This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/27db7b-c0a2-4892-9047-3ac565dcdf73/1/LVY1BQwCkSSiNK5x8OqdlyI-5zA.roa File: LVY1BQwCkSSiNK5x8OqdlyI-5zA.roa (raw, json) Hash identifier: 2tdaTlXNcKe8v5naZFKPxbcAy2upyH8fTFwQTyL1WUM= Subject key identifier: 2D:56:35:05:0C:02:91:24:A2:34:AE:71:F0:EA:9D:97:22:3E:E7:30 Certificate issuer: /CN=e03f5500aefe6ab4dbde124073a37bc0dc331e80 Certificate serial: 019B7834E1C440EA932EDE217ADE6970122E Authority key identifier: E0:3F:55:00:AE:FE:6A:B4:DB:DE:12:40:73:A3:7B:C0:DC:33:1E:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4D9VAK7-arTb3hJAc6N7wNwzHoA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/27db7b-c0a2-4892-9047-3ac565dcdf73/1/LVY1BQwCkSSiNK5x8OqdlyI-5zA.roa Signing time: Thu 01 Jan 2026 06:18:10 +0000 ROA not before: Thu 01 Jan 2026 06:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39686 IP address blocks: 145.77.128.0/19 maxlen: 24 145.77.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/27db7b-c0a2-4892-9047-3ac565dcdf73/1/4D9VAK7-arTb3hJAc6N7wNwzHoA.crl rsync://rpki.ripe.net/repository/DEFAULT/43/27db7b-c0a2-4892-9047-3ac565dcdf73/1/4D9VAK7-arTb3hJAc6N7wNwzHoA.mft rsync://rpki.ripe.net/repository/DEFAULT/4D9VAK7-arTb3hJAc6N7wNwzHoA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:e1:c4:40:ea:93:2e:de:21:7a:de:69:70:12:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e03f5500aefe6ab4dbde124073a37bc0dc331e80 Validity Not Before: Jan 1 06:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2d5635050c029124a234ae71f0ea9d97223ee730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8a:f9:68:95:bc:d4:5b:c2:20:3a:5b:6e:8f: 4c:8f:11:8a:de:8e:6d:bb:df:fa:0c:e4:c1:41:fe: 72:a9:85:e6:d7:12:af:3f:1f:8d:c0:89:2d:68:e7: a4:da:3b:72:fa:a4:6f:a5:27:c6:7c:8d:54:4d:1d: 02:32:1e:f4:03:c7:4f:f9:d4:a5:ce:6a:7e:26:e6: 3a:10:63:81:be:b0:10:72:93:55:bf:a3:3e:ed:e3: 6b:b7:38:c4:77:98:33:9a:e3:fe:95:ea:d3:1c:f0: 3a:62:48:96:de:d2:bb:af:b0:c1:01:fe:90:6f:09: 24:bb:5a:6c:46:2d:06:01:9d:b4:3c:87:b7:d1:00: be:21:5a:e1:3d:cc:88:3d:8c:d2:d1:7b:bc:67:4d: fd:13:f9:9c:4c:9e:50:88:2a:a3:65:4a:f9:6c:05: 5d:f0:71:68:0e:e2:69:53:cb:ea:72:0d:7d:e4:84: c1:0e:58:86:6f:44:93:f5:37:39:bd:10:47:d1:ac: 79:82:f6:7d:be:d6:30:8c:da:07:10:18:2d:62:24: 5b:45:0c:13:b2:7b:5c:76:14:a1:f0:47:08:22:56: 3c:c1:9a:f7:21:5e:1c:f5:e6:62:15:06:d6:56:df: d7:eb:c0:45:cb:8c:03:c9:0c:d0:5d:39:d6:9b:23: 63:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:56:35:05:0C:02:91:24:A2:34:AE:71:F0:EA:9D:97:22:3E:E7:30 X509v3 Authority Key Identifier: keyid:E0:3F:55:00:AE:FE:6A:B4:DB:DE:12:40:73:A3:7B:C0:DC:33:1E:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4D9VAK7-arTb3hJAc6N7wNwzHoA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/27db7b-c0a2-4892-9047-3ac565dcdf73/1/LVY1BQwCkSSiNK5x8OqdlyI-5zA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/27db7b-c0a2-4892-9047-3ac565dcdf73/1/4D9VAK7-arTb3hJAc6N7wNwzHoA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.77.128.0/19 