This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/e66571-a0c4-4ac0-83ae-80411e917538/1/LdLsv-q2C4Pbf9GxWCyaIF5HbLc.roa File: LdLsv-q2C4Pbf9GxWCyaIF5HbLc.roa (raw, json) Hash identifier: 9N8HiCQDKmL6vVupPuazpXqAGCKxU6fFpoiaBLlmwPI= Subject key identifier: 2D:D2:EC:BF:EA:B6:0B:83:DB:7F:D1:B1:58:2C:9A:20:5E:47:6C:B7 Certificate issuer: /CN=14e1283dae0b0b997867265cb2c0083c51136eda Certificate serial: 019B76EB23DA61FF2E3C356ADF914516C219 Authority key identifier: 14:E1:28:3D:AE:0B:0B:99:78:67:26:5C:B2:C0:08:3C:51:13:6E:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FOEoPa4LC5l4ZyZcssAIPFETbto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/e66571-a0c4-4ac0-83ae-80411e917538/1/LdLsv-q2C4Pbf9GxWCyaIF5HbLc.roa Signing time: Thu 01 Jan 2026 00:18:00 +0000 ROA not before: Thu 01 Jan 2026 00:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51815 IP address blocks: 2a03:9ea0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/e66571-a0c4-4ac0-83ae-80411e917538/1/FOEoPa4LC5l4ZyZcssAIPFETbto.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/e66571-a0c4-4ac0-83ae-80411e917538/1/FOEoPa4LC5l4ZyZcssAIPFETbto.mft rsync://rpki.ripe.net/repository/DEFAULT/FOEoPa4LC5l4ZyZcssAIPFETbto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:23:da:61:ff:2e:3c:35:6a:df:91:45:16:c2:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14e1283dae0b0b997867265cb2c0083c51136eda Validity Not Before: Jan 1 00:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2dd2ecbfeab60b83db7fd1b1582c9a205e476cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6c:88:59:9a:8e:d3:cd:fa:1e:63:ca:6f:c6: 7b:6b:e0:c5:63:c0:2d:60:85:29:99:21:3f:3f:59: b2:33:fb:d5:b7:fd:2e:1a:c9:bc:74:fb:4a:38:f3: cd:2e:fd:94:ff:2f:de:43:97:c2:5e:18:99:70:57: 15:76:63:a6:9f:a3:49:98:70:6d:9e:e0:60:bf:b2: 07:1a:b9:fa:ad:04:5e:3f:64:af:d7:09:50:54:77: a8:a4:a5:af:d1:6a:6e:28:1c:29:17:fa:88:8c:4b: 44:be:07:4f:88:82:29:75:e2:05:57:c1:b2:96:7a: 36:1f:88:43:bd:2d:ac:25:83:27:1a:11:94:c0:72: db:d1:c9:fc:20:9d:97:59:a5:43:ba:a3:a2:0d:f8: f2:14:5b:82:36:71:51:e3:e1:0f:59:c1:18:47:e0: 59:ee:6a:76:ba:8e:47:a9:f7:14:e4:b8:b7:9a:8c: 6c:87:97:eb:cd:d9:d9:3a:a4:9b:5f:2e:89:2f:ca: fc:35:24:36:9d:85:fe:8d:6b:51:c5:51:aa:20:ee: d0:a6:64:93:f9:05:2a:61:00:8b:6e:e5:fb:e2:e9: 2b:1b:fa:0c:1b:2f:2f:76:ab:fb:e1:5c:0a:9c:97: 01:03:b5:d2:9d:47:93:1b:5d:8c:b3:8c:43:a9:78: 6a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:D2:EC:BF:EA:B6:0B:83:DB:7F:D1:B1:58:2C:9A:20:5E:47:6C:B7 X509v3 Authority Key Identifier: keyid:14:E1:28:3D:AE:0B:0B:99:78:67:26:5C:B2:C0:08:3C:51:13:6E:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FOEoPa4LC5l4ZyZcssAIPFETbto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/e66571-a0c4-4ac0-83ae-80411e917538/1/LdLsv-q2C4Pbf9GxWCyaIF5HbLc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/e66571-a0c4-4ac0-83ae-80411e917538/1/FOEoPa4LC5l4ZyZcssAIPFETbto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:9ea0::/32 