This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/LHIG14UPAp8g2JGr8iBTHxbNDUY.roa File: LHIG14UPAp8g2JGr8iBTHxbNDUY.roa (raw, json) Hash identifier: z282brWVrTRVElKpfm6Rs8ynDLSy1/Ovnl45WeI9XmU= Subject key identifier: 2C:72:06:D7:85:0F:02:9F:20:D8:91:AB:F2:20:53:1F:16:CD:0D:46 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB6D834EC3D8095AE024C0019644F1 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/LHIG14UPAp8g2JGr8iBTHxbNDUY.roa Signing time: Fri 02 Jan 2026 08:20:42 +0000 ROA not before: Fri 02 Jan 2026 08:20:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206264 IP address blocks: 151.244.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:6d:83:4e:c3:d8:09:5a:e0:24:c0:01:96:44:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2c7206d7850f029f20d891abf220531f16cd0d46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cd:04:05:ed:54:ff:7e:0c:64:f0:1d:f4:85: 4f:51:33:14:f9:53:13:a0:4e:1d:34:e9:14:71:aa: 9c:73:70:9a:ba:53:38:79:5f:e4:11:d8:4a:6d:4f: 8d:f4:ef:27:2d:a1:69:d4:e3:67:71:0a:ea:b3:55: 7c:c0:c6:1f:0d:dc:0c:da:83:3c:cc:0c:18:d8:07: b0:6a:be:56:8f:03:8b:07:89:bb:ad:f0:a1:94:16: c9:98:16:d3:71:3c:ba:85:82:7a:e9:ed:fb:7d:ee: 00:d8:d1:a9:4e:26:6b:16:a7:1f:8f:7f:a6:15:09: ca:86:45:b7:99:35:30:d4:a5:de:12:e9:b6:30:aa: 2f:5d:93:f1:9c:65:9e:69:fb:30:4e:85:2b:80:7d: bb:6c:1d:fb:4e:b2:86:12:1c:ac:91:34:5e:08:6c: 1f:94:2c:7e:d8:b7:ab:14:aa:0b:04:1b:15:f5:56: 46:20:ab:a3:23:75:d6:c4:31:32:88:a0:e0:fd:dc: 8b:f6:16:76:a1:d8:95:ac:90:30:bb:95:bd:07:4b: 68:56:3a:3d:cd:83:19:5d:c1:f4:30:db:19:88:d2: 0b:c7:f1:02:6c:ec:0c:c0:4c:95:70:d9:14:dc:f4: 26:e2:28:ac:99:8d:51:c7:86:2b:d2:66:27:bd:c6: 3e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:72:06:D7:85:0F:02:9F:20:D8:91:AB:F2:20:53:1F:16:CD:0D:46 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/LHIG14UPAp8g2JGr8iBTHxbNDUY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.244.220.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:68:5f:f2:eb:e6:a8:bf:48:ec:f6:00:cc:c6:dd:34:92:22: 76:66:01:7c:fa:87:16:2f:d9:d5:85:14:b1:28:a0:08:06:38: f8:72:90:81:e1:5e:d9:c9:79:26:2e:d2:de:bb:47:7d:19:cd: f8:05:75:85:d2:cf:99:57:d9:ad:b8:c4:45:86:47:89:60:2c: 0e:91:2e:d1:50:e3:a6:17:52:13:80:b2:14:f8:06:a9:4c:e6: 81:7f:d0:79:b8:47:3b:52:df:f0:6d:38:3e:45:5a:40:5e:60: e9:2c:d5:2f:b4:d1:2d:1b:c0:e3:5e:ae:b2:60:ae:85:79:2d: 61:1f:ef:71:aa:d0:d2:ca:63:4c:7d:cd:37:71:60:75:61:33: 74:46:d1:e6:96:a8:28:dd:c5:81:af:a0:8d:10:78:4f:00:e4: 3f:46:5e:7d:de:f8:6c:bd:11:e6:1a:93:6d:d2:3b:06:5a:80: 15:c2:b6:a5:de:db:c9:10:a5:48:ca:dd:22:b8:e5:d3:85:86: 6f:41:72:eb:d3:3b:6d:b3:f3:be:04:d5:ee:54:be:77:3e:d1: 58:41:ce:7a:74:56:50:0e:9a:a6:77:1c:2a:af:91:17:e0:e9: 57:93:ee:30:4d:e8:71:b2:e6:74:78:19:41:0a:66:37:34:b6: 68:4b:a7:b3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y22DTsPYCVrgJMABlkTxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYzcyMDZkNzg1MGYwMjlmMjBkODkxYWJmMjIwNTMxZjE2Y2QwZDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzM0EBe1U/34MZPAd9IVPUTMU+VMT oE4dNOkUcaqcc3CaulM4eV/kEdhKbU+N9O8nLaFp1ONncQrqs1V8wMYfDdwM2oM8 zAwY2Aewar5WjwOLB4m7rfChlBbJmBbTcTy6hYJ66e37fe4A2NGpTiZrFqcfj3+m FQnKhkW3mTUw1KXeEum2MKovXZPxnGWeafswToUrgH27bB37TrKGEhyskTReCGwf lCx+2LerFKoLBBsV9VZGIKujI3XWxDEyiKDg/dyL9hZ2odiVrJAwu5W9B0toVjo9 zYMZXcH0MNsZiNILx/ECbOwMwEyVcNkU3PQm4iismY1Rx4Yr0mYnvcY+dwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCxyBteFDwKfINiRq/IgUx8WzQ1GMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvTEhJRzE0VVBBcDhnMkpHcjhpQlRIeGJORFVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/TcMA0G CSqGSIb3DQEBCwUAA4IBAQBNaF/y6+aov0js9gDMxt00kiJ2ZgF8+ocWL9nVhRSx KKAIBjj4cpCB4V7ZyXkmLtLeu0d9Gc34BXWF0s+ZV9mtuMRFhkeJYCwOkS7RUOOm F1ITgLIU+AapTOaBf9B5uEc7Ut/wbTg+RVpAXmDpLNUvtNEtG8DjXq6yYK6FeS1h H+9xqtDSymNMfc03cWB1YTN0RtHmlqgo3cWBr6CNEHhPAOQ/Rl593vhsvRHmGpNt 0jsGWoAVwral3tvJEKVIyt0iuOXThYZvQXLr0ztts/O+BNXuVL53PtFYQc56dFZQ Dpqmdxwqr5EX4OlXk+4wTehxsuZ0eBlBCmY3NLZoS6ez -----END CERTIFICATE-----Generated at Sun Jan 18 06:31:38 2026 by rpki-client