This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/lgMUCDhR1-9UxWOilM3VFlqh9i0.roa File: lgMUCDhR1-9UxWOilM3VFlqh9i0.roa (raw, json) Hash identifier: kRXcOx3qW0+mwe0DhEieHWgQM2QhpB7m8VnyKuSNghE= Subject key identifier: 96:03:14:08:38:51:D7:EF:54:C5:63:A2:94:CD:D5:16:5A:A1:F6:2D Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1 Certificate serial: 019AE32389BC01650EB3A191B99E6ADF0490 Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/lgMUCDhR1-9UxWOilM3VFlqh9i0.roa Signing time: Wed 03 Dec 2025 07:35:48 +0000 ROA not before: Wed 03 Dec 2025 07:35:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 47430 IP address blocks: 45.139.8.0/24 maxlen: 24 185.105.238.0/24 maxlen: 24 2a10:ab00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.mft rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 07:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e3:23:89:bc:01:65:0e:b3:a1:91:b9:9e:6a:df:04:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1 Validity Not Before: Dec 3 07:35:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=960314083851d7ef54c563a294cdd5165aa1f62d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bc:8e:4e:27:37:f4:54:2f:ba:3a:42:44:6e: 80:aa:96:e6:6e:3a:e4:23:33:19:49:79:7c:4c:00: 75:38:11:c4:87:79:7e:74:bb:7e:ea:93:12:b0:80: c2:26:f7:10:93:32:a2:35:df:02:dd:36:85:de:07: f4:45:c8:a6:c8:1e:36:33:4b:d2:3f:c1:16:ca:49: 40:82:91:bf:90:19:b5:84:c0:60:03:39:c9:2f:4a: d9:54:8b:cc:2c:5d:68:3a:93:5c:78:49:cf:7c:b3: 95:a4:89:f5:ce:4e:15:80:eb:ee:14:48:53:4d:93: 6e:f8:14:d1:06:97:0b:45:ff:b9:a2:43:80:37:7b: 7f:1a:6b:ba:2c:cf:1c:dc:c7:41:6c:a5:af:3b:ba: 3b:98:5e:6a:a3:95:13:5f:09:41:a7:38:b6:b0:83: b0:5d:21:09:89:a2:cf:8a:f8:db:be:09:95:3a:01: d5:56:3c:5e:20:67:fa:10:3a:93:e9:79:68:af:9f: 20:c2:e5:d4:23:0b:0c:f8:e1:ae:c9:52:1d:ab:38: a4:ec:e6:26:b7:d8:0f:90:36:47:eb:87:05:d8:7d: 1a:c4:ad:c8:2b:9d:fc:b1:63:29:7a:5f:7b:ec:ca: 90:2c:0d:8c:8a:7c:4e:6c:91:41:a4:ce:31:e8:93: a7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:03:14:08:38:51:D7:EF:54:C5:63:A2:94:CD:D5:16:5A:A1:F6:2D X509v3 Authority Key Identifier: keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/lgMUCDhR1-9UxWOilM3VFlqh9i0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.139.8.0/24 185.105.238.0/24 IPv6: 2a10:ab00::/29 Signature Algorithm: sha256WithRSAEncryption 49:f3:51:1f:e5:f1:fa:f7:68:71:0a:e5:59:a4:99:4e:84:e1: 44:c2:e3:f7:d4:72:f7:ad:89:e7:e5:73:58:83:e1:da:0c:ff: 