Signature Algorithm: sha256WithRSAEncryption 38:ef:47:62:81:f7:ee:c4:56:ee:f0:75:29:02:0a:b0:77:5c: 55:20:57:bb:2a:ed:c7:0e:62:9a:6b:33:5f:6b:13:bd:9b:cd: ea:4a:7a:65:a1:7c:92:76:d3:50:4e:51:66:7a:41:b1:b6:c4: 9c:5d:5a:af:00:a4:00:54:bf:b1:22:41:f8:bc:6e:27:70:3e: 9d:23:4a:68:fd:c7:6d:74:fb:f0:37:c8:87:90:79:f5:c7:68: f5:b0:8e:36:c5:18:f4:36:be:3e:15:d5:06:86:7d:48:26:30: e7:a2:9f:45:d0:5c:ba:6d:9d:60:5a:e4:d3:a5:32:11:d6:84: 73:89:2a:4f:be:7a:23:05:58:bd:92:f4:a3:0f:70:73:78:2d: 73:6c:1b:9f:d6:e7:f0:88:ea:37:f1:9f:4f:ce:60:3f:fd:8a: d1:e1:4a:8a:99:9c:45:a2:86:22:4a:d2:ab:8f:0c:ae:a0:2a: 05:06:d4:8e:b8:ee:d2:59:69:3f:72:b9:19:72:74:16:2d:ac: 15:35:88:81:44:70:bd:a5:f7:eb:cf:46:fb:a7:54:39:89:7b: bb:c1:f8:e9:97:c5:08:69:fc:0c:d4:c3:da:6b:62:12:92:cf: c4:b6:7c:55:c8:59:89:6f:a6:6f:31:69:f9:ed:82:f6:85:ea: b4:68:9e:b7 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt26yPaYf8uPDVq35FFFsIZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0ZTEyODNkYWUwYjBiOTk3ODY3MjY1Y2IyYzAwODNjNTEx MzZlZGEwHhcNMjYwMTAxMDAxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZGQyZWNiZmVhYjYwYjgzZGI3ZmQxYjE1ODJjOWEyMDVlNDc2Y2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2yIWZqO0836HmPKb8Z7a+DFY8At YIUpmSE/P1myM/vVt/0uGsm8dPtKOPPNLv2U/y/eQ5fCXhiZcFcVdmOmn6NJmHBt nuBgv7IHGrn6rQReP2Sv1wlQVHeopKWv0WpuKBwpF/qIjEtEvgdPiIIpdeIFV8Gy lno2H4hDvS2sJYMnGhGUwHLb0cn8IJ2XWaVDuqOiDfjyFFuCNnFR4+EPWcEYR+BZ 7mp2uo5HqfcU5Li3moxsh5frzdnZOqSbXy6JL8r8NSQ2nYX+jWtRxVGqIO7QpmST +QUqYQCLbuX74ukrG/oMGy8vdqv74VwKnJcBA7XSnUeTG12Ms4xDqXhq/wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFC3S7L/qtguD23/RsVgsmiBeR2y3MB8GA1UdIwQY MBaAFBThKD2uCwuZeGcmXLLACDxRE27aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRk9Fb1BhNExDNWw0WnlaY3NzQUlQRkVUYnRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9lNjY1NzEtYTBjNC00YWMwLTgzYWUt ODA0MTFlOTE3NTM4LzEvTGRMc3YtcTJDNFBiZjlHeFdDeWFJRjVIYkxjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS9lNjY1NzEtYTBjNC00YWMwLTgzYWUtODA0MTFlOTE3NTM4 LzEvRk9Fb1BhNExDNWw0WnlaY3NzQUlQRkVUYnRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgOeoDAN BgkqhkiG9w0BAQsFAAOCAQEAOO9HYoH37sRW7vB1KQIKsHdcVSBXuyrtxw5immsz X2sTvZvN6kp6ZaF8knbTUE5RZnpBsbbEnF1arwCkAFS/sSJB+LxuJ3A+nSNKaP3H bXT78DfIh5B59cdo9bCONsUY9Da+PhXVBoZ9SCYw56KfRdBcum2dYFrk06UyEdaE c4kqT756IwVYvZL0ow9wc3gtc2wbn9bn8IjqN/GfT85gP/2K0eFKipmcRaKGIkrS q48MrqAqBQbUjrju0llpP3K5GXJ0Fi2sFTWIgURwvaX3689G+6dUOYl7u8H46ZfF CGn8DNTD2mtiEpLPxLZ8VchZiW+mbzFp+e2C9oXqtGietw== -----END CERTIFICATE-----Generated at Mon Jan 26 20:26:08 2026 by rpki-client