lj4kB5ZQXaJhyrSs6MOAse4E PFJR/3GHK9ywUvreXQwB0R3zBeirchTCX9XTXBdbiGstAbUmARsa7fdamaNOnzJe GAX803Sul+EzKUx2MNDozz5Hispt5OJFcJ+zo+ETWOVP -----END CERTIFICATE-----Generated at Wed Jan 21 21:50:15 2026 by rpki-client