145.77.240.0/20 Signature Algorithm: sha256WithRSAEncryption 3a:76:6f:8c:20:17:d2:28:e7:d8:df:68:68:ee:62:53:49:0f: d3:9b:d7:ae:32:3e:66:04:2d:91:9b:ef:02:d3:2f:0c:26:2c: bc:2a:5a:a0:a3:50:dd:84:4f:63:ba:80:c1:f9:a8:2c:0b:c5: 65:7f:83:9e:5d:43:6e:3d:1d:6c:61:2d:00:fc:27:b5:d1:25: 97:3b:cc:3a:1f:0c:83:0d:21:21:05:5f:ec:94:1b:6d:c3:d8: a7:1e:4c:0f:25:cf:f6:75:40:3c:13:d4:df:ff:2b:68:b3:c1: f0:11:78:00:40:7f:98:d0:89:0c:42:79:d8:99:3d:08:d3:37: 09:c6:57:50:20:b1:47:91:61:14:b0:3f:b9:2c:5b:1d:67:ce: f8:4e:dc:08:d6:f4:33:63:34:b5:2e:a7:50:53:32:e8:b1:3b: 71:58:cd:89:02:9b:54:e3:84:e0:83:53:b8:df:5a:21:e2:b9: 15:ad:4d:ed:0a:31:8f:af:c0:4e:b5:c0:b8:f4:2b:3e:b7:e0: cc:7a:27:7d:fe:af:ef:65:6a:da:51:61:3a:c6:04:d9:70:29: f9:11:93:d2:dd:1e:ff:4f:34:96:2e:24:a5:4f:08:17:5f:00: 1c:ca:90:30:26:8f:86:4b:a3:83:34:a7:63:8d:93:19:f2:dc: bb:7b:d3:0b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NOHEQOqTLt4het5pcBIuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwM2Y1NTAwYWVmZTZhYjRkYmRlMTI0MDczYTM3YmMwZGMz MzFlODAwHhcNMjYwMTAxMDYxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDU2MzUwNTBjMDI5MTI0YTIzNGFlNzFmMGVhOWQ5NzIyM2VlNzMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu4r5aJW81FvCIDpbbo9MjxGK3o5t u9/6DOTBQf5yqYXm1xKvPx+NwIktaOek2jty+qRvpSfGfI1UTR0CMh70A8dP+dSl zmp+JuY6EGOBvrAQcpNVv6M+7eNrtzjEd5gzmuP+lerTHPA6YkiW3tK7r7DBAf6Q bwkku1psRi0GAZ20PIe30QC+IVrhPcyIPYzS0Xu8Z039E/mcTJ5QiCqjZUr5bAVd 8HFoDuJpU8vqcg195ITBDliGb0ST9Tc5vRBH0ax5gvZ9vtYwjNoHEBgtYiRbRQwT sntcdhSh8EcIIlY8wZr3IV4c9eZiFQbWVt/X68BFy4wDyQzQXTnWmyNjEwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFC1WNQUMApEkojSucfDqnZciPucwMB8GA1UdIwQY MBaAFOA/VQCu/mq0294SQHOje8DcMx6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEQ5VkFLNy1hclRiM2hKQWM2Tjd3Tnd6SG9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8yN2RiN2ItYzBhMi00ODkyLTkwNDct M2FjNTY1ZGNkZjczLzEvTFZZMUJRd0NrU1NpTks1eDhPcWRseUktNXpBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My8yN2RiN2ItYzBhMi00ODkyLTkwNDctM2FjNTY1ZGNkZjcz LzEvNEQ5VkFLNy1hclRiM2hKQWM2Tjd3Tnd6SG9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFkU2AAwQE kU3wMA0GCSqGSIb3DQEBCwUAA4IBAQA6dm+MIBfSKOfY32ho7mJTSQ/Tm9euMj5m BC2Rm+8C0y8MJiy8Klqgo1DdhE9juoDB+agsC8Vlf4OeXUNuPR1sYS0A/Ce10SWX O8w6HwyDDSEhBV/slBttw9inHkwPJc/2dUA8E9Tf/ytos8HwEXgAQH+Y0IkMQnnY mT0I0zcJxldQILFHkWEUsD+5LFsdZ874TtwI1vQzYzS1LqdQUzLosTtxWM2JAptU 44Tgg1O431oh4rkVrU3tCjGPr8BOtcC49Cs+t+DMeid9/q/vZWraUWE6xgTZcCn5 EZPS3R7/TzSWLiSlTwgXXwAcypAwJo+GS6ODNKdjjZMZ8ty7e9ML -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:15 2026 by rpki-client