This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/lzvYQ0K9BEZg4pkQlfVFgknob7A.roa File: lzvYQ0K9BEZg4pkQlfVFgknob7A.roa (raw, json) Hash identifier: BcqBpfBCaIEZdSkKphmSBpiqpYSfxDwEADDAeo9W8JA= Subject key identifier: 97:3B:D8:43:42:BD:04:46:60:E2:99:10:95:F5:45:82:49:E8:6F:B0 Certificate issuer: /CN=5f99fde0d63b11b5c2dd816c0f93c2ea58350336 Certificate serial: 019B797F16B9DCCE45B7D5F9870807C0C665 Authority key identifier: 5F:99:FD:E0:D6:3B:11:B5:C2:DD:81:6C:0F:93:C2:EA:58:35:03:36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5n94NY7EbXC3YFsD5PC6lg1AzY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/lzvYQ0K9BEZg4pkQlfVFgknob7A.roa Signing time: Thu 01 Jan 2026 12:18:50 +0000 ROA not before: Thu 01 Jan 2026 12:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49409 IP address blocks: 178.22.96.0/21 maxlen: 21 185.81.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/X5n94NY7EbXC3YFsD5PC6lg1AzY.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/X5n94NY7EbXC3YFsD5PC6lg1AzY.mft rsync://rpki.ripe.net/repository/DEFAULT/X5n94NY7EbXC3YFsD5PC6lg1AzY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:16:b9:dc:ce:45:b7:d5:f9:87:08:07:c0:c6:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f99fde0d63b11b5c2dd816c0f93c2ea58350336 Validity Not Before: Jan 1 12:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=973bd84342bd044660e2991095f5458249e86fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:87:90:92:c8:a5:66:93:ef:e0:22:33:61:ca: 66:41:c0:b9:b3:9e:3a:e4:f5:f5:4f:36:f6:a3:00: 3c:5e:43:54:8b:09:57:ef:07:85:ec:55:a9:3a:ec: d0:ee:d8:5a:01:d7:66:83:d5:32:65:5b:13:b9:ea: 76:f8:ae:90:07:e2:83:3f:ed:a2:d3:d8:44:e6:2a: 48:60:74:ba:d3:d3:39:2a:2f:d4:83:52:5f:44:11: 05:48:7b:42:c4:58:96:db:eb:b2:7d:8c:76:68:44: 74:35:8e:ab:0f:0b:ab:1f:93:d3:76:29:d1:d0:92: 93:b1:43:c1:54:63:a8:cb:0a:64:79:a4:73:e6:08: 04:56:bf:c8:66:77:ae:c8:5f:cf:2c:1b:6d:ab:c7: 5b:89:0b:70:c7:f6:e3:56:d2:b9:fb:1f:8e:7d:f7: 9c:4f:2f:69:38:58:93:ea:84:da:fb:ac:ee:fb:06: 08:ca:d3:fe:98:95:ed:a9:9c:28:e0:a6:af:55:81: 3b:dc:a2:a0:fa:58:45:96:0c:02:fe:e5:c3:db:e3: f5:a9:dd:54:4c:09:4f:90:24:cc:2d:8f:d2:ab:31: 18:c2:eb:10:d2:eb:e4:fc:d0:66:b3:e9:64:87:c6: c5:7d:ed:02:e7:0c:5a:ba:ea:fe:dc:8a:1b:62:35: dd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:3B:D8:43:42:BD:04:46:60:E2:99:10:95:F5:45:82:49:E8:6F:B0 X509v3 Authority Key Identifier: keyid:5F:99:FD:E0:D6:3B:11:B5:C2:DD:81:6C:0F:93:C2:EA:58:35:03:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5n94NY7EbXC3YFsD5PC6lg1AzY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/lzvYQ0K9BEZg4pkQlfVFgknob7A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/f116d7-8519-4924-8d1d-4c77d605afec/1/X5n94NY7EbXC3YFsD5PC6lg1AzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.22.96.0/21 185.81.14.