This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/36b085-1a5b-4af9-878b-376426ffd662/1/lMQfwH-V7Yhd6sNgC8BpN5Ho3vc.roa File: lMQfwH-V7Yhd6sNgC8BpN5Ho3vc.roa (raw, json) Hash identifier: 80PQfjBzEobkUlg1u1KjDZCEtHTRyd3Qm3q0fmEsPoY= Subject key identifier: 94:C4:1F:C0:7F:95:ED:88:5D:EA:C3:60:0B:C0:69:37:91:E8:DE:F7 Certificate issuer: /CN=07f2a175be20108641c649553213f212511667a5 Certificate serial: 019B77592436AB17DCC64CD13D3DA2742FF3 Authority key identifier: 07:F2:A1:75:BE:20:10:86:41:C6:49:55:32:13:F2:12:51:16:67:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_Khdb4gEIZBxklVMhPyElEWZ6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/36b085-1a5b-4af9-878b-376426ffd662/1/lMQfwH-V7Yhd6sNgC8BpN5Ho3vc.roa Signing time: Thu 01 Jan 2026 02:18:09 +0000 ROA not before: Thu 01 Jan 2026 02:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50673 IP address blocks: 185.166.232.0/23 maxlen: 24 185.166.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/36b085-1a5b-4af9-878b-376426ffd662/1/B_Khdb4gEIZBxklVMhPyElEWZ6U.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/36b085-1a5b-4af9-878b-376426ffd662/1/B_Khdb4gEIZBxklVMhPyElEWZ6U.mft rsync://rpki.ripe.net/repository/DEFAULT/B_Khdb4gEIZBxklVMhPyElEWZ6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 05:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:24:36:ab:17:dc:c6:4c:d1:3d:3d:a2:74:2f:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07f2a175be20108641c649553213f212511667a5 Validity Not Before: Jan 1 02:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=94c41fc07f95ed885deac3600bc0693791e8def7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:74:8d:47:22:79:f4:26:e7:4c:3d:15:32:50: 9f:c2:d5:37:60:9f:61:1e:f1:5f:cb:b5:c1:1a:e5: b3:e3:f3:38:70:24:06:2b:cd:4e:45:11:77:13:82: 4f:39:20:78:12:b1:90:de:9d:11:cf:a6:a0:21:f2: 79:ef:91:00:c1:41:e2:43:d3:6f:c5:93:51:f6:96: 73:24:3f:db:05:3d:7e:35:0b:35:49:de:16:65:a7: cf:4f:11:22:c2:21:54:e4:38:10:16:e3:96:25:30: 2a:b5:8b:62:30:88:74:46:d9:fe:10:b1:67:9b:a0: 63:f0:86:78:dd:e9:ee:e1:fb:5c:58:57:2f:db:69: 83:0a:18:15:ca:88:30:9b:1f:76:a3:e0:90:a3:89: 6f:ab:28:cf:60:3c:33:0e:ce:e2:56:f5:af:9d:df: 27:e1:2e:7a:b6:39:2b:b8:10:8e:f3:2f:e0:43:4a: 95:5b:de:44:ff:d1:2a:a8:37:52:16:a7:57:3c:2a: 32:8c:8a:e7:95:6b:ef:7c:1f:24:a1:af:33:7c:28: 15:8d:01:94:8c:b5:d2:d0:7e:72:60:c5:6f:a0:70: 3a:c6:24:5a:73:19:2a:91:c5:c9:71:82:ca:1c:98: 5c:d3:29:3a:40:35:0a:1a:2c:5f:06:2d:df:87:f7: 4d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C4:1F:C0:7F:95:ED:88:5D:EA:C3:60:0B:C0:69:37:91:E8:DE:F7 X509v3 Authority Key Identifier: