This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/e28a8a-664e-473c-8255-74e10099f81c/1/lwdA6JuX3-pn18rffEN0nPoUEzg.roa File: lwdA6JuX3-pn18rffEN0nPoUEzg.roa (raw, json) Hash identifier: 934Mdi6isovZuFn2f0j17OwEt11O6pbILLLQ1tR1JWY= Subject key identifier: 97:07:40:E8:9B:97:DF:EA:67:D7:CA:DF:7C:43:74:9C:FA:14:13:38 Certificate issuer: /CN=84af98aee37a12815b44bfd6beb4be64ac0ef6e5 Certificate serial: 019B7DC9C2418DCF86337D986FEDC2E780A5 Authority key identifier: 84:AF:98:AE:E3:7A:12:81:5B:44:BF:D6:BE:B4:BE:64:AC:0E:F6:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hK-YruN6EoFbRL_WvrS-ZKwO9uU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/e28a8a-664e-473c-8255-74e10099f81c/1/lwdA6JuX3-pn18rffEN0nPoUEzg.roa Signing time: Fri 02 Jan 2026 08:18:53 +0000 ROA not before: Fri 02 Jan 2026 08:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34121 IP address blocks: 91.201.184.0/22 maxlen: 22 2001:678:d8c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/e28a8a-664e-473c-8255-74e10099f81c/1/hK-YruN6EoFbRL_WvrS-ZKwO9uU.crl rsync://rpki.ripe.net/repository/DEFAULT/08/e28a8a-664e-473c-8255-74e10099f81c/1/hK-YruN6EoFbRL_WvrS-ZKwO9uU.mft rsync://rpki.ripe.net/repository/DEFAULT/hK-YruN6EoFbRL_WvrS-ZKwO9uU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:c2:41:8d:cf:86:33:7d:98:6f:ed:c2:e7:80:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84af98aee37a12815b44bfd6beb4be64ac0ef6e5 Validity Not Before: Jan 2 08:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=970740e89b97dfea67d7cadf7c43749cfa141338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:54:ad:00:a1:7b:ea:46:77:d3:86:fa:ad:8f: 49:db:65:25:8e:cf:42:87:88:21:3a:b1:0f:3b:6c: 9b:8f:49:13:25:51:63:5b:a4:8e:c4:9a:ae:5d:2a: 9d:2f:c6:7a:85:5b:60:72:74:3f:95:78:53:d2:ba: 77:42:41:7e:3b:ce:24:35:58:d4:4d:07:f9:46:c5: 84:38:0f:13:87:cc:95:1b:c6:7e:c4:1c:aa:f0:f3: b7:e8:1c:46:9b:f0:7b:11:72:ec:e9:3e:ef:02:78: 85:62:71:08:f1:ae:c2:9a:ae:c6:7f:00:4f:bd:52: b7:54:d1:3b:08:69:07:fc:2e:eb:b9:c4:6f:2a:12: 3f:b1:10:19:cc:80:42:09:63:f5:31:dd:c7:79:71: c8:11:2a:87:4a:cf:ca:53:9f:55:b8:5a:97:17:65: a1:04:84:47:5a:b4:5b:c9:30:f7:7c:9a:b4:ef:48: a4:94:94:4d:40:be:a9:68:e3:e7:07:bc:97:72:bb: 4f:af:0e:a5:82:87:dd:66:0f:07:68:9f:f5:f5:3d: 18:13:48:84:64:64:82:43:04:9d:0d:ef:46:96:ee: f3:70:2e:07:cd:05:ff:1b:06:00:81:8d:ab:c4:47: 10:56:75:ce:fd:03:71:d6:e2:95:14:d4:10:44:49: a3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:07:40:E8:9B:97:DF:EA:67:D7:CA:DF:7C:43:74:9C:FA:14:13:38 X509v3 Authority Key Identifier: keyid:84:AF:98:AE:E3:7A:12:81:5B:44:BF:D6:BE:B4:BE:64:AC:0E:F6:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hK-YruN6EoFbRL_WvrS-ZKwO9uU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e28a8a-664e-473c-8255-74e10099f81c/1/lwdA6JuX3-pn18rffEN0nPoUEzg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e28a8a-664e-473c-8255-74e10099f81c/1/hK-YruN6EoFbRL_WvrS-ZKwO9uU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.201.184.0/22 