This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/lWHGG7_f5OqTv0LmU1Cq9xuDChI.roa File: lWHGG7_f5OqTv0LmU1Cq9xuDChI.roa (raw, json) Hash identifier: vy8Lvl/OimTfUisZZ2J0ZdnOHx/P1IuOxxEKFhLRgLU= Subject key identifier: 95:61:C6:1B:BF:DF:E4:EA:93:BF:42:E6:53:50:AA:F7:1B:83:0A:12 Certificate issuer: /CN=70bf553042f1a43827dc034500bbd1068a7297ca Certificate serial: 019B7EA722B8A96DCF7DE7EFB2F2CA4C89A4 Authority key identifier: 70:BF:55:30:42:F1:A4:38:27:DC:03:45:00:BB:D1:06:8A:72:97:CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cL9VMELxpDgn3ANFALvRBopyl8o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/lWHGG7_f5OqTv0LmU1Cq9xuDChI.roa Signing time: Fri 02 Jan 2026 12:20:41 +0000 ROA not before: Fri 02 Jan 2026 12:20:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 147049 IP address blocks: 2a13:240::/48 maxlen: 48 2a13:240:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/cL9VMELxpDgn3ANFALvRBopyl8o.crl rsync://rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/cL9VMELxpDgn3ANFALvRBopyl8o.mft rsync://rpki.ripe.net/repository/DEFAULT/cL9VMELxpDgn3ANFALvRBopyl8o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:22:b8:a9:6d:cf:7d:e7:ef:b2:f2:ca:4c:89:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70bf553042f1a43827dc034500bbd1068a7297ca Validity Not Before: Jan 2 12:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9561c61bbfdfe4ea93bf42e65350aaf71b830a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0f:b1:fd:03:06:78:c0:c0:75:e2:d9:3d:99: 61:3e:80:47:0e:5d:95:15:b5:aa:3a:fb:75:74:dc: df:ce:9f:63:8a:76:a5:9f:4e:6c:a6:d5:c5:0c:38: 7d:64:fd:18:46:76:83:a8:b9:c7:60:b9:fc:71:44: 42:8c:47:0e:8f:97:f9:8c:9a:07:87:9a:d4:ad:1a: 88:b3:d9:f7:d7:da:9a:78:da:d5:3d:e6:19:bf:1d: 60:92:58:0a:3b:7f:09:eb:4a:73:2f:84:93:5d:62: 2d:83:52:ef:8b:9b:94:01:9f:97:d1:0a:eb:3e:62: 6e:4f:41:cc:39:a2:e8:ed:7a:9b:56:b5:17:3c:75: 4b:7e:91:6e:2f:ea:b5:72:86:3d:a9:58:55:71:cb: ba:8a:20:94:af:ca:4f:7c:17:b9:85:a0:3c:50:8c: 88:c9:10:4d:0b:73:2d:b6:cc:d0:e7:3d:1a:3b:0b: 0a:c6:a0:b1:bf:ed:dd:89:64:8f:22:0f:3b:26:49: 92:ba:97:3d:6d:9b:79:08:dc:03:85:3b:7e:c8:3a: dd:e1:ac:93:32:5c:8f:f4:2a:4b:a2:c2:5e:1c:ee: 2e:b5:b9:82:16:15:3c:f4:e6:77:a9:2a:2a:7e:df: f4:60:58:12:f0:a3:3d:03:77:c0:2f:02:be:e8:c1: 86:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:61:C6:1B:BF:DF:E4:EA:93:BF:42:E6:53:50:AA:F7:1B:83:0A:12 X509v3 Authority Key Identifier: keyid:70:BF:55:30:42:F1:A4:38:27:DC:03:45:00:BB:D1:06:8A:72:97:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cL9VMELxpDgn3ANFALvRBopyl8o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/lWHGG7_f5OqTv0LmU1Cq9xuDChI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/df7944-2589-47cb-ab56-5358401fb796/1/cL9VMELxpDgn3ANFALvRBopyl8o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:240::/48 