This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/b1475d-fcc2-48bb-ae01-c2ba24653f7b/1/lj_OVhtyzOOGAl8O2ZX2b9-uYP4.roa File: lj_OVhtyzOOGAl8O2ZX2b9-uYP4.roa (raw, json) Hash identifier: /IN+PkswpcNIMIACvoERnunbvdFhIwO4BCUWqEEWkVE= Subject key identifier: 96:3F:CE:56:1B:72:CC:E3:86:02:5F:0E:D9:95:F6:6F:DF:AE:60:FE Certificate issuer: /CN=2037512e5355e815acf064603f8ae3f5528a5e3b Certificate serial: 019B7D5BE04D923315624E17DBC42C0877A5 Authority key identifier: 20:37:51:2E:53:55:E8:15:AC:F0:64:60:3F:8A:E3:F5:52:8A:5E:3B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IDdRLlNV6BWs8GRgP4rj9VKKXjs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/b1475d-fcc2-48bb-ae01-c2ba24653f7b/1/lj_OVhtyzOOGAl8O2ZX2b9-uYP4.roa Signing time: Fri 02 Jan 2026 06:18:51 +0000 ROA not before: Fri 02 Jan 2026 06:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60649 IP address blocks: 150.129.11.0/24 maxlen: 24 2a0f:6bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/b1475d-fcc2-48bb-ae01-c2ba24653f7b/1/IDdRLlNV6BWs8GRgP4rj9VKKXjs.crl rsync://rpki.ripe.net/repository/DEFAULT/46/b1475d-fcc2-48bb-ae01-c2ba24653f7b/1/IDdRLlNV6BWs8GRgP4rj9VKKXjs.mft rsync://rpki.ripe.net/repository/DEFAULT/IDdRLlNV6BWs8GRgP4rj9VKKXjs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:e0:4d:92:33:15:62:4e:17:db:c4:2c:08:77:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2037512e5355e815acf064603f8ae3f5528a5e3b Validity Not Before: Jan 2 06:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=963fce561b72cce386025f0ed995f66fdfae60fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a6:3d:ee:b0:63:86:07:5a:65:b8:fe:e2:68: c7:8f:f6:4c:62:c9:81:7d:b1:0e:d4:9b:7c:36:68: 2c:6f:9f:64:80:23:e8:ef:a6:ea:db:7e:a2:12:db: b9:44:a0:32:73:d4:e9:1a:2d:e6:03:59:4f:f0:a7: 1e:b6:5f:c9:bf:02:fb:73:6e:89:f5:a8:db:c6:8c: ba:2b:f1:09:e5:a7:24:0a:25:17:e5:4b:a0:11:df: 35:5a:73:5c:ee:69:31:ef:4e:3f:f3:92:21:ad:28: f0:bd:4c:ab:36:e0:5d:82:75:32:29:aa:23:40:d9: 91:52:f7:71:a6:f6:5f:94:a2:da:4c:5f:69:fc:e9: c1:fe:b2:89:52:61:4c:aa:20:5a:93:e8:c5:c2:a0: 8a:d8:a4:c4:cb:54:4d:7d:b6:e9:0f:2a:0f:89:75: fe:f9:61:b6:6b:82:d7:4a:10:47:ef:a6:6b:f4:22: 63:a1:ae:73:83:e0:bc:eb:78:ea:e9:6e:89:8f:10: e9:ed:96:74:93:df:61:97:40:44:14:4a:14:b4:54: b9:04:e5:c3:24:9c:6f:5b:3c:d2:84:af:61:17:ef: 03:48:46:4d:b7:f7:de:e3:c3:6d:15:f7:8d:a3:de: 75:cc:37:24:d5:d4:7c:2f:b6:eb:62:ee:c8:9d:53: d6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:3F:CE:56:1B:72:CC:E3:86:02:5F:0E:D9:95:F6:6F:DF:AE:60:FE X509v3 Authority Key Identifier: keyid:20:37:51:2E:53:55:E8:15:AC:F0:64:60:3F:8A:E3:F5:52:8A:5E:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IDdRLlNV6BWs8GRgP4rj9VKKXjs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b1475d-fcc2-48bb-ae01-c2ba24653f7b/1/lj_OVhtyzOOGAl8O2ZX2b9-uYP4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b1475d-fcc2-48bb-ae01-c2ba24653f7b/1/IDdRLlNV6BWs8GRgP4rj9VKKXjs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.129.11.0/24 