This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/Lw3ZnV1VpPuaAVB3OVp8SnNyb-4.roa File: Lw3ZnV1VpPuaAVB3OVp8SnNyb-4.roa (raw, json) Hash identifier: nBTM7MD83GgGqveTlO6ZbvL/71fYF0IUBTMvcU7YdJ8= Subject key identifier: 2F:0D:D9:9D:5D:55:A4:FB:9A:01:50:77:39:5A:7C:4A:73:72:6F:EE Certificate issuer: /CN=1cee91296c94992d151a232240e6cf3a176d2039 Certificate serial: 019B7CEE341A7FA78B81F7BBBD6358A03A65 Authority key identifier: 1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/Lw3ZnV1VpPuaAVB3OVp8SnNyb-4.roa Signing time: Fri 02 Jan 2026 04:19:04 +0000 ROA not before: Fri 02 Jan 2026 04:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48422 IP address blocks: 46.172.67.0/24 maxlen: 24 46.172.68.0/24 maxlen: 24 46.172.72.0/24 maxlen: 24 46.172.73.0/24 maxlen: 24 46.172.75.0/24 maxlen: 24 46.172.77.0/24 maxlen: 24 46.172.79.0/24 maxlen: 24 46.172.81.0/24 maxlen: 24 46.172.82.0/24 maxlen: 24 46.172.83.0/24 maxlen: 24 46.172.84.0/24 maxlen: 24 46.172.85.0/24 maxlen: 24 46.172.88.0/24 maxlen: 24 46.172.89.0/24 maxlen: 24 46.172.91.0/24 maxlen: 24 2a04:5e40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/HO6RKWyUmS0VGiMiQObPOhdtIDk.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/HO6RKWyUmS0VGiMiQObPOhdtIDk.mft rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:34:1a:7f:a7:8b:81:f7:bb:bd:63:58:a0:3a:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cee91296c94992d151a232240e6cf3a176d2039 Validity Not Before: Jan 2 04:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2f0dd99d5d55a4fb9a015077395a7c4a73726fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:16:f2:d0:51:c4:15:31:aa:4d:0c:20:5b:73: 98:6b:8c:32:f8:c3:47:6b:f0:19:03:37:0d:34:12: 62:f7:bd:01:3e:ea:06:ec:52:52:d4:7e:08:1f:fe: af:50:70:a7:08:11:11:bd:88:ff:17:70:a9:70:05: 72:64:58:1f:0e:e3:0f:81:c2:01:ad:5b:69:3e:3d: e7:eb:b9:41:8b:b9:5d:ac:17:ac:90:f9:dd:63:5b: f3:70:74:a5:3c:66:0c:9d:5c:f1:61:ef:c5:f8:a9: 14:b4:73:eb:46:11:7e:73:b5:b0:02:4b:60:72:8e: 8d:a1:81:b2:bb:73:a5:1c:05:33:ab:bd:65:5f:46: 19:73:c8:7c:80:29:50:dd:43:54:08:fd:73:46:69: 0b:cf:b2:3e:db:a8:6f:92:e4:91:04:22:cb:db:f2: bd:0a:b6:41:6e:cb:95:cf:de:26:b8:cb:e6:f4:75: 4a:cc:52:b6:3f:45:14:e3:8a:10:9b:c2:1f:20:bd: 7e:30:f6:ff:c6:09:9d:9e:67:25:7c:58:be:fb:f8: d3:9c:69:42:16:e1:67:ea:46:c7:b0:c0:87:09:24: 6f:96:ba:91:a1:07:dc:e9:0c:1d:04:f1:4e:9f:78: b1:be:b5:32:2c:2f:6c:be:e8:f9:8f:2f:53:41:1c: 28:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:0D:D9:9D:5D:55:A4:FB:9A:01:50:77:39:5A:7C:4A:73:72:6F:EE X509v3 Authority Key Identifier: keyid:1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/Lw3ZnV1VpPuaAVB3OVp8SnNyb-4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/HO6RKWyUmS0VGiMiQObPOhdtIDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.172.67.0-46.172.68.255 46.172.72.0/23 