This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/LnDxIxD-hluuct808CIO9EDyMIU.roa File: LnDxIxD-hluuct808CIO9EDyMIU.roa (raw, json) Hash identifier: BcxRwhFwjkIGGKDrrvqL77SCEYThrU0rRvnjjzU14s8= Subject key identifier: 2E:70:F1:23:10:FE:86:5B:AE:72:DF:34:F0:22:0E:F4:40:F2:30:85 Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba Certificate serial: 019B7AC796A32A11A2399385014F20DBA5B5 Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/LnDxIxD-hluuct808CIO9EDyMIU.roa Signing time: Thu 01 Jan 2026 18:17:39 +0000 ROA not before: Thu 01 Jan 2026 18:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200645 IP address blocks: 5.202.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.mft rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:96:a3:2a:11:a2:39:93:85:01:4f:20:db:a5:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba Validity Not Before: Jan 1 18:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e70f12310fe865bae72df34f0220ef440f23085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5a:3b:91:55:bd:5c:33:a6:81:fd:65:14:fa: 87:dc:f5:80:3d:2a:9e:cc:f2:9f:e2:6d:de:ab:17: 29:8d:7b:f2:ca:f4:1e:78:7d:53:61:b5:d8:68:8b: cf:e7:9c:05:bc:f3:58:e5:ea:54:ee:5f:5c:bf:04: f5:13:f9:bf:d7:c0:d2:ed:31:d1:90:11:01:8d:06: eb:0e:19:92:0b:85:70:ce:2a:96:6a:2e:55:41:13: e5:1f:f1:4a:ab:2f:de:80:78:20:9a:13:a7:30:01: cc:c7:8f:85:e6:d1:3d:19:cd:a0:3e:dc:84:b6:a0: 0b:63:d5:77:8a:a2:dd:4d:82:dc:92:ce:77:ce:84: 7a:1b:fa:82:64:27:27:c1:5d:2a:2a:5a:69:d0:75: dc:c7:b6:1e:1c:1c:a6:e0:6a:ee:aa:ed:a5:c6:9a: 30:2a:b7:d7:84:f7:90:4d:f4:ba:16:9e:af:17:18: a6:f8:c3:9e:a7:b6:14:9c:62:06:7a:7d:38:21:95: d4:93:ee:ea:49:91:ba:4c:09:c9:a5:5b:10:d7:bc: 0e:13:e7:03:9c:78:91:09:10:18:2e:ae:5b:61:59: 11:9a:40:ed:53:75:99:dc:39:d0:e2:53:48:53:9f: af:25:c1:1f:22:41:73:79:e3:44:48:fb:07:b9:0a: ed:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:70:F1:23:10:FE:86:5B:AE:72:DF:34:F0:22:0E:F4:40:F2:30:85 X509v3 Authority Key Identifier: keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/LnDxIxD-hluuct808CIO9EDyMIU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.202.208.0/20 Signature Algorithm: sha256WithRSAEncryption 90:3c:27:02:04:e0:32:ec:af:61:ad:f5:90:2f:53:68:0e:91: e6:4b:8a:15:4a:72:b5:c2:93:79:b4:bd:f5:1e:bb:d3:ee:05: 6f:35:ee:9e:49:be:cf:a2:44:f2:46:94:2b:bc:52:3e:c7:16: 08:c5:7b:f8:40:44:40:21:eb:42:82:34:24:c0:21:db:96:68: f5:ea:42:14:ce:ee:74:e3:eb:76:f5:9f:0b:4f:97:e7:69:39: 96:5b:19:2a:7f:e0:90:84:c7:89:51:dc:27:b7:03:f8:57:73: dc:19:18:e2:71:6f:ff:68:4c:98:48:af:4e:2f:9c:62:28:31: 78:62:19:e5:09:2c:23:8b:ee:da:66:f0:7a:30:97:a4:dd:5e: 0b:ce:a0:70:17:52:14:82:42:4a:b7:25:54:3b:6e:47:9a:26: d8:59:98:e2:95:3a:08:5e:a8:b4:c3:58:50:34:68:ac:55:26: 76:c7:32:0a:89:37:c0:6b:10:90:57:20:35:11:53:9b:0b:d4: 06:7f:09:3f:dd:01:13:86:08:40:82:8e:da:11:cf:f3:27:b0: ad:13:d4:ab:24:7b:ba:ca:1d:f8:fd:5a:0d:18:68:19:2e:a2: 4c:79:f7:bc:23:a9:35:36:35:41:c0:74:81:69:b9:69:0e:aa: 02:a4:97:a8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x5ajKhGiOZOFAU8g26W1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhMWU2OTM2OGFiZDM0NTM4ZmU3N2RkYWFiY2RjODM1YWY1 OTVlYmEwHhcNMjYwMTAxMTgxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTcwZjEyMzEwZmU4NjViYWU3MmRmMzRmMDIyMGVmNDQwZjIzMDg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolo7kVW9XDOmgf1lFPqH3PWAPSqe zPKf4m3eqxcpjXvyyvQeeH1TYbXYaIvP55wFvPNY5epU7l9cvwT1E/m/18DS7THR kBEBjQbrDhmSC4VwziqWai5VQRPlH/FKqy/egHggmhOnMAHMx4+F5tE9Gc2gPtyE tqALY9V3iqLdTYLcks53zoR6G/qCZCcnwV0qKlpp0HXcx7YeHBym4Gruqu2lxpow KrfXhPeQTfS6Fp6vFxim+MOep7YUnGIGen04IZXUk+7qSZG6TAnJpVsQ17wOE+cD nHiRCRAYLq5bYVkRmkDtU3WZ3DnQ4lNIU5+vJcEfIkFzeeNESPsHuQrtGwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC5w8SMQ/oZbrnLfNPAiDvRA8jCFMB8GA1UdIwQY MBaAFJoeaTaKvTRTj+d92qvNyDWvWV66MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjIt MTA5ODJlMDQwZDUzLzEvTG5EeEl4RC1obHV1Y3Q4MDhDSU85RUR5TUlVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjItMTA5ODJlMDQwZDUz LzEvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEBcrQMA0G CSqGSIb3DQEBCwUAA4IBAQCQPCcCBOAy7K9hrfWQL1NoDpHmS4oVSnK1wpN5tL31 HrvT7gVvNe6eSb7PokTyRpQrvFI+xxYIxXv4QERAIetCgjQkwCHblmj16kIUzu50 4+t29Z8LT5fnaTmWWxkqf+CQhMeJUdwntwP4V3PcGRjicW//aEyYSK9OL5xiKDF4 YhnlCSwji+7aZvB6MJek3V4LzqBwF1IUgkJKtyVUO25HmibYWZjilToIXqi0w1hQ NGisVSZ2xzIKiTfAaxCQVyA1EVObC9QGfwk/3QEThghAgo7aEc/zJ7CtE9SrJHu6 yh34/VoNGGgZLqJMefe8I6k1NjVBwHSBablpDqoCpJeo -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:56 2026 by rpki-client