2a13:240:4000::/40 Signature Algorithm: sha256WithRSAEncryption 6c:0e:92:d8:cc:d0:df:84:6c:7a:65:d4:e7:5b:97:0d:2a:c0: 6d:5c:b6:29:87:0f:66:6a:19:06:bb:14:18:74:72:60:9b:7e: e9:29:8e:3a:d9:9f:15:8a:e7:d8:cc:fb:94:be:9f:2c:93:29: 18:ff:6b:6f:a2:c6:45:cb:4a:3d:d8:6c:63:ed:fa:b0:f9:cc: 41:c3:43:22:3e:f1:19:eb:89:ec:5f:7b:e8:b8:63:1b:7a:9e: 01:a4:ed:2f:81:e3:71:a4:91:0d:b3:9d:b8:b4:a9:ed:14:34: a8:2f:04:34:85:0d:04:32:3c:67:44:b3:4c:fc:83:66:b6:df: 00:a5:db:7f:84:74:6c:5f:a7:7b:66:e9:c7:fe:bc:5d:f9:3f: de:c8:c9:83:38:8c:e0:da:f4:e3:2b:2b:61:61:65:09:ee:2c: a1:81:63:36:f0:41:4a:ce:0a:f1:4a:fd:17:22:8c:f8:8f:de: e9:84:3b:14:7e:bc:e7:97:9e:fe:79:38:5b:05:eb:25:e9:ed: 37:9f:fe:67:bc:1b:1e:4b:3e:0c:1b:d5:9c:54:29:78:54:44: ae:69:fd:20:94:f2:36:d4:0c:0b:78:26:39:34:00:e9:ac:4e: 26:23:a9:d5:b0:0a:e9:ec:69:ab:46:f0:5e:da:88:23:4d:07: 12:6c:c3:39 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZt+pyK4qW3PfefvsvLKTImkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwYmY1NTMwNDJmMWE0MzgyN2RjMDM0NTAwYmJkMTA2OGE3 Mjk3Y2EwHhcNMjYwMTAyMTIyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NTYxYzYxYmJmZGZlNGVhOTNiZjQyZTY1MzUwYWFmNzFiODMwYTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuw+x/QMGeMDAdeLZPZlhPoBHDl2V FbWqOvt1dNzfzp9jinaln05sptXFDDh9ZP0YRnaDqLnHYLn8cURCjEcOj5f5jJoH h5rUrRqIs9n319qaeNrVPeYZvx1gklgKO38J60pzL4STXWItg1Lvi5uUAZ+X0Qrr PmJuT0HMOaLo7XqbVrUXPHVLfpFuL+q1coY9qVhVccu6iiCUr8pPfBe5haA8UIyI yRBNC3MttszQ5z0aOwsKxqCxv+3diWSPIg87JkmSupc9bZt5CNwDhTt+yDrd4ayT MlyP9CpLosJeHO4utbmCFhU89OZ3qSoqft/0YFgS8KM9A3fALwK+6MGGrQIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFJVhxhu/3+Tqk79C5lNQqvcbgwoSMB8GA1UdIwQY MBaAFHC/VTBC8aQ4J9wDRQC70QaKcpfKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0w5Vk1FTHhwRGduM0FORkFMdlJCb3B5bDhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9kZjc5NDQtMjU4OS00N2NiLWFiNTYt NTM1ODQwMWZiNzk2LzEvbFdIR0c3X2Y1T3FUdjBMbVUxQ3E5eHVEQ2hJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9kZjc5NDQtMjU4OS00N2NiLWFiNTYtNTM1ODQwMWZiNzk2 LzEvY0w5Vk1FTHhwRGduM0FORkFMdlJCb3B5bDhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKhMCQAAA AwYAKhMCQEAwDQYJKoZIhvcNAQELBQADggEBAGwOktjM0N+EbHpl1Odblw0qwG1c timHD2ZqGQa7FBh0cmCbfukpjjrZnxWK59jM+5S+nyyTKRj/a2+ixkXLSj3YbGPt +rD5zEHDQyI+8Rnriexfe+i4Yxt6ngGk7S+B43GkkQ2znbi0qe0UNKgvBDSFDQQy PGdEs0z8g2a23wCl23+EdGxfp3tm6cf+vF35P97IyYM4jODa9OMrK2FhZQnuLKGB YzbwQUrOCvFK/RcijPiP3umEOxR+vOeXnv55OFsF6yXp7Tef/me8Gx5LPgwb1ZxU KXhURK5p/SCU8jbUDAt4Jjk0AOmsTiYjqdWwCunsaatG8F7aiCNNBxJswzk= -----END CERTIFICATE-----Generated at Mon Jan 19 17:34:11 2026 by rpki-client