This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ba402c-b00e-4a26-bf53-8e747e34e162/1/LT7SpeHVHrImIlmvmDypryVJsMA.roa File: LT7SpeHVHrImIlmvmDypryVJsMA.roa (raw, json) Hash identifier: UY3Bc5Ii8P52rm9NhIsYSUCYO4P4gv1+uleYch2vT5A= Subject key identifier: 2D:3E:D2:A5:E1:D5:1E:B2:26:22:59:AF:98:3C:A9:AF:25:49:B0:C0 Certificate issuer: /CN=65d9e9266eecabc0fd4a6077eb0ba8fa9f3bde27 Certificate serial: 019B77C70D365F3171602522514686159F60 Authority key identifier: 65:D9:E9:26:6E:EC:AB:C0:FD:4A:60:77:EB:0B:A8:FA:9F:3B:DE:27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdnpJm7sq8D9SmB36wuo-p873ic.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ba402c-b00e-4a26-bf53-8e747e34e162/1/LT7SpeHVHrImIlmvmDypryVJsMA.roa Signing time: Thu 01 Jan 2026 04:18:12 +0000 ROA not before: Thu 01 Jan 2026 04:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 95.214.48.0/24 maxlen: 24 95.214.49.0/24 maxlen: 24 95.214.50.0/24 maxlen: 24 95.214.51.0/24 maxlen: 24 2a09:d680::/32 maxlen: 48 2a09:d681::/32 maxlen: 48 2a09:d682::/32 maxlen: 48 2a09:d683::/32 maxlen: 48 2a09:d684::/32 maxlen: 48 2a09:d685::/32 maxlen: 48 2a09:d686::/32 maxlen: 48 2a09:d687::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/ba402c-b00e-4a26-bf53-8e747e34e162/1/ZdnpJm7sq8D9SmB36wuo-p873ic.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/ba402c-b00e-4a26-bf53-8e747e34e162/1/ZdnpJm7sq8D9SmB36wuo-p873ic.mft rsync://rpki.ripe.net/repository/DEFAULT/ZdnpJm7sq8D9SmB36wuo-p873ic.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 16:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:0d:36:5f:31:71:60:25:22:51:46:86:15:9f:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65d9e9266eecabc0fd4a6077eb0ba8fa9f3bde27 Validity Not Before: Jan 1 04:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2d3ed2a5e1d51eb2262259af983ca9af2549b0c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:81:8e:ca:c9:fc:e0:3e:71:9c:3f:b6:18:99: 2c:d6:b1:35:28:09:b8:de:63:ea:6d:52:42:f1:21: ab:eb:61:72:84:1d:85:1a:0b:d4:73:4a:dd:3d:4d: 60:73:e4:16:67:62:12:84:a4:03:27:45:53:7b:fe: 6e:04:0a:d1:b2:ae:58:94:22:ea:98:13:98:60:63: d9:74:b1:65:67:13:c3:fa:b8:d0:d3:76:11:49:77: 67:0d:c4:2c:38:93:4b:ec:14:83:47:47:8b:c9:83: e0:f3:43:3f:87:96:16:c1:c2:bf:de:88:ec:00:51: be:5d:33:d8:4c:4c:19:26:ff:8d:80:81:e5:4b:fc: ad:01:ca:0f:7f:75:09:e0:b2:da:8f:54:72:f1:d8: 7c:14:2c:d0:d4:e3:86:3f:83:20:86:bb:61:45:12: 05:7e:b2:c3:a8:24:76:41:f2:e3:26:fe:32:ea:a6: 76:9d:ed:5b:94:35:58:d5:e8:e4:0d:6a:8e:63:e8: db:82:f4:ce:18:11:e8:ca:aa:40:aa:23:27:ec:e3: d7:14:76:e2:92:4d:4f:05:39:eb:e1:28:34:37:96: 07:08:58:f5:d7:4b:23:4d:93:37:d0:1b:9f:70:8e: 92:20:13:d2:8c:86:3c:4e:62:6e:a1:fb:6c:2b:fc: ae:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:3E:D2:A5:E1:D5:1E:B2:26:22:59:AF:98:3C:A9:AF:25:49:B0:C0 X509v3 Authority Key Identifier: keyid:65:D9:E9:26:6E:EC:AB:C0:FD:4A:60:77:EB:0B:A8:FA:9F:3B:DE:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdnpJm7sq8D9SmB36wuo-p873ic.