This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/LPwI5fzITGqUU5gQD6RQhLychw4.roa File: LPwI5fzITGqUU5gQD6RQhLychw4.roa (raw, json) Hash identifier: thvb3WWBCkuBh6Qux8xtS7MFGQzIZ761rYppztcjvK0= Subject key identifier: 2C:FC:08:E5:FC:C8:4C:6A:94:53:98:10:0F:A4:50:84:BC:9C:87:0E Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a Certificate serial: 019B7EA536368F90F5673AD87817D5F42D64 Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/LPwI5fzITGqUU5gQD6RQhLychw4.roa Signing time: Fri 02 Jan 2026 12:18:35 +0000 ROA not before: Fri 02 Jan 2026 12:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203917 IP address blocks: 78.108.251.0/24 maxlen: 24 212.70.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.mft rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:36:36:8f:90:f5:67:3a:d8:78:17:d5:f4:2d:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a Validity Not Before: Jan 2 12:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2cfc08e5fcc84c6a945398100fa45084bc9c870e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7c:11:1e:8e:07:97:67:ba:ee:8e:cc:a9:d2: b7:94:01:54:66:59:43:5e:8e:6f:87:1f:4f:1f:f7: e4:fc:1b:4e:8c:7d:d7:58:42:f4:53:4e:51:80:c7: fa:d4:0d:b2:06:63:30:9b:ed:df:67:16:c9:54:8a: 45:6a:3d:4d:96:b8:8e:05:92:c3:06:fa:5d:fb:02: 15:0c:20:8c:c1:28:5a:95:86:76:bb:fd:11:2e:87: 99:d4:7c:a1:a8:22:16:22:c3:4a:cc:6b:d6:ec:02: d6:74:a9:69:eb:4e:0d:ac:7b:af:a5:89:85:b8:77: 2e:73:68:13:27:c7:94:98:d3:7c:40:08:ca:41:99: b8:b7:a2:f3:7d:67:ce:1d:6d:65:92:ca:bb:8a:62: b2:b8:01:a2:22:9d:11:e0:d7:e2:dc:4e:3b:4f:d6: 1b:7c:53:1b:4a:3c:c2:d7:47:51:99:0f:fc:f2:1a: 21:23:f7:1f:2e:e9:aa:32:14:4f:6d:e8:09:7f:39: 1c:43:01:7c:22:df:c3:c2:b4:0f:b5:89:6a:54:61: 7d:24:11:75:fb:3a:53:98:b1:fc:70:83:08:12:c9: 03:44:e3:d8:60:e3:c0:0d:03:37:5f:e1:34:81:a9: 43:67:e2:8a:91:22:63:cf:8c:9f:bd:c3:b4:a4:1b: ca:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:FC:08:E5:FC:C8:4C:6A:94:53:98:10:0F:A4:50:84:BC:9C:87:0E X509v3 Authority Key Identifier: keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/LPwI5fzITGqUU5gQD6RQhLychw4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.108.251.0/24 212.70.156.0/24 Signature Algorithm: sha256WithRSAEncryption 38:18:ad:c9:90:5e:70:8d:5f:e4:17:77:c2:64:d5:2e:ae:61: 34:da:79:22:41:b5:2f:4f:0d:73:99:03:e0:36:27:3f:fd:00: 2d:24:a2:73:84:ed:71:92:26:de:19:09:8e:7c:b9:9e:a4:ce: 4e:5e:f8:0c:85:64:a4:83:ad:40:77:51:e4:bf:cd:7c:77:f1: 83:4e:52:a0:82:1f:9d:fe:46:f3:49:aa:48:84:f4:c7:29:e6: 98:22:f9:73:54:f7:1b:48:52:6a:90:fb:0f:5a:6c:93:e0:94: 4b:d9:b7:57:07:d3:d6:65:09:36:7a:49:02:7b:b7:71:1d:b1: a4:70:0d:57:d1:b9:ad:d0:4a:cb:1c:b7:00:3f:13:f0:01:36: 08:68:2d:80:ce:6a:99:d2:98:42:88:0e:4b:6d:42:34:cd:90: 5e:93:2a:0c:53:38:4d:03:7c:54:c0:a9:23:5f:1c:8c:3c:41: ba:10:22:a9:8b:60:c5:a6:ce:c8:2a:c2:d2:c4:28:70:10:98: 6f:10:b5:86:13:2b:c2:59:51:86:3e:16:05:e4:82:47:2c:ec: f0:b8:9c:8b:d1:e9:df:0b:cd:55:c7:c7:e4:fe:17:82:b6:cf: e9:3f:2a:56:77:dd:f7:ed:5b:8d:32:b2:4c:04:ff:18:30:e4: df:31:fa:d7 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+pTY2j5D1ZzrYeBfV9C1kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyMmE4YzFkMzExODk1MDE2MTA4ZmZiZDE0NTc1Yzc3Y2My ODc3M2EwHhcNMjYwMTAyMTIxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyY2ZjMDhlNWZjYzg0YzZhOTQ1Mzk4MTAwZmE0NTA4NGJjOWM4NzBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXwRHo4Hl2e67o7MqdK3lAFUZllD Xo5vhx9PH/fk/BtOjH3XWEL0U05RgMf61A2yBmMwm+3fZxbJVIpFaj1NlriOBZLD Bvpd+wIVDCCMwShalYZ2u/0RLoeZ1HyhqCIWIsNKzGvW7ALWdKlp604NrHuvpYmF uHcuc2gTJ8eUmNN8QAjKQZm4t6LzfWfOHW1lksq7imKyuAGiIp0R4Nfi3E47T9Yb fFMbSjzC10dRmQ/88hohI/cfLumqMhRPbegJfzkcQwF8It/DwrQPtYlqVGF9JBF1 +zpTmLH8cIMIEskDROPYYOPADQM3X+E0galDZ+KKkSJjz4yfvcO0pBvKwwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCz8COX8yExqlFOYEA+kUIS8nIcOMB8GA1UdIwQY MBaAFHIqjB0xGJUBYQj/vRRXXHfMKHc6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2lxTUhURVlsUUZoQ1AtOUZGZGNkOHdvZHpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9iMWY2ZWUtYzRlZi00MzU1LWFmMzYt YTU1OGVlNjU0MzFmLzEvTFB3STVmeklUR3FVVTVnUUQ2UlFoTHljaHc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9iMWY2ZWUtYzRlZi00MzU1LWFmMzYtYTU1OGVlNjU0MzFm LzEvY2lxTUhURVlsUUZoQ1AtOUZGZGNkOHdvZHpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATmz7AwQA 1EacMA0GCSqGSIb3DQEBCwUAA4IBAQA4GK3JkF5wjV/kF3fCZNUurmE02nkiQbUv Tw1zmQPgNic//QAtJKJzhO1xkibeGQmOfLmepM5OXvgMhWSkg61Ad1Hkv818d/GD TlKggh+d/kbzSapIhPTHKeaYIvlzVPcbSFJqkPsPWmyT4JRL2bdXB9PWZQk2ekkC e7dxHbGkcA1X0bmt0ErLHLcAPxPwATYIaC2AzmqZ0phCiA5LbUI0zZBekyoMUzhN A3xUwKkjXxyMPEG6ECKpi2DFps7IKsLSxChwEJhvELWGEyvCWVGGPhYF5IJHLOzw uJyL0enfC81Vx8fk/heCts/pPypWd9337VuNMrJMBP8YMOTfMfrX -----END CERTIFICATE-----Generated at Tue Jan 20 03:35:14 2026 by rpki-client