This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/590e6a-c4fb-4e4d-9ff4-717cf7d73587/1/Lhy8SYG2GhG0L5kTN-q8cr7WG-c.roa File: Lhy8SYG2GhG0L5kTN-q8cr7WG-c.roa (raw, json) Hash identifier: h3RdkKZeJn3Jmuk2vF/0N6uD1EiWryKCe7zVgNp/r4E= Subject key identifier: 2E:1C:BC:49:81:B6:1A:11:B4:2F:99:13:37:EA:BC:72:BE:D6:1B:E7 Certificate issuer: /CN=c15f0608297e9f94371a72d93ad7b11f79c1f83f Certificate serial: 019B0DF79B6FD17B9B893BC5E83A8BCC42B8 Authority key identifier: C1:5F:06:08:29:7E:9F:94:37:1A:72:D9:3A:D7:B1:1F:79:C1:F8:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wV8GCCl-n5Q3GnLZOtexH3nB-D8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/590e6a-c4fb-4e4d-9ff4-717cf7d73587/1/Lhy8SYG2GhG0L5kTN-q8cr7WG-c.roa Signing time: Thu 11 Dec 2025 15:11:29 +0000 ROA not before: Thu 11 Dec 2025 15:11:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 47536 IP address blocks: 185.93.174.0/24 maxlen: 24 188.116.50.0/24 maxlen: 24 188.116.51.0/24 maxlen: 24 193.105.29.0/24 maxlen: 24 2a12:79c0::/32 maxlen: 44 2a12:79c0::/36 maxlen: 36 2a12:79c1::/32 maxlen: 44 2a12:79c1::/44 maxlen: 44 2a12:79c1:10::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/590e6a-c4fb-4e4d-9ff4-717cf7d73587/1/wV8GCCl-n5Q3GnLZOtexH3nB-D8.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/590e6a-c4fb-4e4d-9ff4-717cf7d73587/1/wV8GCCl-n5Q3GnLZOtexH3nB-D8.mft rsync://rpki.ripe.net/repository/DEFAULT/wV8GCCl-n5Q3GnLZOtexH3nB-D8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:f7:9b:6f:d1:7b:9b:89:3b:c5:e8:3a:8b:cc:42:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c15f0608297e9f94371a72d93ad7b11f79c1f83f Validity Not Before: Dec 11 15:11:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=2e1cbc4981b61a11b42f991337eabc72bed61be7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c6:07:32:91:1d:ee:cb:d4:a5:17:a3:35:5c: ca:75:df:c7:c5:42:3c:4a:2c:3d:0b:3b:c3:c7:f2: b2:cf:9c:50:02:5d:a1:58:be:f1:36:15:83:ec:58: 33:8a:ad:4a:83:6e:15:b8:3d:25:f4:83:cc:16:ad: c5:df:f6:77:c1:29:64:e1:b4:04:d9:fc:58:f2:d8: aa:42:ec:33:7f:1e:56:23:0a:43:39:25:c3:12:af: 0c:f1:d4:32:d7:c1:b1:34:45:b1:46:a4:1e:ea:cd: ba:7d:dd:7d:a0:f3:27:ce:f1:1e:a6:37:f4:be:d2: df:c0:47:e1:f8:e8:a5:e2:a6:cf:c3:e7:be:4a:1c: ce:d4:0f:a6:37:c6:f4:f8:24:5c:8d:ea:e1:7e:0c: dd:80:e6:95:ec:e7:b2:76:3a:0f:67:35:4f:c0:86: d6:06:9d:4a:72:1f:fc:9e:54:25:25:b3:eb:f8:fb: c1:91:4a:89:45:20:84:5c:b7:6e:a0:d8:ce:9b:22: 2b:cb:11:20:7e:c7:e6:81:16:4a:d7:3f:3d:8d:d3: db:66:5c:26:f5:0d:a4:9f:0d:05:54:ba:fa:26:04: 27:90:11:30:3a:5e:77:9a:e5:a8:ed:aa:95:0a:2c: 9d:83:e6:85:8f:11:ba:9a:fc:6d:7b:8d:7b:b6:46: 77:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:1C:BC:49:81:B6:1A:11:B4:2F:99:13:37:EA:BC:72:BE:D6:1B:E7 X509v3 Authority Key Identifier: