This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/lwmtxoWx5clkivlnh1Kh10qANc8.roa File: lwmtxoWx5clkivlnh1Kh10qANc8.roa (raw, json) Hash identifier: aox9Sa8RSdnqNanp7vV3UK2GlMEf/ITdwIirj370CTo= Subject key identifier: 97:09:AD:C6:85:B1:E5:C9:64:8A:F9:67:87:52:A1:D7:4A:80:35:CF Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a Certificate serial: 019B77C6D7DE88E80C8065F787E1EDD0E3D7 Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/lwmtxoWx5clkivlnh1Kh10qANc8.roa Signing time: Thu 01 Jan 2026 04:17:58 +0000 ROA not before: Thu 01 Jan 2026 04:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49505 IP address blocks: 109.238.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.mft rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:d7:de:88:e8:0c:80:65:f7:87:e1:ed:d0:e3:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a Validity Not Before: Jan 1 04:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9709adc685b1e5c9648af9678752a1d74a8035cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e8:21:c0:5b:63:f3:83:dc:e5:ff:bb:a1:cb: ae:03:a9:b0:e6:b4:64:7f:d4:40:81:ba:e4:ba:a7: 40:b6:98:22:09:de:ee:4b:32:8b:ee:10:bd:83:77: 11:65:e2:16:71:c1:7b:11:a1:e7:22:be:ae:1a:1f: b6:d0:28:89:fa:c4:41:49:dc:60:98:ba:e2:49:94: 4d:0b:86:85:35:81:a0:61:24:b2:70:6a:86:87:77: 8b:61:40:67:33:e9:43:ae:22:b3:7e:1a:62:3e:02: e0:70:62:85:54:ea:70:cb:a9:ac:bd:42:25:65:da: a5:29:1f:d2:81:79:20:15:b8:c7:4a:85:bf:19:e5: ee:4f:0a:6d:c1:41:05:98:d7:1c:a0:b1:a9:41:b5: 36:30:9d:a6:c1:45:f6:60:b3:55:47:f2:d6:44:1b: 21:67:68:28:a8:d9:f1:eb:75:ad:45:b1:9d:67:40: 1b:78:4a:e0:59:44:1c:4e:3e:59:27:40:15:f0:45: e0:75:28:c0:79:69:c5:3d:0b:cd:23:31:d0:cb:63: 04:7e:68:5b:77:22:06:0e:e7:a5:f6:4b:e7:e4:7e: cc:c3:3e:ac:de:a2:2a:30:c7:40:87:7d:ad:ba:00: cf:12:7a:27:04:4b:1a:2e:9b:d7:d9:37:93:c4:10: d8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:09:AD:C6:85:B1:E5:C9:64:8A:F9:67:87:52:A1:D7:4A:80:35:CF X509v3 Authority Key Identifier: keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/lwmtxoWx5clkivlnh1Kh10qANc8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.238.204.0/24 Signature Algorithm: sha256WithRSAEncryption 95:53:8e:3f:0c:ca:d1:70:1f:6b:04:59:c0:1f:3e:ee:56:f9: aa:92:6f:28:ed:db:5c:bb:19:eb:1f:94:c6:ef:11:4b:a2:fe: df:de:be:13:48:19:17:54:eb:d7:ed:fa:2f:b0:bf:d7:fe:e2: b7:c4:ca:91:c6:b5:9c:02:70:16:95:c8:ab:9d:1c:de:d8:3f: a9:de:ec:d3:56:7c:7e:0d:ef:8d:de:13:b0:f2:8d:90:0e:7e: 8f:8c:39:13:40:63:7b:89:33:5f:4d:0a:ee:1e:ee:2b:f4:c5: b0:89:3a:d3:16:61:60:5d:55:96:ac:6a:fc:ab:c8:83:eb:79: 29:ca:bd:90:16:0f:02:1c:c0:03:86:a6:ab:f1:6d:0e:99:b8: 63:62:5e:90:1f:f5:37:dd:aa:15:c4:b6:e8:6f:cf:db:a4:d2: 1e:1a:d7:8d:aa:af:14:64:f6:65:52:0b:2d:77:30:4d:c8:2e: ad:31:73:0a:2c:77:79:f0:78:ab:95:21:f4:8b:39:3e:65:be: 98:2d:97:70:de:da:49:9f:e9:f9:55:15:c6:44:1a:d7:0d:96: fb:9b:b9:79:41:7e:e9:66:aa:01:40:90:25:8f:d0:39:f3:79: 6c:e1:c9:9c:e6:d3:f7:c1:ce:ec:81:d8:d4:d9:6f:0d:81:6c: 77:e1:aa:49 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xtfeiOgMgGX3h+Ht0OPXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZjM0NGE2M2RjYjcwZTg5MDU3ZGViOGUyNzYxZGM0NTE2 NTg4MWEwHhcNMjYwMTAxMDQxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NzA5YWRjNjg1YjFlNWM5NjQ4YWY5Njc4NzUyYTFkNzRhODAzNWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ughwFtj84Pc5f+7ocuuA6mw5rRk f9RAgbrkuqdAtpgiCd7uSzKL7hC9g3cRZeIWccF7EaHnIr6uGh+20CiJ+sRBSdxg mLriSZRNC4aFNYGgYSSycGqGh3eLYUBnM+lDriKzfhpiPgLgcGKFVOpwy6msvUIl ZdqlKR/SgXkgFbjHSoW/GeXuTwptwUEFmNccoLGpQbU2MJ2mwUX2YLNVR/LWRBsh Z2goqNnx63WtRbGdZ0AbeErgWUQcTj5ZJ0AV8EXgdSjAeWnFPQvNIzHQy2MEfmhb dyIGDuel9kvn5H7Mwz6s3qIqMMdAh32tugDPEnonBEsaLpvX2TeTxBDYjQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJcJrcaFseXJZIr5Z4dSoddKgDXPMB8GA1UdIwQY MBaAFCLzRKY9y3DokFfeuOJ2HcRRZYgaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXZORXBqM0xjT2lRVjk2NDRuWWR4RkZsaUJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi81MzYwZTctZjAyYS00NzM3LTk5Yzct ZmViYjY0YjVlMTY0LzEvbHdtdHhvV3g1Y2xraXZsbmgxS2gxMHFBTmM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi81MzYwZTctZjAyYS00NzM3LTk5YzctZmViYjY0YjVlMTY0 LzEvSXZORXBqM0xjT2lRVjk2NDRuWWR4RkZsaUJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbe7MMA0G CSqGSIb3DQEBCwUAA4IBAQCVU44/DMrRcB9rBFnAHz7uVvmqkm8o7dtcuxnrH5TG 7xFLov7f3r4TSBkXVOvX7fovsL/X/uK3xMqRxrWcAnAWlcirnRze2D+p3uzTVnx+ De+N3hOw8o2QDn6PjDkTQGN7iTNfTQruHu4r9MWwiTrTFmFgXVWWrGr8q8iD63kp yr2QFg8CHMADhqar8W0OmbhjYl6QH/U33aoVxLbob8/bpNIeGteNqq8UZPZlUgst dzBNyC6tMXMKLHd58HirlSH0izk+Zb6YLZdw3tpJn+n5VRXGRBrXDZb7m7l5QX7p ZqoBQJAlj9A583ls4cmc5tP3wc7sgdjU2W8NgWx34apJ -----END CERTIFICATE-----Generated at Mon Jan 26 05:58:02 2026 by rpki-client