This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/824d8d-b046-46f6-86b8-9b8ace4281f3/1/LwqXAM6lPGk_PmFvOULH64ObLAs.roa File: LwqXAM6lPGk_PmFvOULH64ObLAs.roa (raw, json) Hash identifier: MrcdOxOshx/gVLtXaalP4jwQbNYdpAAfBt14JuVSsXw= Subject key identifier: 2F:0A:97:00:CE:A5:3C:69:3F:3E:61:6F:39:42:C7:EB:83:9B:2C:0B Certificate issuer: /CN=afedc3a63df17bb4bf34560957967e59a8b3e3a1 Certificate serial: 019B76EAFA8BF6EE5E83E6950E26D02936CB Authority key identifier: AF:ED:C3:A6:3D:F1:7B:B4:BF:34:56:09:57:96:7E:59:A8:B3:E3:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-3Dpj3xe7S_NFYJV5Z-Waiz46E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/824d8d-b046-46f6-86b8-9b8ace4281f3/1/LwqXAM6lPGk_PmFvOULH64ObLAs.roa Signing time: Thu 01 Jan 2026 00:17:49 +0000 ROA not before: Thu 01 Jan 2026 00:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215559 IP address blocks: 45.129.166.0/24 maxlen: 24 2a13:1140::/29 maxlen: 30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/824d8d-b046-46f6-86b8-9b8ace4281f3/1/r-3Dpj3xe7S_NFYJV5Z-Waiz46E.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/824d8d-b046-46f6-86b8-9b8ace4281f3/1/r-3Dpj3xe7S_NFYJV5Z-Waiz46E.mft rsync://rpki.ripe.net/repository/DEFAULT/r-3Dpj3xe7S_NFYJV5Z-Waiz46E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:fa:8b:f6:ee:5e:83:e6:95:0e:26:d0:29:36:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=afedc3a63df17bb4bf34560957967e59a8b3e3a1 Validity Not Before: Jan 1 00:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2f0a9700cea53c693f3e616f3942c7eb839b2c0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:49:2b:4f:f9:3a:bb:e3:ec:d1:b4:02:a1:5d: f1:cc:47:d4:99:a6:08:3a:cf:81:53:33:10:b7:e8: aa:40:02:a5:c8:d6:48:68:fe:9b:75:95:49:dd:f7: a9:c5:db:20:30:72:9d:eb:b6:ff:59:0a:17:75:b9: fc:d2:f2:0a:af:71:cc:ec:31:13:1b:b5:58:8e:2b: 43:f7:bf:b9:6d:b5:a1:34:07:fb:b6:b0:0c:0c:42: c8:7b:f0:ea:83:4c:ed:6e:50:5d:3b:19:59:f2:36: 9b:28:f7:0e:f5:01:46:54:9c:00:c1:6d:1f:03:a0: 07:df:4c:92:65:7e:f3:d9:5d:6c:55:f5:51:2d:70: cc:d7:85:e1:65:20:84:a1:38:20:7b:8e:1c:02:52: 1c:26:fd:dd:a0:8d:df:e5:56:b8:d5:1b:78:d7:fb: 69:5e:d5:96:e0:79:86:ab:b7:18:75:7c:8a:fc:50: 1a:46:7d:4d:d4:e2:c4:5d:24:26:3b:22:31:69:dc: aa:28:1d:d7:ab:ab:08:83:9c:75:dd:57:bf:90:d8: 4e:94:b0:fc:77:6a:00:5c:07:57:7e:87:23:dd:37: df:f0:1e:1f:cb:ce:92:18:56:f7:8e:07:3e:5f:e2: ad:19:b3:3e:af:ad:8f:80:38:a0:51:e1:5c:15:38: 0d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:0A:97:00:CE:A5:3C:69:3F:3E:61:6F:39:42:C7:EB:83:9B:2C:0B X509v3 Authority Key Identifier: keyid:AF:ED:C3:A6:3D:F1:7B:B4:BF:34:56:09:57:96:7E:59:A8:B3:E3:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-3Dpj3xe7S_NFYJV5Z-Waiz46E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/824d8d-b046-46f6-86b8-9b8ace4281f3/1/LwqXAM6lPGk_PmFvOULH64ObLAs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/824d8d-b046-46f6-86b8-9b8ace4281f3/1/r-3Dpj3xe7S_NFYJV5Z-Waiz46E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.129.166.0/24 