46.172.75.0/24 46.172.77.0/24 46.172.79.0/24 46.172.81.0-46.172.85.255 46.172.88.0/23 46.172.91.0/24 IPv6: 2a04:5e40:1::/48 Signature Algorithm: sha256WithRSAEncryption 1a:94:03:8e:dd:c5:f3:9a:a3:6b:f1:48:5e:32:95:02:b8:86: 8e:d0:f1:4a:a6:57:9d:4d:43:e1:d5:a1:15:51:cf:21:ee:7d: 60:31:2b:c8:58:62:54:5d:99:34:53:6f:a3:7c:d6:35:ce:85: 6e:5d:66:b1:c7:9a:1b:1d:36:39:9c:b6:d4:c1:56:73:84:82: 55:5c:38:c5:72:42:97:c4:3e:21:f2:86:73:fb:f8:82:03:74: d8:31:1c:6b:90:80:d8:3c:53:78:0d:55:53:95:45:d8:f4:09: 06:e4:9a:b1:77:cc:fd:95:2d:8d:dc:fd:b8:0b:bb:b1:0b:61: 8a:35:c5:7c:54:84:74:a3:0f:59:cb:3e:3e:b6:8e:ef:3e:87: 62:60:7b:db:b7:d4:60:73:51:3c:85:e4:d2:d0:23:47:f6:93: cd:5d:3b:e2:ab:35:47:df:60:f9:9e:98:7e:5e:fa:2b:20:0e: d7:ac:50:7b:1c:86:31:b3:c6:e7:b8:6a:90:4e:78:7c:ff:18: 2d:7f:fb:cd:20:bc:75:5b:fc:db:a0:ba:78:01:9c:53:43:cf: 01:33:5c:a6:88:38:47:5d:b5:76:0f:a4:8e:e3:67:72:9e:3d: 5f:da:6f:ec:64:08:d6:3a:75:c9:81:1f:44:31:06:89:37:de: ae:c4:9d:ca -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgISAZt87jQaf6eLgfe7vWNYoDplMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjZWU5MTI5NmM5NDk5MmQxNTFhMjMyMjQwZTZjZjNhMTc2 ZDIwMzkwHhcNMjYwMTAyMDQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZjBkZDk5ZDVkNTVhNGZiOWEwMTUwNzczOTVhN2M0YTczNzI2ZmVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxby0FHEFTGqTQwgW3OYa4wy+MNH a/AZAzcNNBJi970BPuoG7FJS1H4IH/6vUHCnCBERvYj/F3CpcAVyZFgfDuMPgcIB rVtpPj3n67lBi7ldrBeskPndY1vzcHSlPGYMnVzxYe/F+KkUtHPrRhF+c7WwAktg co6NoYGyu3OlHAUzq71lX0YZc8h8gClQ3UNUCP1zRmkLz7I+26hvkuSRBCLL2/K9 CrZBbsuVz94muMvm9HVKzFK2P0UU44oQm8IfIL1+MPb/xgmdnmclfFi++/jTnGlC FuFn6kbHsMCHCSRvlrqRoQfc6QwdBPFOn3ixvrUyLC9svuj5jy9TQRwo7QIDAQAB o4ICVDCCAlAwHQYDVR0OBBYEFC8N2Z1dVaT7mgFQdzlafEpzcm/uMB8GA1UdIwQY MBaAFBzukSlslJktFRojIkDmzzoXbSA5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSE82UktXeVVtUzBWR2lNaVFPYlBPaGR0SURrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9jOTFlYzMtMjgyMC00MTdiLTlhYWQt YmFjYWI0NzVlNmNjLzEvTHczWm5WMVZwUHVhQVZCM09WcDhTbk55Yi00LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9jOTFlYzMtMjgyMC00MTdiLTlhYWQtYmFjYWI0NzVlNmNj LzEvSE82UktXeVVtUzBWR2lNaVFPYlBPaGR0SURrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGoGCCsGAQUFBwEHAQH/BFswWTBGBAIAATBAMAwDBAAurEMD BAAurEQDBAEurEgDBAAurEsDBAAurE0DBAAurE8wDAMEAC6sUQMEAS6sVAMEAS6s WAMEAC6sWzAPBAIAAjAJAwcAKgReQAABMA0GCSqGSIb3DQEBCwUAA4IBAQAalAOO 3cXzmqNr8UheMpUCuIaO0PFKpledTUPh1aEVUc8h7n1gMSvIWGJUXZk0U2+jfNY1 zoVuXWaxx5obHTY5nLbUwVZzhIJVXDjFckKXxD4h8oZz+/iCA3TYMRxrkIDYPFN4 DVVTlUXY9AkG5Jqxd8z9lS2N3P24C7uxC2GKNcV8VIR0ow9Zyz4+to7vPodiYHvb t9Rgc1E8heTS0CNH9pPNXTviqzVH32D5nph+XvorIA7XrFB7HIYxs8bnuGqQTnh8 /xgtf/vNILx1W/zboLp4AZxTQ88BM1ymiDhHXbV2D6SO42dynj1f2m/sZAjWOnXJ gR9EMQaJN96uxJ3K -----END CERTIFICATE-----Generated at Sun Jan 25 22:50:03 2026 by rpki-client