This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/LwHESgaA3wR7xWJkOxHkbQsDxSM.roa File: LwHESgaA3wR7xWJkOxHkbQsDxSM.roa (raw, json) Hash identifier: a5WvbqnTA+CcAXAbTeBwXH3oCJmynIix6gVfZCMhr3Y= Subject key identifier: 2F:01:C4:4A:06:80:DF:04:7B:C5:62:64:3B:11:E4:6D:0B:03:C5:23 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019BB34BE7960EB0C2E6882F3DFF668D75B8 Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/LwHESgaA3wR7xWJkOxHkbQsDxSM.roa Signing time: Mon 12 Jan 2026 17:40:54 +0000 ROA not before: Mon 12 Jan 2026 17:40:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209693 IP address blocks: 64.188.76.0/24 maxlen: 24 64.188.77.0/24 maxlen: 24 64.188.78.0/24 maxlen: 24 64.188.79.0/24 maxlen: 24 64.188.80.0/24 maxlen: 24 64.188.81.0/24 maxlen: 24 64.188.82.0/24 maxlen: 24 64.188.83.0/24 maxlen: 24 77.239.126.0/24 maxlen: 24 87.251.16.0/24 maxlen: 24 87.251.17.0/24 maxlen: 24 87.251.18.0/24 maxlen: 24 87.251.19.0/24 maxlen: 24 144.31.168.0/22 maxlen: 24 193.23.216.0/24 maxlen: 24 193.23.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b3:4b:e7:96:0e:b0:c2:e6:88:2f:3d:ff:66:8d:75:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 12 17:40:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2f01c44a0680df047bc562643b11e46d0b03c523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:26:07:ee:31:ac:61:6a:bb:75:32:a1:4a:3d: a0:e7:58:67:14:5e:65:27:83:52:64:72:7b:43:99: c8:eb:66:e8:75:d6:2d:ca:4e:48:b3:72:1b:af:78: 3f:fe:ea:67:1a:47:54:c9:52:c6:c9:e5:9d:f2:9b: c1:0c:4a:08:2c:2e:af:9c:87:6e:1c:98:bd:3f:66: 46:23:10:de:14:c4:d2:93:6f:13:44:d9:9d:8a:a7: 9d:8f:d4:ac:01:14:ee:f1:be:86:f1:fa:99:bb:49: 8f:f6:86:af:7d:c5:36:1a:d6:fd:c5:0d:f4:e4:ff: d2:68:5b:a8:07:13:17:36:0a:21:d8:e2:21:51:19: eb:28:b5:fc:30:23:c7:00:60:76:8f:39:53:20:15: b4:78:7f:4b:c1:58:93:34:bc:2b:4d:44:6c:f8:04: 4e:c7:22:ce:4c:f3:66:6f:29:ff:2c:49:6b:77:9d: ce:20:1e:e6:a8:af:1a:48:18:ba:a5:36:69:d2:c4: ab:89:49:b1:70:cc:fd:8b:9b:61:6e:11:e4:81:2e: 16:63:d9:a4:d6:b5:3b:32:1b:2a:61:9f:51:9b:7b: 0f:d4:51:a3:65:b8:8b:06:6f:62:ad:a7:0f:84:9e: da:e1:18:0a:6f:56:3d:2d:2f:05:29:1e:c5:93:45: b5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:01:C4:4A:06:80:DF:04:7B:C5:62:64:3B:11:E4:6D:0B:03:C5:23 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/LwHESgaA3wR7xWJkOxHkbQsDxSM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.188.76.0-64.188.83.255 