This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/lZ1qvLI02CD8UXhaq52LvdNAKcY.roa File: lZ1qvLI02CD8UXhaq52LvdNAKcY.roa (raw, json) Hash identifier: /Ub1OWh7+9Ly/PwiA4DBQeFni2XC79IYKxPRK7AiJsc= Subject key identifier: 95:9D:6A:BC:B2:34:D8:20:FC:51:78:5A:AB:9D:8B:BD:D3:40:29:C6 Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4 Certificate serial: 019B7CEE33EF42F60316A3E016F9961B38B9 Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/lZ1qvLI02CD8UXhaq52LvdNAKcY.roa Signing time: Fri 02 Jan 2026 04:19:04 +0000 ROA not before: Fri 02 Jan 2026 04:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6830 IP address blocks: 78.143.236.0/22 maxlen: 22 89.46.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 22:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:33:ef:42:f6:03:16:a3:e0:16:f9:96:1b:38:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4 Validity Not Before: Jan 2 04:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=959d6abcb234d820fc51785aab9d8bbdd34029c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e0:8d:64:19:cf:06:1f:9d:f9:aa:bd:c0:fb: 9e:5e:65:cb:80:7b:75:8f:42:f5:77:9d:3c:ac:0e: 57:86:56:59:73:4d:bb:20:40:7f:d9:34:5d:87:db: 9a:ab:02:4c:6b:08:eb:36:e1:c1:a2:21:05:bd:1f: 45:27:43:27:a0:9d:a3:03:b2:72:e4:93:33:c4:c7: b5:c3:dc:49:e1:82:41:33:ef:47:94:68:f5:1e:79: ef:fe:7e:68:c4:48:2b:8e:99:85:78:af:c9:29:71: 61:1d:1a:2e:73:a0:b3:06:ac:69:d1:39:38:dd:ba: 6d:f9:94:54:65:2b:b1:bd:56:4c:17:36:68:e1:32: b4:d5:2a:75:35:39:6c:2f:d4:0d:61:a4:8c:fb:01: e6:68:53:b7:79:fa:bf:1a:6f:ed:67:3a:b3:6c:22: b5:95:6e:9a:97:21:ba:93:7d:11:0f:7d:df:8a:30: d3:8e:18:a6:14:86:a0:b2:51:2e:60:63:7b:f0:6d: 48:03:f7:1e:4c:a8:9e:04:af:14:4e:59:35:75:a3: 92:a0:be:4e:60:97:64:22:dc:95:61:5f:3e:8a:33: ba:7b:7c:da:74:53:dd:4f:5a:af:23:eb:82:e7:ab: b2:fa:fe:63:b6:7e:30:2d:3e:ea:6c:38:4f:9a:93: 9b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:9D:6A:BC:B2:34:D8:20:FC:51:78:5A:AB:9D:8B:BD:D3:40:29:C6 X509v3 Authority Key Identifier: keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/lZ1qvLI02CD8UXhaq52LvdNAKcY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.143.236.0/22 89.46.176.0/22 Signature Algorithm: sha256WithRSAEncryption 27:9a:36:0e:cc:fd:60:29:bc:48:c6:bd:8d:a5:bc:3b:84:a9: a9:2e:95:39:5e:85:68:93:d7:8b:2b:43:77:a5:a4:c5:49:88: 50:e7:26:de:36:ef:55:be:39:cd:42:6d:fb:8d:48:79:5f:7c: 6f:96:52:eb:01:1d:10:91:7d:f2:b3:75:26:d5:37:18:5e:e7: 00:26:59:4c:da:22:6e:4a:f3:d9:3a:a5:96:ab:04:28:ee:15: 44:c7:ec:e8:2a:b4:56:ca:01:7f:e6:1c:bc:68:b3:c2:6d:e7: d8:8a:46:44:b0:0e:23:5d:09:f9:fc:4c:43:21:2e:58:41:e0: fc:db:5f:85:cd:2c:52:7b:36:39:52:7a:f0:8c:5f:7d:9c:0f: 2a:87:37:ec:4e:89:1b:04:6f:3a:ed:30:70:48:bb:5e:be:4e: 40:f6:3c:db:b4:35:67:d6:8e:21:b1:4d:7d:ef:b9:a2:b3:c6: 96:91:70:7b:65:0d:f2:12:8e:a6:3b:44:fa:f7:37:d4:2b:d4: b3:a2:c6:9b:ee:88:33:4c:11:b0:a4:de:58:22:1c:98:8b:2a: 80:c9:bd:c6:58:e9:77:90:95:0f:f2:1a:33:62:89:50:d3:4d: 38:99:99:54:44:70:d4:c2:fa:0a:8e:bc:36:4b:52:e0:8b:5f: e7:dd:5e:8a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87jPvQvYDFqPgFvmWGzi5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2 N2IxZTQwHhcNMjYwMTAyMDQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NTlkNmFiY2IyMzRkODIwZmM1MTc4NWFhYjlkOGJiZGQzNDAyOWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+CNZBnPBh+d+aq9wPueXmXLgHt1 j0L1d508rA5XhlZZc027IEB/2TRdh9uaqwJMawjrNuHBoiEFvR9FJ0MnoJ2jA7Jy 5JMzxMe1w9xJ4YJBM+9HlGj1Hnnv/n5oxEgrjpmFeK/JKXFhHRouc6CzBqxp0Tk4 3bpt+ZRUZSuxvVZMFzZo4TK01Sp1NTlsL9QNYaSM+wHmaFO3efq/Gm/tZzqzbCK1 lW6alyG6k30RD33fijDTjhimFIagslEuYGN78G1IA/ceTKieBK8UTlk1daOSoL5O YJdkItyVYV8+ijO6e3zadFPdT1qvI+uC56uy+v5jtn4wLT7qbDhPmpObrQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJWdaryyNNgg/FF4Wqudi73TQCnGMB8GA1UdIwQY MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut ODk3MTRhN2U4ZDU4LzEvbFoxcXZMSTAyQ0Q4VVhoYXE1Mkx2ZE5BS2NZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4 LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCTo/sAwQC WS6wMA0GCSqGSIb3DQEBCwUAA4IBAQAnmjYOzP1gKbxIxr2Npbw7hKmpLpU5XoVo k9eLK0N3paTFSYhQ5ybeNu9VvjnNQm37jUh5X3xvllLrAR0QkX3ys3Um1TcYXucA JllM2iJuSvPZOqWWqwQo7hVEx+zoKrRWygF/5hy8aLPCbefYikZEsA4jXQn5/ExD IS5YQeD821+FzSxSezY5UnrwjF99nA8qhzfsTokbBG867TBwSLtevk5A9jzbtDVn 1o4hsU1977mis8aWkXB7ZQ3yEo6mO0T69zfUK9Szosab7ogzTBGwpN5YIhyYiyqA yb3GWOl3kJUP8hozYolQ0004mZlURHDUwvoKjrw2S1Lgi1/n3V6K -----END CERTIFICATE-----Generated at Wed Jan 21 04:57:24 2026 by rpki-client