This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Lqd1mryq0eI3XAJCMSKyJDpltOI.roa File: Lqd1mryq0eI3XAJCMSKyJDpltOI.roa (raw, json) Hash identifier: NKrZd+8ubVZMRdGL7RM/ghy07bvO6vCdLTdgz04D2Kg= Subject key identifier: 2E:A7:75:9A:BC:AA:D1:E2:37:5C:02:42:31:22:B2:24:3A:65:B4:E2 Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4 Certificate serial: 019B79111F8A45FA8D046395282F59724D20 Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Lqd1mryq0eI3XAJCMSKyJDpltOI.roa Signing time: Thu 01 Jan 2026 10:18:43 +0000 ROA not before: Thu 01 Jan 2026 10:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48840 IP address blocks: 95.129.8.0/21 maxlen: 21 95.129.8.0/24 maxlen: 24 95.129.9.0/24 maxlen: 24 95.129.10.0/24 maxlen: 24 95.129.11.0/24 maxlen: 24 95.129.12.0/24 maxlen: 24 95.129.13.0/24 maxlen: 24 95.129.14.0/24 maxlen: 24 95.129.15.0/24 maxlen: 24 2a05:e940::/29 maxlen: 29 2a05:e940::/48 maxlen: 48 2a05:e940:120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 14:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:1f:8a:45:fa:8d:04:63:95:28:2f:59:72:4d:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4 Validity Not Before: Jan 1 10:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2ea7759abcaad1e2375c02423122b2243a65b4e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:b2:a8:7c:d5:76:f0:02:d6:64:26:78:9c:c7: 14:35:36:41:3d:95:3b:9d:0f:94:3a:59:dd:0a:a7: 8c:47:06:d7:f6:36:e5:10:f1:f7:61:d7:22:7a:f0: a5:45:c1:bd:d2:e2:2c:64:a1:f3:01:e3:3c:b5:89: 8b:e6:69:ce:48:7b:7f:cd:ff:2d:31:f9:84:a4:c7: ad:76:99:fd:f4:5f:e5:5c:b6:f5:e5:ed:ec:56:e7: 90:93:c2:b4:8f:b5:e2:e7:94:dc:a3:80:1e:e1:59: 90:02:a0:7a:62:c3:eb:d1:1d:5b:ff:e6:d7:ad:c9: ed:23:fe:ea:fe:39:23:bf:91:69:05:6b:57:98:00: e0:0c:53:e9:bb:6a:39:17:14:69:24:47:43:b3:b3: e0:aa:bf:8c:76:a2:2c:88:c8:e9:ab:cd:06:f8:16: 83:8c:f4:45:2e:1f:68:a2:2b:e7:d2:0f:27:8f:f5: 02:df:6d:2b:3c:7f:a0:db:c8:8e:24:c2:65:9d:ef: b7:d0:3a:9e:6e:41:fb:a0:0b:ad:9a:0b:32:30:ae: 8e:45:9c:22:96:cf:8f:56:ee:1e:73:28:a8:5a:01: f7:ba:19:74:72:b9:6b:a4:38:e4:29:4d:e0:80:42: ef:38:86:e5:6c:6c:5f:85:c0:27:7c:84:5c:4f:03: 43:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A7:75:9A:BC:AA:D1:E2:37:5C:02:42:31:22:B2:24:3A:65:B4:E2 X509v3 Authority Key Identifier: keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Lqd1mryq0eI3XAJCMSKyJDpltOI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.129.8.0/21 IPv6: 2a05:e940::/29 Signature Algorithm: sha256WithRSAEncryption 