This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/lNcHZzpaUSR7jKBrw2KMUB_wdnQ.roa File: lNcHZzpaUSR7jKBrw2KMUB_wdnQ.roa (raw, json) Hash identifier: VpkbqwQLfn54zfo0+BFxVr9mX4T1GIk6TvAvX0OYx08= Subject key identifier: 94:D7:07:67:3A:5A:51:24:7B:8C:A0:6B:C3:62:8C:50:1F:F0:76:74 Certificate issuer: /CN=d4b95330734c9aaf66d11bcd2bedd380f410f93f Certificate serial: 019ACC1E4980820FF998C2E77409FE60CFD0 Authority key identifier: D4:B9:53:30:73:4C:9A:AF:66:D1:1B:CD:2B:ED:D3:80:F4:10:F9:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/lNcHZzpaUSR7jKBrw2KMUB_wdnQ.roa Signing time: Fri 28 Nov 2025 20:18:48 +0000 ROA not before: Fri 28 Nov 2025 20:18:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 213702 IP address blocks: 103.27.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.mft rsync://rpki.ripe.net/repository/DEFAULT/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:cc:1e:49:80:82:0f:f9:98:c2:e7:74:09:fe:60:cf:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4b95330734c9aaf66d11bcd2bedd380f410f93f Validity Not Before: Nov 28 20:18:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=94d707673a5a51247b8ca06bc3628c501ff07674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:13:66:2f:58:13:03:c3:d0:67:71:ad:99:9a: df:40:ce:f5:93:dd:68:1e:b2:c6:8e:e1:dc:c7:e4: e4:4a:a6:e2:37:46:ee:6e:f1:96:cb:1d:b3:82:d1: 6e:4c:d4:44:74:8f:33:76:7a:57:84:88:56:1e:f5: 61:c4:37:c8:13:b6:f2:22:e8:88:ec:b2:c4:35:ef: 76:79:2c:7b:71:94:c3:7c:ae:0b:71:ca:4d:ef:5e: 28:04:10:4d:3b:9f:59:1f:de:67:59:9c:e6:b2:51: f6:d1:cb:82:e4:af:4d:b6:f3:49:26:2d:9c:3e:c0: 4d:10:29:07:b6:00:cb:27:0c:68:7d:31:34:71:de: a7:cb:a4:f0:d8:31:33:15:34:60:7c:4d:91:71:95: ef:ae:f9:16:9b:4d:c0:f0:18:d2:5c:a3:42:63:ec: 2a:f5:b8:10:5f:ea:4a:5f:bb:34:78:36:82:f0:1c: 97:42:d1:6a:a0:09:4d:9d:0f:9e:4d:6c:4e:37:3b: 0e:1a:09:2d:f6:a5:09:2f:ba:f9:f2:39:8a:5a:d4: 65:53:cc:8c:6d:44:28:af:6e:65:c4:59:1d:ac:e9: e3:65:56:b5:a8:6e:c5:0c:6d:7b:49:1e:8e:8f:81: 37:48:07:c7:73:77:89:cd:66:f0:df:dc:2a:20:50: c8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D7:07:67:3A:5A:51:24:7B:8C:A0:6B:C3:62:8C:50:1F:F0:76:74 X509v3 Authority Key Identifier: keyid:D4:B9:53:30:73:4C:9A:AF:66:D1:1B:CD:2B:ED:D3:80:F4:10:F9:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/lNcHZzpaUSR7jKBrw2KMUB_wdnQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/15d271-05cd-461e-a7b6-43013b28d9d6/1/1LlTMHNMmq9m0RvNK-3TgPQQ-T8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.27.157.0/24 Signature Algorithm: