This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/LCWtZ049FoEMI5HAwHzYkDXlzb0.roa File: LCWtZ049FoEMI5HAwHzYkDXlzb0.roa (raw, json) Hash identifier: fito6QodYmgMrVei2hs3ovjCGv+4YYqwwa8c3/bKpq8= Subject key identifier: 2C:25:AD:67:4E:3D:16:81:0C:23:91:C0:C0:7C:D8:90:35:E5:CD:BD Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c Certificate serial: 019B7DCB281C36FF9B20E0FE948EC4B6C635 Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/LCWtZ049FoEMI5HAwHzYkDXlzb0.roa Signing time: Fri 02 Jan 2026 08:20:24 +0000 ROA not before: Fri 02 Jan 2026 08:20:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29001 IP address blocks: 217.170.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.mft rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:28:1c:36:ff:9b:20:e0:fe:94:8e:c4:b6:c6:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c Validity Not Before: Jan 2 08:20:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2c25ad674e3d16810c2391c0c07cd89035e5cdbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:76:f1:16:87:c1:2a:9c:37:b8:05:19:ef:3f: 1a:2d:12:30:70:4a:ca:95:fb:53:83:0e:a3:13:a6: 14:a9:f6:78:23:da:a5:1f:77:f6:8d:6c:67:cf:d7: 86:a9:58:93:ba:cf:5f:44:b3:d4:7d:01:69:b1:0b: b3:f6:da:6d:24:0f:f4:62:0c:e5:ae:e4:dc:e1:ac: f2:fa:4f:02:07:9a:74:e7:8d:f8:b1:d7:6d:0e:4a: 1e:d8:ef:7e:38:e0:35:c9:38:52:fd:94:79:7c:a4: 01:56:9d:06:e7:e1:ae:6a:49:1d:62:4a:f8:26:7f: ab:fe:5f:49:23:70:28:4a:cf:ca:0b:cf:41:be:30: 73:89:b5:48:8b:d5:cc:c7:30:fa:37:7b:38:fd:ce: 59:f1:78:5a:c9:47:93:93:de:e9:80:4e:c1:c0:bc: 1c:8b:29:b6:6c:7d:86:5a:2c:81:0f:5d:59:8b:bc: b0:f9:a6:5e:d4:e2:e3:65:a9:ec:be:6b:af:bf:4a: a2:7a:2c:b7:c7:87:44:52:77:9c:3d:ac:7d:0b:88: 26:e2:44:85:a6:58:79:e2:ee:42:e7:0b:13:e7:ec: bb:0e:0d:b9:0c:ab:84:5d:ab:83:bc:64:a7:c1:3b: 5b:73:15:62:6b:d0:c4:9a:91:ab:1c:81:e2:ba:d7: 6d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:25:AD:67:4E:3D:16:81:0C:23:91:C0:C0:7C:D8:90:35:E5:CD:BD X509v3 Authority Key Identifier: keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/LCWtZ049FoEMI5HAwHzYkDXlzb0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.170.16.0/23 Signature Algorithm: sha256WithRSAEncryption 23:69:4d:86:26:29:48:f0:be:c4:7d:b4:cf:9e:1e:2c:e5:bd: 17:17:e2:7b:9c:2b:0f:7c:97:41:b2:60:98:1b:46:0f:99:ea: 96:5f:8f:8b:a2:b2:99:fe:57:a6:1b:f1:26:e9:78:ba:d2:00: 70:0f:4a:e5:6e:10:45:47:7e:9b:e0:d8:b6:fc:da:c4:c6:02: 8c:37:ac:9b:54:41:39:2e:30:eb:c0:18:a9:b2:17:da:28:c7: 56:cc:4b:13:bd:dd:87:7c:ff:2b:92:27:61:0b:ee:aa:9a:a2: 0a:e1:92:af:40:e2:50:12:18:9d:28:a7:ce:1b:45:f1:32:0d: 44:ab:11:ef:1a:42:19:74:4f:c4:8c:40:61:cb:ce:34:3e:3e: 8f:c0:ca:09:f5:26:9f:34:5a:63:89:6c:ec:6b:38:2e:45:be: 91:18:6e:62:e2:c3:45:78:4f:ba:c4:30:fb:31:71:7c:76:4f: ef:65:99:9e:f2:14:42:9e:8a:00:cc:a9:5b:1a:45:57:4b:71: 3d:e4:fb:9f:1c:0a:2e:ce:bc:f4:ed:7e:b9:86:4c:65:7b:0f: 4f:9d:0e:fb:10:1c:14:c1:35:a9:61:5e:f5:e7:6d:1e:9a:e1: 09:ca:75:f0:60:ce:f5:12:8f:fb:1f:4f:eb:8d:53:3e:9d:81: bf:18:66:5b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yygcNv+bIOD+lI7EtsY1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMWZlMzBmYzZiNGIwZDBmNmRiNGUxYmZiYmQ1MDE5NWRj YTU3NWMwHhcNMjYwMTAyMDgyMDI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYzI1YWQ2NzRlM2QxNjgxMGMyMzkxYzBjMDdjZDg5MDM1ZTVjZGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAonbxFofBKpw3uAUZ7z8aLRIwcErK lftTgw6jE6YUqfZ4I9qlH3f2jWxnz9eGqViTus9fRLPUfQFpsQuz9tptJA/0Ygzl ruTc4azy+k8CB5p05434sddtDkoe2O9+OOA1yThS/ZR5fKQBVp0G5+GuakkdYkr4 Jn+r/l9JI3AoSs/KC89BvjBzibVIi9XMxzD6N3s4/c5Z8XhayUeTk97pgE7BwLwc iym2bH2GWiyBD11Zi7yw+aZe1OLjZansvmuvv0qieiy3x4dEUnecPax9C4gm4kSF plh54u5C5wsT5+y7Dg25DKuEXauDvGSnwTtbcxVia9DEmpGrHIHiutdtoQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCwlrWdOPRaBDCORwMB82JA15c29MB8GA1UdIwQY MBaAFCAf4w/GtLDQ9ttOG/u9UBldyldcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUJfakQ4YTBzTkQyMjA0Yi03MVFHVjNLVjF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My84ZDgwZjktNDk0ZS00YWJiLTk5NTYt ZmMxMjFjODAwYjMwLzEvTENXdFowNDlGb0VNSTVIQXdIellrRFhsemIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My84ZDgwZjktNDk0ZS00YWJiLTk5NTYtZmMxMjFjODAwYjMw LzEvSUJfakQ4YTBzTkQyMjA0Yi03MVFHVjNLVjF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB2aoQMA0G CSqGSIb3DQEBCwUAA4IBAQAjaU2GJilI8L7EfbTPnh4s5b0XF+J7nCsPfJdBsmCY G0YPmeqWX4+LorKZ/lemG/Em6Xi60gBwD0rlbhBFR36b4Ni2/NrExgKMN6ybVEE5 LjDrwBipshfaKMdWzEsTvd2HfP8rkidhC+6qmqIK4ZKvQOJQEhidKKfOG0XxMg1E qxHvGkIZdE/EjEBhy840Pj6PwMoJ9SafNFpjiWzsazguRb6RGG5i4sNFeE+6xDD7 MXF8dk/vZZme8hRCnooAzKlbGkVXS3E95PufHAouzrz07X65hkxlew9PnQ77EBwU wTWpYV71520emuEJynXwYM71Eo/7H0/rjVM+nYG/GGZb -----END CERTIFICATE-----Generated at Sun Jan 25 19:39:06 2026 by rpki-client