This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/lwYSlpTcrkiQkDzeOQ8BoLNseFE.roa File: lwYSlpTcrkiQkDzeOQ8BoLNseFE.roa (raw, json) Hash identifier: 5tgpdt7/xmiOrPEu2MALXWkNE2cqkUWOYBS+UkJ1nT0= Subject key identifier: 97:06:12:96:94:DC:AE:48:90:90:3C:DE:39:0F:01:A0:B3:6C:78:51 Certificate issuer: /CN=34b419fa4a0a1605188318cdf4a2044992853b95 Certificate serial: 019B78347A98E084C1D83EA8994B21F225E6 Authority key identifier: 34:B4:19:FA:4A:0A:16:05:18:83:18:CD:F4:A2:04:49:92:85:3B:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLQZ-koKFgUYgxjN9KIESZKFO5U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/lwYSlpTcrkiQkDzeOQ8BoLNseFE.roa Signing time: Thu 01 Jan 2026 06:17:43 +0000 ROA not before: Thu 01 Jan 2026 06:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34309 IP address blocks: 37.153.80.0/24 maxlen: 24 37.153.81.0/24 maxlen: 24 37.153.82.0/24 maxlen: 24 37.153.83.0/24 maxlen: 24 37.153.84.0/24 maxlen: 24 37.153.85.0/24 maxlen: 24 37.153.86.0/24 maxlen: 24 37.153.87.0/24 maxlen: 24 185.224.180.0/22 maxlen: 24 195.8.198.0/24 maxlen: 24 195.8.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/NLQZ-koKFgUYgxjN9KIESZKFO5U.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/NLQZ-koKFgUYgxjN9KIESZKFO5U.mft rsync://rpki.ripe.net/repository/DEFAULT/NLQZ-koKFgUYgxjN9KIESZKFO5U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:7a:98:e0:84:c1:d8:3e:a8:99:4b:21:f2:25:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34b419fa4a0a1605188318cdf4a2044992853b95 Validity Not Before: Jan 1 06:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9706129694dcae4890903cde390f01a0b36c7851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f4:12:af:3e:40:25:3c:13:18:06:6d:73:a2: ec:96:5d:a8:b9:99:20:01:17:ad:43:b0:d0:db:3d: 07:5d:52:5f:b3:db:91:3a:9a:3b:16:87:57:bc:70: ff:30:ac:f5:10:d6:d7:07:47:b7:60:b3:39:71:1a: 7b:68:f2:cf:d2:35:ca:21:bb:43:4d:77:82:25:60: bb:da:f7:4e:16:00:53:8c:fa:af:9e:17:7d:26:40: a8:0f:53:fe:2d:c4:c6:58:73:58:5e:a9:89:c6:eb: 75:7e:ab:04:3b:b7:e5:ec:13:c2:09:72:d2:e9:ec: 12:53:c7:ae:52:06:c3:16:ee:a8:51:3d:72:74:4f: 5a:4b:3e:3b:48:41:3d:20:67:be:b9:26:5b:3a:0d: c1:67:46:5b:a0:47:86:42:cd:29:c0:b1:e3:f3:00: 6a:51:b3:fd:a9:37:d7:8b:67:69:38:ea:de:1e:a8: d3:1f:f0:d7:ce:57:25:8f:82:57:62:5b:5f:28:c7: cb:8b:d7:10:c2:52:6b:dd:be:58:ba:0e:52:31:a6: eb:00:e1:42:77:77:84:83:78:53:1f:0d:18:43:d1: 7c:91:a9:e7:7f:87:8c:3c:2b:0a:c1:36:ad:1e:04: 3f:15:2f:18:c6:11:77:74:c2:62:d8:cd:c7:f0:4e: d3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:06:12:96:94:DC:AE:48:90:90:3C:DE:39:0F:01:A0:B3:6C:78:51 X509v3 Authority Key Identifier: