This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/LdznHUG78Bp9I2Dc43gteEDaBDQ.roa File: LdznHUG78Bp9I2Dc43gteEDaBDQ.roa (raw, json) Hash identifier: +dMfTpGhmS4SyoMfOpUT8Rsq5hQCLovibVxni1srWPA= Subject key identifier: 2D:DC:E7:1D:41:BB:F0:1A:7D:23:60:DC:E3:78:2D:78:40:DA:04:34 Certificate issuer: /CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae Certificate serial: 019B76EB1F92D28AA34ECCB2B30523703850 Authority key identifier: 20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/LdznHUG78Bp9I2Dc43gteEDaBDQ.roa Signing time: Thu 01 Jan 2026 00:17:59 +0000 ROA not before: Thu 01 Jan 2026 00:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205706 IP address blocks: 185.205.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.mft rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:1f:92:d2:8a:a3:4e:cc:b2:b3:05:23:70:38:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae Validity Not Before: Jan 1 00:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2ddce71d41bbf01a7d2360dce3782d7840da0434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6f:35:57:2c:86:ca:1f:df:02:69:43:b2:d6: 69:09:cc:76:6c:54:7c:e6:82:ec:21:b8:49:03:75: e7:36:c2:5c:95:af:04:e7:7e:79:5c:4c:bc:04:49: 5e:30:68:de:0d:bd:2d:32:d0:bc:f7:7f:bf:c0:1f: e6:de:c5:03:d2:68:ca:94:55:aa:e2:98:f9:04:78: c1:d9:e1:9d:47:6b:10:3a:55:34:50:61:0e:f9:68: ba:7c:48:3f:56:c6:a1:5b:fd:ab:59:9a:ed:eb:8f: 70:59:82:87:85:0b:ab:74:2a:73:4c:e4:45:61:01: d2:70:ae:be:03:9c:b7:3a:f8:31:76:c0:ae:3b:df: c3:88:7d:e9:6e:bd:fc:09:58:96:ea:8e:e0:ab:05: a5:7e:0c:24:b4:74:b6:c9:63:25:77:f9:54:10:c8: ba:77:2a:e9:3e:96:95:20:29:57:ab:e8:86:d2:e4: 86:e7:c2:02:63:fa:a6:e6:8c:a3:f8:e4:e5:1c:71: 70:d4:55:a5:da:05:5d:62:de:d9:1b:04:38:54:33: cf:49:fa:db:07:56:85:36:f3:c4:11:4a:18:4b:db: c3:bf:c5:46:82:b9:4e:1c:17:13:28:67:e6:bd:b8: 73:f9:12:20:45:34:10:d2:d9:57:ba:5b:b5:00:7c: b2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DC:E7:1D:41:BB:F0:1A:7D:23:60:DC:E3:78:2D:78:40:DA:04:34 X509v3 Authority Key Identifier: keyid:20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/LdznHUG78Bp9I2Dc43gteEDaBDQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.205.152.0/22 Signature Algorithm: sha256WithRSAEncryption 40:81:9a:63:de:ae:98:cb:f8:08:ff:06:7a:43:ae:b5:4f:f9: 6f:05:51:76:fc:37:23:a2:6f:74:cb:23:c5:81:19:22:18:ec: 11:ce:13:3d:2e:84:55:27:a4:00:68:f1:30:a3:29:50:6f:60: 01:2c:b2:60:ed:1f:4f:e2:94:5a:7d:1c:e9:dc:c0:ba:7a:f9: fe:56:ea:36:0b:a6:b0:13:c8:2c:15:1a:9a:f1:9f:f1:34:cc: e5:14:26:95:dc:78:4b:72:63:fe:c2:5d:77:7e:26:68:40:7f: 46:33:5e:ee:f6:23:f7:9b:48:25:01:f6:5f:af:5a:2f:0f:b7: ba:87:8d:0b:a1:40:c9:df:c4:43:ad:5f:8b:44:0a:6e:6f:bd: 35:aa:80:bb:ff:7a:3c:b9:1a:55:de:84:f0:23:b3:a3:86:f7: 36:5b:b7:35:99:0b:6e:14:35:82:7a:72:6c:43:24:79:06:aa: eb:5f:e1:02:5f:78:70:57:90:19:84:41:10:0d:91:53:a1:e2: f3:4a:ff:ea:ee:92:2e:c8:a5:b6:5a:05:a3:82:15:72:97:ec: db:07:0c:f5:b0:b0:08:ca:05:45:2c:a6:18:53:fd:9b:fc:b7: fd:7f:cb:2d:f9:99:7e:f5:81:56:21:d3:64:29:07:23:4e:cb: 1f:e4:42:2a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26x+S0oqjTsyyswUjcDhQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMmY0YzFhMzdlOTMxM2NkZDJlZWE3NzUwYWUwMjhkMThj ZDVhYWUwHhcNMjYwMTAxMDAxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZGRjZTcxZDQxYmJmMDFhN2QyMzYwZGNlMzc4MmQ3ODQwZGEwNDM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7281VyyGyh/fAmlDstZpCcx2bFR8 5oLsIbhJA3XnNsJcla8E5355XEy8BEleMGjeDb0tMtC893+/wB/m3sUD0mjKlFWq 4pj5BHjB2eGdR2sQOlU0UGEO+Wi6fEg/VsahW/2rWZrt649wWYKHhQurdCpzTORF YQHScK6+A5y3OvgxdsCuO9/DiH3pbr38CViW6o7gqwWlfgwktHS2yWMld/lUEMi6 dyrpPpaVIClXq+iG0uSG58ICY/qm5oyj+OTlHHFw1FWl2gVdYt7ZGwQ4VDPPSfrb B1aFNvPEEUoYS9vDv8VGgrlOHBcTKGfmvbhz+RIgRTQQ0tlXulu1AHyy6QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC3c5x1Bu/AafSNg3ON4LXhA2gQ0MB8GA1UdIwQY MBaAFCAvTBo36TE83S7qd1CuAo0YzVquMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUM5TUdqZnBNVHpkTHVwM1VLNENqUmpOV3E0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9lZGI4Y2QtMDAzZC00ODNhLTkwNmEt ZjZiNzhlMmIxN2ExLzEvTGR6bkhVRzc4QnA5STJEYzQzZ3RlRURhQkRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9lZGI4Y2QtMDAzZC00ODNhLTkwNmEtZjZiNzhlMmIxN2Ex LzEvSUM5TUdqZnBNVHpkTHVwM1VLNENqUmpOV3E0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuc2YMA0G CSqGSIb3DQEBCwUAA4IBAQBAgZpj3q6Yy/gI/wZ6Q661T/lvBVF2/Dcjom90yyPF gRkiGOwRzhM9LoRVJ6QAaPEwoylQb2ABLLJg7R9P4pRafRzp3MC6evn+Vuo2C6aw E8gsFRqa8Z/xNMzlFCaV3HhLcmP+wl13fiZoQH9GM17u9iP3m0glAfZfr1ovD7e6 h40LoUDJ38RDrV+LRApub701qoC7/3o8uRpV3oTwI7Ojhvc2W7c1mQtuFDWCenJs QyR5BqrrX+ECX3hwV5AZhEEQDZFToeLzSv/q7pIuyKW2WgWjghVyl+zbBwz1sLAI ygVFLKYYU/2b/Lf9f8st+Zl+9YFWIdNkKQcjTssf5EIq -----END CERTIFICATE-----Generated at Mon Jan 26 05:43:50 2026 by rpki-client