IPv6: 2a13:1140::/29 Signature Algorithm: sha256WithRSAEncryption 39:11:a0:5a:5e:78:64:49:e3:80:b0:49:13:49:88:11:7a:24: f5:8b:84:87:6e:07:a3:25:89:3f:4c:b8:b5:25:41:f7:a2:bd: 21:35:09:63:87:c6:3e:67:2e:4f:65:83:04:17:ef:2a:36:4a: 13:f5:2e:19:56:cd:8e:af:51:f5:b5:48:3a:f5:bb:bd:7d:dd: 5b:c7:fd:16:89:4a:21:7b:fa:63:94:30:05:4f:8a:3e:a7:4e: 89:e3:8f:73:0a:8a:ac:d6:60:3d:87:47:fb:da:da:38:52:39: 6f:0e:a9:b5:c9:a5:a2:81:f4:f4:24:95:fd:61:06:ba:b7:40: 5b:b3:94:d5:10:17:5d:41:4f:94:05:f4:aa:21:d1:23:52:e8: ae:31:20:f8:41:2d:31:e0:8a:46:9e:dd:00:53:99:cc:c5:65: b7:bf:7a:2b:d2:8c:b6:1e:60:ed:f1:12:76:b7:8a:78:12:31: 0d:dc:2b:bf:20:7f:b1:c5:55:af:b9:ee:0e:8f:51:1d:9d:15: 45:82:5a:25:ff:6e:46:b4:da:b1:37:14:a3:56:af:8e:ff:e8: 61:1b:f2:94:10:32:c4:f7:b3:52:0d:bc:e2:d4:2a:80:4c:cc: 2f:de:71:39:26:5b:cb:a1:58:e1:41:45:4e:96:03:93:f5:82: 40:53:b8:0a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt26vqL9u5eg+aVDibQKTbLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmZWRjM2E2M2RmMTdiYjRiZjM0NTYwOTU3OTY3ZTU5YThi M2UzYTEwHhcNMjYwMTAxMDAxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZjBhOTcwMGNlYTUzYzY5M2YzZTYxNmYzOTQyYzdlYjgzOWIyYzBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA60krT/k6u+Ps0bQCoV3xzEfUmaYI Os+BUzMQt+iqQAKlyNZIaP6bdZVJ3fepxdsgMHKd67b/WQoXdbn80vIKr3HM7DET G7VYjitD97+5bbWhNAf7trAMDELIe/Dqg0ztblBdOxlZ8jabKPcO9QFGVJwAwW0f A6AH30ySZX7z2V1sVfVRLXDM14XhZSCEoTgge44cAlIcJv3doI3f5Va41Rt41/tp XtWW4HmGq7cYdXyK/FAaRn1N1OLEXSQmOyIxadyqKB3Xq6sIg5x13Ve/kNhOlLD8 d2oAXAdXfocj3Tff8B4fy86SGFb3jgc+X+KtGbM+r62PgDigUeFcFTgNsQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFC8KlwDOpTxpPz5hbzlCx+uDmywLMB8GA1UdIwQY MBaAFK/tw6Y98Xu0vzRWCVeWflmos+OhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvci0zRHBqM3hlN1NfTkZZSlY1Wi1XYWl6NDZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi84MjRkOGQtYjA0Ni00NmY2LTg2Yjgt OWI4YWNlNDI4MWYzLzEvTHdxWEFNNmxQR2tfUG1Gdk9VTEg2NE9iTEFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi84MjRkOGQtYjA0Ni00NmY2LTg2YjgtOWI4YWNlNDI4MWYz LzEvci0zRHBqM3hlN1NfTkZZSlY1Wi1XYWl6NDZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALYGmMA0E AgACMAcDBQMqExFAMA0GCSqGSIb3DQEBCwUAA4IBAQA5EaBaXnhkSeOAsEkTSYgR eiT1i4SHbgejJYk/TLi1JUH3or0hNQljh8Y+Zy5PZYMEF+8qNkoT9S4ZVs2Or1H1 tUg69bu9fd1bx/0WiUohe/pjlDAFT4o+p06J449zCoqs1mA9h0f72to4UjlvDqm1 yaWigfT0JJX9YQa6t0Bbs5TVEBddQU+UBfSqIdEjUuiuMSD4QS0x4IpGnt0AU5nM xWW3v3or0oy2HmDt8RJ2t4p4EjEN3Cu/IH+xxVWvue4Oj1EdnRVFglol/25GtNqx NxSjVq+O/+hhG/KUEDLE97NSDbzi1CqATMwv3nE5JlvLoVjhQUVOlgOT9YJAU7gK -----END CERTIFICATE-----Generated at Mon Jan 26 10:13:42 2026 by rpki-client