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ba402c-b00e-4a26-bf53-8e747e34e162/1/LT7SpeHVHrImIlmvmDypryVJsMA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ba402c-b00e-4a26-bf53-8e747e34e162/1/ZdnpJm7sq8D9SmB36wuo-p873ic.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.214.48.0/22 IPv6: 2a09:d680::/29 Signature Algorithm: sha256WithRSAEncryption 4f:6c:0c:08:26:42:86:c2:9a:31:fb:84:9e:0d:c8:40:b4:43: 1f:2d:88:d0:21:12:5d:84:74:7d:9f:5a:b1:b1:fd:36:e3:72: 53:c2:87:8c:12:0c:db:5e:ef:33:50:70:11:0a:d4:5f:4e:49: 52:d5:72:a6:b5:a3:8c:8d:a8:5a:0e:3c:14:56:bd:61:fb:36: 08:7e:a9:92:ac:ba:36:b3:f5:02:97:c6:fe:1b:11:bf:66:4a: 2a:5a:f7:ec:15:f8:c6:76:02:d1:ef:0f:a1:6b:02:48:45:0c: b0:04:d8:59:74:c9:cf:dc:5b:ec:29:34:7f:73:0d:57:41:a2: f1:b0:e3:ff:92:4e:c4:d4:77:2a:4d:ec:3a:bd:c0:d4:77:ae: 3f:4c:0f:df:cc:72:cd:48:19:b2:c7:43:d7:a1:fe:8c:a2:bd: ed:0f:23:ca:ac:b5:13:76:d2:7c:6e:8f:7e:82:af:26:8b:51: 2f:f1:bd:3e:82:b8:e4:51:82:50:07:af:eb:1b:09:77:56:d1: fa:d2:50:0f:c7:1a:f1:41:98:f2:b6:ed:92:e1:f4:6e:87:63: 12:96:e0:31:26:b2:85:4f:8b:df:b9:9c:cc:17:08:22:89:a3: 47:84:5f:41:09:78:c0:6e:11:85:f0:e7:30:40:1c:af:28:bf: fd:3e:cc:83 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3xw02XzFxYCUiUUaGFZ9gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1ZDllOTI2NmVlY2FiYzBmZDRhNjA3N2ViMGJhOGZhOWYz YmRlMjcwHhcNMjYwMTAxMDQxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDNlZDJhNWUxZDUxZWIyMjYyMjU5YWY5ODNjYTlhZjI1NDliMGMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4GOysn84D5xnD+2GJks1rE1KAm4 3mPqbVJC8SGr62FyhB2FGgvUc0rdPU1gc+QWZ2IShKQDJ0VTe/5uBArRsq5YlCLq mBOYYGPZdLFlZxPD+rjQ03YRSXdnDcQsOJNL7BSDR0eLyYPg80M/h5YWwcK/3ojs AFG+XTPYTEwZJv+NgIHlS/ytAcoPf3UJ4LLaj1Ry8dh8FCzQ1OOGP4MghrthRRIF frLDqCR2QfLjJv4y6qZ2ne1blDVY1ejkDWqOY+jbgvTOGBHoyqpAqiMn7OPXFHbi kk1PBTnr4Sg0N5YHCFj110sjTZM30BufcI6SIBPSjIY8TmJuoftsK/yujQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFC0+0qXh1R6yJiJZr5g8qa8lSbDAMB8GA1UdIwQY MBaAFGXZ6SZu7KvA/Upgd+sLqPqfO94nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmRucEptN3NxOEQ5U21CMzZ3dW8tcDg3M2ljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9iYTQwMmMtYjAwZS00YTI2LWJmNTMt OGU3NDdlMzRlMTYyLzEvTFQ3U3BlSFZIckltSWxtdm1EeXByeVZKc01BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9iYTQwMmMtYjAwZS00YTI2LWJmNTMtOGU3NDdlMzRlMTYy LzEvWmRucEptN3NxOEQ5U21CMzZ3dW8tcDg3M2ljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCX9YwMA0E AgACMAcDBQMqCdaAMA0GCSqGSIb3DQEBCwUAA4IBAQBPbAwIJkKGwpox+4SeDchA tEMfLYjQIRJdhHR9n1qxsf0243JTwoeMEgzbXu8zUHARCtRfTklS1XKmtaOMjaha DjwUVr1h+zYIfqmSrLo2s/UCl8b+GxG/ZkoqWvfsFfjGdgLR7w+hawJIRQywBNhZ dMnP3FvsKTR/cw1XQaLxsOP/kk7E1HcqTew6vcDUd64/TA/fzHLNSBmyx0PXof6M or3tDyPKrLUTdtJ8bo9+gq8mi1Ev8b0+grjkUYJQB6/rGwl3VtH60lAPxxrxQZjy tu2S4fRuh2MSluAxJrKFT4vfuZzMFwgiiaNHhF9BCXjAbhGF8OcwQByvKL/9PsyD -----END CERTIFICATE-----Generated at Tue Jan 27 02:50:34 2026 by rpki-client