9b:cb:4a:a3:5b:ef:fc:5f:ba:4e:4f:5c:c9:42:97:f9:84:e5: 86:b4:14:ed:17:54:16:4d:b1:75:f5:d7:f0:26:25:7a:d7:e1: 04:8a:0d:80:71:42:93:ed:ae:ff:ce:16:0d:08:0f:94:bf:99: fc:e6:37:5a:32:10:05:68:72:f1:bf:83:62:99:fa:c6:a0:82: e9:2b:7e:0c:6e:9b:7a:c9:87:c7:9a:d9:56:c6:e1:64:c4:52: 7e:c6:13:ab:9d:f0:2e:97:f2:49:70:70:5b:c9:06:91:2a:33: 71:a1:ac:28:3e:31:db:ba:f6:4c:06:2b:e2:e3:74:a7:f4:72: 83:ad:92:4c:aa:ef:b2:7a:7f:eb:30:48:3a:f8:87:19:e5:e2: 47:33:f0:f6:88:c7:4a:97:f6:08:68:46:1e:63:21:e1:54:94: 6b:70:53:76:a8:e0:90:6f:1e:b2:3b:ca:d0:08:f6:c6:16:2e: d2:63:2b:8b:a4:07:f4:fe:ad:31:1f:02:6a:44:37:04:e2:8c: 56:1c:35:dd:a2:25:28:a3:2e:cd:e0:46:6a:4d:a2:e1:5e:62: 34:c2:b2:ae -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZrjI4m8AWUOs6GRuZ5q3wSQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkMzBhMTMxNzE4NTYwYTM0YWIzNDkzODg0ZTg1OGVjNDMx ZjZhZDEwHhcNMjUxMjAzMDczNTQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjAzMTQwODM4NTFkN2VmNTRjNTYzYTI5NGNkZDUxNjVhYTFmNjJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbyOTic39FQvujpCRG6Aqpbmbjrk IzMZSXl8TAB1OBHEh3l+dLt+6pMSsIDCJvcQkzKiNd8C3TaF3gf0RcimyB42M0vS P8EWyklAgpG/kBm1hMBgAznJL0rZVIvMLF1oOpNceEnPfLOVpIn1zk4VgOvuFEhT TZNu+BTRBpcLRf+5okOAN3t/Gmu6LM8c3MdBbKWvO7o7mF5qo5UTXwlBpzi2sIOw XSEJiaLPivjbvgmVOgHVVjxeIGf6EDqT6Xlor58gwuXUIwsM+OGuyVIdqzik7OYm t9gPkDZH64cF2H0axK3IK538sWMpel977MqQLA2MinxObJFBpM4x6JOnkwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFJYDFAg4UdfvVMVjopTN1RZaofYtMB8GA1UdIwQY MBaAFO0woTFxhWCjSrNJOIToWOxDH2rRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN1RDaE1YR0ZZS05LczBrNGhPaFk3RU1mYXRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81YjA3MDItMTZlNy00NjI3LWFlMTkt NGIzYjFiNjNiNmFiLzEvbGdNVUNEaFIxLTlVeFdPaWxNM1ZGbHFoOWkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi81YjA3MDItMTZlNy00NjI3LWFlMTktNGIzYjFiNjNiNmFi LzEvN1RDaE1YR0ZZS05LczBrNGhPaFk3RU1mYXRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQALYsIAwQA uWnuMA0EAgACMAcDBQMqEKsAMA0GCSqGSIb3DQEBCwUAA4IBAQBJ81Ef5fH692hx CuVZpJlOhOFEwuP31HL3rYnn5XNYg+HaDP+by0qjW+/8X7pOT1zJQpf5hOWGtBTt F1QWTbF19dfwJiV61+EEig2AcUKT7a7/zhYNCA+Uv5n85jdaMhAFaHLxv4NimfrG oILpK34Mbpt6yYfHmtlWxuFkxFJ+xhOrnfAul/JJcHBbyQaRKjNxoawoPjHbuvZM Bivi43Sn9HKDrZJMqu+yen/rMEg6+IcZ5eJHM/D2iMdKl/YIaEYeYyHhVJRrcFN2 qOCQbx6yO8rQCPbGFi7SYyuLpAf0/q0xHwJqRDcE4oxWHDXdoiUooy7N4EZqTaLh XmI0wrKu -----END CERTIFICATE-----Generated at Sat Dec 6 16:34:04 2025 by rpki-client