IPv6: 2001:678:d8c::/48 Signature Algorithm: sha256WithRSAEncryption 3b:fc:64:4b:4f:f1:3c:98:c5:6b:37:b6:5e:fb:a8:9d:86:d9: af:9a:6c:22:e8:c0:6e:62:1c:5c:56:59:32:e6:c1:6e:b2:4e: 38:aa:07:b3:9e:62:19:a1:ba:2c:42:76:32:54:37:73:cd:78: 37:e9:3d:4b:f4:3b:f6:26:ca:40:24:62:fe:91:da:e6:c0:98: e0:d9:35:e2:b0:7b:42:2a:b4:18:b6:99:75:d3:e1:f5:6a:00: 6b:4f:fd:9e:b3:8f:06:aa:43:4e:4a:73:1d:7d:89:8c:95:fc: af:4e:88:de:ef:07:b9:35:e2:a7:e3:59:d9:f2:15:29:93:af: 89:f6:22:fe:f6:e5:c6:25:14:e8:be:ef:6a:8f:75:c2:71:81: 8e:2e:a7:57:84:cf:03:00:9a:11:34:5b:92:fc:ea:42:86:f7: 6d:03:63:49:56:5c:0b:d7:80:64:aa:13:46:06:d2:99:79:1f: 6f:ad:8b:13:06:14:69:87:f7:6a:ec:60:16:a5:bb:f2:0f:5d: 83:96:6e:8e:06:47:27:62:c6:ed:1c:ea:b0:2c:77:19:e7:6d: 63:32:7d:ff:fd:64:64:07:4e:92:b9:bf:a8:9b:df:c8:3c:78: dc:62:84:03:85:2c:00:4b:5e:52:03:3c:6e:6b:09:c4:f2:b6: 0a:50:2a:6c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9ycJBjc+GM32Yb+3C54ClMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YWY5OGFlZTM3YTEyODE1YjQ0YmZkNmJlYjRiZTY0YWMw ZWY2ZTUwHhcNMjYwMTAyMDgxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NzA3NDBlODliOTdkZmVhNjdkN2NhZGY3YzQzNzQ5Y2ZhMTQxMzM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnVStAKF76kZ304b6rY9J22Uljs9C h4ghOrEPO2ybj0kTJVFjW6SOxJquXSqdL8Z6hVtgcnQ/lXhT0rp3QkF+O84kNVjU TQf5RsWEOA8Th8yVG8Z+xByq8PO36BxGm/B7EXLs6T7vAniFYnEI8a7Cmq7GfwBP vVK3VNE7CGkH/C7rucRvKhI/sRAZzIBCCWP1Md3HeXHIESqHSs/KU59VuFqXF2Wh BIRHWrRbyTD3fJq070iklJRNQL6paOPnB7yXcrtPrw6lgofdZg8HaJ/19T0YE0iE ZGSCQwSdDe9Glu7zcC4HzQX/GwYAgY2rxEcQVnXO/QNx1uKVFNQQREmjWQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFJcHQOibl9/qZ9fK33xDdJz6FBM4MB8GA1UdIwQY MBaAFISvmK7jehKBW0S/1r60vmSsDvblMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEstWXJ1TjZFb0ZiUkxfV3ZyUy1aS3dPOXVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9lMjhhOGEtNjY0ZS00NzNjLTgyNTUt NzRlMTAwOTlmODFjLzEvbHdkQTZKdVgzLXBuMThyZmZFTjBuUG9VRXpnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC9lMjhhOGEtNjY0ZS00NzNjLTgyNTUtNzRlMTAwOTlmODFj LzEvaEstWXJ1TjZFb0ZiUkxfV3ZyUy1aS3dPOXVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCW8m4MA8E AgACMAkDBwAgAQZ4DYwwDQYJKoZIhvcNAQELBQADggEBADv8ZEtP8TyYxWs3tl77 qJ2G2a+abCLowG5iHFxWWTLmwW6yTjiqB7OeYhmhuixCdjJUN3PNeDfpPUv0O/Ym ykAkYv6R2ubAmODZNeKwe0IqtBi2mXXT4fVqAGtP/Z6zjwaqQ05Kcx19iYyV/K9O iN7vB7k14qfjWdnyFSmTr4n2Iv725cYlFOi+72qPdcJxgY4up1eEzwMAmhE0W5L8 6kKG920DY0lWXAvXgGSqE0YG0pl5H2+tixMGFGmH92rsYBalu/IPXYOWbo4GRydi xu0c6rAsdxnnbWMyff/9ZGQHTpK5v6ib38g8eNxihAOFLABLXlIDPG5rCcTytgpQ Kmw= -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:02 2026 by rpki-client