keyid:34:B4:19:FA:4A:0A:16:05:18:83:18:CD:F4:A2:04:49:92:85:3B:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLQZ-koKFgUYgxjN9KIESZKFO5U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/lwYSlpTcrkiQkDzeOQ8BoLNseFE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8c79fb-7a57-429d-9c33-8777544c9275/1/NLQZ-koKFgUYgxjN9KIESZKFO5U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.153.80.0/21 185.224.180.0/22 195.8.198.0/23 Signature Algorithm: sha256WithRSAEncryption 16:19:62:5a:0b:e5:28:78:fa:b2:7a:69:95:fb:cc:62:19:b3: ca:99:e1:73:4d:8c:0b:9f:1d:c8:0b:84:c8:4b:ec:61:e2:80: b0:31:ba:6b:37:c0:79:39:25:17:58:70:1b:e6:f1:03:3a:6e: 59:81:82:ad:0a:43:d5:7b:79:c1:6c:ff:15:40:56:71:6a:c9: d5:91:1d:d7:c5:23:e0:23:43:6c:00:2a:5e:66:20:9f:f3:6e: 01:95:82:ed:f9:77:dc:f6:cc:df:50:89:c0:b9:67:c3:fe:31: 2d:47:67:c1:e2:8a:9a:1f:f0:aa:6e:90:6f:63:c3:a2:dc:22: 4b:da:16:21:d2:14:e8:e2:f5:e1:78:d4:4f:fa:8f:70:19:ce: d7:25:73:2f:3e:3a:af:2f:33:ce:b0:a9:4d:15:af:8e:94:43: 0a:98:d0:48:df:ca:74:97:b9:23:20:93:de:90:c4:71:10:bd: d9:6b:c3:4d:b3:b8:52:04:f1:9d:cd:38:e6:f7:57:23:df:66: 08:31:a0:d9:70:19:f7:92:a2:48:4a:d3:d2:35:a5:6b:7d:2a: 09:d8:b1:b2:51:0f:8d:bd:28:da:b2:9b:70:99:22:ad:8a:9f: 0f:f8:0a:64:2c:c5:c4:a5:1b:0a:91:36:bf:0b:66:8c:3c:49: 04:68:c2:53 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt4NHqY4ITB2D6omUsh8iXmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0YjQxOWZhNGEwYTE2MDUxODgzMThjZGY0YTIwNDQ5OTI4 NTNiOTUwHhcNMjYwMTAxMDYxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NzA2MTI5Njk0ZGNhZTQ4OTA5MDNjZGUzOTBmMDFhMGIzNmM3ODUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPQSrz5AJTwTGAZtc6Lsll2ouZkg ARetQ7DQ2z0HXVJfs9uROpo7FodXvHD/MKz1ENbXB0e3YLM5cRp7aPLP0jXKIbtD TXeCJWC72vdOFgBTjPqvnhd9JkCoD1P+LcTGWHNYXqmJxut1fqsEO7fl7BPCCXLS 6ewSU8euUgbDFu6oUT1ydE9aSz47SEE9IGe+uSZbOg3BZ0ZboEeGQs0pwLHj8wBq UbP9qTfXi2dpOOreHqjTH/DXzlclj4JXYltfKMfLi9cQwlJr3b5Yug5SMabrAOFC d3eEg3hTHw0YQ9F8kannf4eMPCsKwTatHgQ/FS8YxhF3dMJi2M3H8E7TSwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFJcGEpaU3K5IkJA83jkPAaCzbHhRMB8GA1UdIwQY MBaAFDS0GfpKChYFGIMYzfSiBEmShTuVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkxRWi1rb0tGZ1VZZ3hqTjlLSUVTWktGTzVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84Yzc5ZmItN2E1Ny00MjlkLTljMzMt ODc3NzU0NGM5Mjc1LzEvbHdZU2xwVGNya2lRa0R6ZU9ROEJvTE5zZUZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi84Yzc5ZmItN2E1Ny00MjlkLTljMzMtODc3NzU0NGM5Mjc1 LzEvTkxRWi1rb0tGZ1VZZ3hqTjlLSUVTWktGTzVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDJZlQAwQC ueC0AwQBwwjGMA0GCSqGSIb3DQEBCwUAA4IBAQAWGWJaC+UoePqyemmV+8xiGbPK meFzTYwLnx3IC4TIS+xh4oCwMbprN8B5OSUXWHAb5vEDOm5ZgYKtCkPVe3nBbP8V QFZxasnVkR3XxSPgI0NsACpeZiCf824BlYLt+Xfc9szfUInAuWfD/jEtR2fB4oqa H/CqbpBvY8Oi3CJL2hYh0hTo4vXheNRP+o9wGc7XJXMvPjqvLzPOsKlNFa+OlEMK mNBI38p0l7kjIJPekMRxEL3Za8NNs7hSBPGdzTjm91cj32YIMaDZcBn3kqJIStPS NaVrfSoJ2LGyUQ+NvSjasptwmSKtip8P+ApkLMXEpRsKkTa/C2aMPEkEaMJT -----END CERTIFICATE-----Generated at Sun Jan 25 17:00:28 2026 by rpki-client