sha256WithRSAEncryption 97:ce:70:b4:b4:ee:9a:2c:d1:a1:c5:b6:6d:fb:a9:6d:7c:47: 89:7b:f7:cb:29:90:f8:19:24:23:aa:af:0e:bb:2d:3a:b8:af: 7e:39:76:2a:48:f5:18:f6:ee:d5:f5:e9:d6:57:6e:eb:90:f0: a1:1b:36:f9:41:42:a8:2c:1f:2e:b7:95:67:1a:ec:25:7d:d2: f1:83:7f:63:ca:04:aa:11:26:62:0d:42:b9:ac:11:a4:19:8d: d0:9e:3b:6d:6c:6c:dd:52:46:bd:fb:ac:36:e5:23:49:34:01: 24:0a:c9:68:3f:22:7b:f2:06:40:ec:da:7d:81:78:bf:4e:13: 3e:32:40:30:78:62:98:85:26:75:f3:3f:99:6a:6c:56:7c:10: 0d:19:84:81:7f:ea:24:45:ed:36:a2:68:31:f9:c8:bd:87:74: ae:08:dd:97:59:ec:63:c7:08:eb:80:12:6a:82:e5:5c:12:9f: b3:32:0a:cc:cb:3d:78:8f:37:10:88:89:5c:44:30:0b:28:54: c7:83:11:bb:f7:94:7b:60:35:bd:cf:9e:5b:ed:bf:2a:3b:2c: b9:90:10:fd:ce:ff:09:af:76:a3:09:06:11:99:d1:be:99:49: ee:8b:1c:e6:8a:91:37:d3:c8:c2:3a:f6:c1:99:08:29:f7:e0: 15:86:3f:80 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZrMHkmAgg/5mMLndAn+YM/QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0Yjk1MzMwNzM0YzlhYWY2NmQxMWJjZDJiZWRkMzgwZjQx MGY5M2YwHhcNMjUxMTI4MjAxODQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NGQ3MDc2NzNhNWE1MTI0N2I4Y2EwNmJjMzYyOGM1MDFmZjA3Njc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0RNmL1gTA8PQZ3GtmZrfQM71k91o HrLGjuHcx+TkSqbiN0bubvGWyx2zgtFuTNREdI8zdnpXhIhWHvVhxDfIE7byIuiI 7LLENe92eSx7cZTDfK4LccpN714oBBBNO59ZH95nWZzmslH20cuC5K9NtvNJJi2c PsBNECkHtgDLJwxofTE0cd6ny6Tw2DEzFTRgfE2RcZXvrvkWm03A8BjSXKNCY+wq 9bgQX+pKX7s0eDaC8ByXQtFqoAlNnQ+eTWxONzsOGgkt9qUJL7r58jmKWtRlU8yM bUQor25lxFkdrOnjZVa1qG7FDG17SR6Oj4E3SAfHc3eJzWbw39wqIFDI5QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJTXB2c6WlEke4yga8NijFAf8HZ0MB8GA1UdIwQY MBaAFNS5UzBzTJqvZtEbzSvt04D0EPk/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUxsVE1ITk1tcTltMFJ2TkstM1RnUFFRLVQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8xNWQyNzEtMDVjZC00NjFlLWE3YjYt NDMwMTNiMjhkOWQ2LzEvbE5jSFp6cGFVU1I3aktCcncyS01VQl93ZG5RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy8xNWQyNzEtMDVjZC00NjFlLWE3YjYtNDMwMTNiMjhkOWQ2 LzEvMUxsVE1ITk1tcTltMFJ2TkstM1RnUFFRLVQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxudMA0G CSqGSIb3DQEBCwUAA4IBAQCXznC0tO6aLNGhxbZt+6ltfEeJe/fLKZD4GSQjqq8O uy06uK9+OXYqSPUY9u7V9enWV27rkPChGzb5QUKoLB8ut5VnGuwlfdLxg39jygSq ESZiDUK5rBGkGY3QnjttbGzdUka9+6w25SNJNAEkCsloPyJ78gZA7Np9gXi/ThM+ MkAweGKYhSZ18z+ZamxWfBANGYSBf+okRe02omgx+ci9h3SuCN2XWexjxwjrgBJq guVcEp+zMgrMyz14jzcQiIlcRDALKFTHgxG795R7YDW9z55b7b8qOyy5kBD9zv8J r3ajCQYRmdG+mUnuixzmipE308jCOvbBmQgp9+AVhj+A -----END CERTIFICATE-----Generated at Sat Dec 6 11:53:52 2025 by rpki-client