This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Lhm1NA3EDG0GMDLeGDk-JFPjbvI.roa File: Lhm1NA3EDG0GMDLeGDk-JFPjbvI.roa (raw, json) Hash identifier: NAmZRRMyYlTuN60L7Pt0jytUoADB+COfFb/XkTmvM8E= Subject key identifier: 2E:19:B5:34:0D:C4:0C:6D:06:30:32:DE:18:39:3E:24:53:E3:6E:F2 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019BDADE0926D8E32B5EB7C89CC6FE08609C Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Lhm1NA3EDG0GMDLeGDk-JFPjbvI.roa Signing time: Tue 20 Jan 2026 10:05:42 +0000 ROA not before: Tue 20 Jan 2026 10:05:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136054 IP address blocks: 151.242.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 21:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:da:de:09:26:d8:e3:2b:5e:b7:c8:9c:c6:fe:08:60:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 20 10:05:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e19b5340dc40c6d063032de18393e2453e36ef2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:79:39:10:d6:2c:4d:ee:7b:43:3f:55:de:b8: 64:ac:f4:53:e2:65:6b:ac:f8:cd:4e:8c:c8:fb:34: 26:b8:12:79:1f:50:49:93:49:bd:ce:57:cb:d1:a3: 9c:f8:20:4c:58:00:3a:c7:49:82:2c:b7:68:f7:ff: 0f:a9:8c:cd:5e:5c:8c:c7:6e:a9:dd:2e:06:a5:52: bd:93:5e:12:35:20:14:5f:e0:57:15:20:00:92:12: 18:90:da:bc:92:dc:93:c3:9a:93:bf:84:73:7b:62: 54:07:54:56:ae:35:86:b5:5d:36:a3:37:38:00:c6: a6:81:65:c6:80:19:61:52:66:c0:26:67:b0:e4:03: 45:bb:1c:81:98:88:40:27:5a:5f:8e:04:b6:b5:a0: 75:46:d3:bd:a5:e1:51:8d:9a:4d:a2:46:67:88:0f: 63:31:48:a8:08:3c:fa:7b:a5:44:1a:91:98:69:99: 99:23:04:ed:04:b1:71:e5:94:9b:5e:9e:8d:29:08: fe:c9:bf:75:aa:80:bc:a9:9b:76:25:81:fa:a5:c1: 04:ce:76:ef:26:34:a7:51:12:a0:52:a8:c4:c8:6c: 82:34:53:ad:f6:7b:57:5c:b3:05:d7:9b:55:45:3f: 0b:a7:d8:02:78:ae:92:6e:aa:f7:71:4e:5e:d3:e6: c9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:19:B5:34:0D:C4:0C:6D:06:30:32:DE:18:39:3E:24:53:E3:6E:F2 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Lhm1NA3EDG0GMDLeGDk-JFPjbvI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.242.4.0/23 Signature Algorithm: sha256WithRSAEncryption 48:be:fc:e9:cd:12:56:e0:9b:fe:b2:55:f0:ea:ab:ba:86:08: 16:84:42:12:13:7c:84:10:c1:dc:8a:04:a8:7a:ab:a8:a9:75: ac:b1:c6:ce:85:6e:0c:aa:09:17:9a:69:d2:be:35:63:33:d3: a1:f3:4f:50:16:52:46:e2:4f:70:4e:3b:81:f2:8f:83:ba:52: bc:9a:89:2c:0d:f9:61:a6:5f:1a:d8:9b:ee:4f:05:5e:87:bc: 3f:9a:5c:c1:e3:6d:d8:8b:85:99:37:63:69:58:8d:68:1a:e2: f2:ee:4f:9f:9f:09:fc:77:40:b7:97:6e:9b:a0:b7:d7:7a:12: 31:0b:a5:8c:47:4a:33:4a:59:ca:bc:63:d2:a0:3b:55:57:ee: cf:76:8f:fa:a6:4a:b7:bd:fa:0a:f2:7c:50:92:5a:0a:86:3a: 5d:f9:26:7d:43:e0:61:69:ef:d2:10:46:a7:2e:01:bb:1e:25: 1a:5a:66:fe:1c:c2:4c:12:e1:dd:65:a2:55:8b:ac:41:bf:39: ae:96:e9:7e:44:ff:62:25:bd:b9:00:50:71:0f:00:c0:e2:f6: 16:d5:22:19:de:9f:60:e2:da:88:3f:68:08:58:99:f4:50:5b: 14:32:29:92:eb:33:d2:e2:b0:1c:6c:02:92:a1:a6:25:53:2a: 37:84:14:b5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZva3gkm2OMrXrfInMb+CGCcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTIwMTAwNTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTE5YjUzNDBkYzQwYzZkMDYzMDMyZGUxODM5M2UyNDUzZTM2ZWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjHk5ENYsTe57Qz9V3rhkrPRT4mVr rPjNTozI+zQmuBJ5H1BJk0m9zlfL0aOc+CBMWAA6x0mCLLdo9/8PqYzNXlyMx26p 3S4GpVK9k14SNSAUX+BXFSAAkhIYkNq8ktyTw5qTv4Rze2JUB1RWrjWGtV02ozc4 AMamgWXGgBlhUmbAJmew5ANFuxyBmIhAJ1pfjgS2taB1RtO9peFRjZpNokZniA9j MUioCDz6e6VEGpGYaZmZIwTtBLFx5ZSbXp6NKQj+yb91qoC8qZt2JYH6pcEEznbv JjSnURKgUqjEyGyCNFOt9ntXXLMF15tVRT8Lp9gCeK6Sbqr3cU5e0+bJIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC4ZtTQNxAxtBjAy3hg5PiRT427yMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvTGhtMU5BM0VERzBHTURMZUdEay1KRlBqYnZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBl/IEMA0G CSqGSIb3DQEBCwUAA4IBAQBIvvzpzRJW4Jv+slXw6qu6hggWhEISE3yEEMHcigSo equoqXWsscbOhW4MqgkXmmnSvjVjM9Oh809QFlJG4k9wTjuB8o+DulK8moksDflh pl8a2JvuTwVeh7w/mlzB423Yi4WZN2NpWI1oGuLy7k+fnwn8d0C3l26boLfXehIx C6WMR0ozSlnKvGPSoDtVV+7Pdo/6pkq3vfoK8nxQkloKhjpd+SZ9Q+Bhae/SEEan LgG7HiUaWmb+HMJMEuHdZaJVi6xBvzmulul+RP9iJb25AFBxDwDA4vYW1SIZ3p9g 4tqIP2gIWJn0UFsUMimS6zPS4rAcbAKSoaYlUyo3hBS1 -----END CERTIFICATE-----Generated at Sun Jan 25 08:48:48 2026 by rpki-client