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:92:1d:da:7f:1f:49:8d:65:a9:51:14:af:b3:9f:81:69:41: 25:b1:58:28:ee:c2:b9:d9:0c:77:bb:f7:8e:f4:9b:52:19:63: 1e:6d:ac:06:80:fc:11:5d:68:5c:a2:56:f3:50:a6:77:5c:0f: 9a:a3:da:84:c7:33:f5:7c:3b:e5:ed:39:1e:66:17:52:06:b2: e9:2e:4d:bd:a6:d7:cd:2c:93:7c:80:5a:cd:c8:39:ba:f9:4b: ec:92:ec:6a:27:82:a6:50:2e:e5:e4:3c:81:83:e0:28:fe:8f: ca:c2:83:fe:1a:d7:1e:b6:75:21:65:06:b6:42:65:d1:1a:66: 76:37:6d:ec:63:e2:f3:ff:64:18:94:13:5f:bb:86:f6:0e:34: 88:6d:ec:2a:0d:c7:d1:f9:4f:8d:5c:9a:72:9b:68:2e:a0:0a: bb:ef:ff:d3:6f:13:5f:22:da:8e:85:e0:67:dc:fd:35:78:05: 4b:46:fc:15:0a:cd:4c:7b:51:6c:4d:01:b1:e0:a0:f2:f7:27: 1a:52:11:90:f1:70:1f:08:d1:1c:cc:e7:e4:6d:8a:a2:c9:41: a5:6a:cb:52:b1:ac:16:eb:8f:3a:33:be:3b:ab:d2:ea:fb:ff: 65:1d:2e:7f:33:23:6d:83:f6:dc:2b:71:03:06:8c:a0:b7:1a: 17:a4:84:ce -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5fxa53M5Ft9X5hwgHwMZlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmOTlmZGUwZDYzYjExYjVjMmRkODE2YzBmOTNjMmVhNTgz NTAzMzYwHhcNMjYwMTAxMTIxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NzNiZDg0MzQyYmQwNDQ2NjBlMjk5MTA5NWY1NDU4MjQ5ZTg2ZmIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYeQksilZpPv4CIzYcpmQcC5s546 5PX1Tzb2owA8XkNUiwlX7weF7FWpOuzQ7thaAddmg9UyZVsTuep2+K6QB+KDP+2i 09hE5ipIYHS609M5Ki/Ug1JfRBEFSHtCxFiW2+uyfYx2aER0NY6rDwurH5PTdinR 0JKTsUPBVGOoywpkeaRz5ggEVr/IZneuyF/PLBttq8dbiQtwx/bjVtK5+x+Offec Ty9pOFiT6oTa+6zu+wYIytP+mJXtqZwo4KavVYE73KKg+lhFlgwC/uXD2+P1qd1U TAlPkCTMLY/SqzEYwusQ0uvk/NBms+lkh8bFfe0C5wxauur+3IobYjXdDQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJc72ENCvQRGYOKZEJX1RYJJ6G+wMB8GA1UdIwQY MBaAFF+Z/eDWOxG1wt2BbA+TwupYNQM2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDVuOTROWTdFYlhDM1lGc0Q1UEM2bGcxQXpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9mMTE2ZDctODUxOS00OTI0LThkMWQt NGM3N2Q2MDVhZmVjLzEvbHp2WVEwSzlCRVpnNHBrUWxmVkZna25vYjdBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy9mMTE2ZDctODUxOS00OTI0LThkMWQtNGM3N2Q2MDVhZmVj LzEvWDVuOTROWTdFYlhDM1lGc0Q1UEM2bGcxQXpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDshZgAwQB uVEOMA0GCSqGSIb3DQEBCwUAA4IBAQAckh3afx9JjWWpURSvs5+BaUElsVgo7sK5 2Qx3u/eO9JtSGWMebawGgPwRXWhcolbzUKZ3XA+ao9qExzP1fDvl7TkeZhdSBrLp Lk29ptfNLJN8gFrNyDm6+UvskuxqJ4KmUC7l5DyBg+Ao/o/KwoP+GtcetnUhZQa2 QmXRGmZ2N23sY+Lz/2QYlBNfu4b2DjSIbewqDcfR+U+NXJpym2guoAq77//TbxNf ItqOheBn3P01eAVLRvwVCs1Me1FsTQGx4KDy9ycaUhGQ8XAfCNEczOfkbYqiyUGl astSsawW6486M747q9Lq+/9lHS5/MyNtg/bcK3EDBoygtxoXpITO -----END CERTIFICATE-----Generated at Mon Jan 26 05:54:45 2026 by rpki-client