keyid:07:F2:A1:75:BE:20:10:86:41:C6:49:55:32:13:F2:12:51:16:67:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_Khdb4gEIZBxklVMhPyElEWZ6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/36b085-1a5b-4af9-878b-376426ffd662/1/lMQfwH-V7Yhd6sNgC8BpN5Ho3vc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/36b085-1a5b-4af9-878b-376426ffd662/1/B_Khdb4gEIZBxklVMhPyElEWZ6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.166.232.0/23 185.166.235.0/24 Signature Algorithm: sha256WithRSAEncryption 78:66:9f:cf:55:11:6a:65:f5:ce:1b:f7:0a:2d:84:c7:d6:c2: 22:4c:f0:88:ae:a7:a8:01:86:89:ce:a6:1b:e8:9b:bd:5f:fb: c9:a3:e6:13:89:74:af:00:c9:1b:d0:46:c4:25:c2:34:a3:4d: 94:9d:bb:ff:88:48:71:65:73:12:61:f8:24:77:ff:ba:28:bc: 1e:33:c9:38:b5:19:82:fb:83:fb:01:ce:89:9d:df:a3:55:ea: db:e4:34:23:d4:d4:bd:e8:f8:44:05:30:2f:6a:79:b3:96:29: 67:f2:08:f1:7c:ca:b1:32:3c:70:81:e0:4d:91:72:b2:35:88: 84:85:59:eb:cc:a9:c0:7e:4e:91:13:a1:42:28:b0:b1:2f:66: d7:25:f4:e0:08:85:64:23:bc:2c:25:a2:f6:7c:1e:19:2c:ea: 8c:f9:e1:5f:07:e0:8c:40:ab:99:c4:87:23:19:cc:2c:21:fe: 48:aa:0b:c6:78:bf:bd:84:64:44:62:b9:26:26:f1:53:e5:37: e1:c7:38:29:cf:03:bd:2c:d6:15:bf:ec:6e:d9:a8:9d:a8:0b: 1d:39:31:a0:22:bf:11:f1:3b:a8:26:f4:51:cb:ee:14:d1:80: 83:4b:9f:aa:e2:c9:3a:4f:18:30:06:a7:9d:7a:fb:97:90:6e: f1:73:94:fc -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WSQ2qxfcxkzRPT2idC/zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3ZjJhMTc1YmUyMDEwODY0MWM2NDk1NTMyMTNmMjEyNTEx NjY3YTUwHhcNMjYwMTAxMDIxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NGM0MWZjMDdmOTVlZDg4NWRlYWMzNjAwYmMwNjkzNzkxZThkZWY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHSNRyJ59CbnTD0VMlCfwtU3YJ9h HvFfy7XBGuWz4/M4cCQGK81ORRF3E4JPOSB4ErGQ3p0Rz6agIfJ575EAwUHiQ9Nv xZNR9pZzJD/bBT1+NQs1Sd4WZafPTxEiwiFU5DgQFuOWJTAqtYtiMIh0Rtn+ELFn m6Bj8IZ43enu4ftcWFcv22mDChgVyogwmx92o+CQo4lvqyjPYDwzDs7iVvWvnd8n 4S56tjkruBCO8y/gQ0qVW95E/9EqqDdSFqdXPCoyjIrnlWvvfB8koa8zfCgVjQGU jLXS0H5yYMVvoHA6xiRacxkqkcXJcYLKHJhc0yk6QDUKGixfBi3fh/dNkQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJTEH8B/le2IXerDYAvAaTeR6N73MB8GA1UdIwQY MBaAFAfyoXW+IBCGQcZJVTIT8hJRFmelMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQl9LaGRiNGdFSVpCeGtsVk1oUHlFbEVXWjZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8zNmIwODUtMWE1Yi00YWY5LTg3OGIt Mzc2NDI2ZmZkNjYyLzEvbE1RZndILVY3WWhkNnNOZ0M4QnBONUhvM3ZjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS8zNmIwODUtMWE1Yi00YWY5LTg3OGItMzc2NDI2ZmZkNjYy LzEvQl9LaGRiNGdFSVpCeGtsVk1oUHlFbEVXWjZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBuaboAwQA uabrMA0GCSqGSIb3DQEBCwUAA4IBAQB4Zp/PVRFqZfXOG/cKLYTH1sIiTPCIrqeo AYaJzqYb6Ju9X/vJo+YTiXSvAMkb0EbEJcI0o02Unbv/iEhxZXMSYfgkd/+6KLwe M8k4tRmC+4P7Ac6Jnd+jVerb5DQj1NS96PhEBTAvanmzliln8gjxfMqxMjxwgeBN kXKyNYiEhVnrzKnAfk6RE6FCKLCxL2bXJfTgCIVkI7wsJaL2fB4ZLOqM+eFfB+CM QKuZxIcjGcwsIf5IqgvGeL+9hGREYrkmJvFT5TfhxzgpzwO9LNYVv+xu2aidqAsd OTGgIr8R8TuoJvRRy+4U0YCDS5+q4sk6TxgwBqedevuXkG7xc5T8 -----END CERTIFICATE-----Generated at Sun Jan 11 11:46:08 2026 by rpki-client