IPv6: 2a0f:6bc0::/32 Signature Algorithm: sha256WithRSAEncryption 1e:3e:59:c0:1f:70:cf:f9:ed:12:15:57:14:8c:85:25:65:36: 8a:af:f8:b9:e3:ce:86:f7:0a:c0:1d:21:ed:73:64:5f:a9:0a: b2:31:e0:e8:1d:02:43:95:c0:95:e8:f3:e2:56:17:75:7e:c1: df:5e:19:f2:78:be:b8:a2:26:1f:9b:df:be:19:78:a9:6c:59: 42:33:09:4d:bc:ab:be:cc:45:8b:30:e8:12:b4:0a:e0:d5:9a: d9:f1:8f:84:15:90:30:c1:35:0c:b9:13:40:39:7f:91:3f:ec: 7d:99:6d:73:7c:3f:9b:9e:69:12:43:e1:2d:6c:91:f4:46:7c: 10:4c:a0:45:a7:d5:2e:c9:25:d3:7c:2a:85:5e:09:60:65:75: fa:70:e6:8c:c2:5c:b4:44:8f:bc:21:d2:8a:89:30:19:39:67: 95:0a:21:c6:dc:13:aa:62:43:ea:3a:81:32:7c:2b:08:d9:c4: 35:a7:ea:eb:16:06:e4:43:d0:39:a3:58:1e:bc:25:9c:5e:9a: 1c:af:4c:d8:58:b8:52:2f:2c:ae:6c:17:d3:19:32:9b:d3:9f: 0a:d1:c5:c9:1e:bb:62:f6:b2:87:0c:26:bd:1a:79:e2:37:8a: e2:48:98:d3:8f:dd:54:00:64:10:56:63:b6:38:54:11:4f:a4: 31:aa:57:73 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9W+BNkjMVYk4X28QsCHelMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMzc1MTJlNTM1NWU4MTVhY2YwNjQ2MDNmOGFlM2Y1NTI4 YTVlM2IwHhcNMjYwMTAyMDYxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjNmY2U1NjFiNzJjY2UzODYwMjVmMGVkOTk1ZjY2ZmRmYWU2MGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3qY97rBjhgdaZbj+4mjHj/ZMYsmB fbEO1Jt8Nmgsb59kgCPo76bq236iEtu5RKAyc9TpGi3mA1lP8Kcetl/JvwL7c26J 9ajbxoy6K/EJ5ackCiUX5UugEd81WnNc7mkx704/85IhrSjwvUyrNuBdgnUyKaoj QNmRUvdxpvZflKLaTF9p/OnB/rKJUmFMqiBak+jFwqCK2KTEy1RNfbbpDyoPiXX+ +WG2a4LXShBH76Zr9CJjoa5zg+C863jq6W6JjxDp7ZZ0k99hl0BEFEoUtFS5BOXD JJxvWzzShK9hF+8DSEZNt/fe48NtFfeNo951zDck1dR8L7brYu7InVPWJwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJY/zlYbcszjhgJfDtmV9m/frmD+MB8GA1UdIwQY MBaAFCA3US5TVegVrPBkYD+K4/VSil47MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSURkUkxsTlY2QldzOEdSZ1A0cmo5VktLWGpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9iMTQ3NWQtZmNjMi00OGJiLWFlMDEt YzJiYTI0NjUzZjdiLzEvbGpfT1ZodHl6T09HQWw4TzJaWDJiOS11WVA0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni9iMTQ3NWQtZmNjMi00OGJiLWFlMDEtYzJiYTI0NjUzZjdi LzEvSURkUkxsTlY2QldzOEdSZ1A0cmo5VktLWGpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAloELMA0E AgACMAcDBQAqD2vAMA0GCSqGSIb3DQEBCwUAA4IBAQAePlnAH3DP+e0SFVcUjIUl ZTaKr/i5486G9wrAHSHtc2RfqQqyMeDoHQJDlcCV6PPiVhd1fsHfXhnyeL64oiYf m9++GXipbFlCMwlNvKu+zEWLMOgStArg1ZrZ8Y+EFZAwwTUMuRNAOX+RP+x9mW1z fD+bnmkSQ+EtbJH0RnwQTKBFp9UuySXTfCqFXglgZXX6cOaMwly0RI+8IdKKiTAZ OWeVCiHG3BOqYkPqOoEyfCsI2cQ1p+rrFgbkQ9A5o1gevCWcXpocr0zYWLhSLyyu bBfTGTKb058K0cXJHrti9rKHDCa9GnniN4riSJjTj91UAGQQVmO2OFQRT6Qxqldz -----END CERTIFICATE-----Generated at Mon Jan 26 08:37:52 2026 by rpki-client