keyid:C1:5F:06:08:29:7E:9F:94:37:1A:72:D9:3A:D7:B1:1F:79:C1:F8:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wV8GCCl-n5Q3GnLZOtexH3nB-D8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/590e6a-c4fb-4e4d-9ff4-717cf7d73587/1/Lhy8SYG2GhG0L5kTN-q8cr7WG-c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/590e6a-c4fb-4e4d-9ff4-717cf7d73587/1/wV8GCCl-n5Q3GnLZOtexH3nB-D8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.93.174.0/24 188.116.50.0/23 193.105.29.0/24 IPv6: 2a12:79c0::/31 Signature Algorithm: sha256WithRSAEncryption 13:8a:45:27:11:51:db:2d:f2:3f:46:ea:ea:b8:5e:20:1c:8b: fa:14:e5:41:99:62:14:40:be:18:16:cf:32:fa:8d:2c:1e:65: 41:2c:3f:28:69:8c:7c:af:c3:10:cf:61:5e:de:b7:04:14:03: b8:d4:3d:dc:ba:91:1d:f4:d6:65:90:23:d7:cf:c6:d4:2e:35: 0d:f5:76:2c:40:13:ec:0b:1f:65:23:ee:ec:b0:e5:7a:cf:a0: 28:1d:6d:c5:07:03:92:77:d6:15:12:90:1f:9d:15:23:59:fd: 9e:61:f8:5b:df:76:3e:fc:85:15:22:96:a4:ab:00:e0:64:9e: 48:92:52:1c:00:33:26:3f:a0:e6:aa:64:03:09:1f:c3:3a:18: f7:b2:97:44:11:8f:77:8b:77:50:d3:6e:31:8d:1b:b1:4d:25: af:50:bd:33:c3:ac:a0:aa:ec:4b:f3:10:af:26:17:fe:b0:9f: bb:11:3a:fd:ad:6d:1e:10:d7:74:e1:55:42:38:99:d1:6f:4e: 7a:99:c2:b6:92:6f:0e:b2:3f:9a:cb:15:a7:eb:ab:65:9d:ea: a9:4f:21:3e:77:aa:1e:d3:ff:08:42:e9:f2:7a:e9:cf:ef:19: 54:6a:db:4a:9c:c6:f9:1e:39:f7:48:e2:c7:f4:7f:39:4d:2f: 65:2c:d8:cc -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZsN95tv0XubiTvF6DqLzEK4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMxNWYwNjA4Mjk3ZTlmOTQzNzFhNzJkOTNhZDdiMTFmNzlj MWY4M2YwHhcNMjUxMjExMTUxMTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTFjYmM0OTgxYjYxYTExYjQyZjk5MTMzN2VhYmM3MmJlZDYxYmU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtMYHMpEd7svUpRejNVzKdd/HxUI8 Siw9CzvDx/Kyz5xQAl2hWL7xNhWD7Fgziq1Kg24VuD0l9IPMFq3F3/Z3wSlk4bQE 2fxY8tiqQuwzfx5WIwpDOSXDEq8M8dQy18GxNEWxRqQe6s26fd19oPMnzvEepjf0 vtLfwEfh+Oil4qbPw+e+ShzO1A+mN8b0+CRcjerhfgzdgOaV7OeydjoPZzVPwIbW Bp1Kch/8nlQlJbPr+PvBkUqJRSCEXLduoNjOmyIryxEgfsfmgRZK1z89jdPbZlwm 9Q2knw0FVLr6JgQnkBEwOl53muWo7aqVCiydg+aFjxG6mvxte417tkZ3wwIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFC4cvEmBthoRtC+ZEzfqvHK+1hvnMB8GA1UdIwQY MBaAFMFfBggpfp+UNxpy2TrXsR95wfg/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd1Y4R0NDbC1uNVEzR25MWk90ZXhIM25CLUQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC81OTBlNmEtYzRmYi00ZTRkLTlmZjQt NzE3Y2Y3ZDczNTg3LzEvTGh5OFNZRzJHaEcwTDVrVE4tcThjcjdXRy1jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC81OTBlNmEtYzRmYi00ZTRkLTlmZjQtNzE3Y2Y3ZDczNTg3 LzEvd1Y4R0NDbC1uNVEzR25MWk90ZXhIM25CLUQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQAuV2uAwQB vHQyAwQAwWkdMA0EAgACMAcDBQEqEnnAMA0GCSqGSIb3DQEBCwUAA4IBAQATikUn EVHbLfI/RurquF4gHIv6FOVBmWIUQL4YFs8y+o0sHmVBLD8oaYx8r8MQz2Fe3rcE FAO41D3cupEd9NZlkCPXz8bULjUN9XYsQBPsCx9lI+7ssOV6z6AoHW3FBwOSd9YV EpAfnRUjWf2eYfhb33Y+/IUVIpakqwDgZJ5IklIcADMmP6DmqmQDCR/DOhj3spdE EY93i3dQ024xjRuxTSWvUL0zw6ygquxL8xCvJhf+sJ+7ETr9rW0eENd04VVCOJnR b056mcK2km8Osj+ayxWn66tlneqpTyE+d6oe0/8IQunyeunP7xlUattKnMb5Hjn3 SOLH9H85TS9lLNjM -----END CERTIFICATE-----Generated at Sun Dec 14 18:52:15 2025 by rpki-client