7a:2b:3f:a4:95:d4:42:df:66:46:fd:03:3a:31:52:c8:03:e9: ab:03:b4:f9:82:be:6f:16:4b:bb:d5:3d:1b:9a:ab:25:84:01: 26:17:71:3f:1d:1e:3b:5c:91:67:9d:7b:f5:20:4d:71:45:1a: 84:0f:a4:13:73:6c:f8:70:12:da:c0:60:ad:13:17:0e:3e:d4: 01:af:49:86:0c:94:ea:0c:86:35:98:4e:9c:6f:be:6e:6e:b7: 4f:1e:ef:ac:3b:7c:01:bb:d3:81:1d:fc:56:89:63:70:af:80: a6:bd:ca:99:66:99:c4:dd:62:98:6b:a8:7f:35:87:fb:c6:53: 56:e6:96:d5:f2:44:60:97:5a:d5:59:84:ee:d6:9d:0e:13:5e: 42:d3:7e:c0:54:e3:69:0c:c7:9d:06:50:b5:f9:ed:8a:6b:ba: 27:25:c8:7c:bb:46:a2:2e:d8:89:a4:25:dd:7d:e6:6e:35:b2: 13:34:2e:01:21:70:cf:88:b9:61:12:ca:48:b9:23:ac:a2:ca: d0:3e:cc:b7:27:9c:82:c9:8e:f9:c1:70:1e:87:26:fb:78:b1: a7:29:c2:86:16:94:2d:23:a5:7f:9e:d3:d6:59:e1:03:91:0f: 4d:c6:ef:f3:f9:61:8b:94:ef:a2:c5:e6:fa:4f:e9:89:10:c4: 19:c1:c2:49 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5ER+KRfqNBGOVKC9Zck0gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1YWU1ZjIzZGI5ODNmZDEzNmFlOWQ3MWU4N2UxZTUxMzBi Y2Y2ZDQwHhcNMjYwMTAxMTAxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZWE3NzU5YWJjYWFkMWUyMzc1YzAyNDIzMTIyYjIyNDNhNjViNGUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkLKofNV28ALWZCZ4nMcUNTZBPZU7 nQ+UOlndCqeMRwbX9jblEPH3YdcievClRcG90uIsZKHzAeM8tYmL5mnOSHt/zf8t MfmEpMetdpn99F/lXLb15e3sVueQk8K0j7Xi55Tco4Ae4VmQAqB6YsPr0R1b/+bX rcntI/7q/jkjv5FpBWtXmADgDFPpu2o5FxRpJEdDs7Pgqr+MdqIsiMjpq80G+BaD jPRFLh9ooivn0g8nj/UC320rPH+g28iOJMJlne+30DqebkH7oAutmgsyMK6ORZwi ls+PVu4ecyioWgH3uhl0crlrpDjkKU3ggELvOIblbGxfhcAnfIRcTwNDSwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFC6ndZq8qtHiN1wCQjEisiQ6ZbTiMB8GA1UdIwQY MBaAFAWuXyPbmD/RNq6dceh+HlEwvPbUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmE1Zkk5dVlQOUUycnAxeDZINGVVVEM4OXRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS83NDVmY2ItZjQ3Mi00MDM5LThiMWQt NDRlZmQxMzA2NTljLzEvTHFkMW1yeXEwZUkzWEFKQ01TS3lKRHBsdE9JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS83NDVmY2ItZjQ3Mi00MDM5LThiMWQtNDRlZmQxMzA2NTlj LzEvQmE1Zkk5dVlQOUUycnAxeDZINGVVVEM4OXRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDX4EIMA0E AgACMAcDBQMqBelAMA0GCSqGSIb3DQEBCwUAA4IBAQB6Kz+kldRC32ZG/QM6MVLI A+mrA7T5gr5vFku71T0bmqslhAEmF3E/HR47XJFnnXv1IE1xRRqED6QTc2z4cBLa wGCtExcOPtQBr0mGDJTqDIY1mE6cb75ubrdPHu+sO3wBu9OBHfxWiWNwr4CmvcqZ ZpnE3WKYa6h/NYf7xlNW5pbV8kRgl1rVWYTu1p0OE15C037AVONpDMedBlC1+e2K a7onJch8u0aiLtiJpCXdfeZuNbITNC4BIXDPiLlhEspIuSOsosrQPsy3J5yCyY75 wXAehyb7eLGnKcKGFpQtI6V/ntPWWeEDkQ9Nxu/z+WGLlO+ixeb6T+mJEMQZwcJJ -----END CERTIFICATE-----Generated at Fri Jan 9 23:55:55 2026 by rpki-client