77.239.126.0/24 87.251.16.0/22 144.31.168.0/22 193.23.216.0/24 193.23.221.0/24 Signature Algorithm: sha256WithRSAEncryption 37:25:0f:3f:25:be:85:68:07:d8:7d:d3:98:c2:d0:07:21:20: d4:00:10:31:1b:6e:aa:a0:b2:ee:26:e8:98:b3:aa:7e:b9:1b: ad:7a:89:ec:f6:da:03:45:0b:84:d1:4a:23:f4:41:5c:68:2c: 81:c0:cc:e5:c4:95:b4:b1:da:64:b2:52:53:ff:2e:44:7c:34: a1:3a:99:20:36:3b:07:bc:75:37:63:e5:9c:a3:d0:f0:95:e2: c2:08:41:a1:c6:9a:f8:b0:2a:d0:85:1b:6f:68:c1:40:f1:49: 9e:36:a4:17:1a:ec:f0:10:eb:40:b4:d1:c3:e2:43:04:5f:ae: 74:53:cb:68:f8:84:a4:1f:30:20:2c:79:d5:68:00:76:7c:ba: 1a:ba:4a:12:86:c3:32:bf:1f:c0:12:1d:cf:2f:54:27:25:ec: f4:92:36:e6:8a:ec:d3:b7:eb:c4:58:18:01:fb:37:ee:5d:78: 1b:ce:73:3c:40:8a:f1:74:f3:60:36:90:5d:a0:9d:d2:a5:8d: 76:14:3e:b5:e3:c3:ac:32:81:bf:ab:c3:bf:c9:d1:58:3f:f7: e9:96:ae:2f:0a:8b:a8:b9:bd:43:c6:bb:41:30:c0:15:dd:32: 1b:b8:56:38:7f:28:98:ff:d7:ed:6f:bd:a6:d7:00:fe:88:4b: c1:8b:f9:b6 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZuzS+eWDrDC5ogvPf9mjXW4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTEyMTc0MDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZjAxYzQ0YTA2ODBkZjA0N2JjNTYyNjQzYjExZTQ2ZDBiMDNjNTIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCYH7jGsYWq7dTKhSj2g51hnFF5l J4NSZHJ7Q5nI62boddYtyk5Is3Ibr3g//upnGkdUyVLGyeWd8pvBDEoILC6vnIdu HJi9P2ZGIxDeFMTSk28TRNmdiqedj9SsARTu8b6G8fqZu0mP9oavfcU2Gtb9xQ30 5P/SaFuoBxMXNgoh2OIhURnrKLX8MCPHAGB2jzlTIBW0eH9LwViTNLwrTURs+ARO xyLOTPNmbyn/LElrd53OIB7mqK8aSBi6pTZp0sSriUmxcMz9i5thbhHkgS4WY9mk 1rU7MhsqYZ9Rm3sP1FGjZbiLBm9iracPhJ7a4RgKb1Y9LS8FKR7Fk0W15QIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFC8BxEoGgN8Ee8ViZDsR5G0LA8UjMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvTHdIRVNnYUEzd1I3eFdKa094SGtiUXNEeFNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsMAwDBAJAvEwD BAJAvFADBABN734DBAJX+xADBAKQH6gDBADBF9gDBADBF90wDQYJKoZIhvcNAQEL BQADggEBADclDz8lvoVoB9h905jC0AchINQAEDEbbqqgsu4m6Jizqn65G616iez2 2gNFC4TRSiP0QVxoLIHAzOXElbSx2mSyUlP/LkR8NKE6mSA2Owe8dTdj5Zyj0PCV 4sIIQaHGmviwKtCFG29owUDxSZ42pBca7PAQ60C00cPiQwRfrnRTy2j4hKQfMCAs edVoAHZ8uhq6ShKGwzK/H8ASHc8vVCcl7PSSNuaK7NO368RYGAH7N+5deBvOczxA ivF082A2kF2gndKljXYUPrXjw6wygb+rw7/J0Vg/9+mWri8Ki6i5vUPGu0EwwBXd Mhu4Vjh/KJj/1+1vvabXAP6IS8GL+bY= -----END CERTIFICATE-----Generated at Sun Jan 25 07:36:36 2026 by rpki-client