This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/lhhkdnjbTFcMf_WSQ6Vdc7cUgLg.roa File: lhhkdnjbTFcMf_WSQ6Vdc7cUgLg.roa (raw, json) Hash identifier: vPcYoUUrECmWg0bzxsg1BXvUiLIZvalyKunX15L0XGc= Subject key identifier: 96:18:64:76:78:DB:4C:57:0C:7F:F5:92:43:A5:5D:73:B7:14:80:B8 Certificate issuer: /CN=b9b0d33432eca77c054e8fa8707248da4e47db0b Certificate serial: 019B7AC7C52070D1535F5114538F42F8A591 Authority key identifier: B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/lhhkdnjbTFcMf_WSQ6Vdc7cUgLg.roa Signing time: Thu 01 Jan 2026 18:17:51 +0000 ROA not before: Thu 01 Jan 2026 18:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212238 IP address blocks: 45.85.94.0/24 maxlen: 24 45.85.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:c5:20:70:d1:53:5f:51:14:53:8f:42:f8:a5:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9b0d33432eca77c054e8fa8707248da4e47db0b Validity Not Before: Jan 1 18:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9618647678db4c570c7ff59243a55d73b71480b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ab:e0:cc:d5:b0:70:3e:46:bc:9d:d1:26:59: e6:42:64:95:ab:7a:2b:fb:6f:29:a3:9a:9d:82:30: a9:ba:68:2a:14:2e:d9:ad:79:54:01:ac:7b:09:d9: f3:6b:a1:f9:5a:b6:82:d5:ec:cc:16:5e:c2:23:4f: a3:8b:ca:c1:f3:8b:e7:77:bd:fd:2a:ea:f2:6a:3f: b8:90:5f:b4:87:94:79:3f:c6:3c:11:25:bc:d5:76: f9:cf:40:65:e3:46:4d:5c:0d:27:54:9a:66:94:e6: 38:7e:b4:ab:08:3b:13:c6:53:30:dd:3e:18:7c:7a: 1c:48:52:66:76:c3:38:6d:fb:44:3a:41:fa:53:b3: 67:57:94:e0:7e:3c:58:f2:db:6a:8e:e9:a9:0d:90: 88:90:66:fd:cd:67:1d:35:ac:56:6c:f7:9f:01:e6: 7b:69:40:58:b0:80:ca:4d:f8:69:ac:9e:c6:d3:07: d3:72:cb:ef:fe:07:d7:26:c2:2a:40:e7:3d:33:20: d9:7e:6d:bb:a9:40:2a:22:83:cb:5a:eb:dd:a5:ea: 7d:91:62:56:dc:60:ea:c9:8d:b3:cf:2a:33:28:90: fd:de:e5:2c:8c:7c:94:0b:cf:f0:fe:f8:b8:ed:d5: f9:8f:d9:94:1e:5e:0a:2b:47:84:d5:78:c3:bd:82: f8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:18:64:76:78:DB:4C:57:0C:7F:F5:92:43:A5:5D:73:B7:14:80:B8 X509v3 Authority Key Identifier: keyid:B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/lhhkdnjbTFcMf_WSQ6Vdc7cUgLg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.85.94.0/23 Signature Algorithm: sha256WithRSAEncryption 73:fa:8c:53:48:5f:3c:c9:6d:d1:d2:60:f9:eb:aa:f3:c6:db: c5:14:f1:b2:4a:57:2c:fc:e6:f1:eb:23:45:85:08:e8:ad:55: 15:28:0e:e5:70:c7:af:64:82:5a:5b:d3:6f:da:4f:74:ae:a3: 7f:62:8d:e3:92:d1:17:f1:b1:38:dd:7e:da:f2:15:7a:ae:4b: 73:52:7f:80:2d:aa:83:c4:bc:55:13:82:05:35:9e:29:79:27: 60:d9:d9:f9:78:1c:c8:f0:ca:ef:e0:03:61:bd:07:cf:d0:d2: 0a:20:ba:d8:a2:d5:d9:8c:f7:ae:9d:b0:f8:f5:d5:31:2d:da: 75:88:6d:19:fd:ab:ed:29:ca:ed:c4:2f:00:2c:3c:98:d0:27: 0f:c1:5d:47:e6:14:d7:d6:c1:a1:ea:6a:be:d1:e7:b7:07:81: 28:48:6d:66:26:08:45:c0:77:98:d4:f3:df:53:e6:2c:96:8b: 25:ea:1d:da:84:13:1a:bd:da:e3:d1:9a:88:34:a8:e5:7a:46: f2:9c:6d:7d:9b:d6:e6:19:f2:20:93:86:2d:ec:9b:89:14:e3: 5a:01:8a:ea:e7:38:b6:1e:8f:c4:8c:fe:c6:b6:3f:24:79:64: a4:fb:07:39:ce:90:95:f0:65:e0:b7:ab:0d:3a:ea:e7:ca:b7: 69:56:bb:e6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x8UgcNFTX1EUU49C+KWRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5YjBkMzM0MzJlY2E3N2MwNTRlOGZhODcwNzI0OGRhNGU0 N2RiMGIwHhcNMjYwMTAxMTgxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjE4NjQ3Njc4ZGI0YzU3MGM3ZmY1OTI0M2E1NWQ3M2I3MTQ4MGI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvavgzNWwcD5GvJ3RJlnmQmSVq3or +28po5qdgjCpumgqFC7ZrXlUAax7Cdnza6H5WraC1ezMFl7CI0+ji8rB84vnd739 Kuryaj+4kF+0h5R5P8Y8ESW81Xb5z0Bl40ZNXA0nVJpmlOY4frSrCDsTxlMw3T4Y fHocSFJmdsM4bftEOkH6U7NnV5TgfjxY8ttqjumpDZCIkGb9zWcdNaxWbPefAeZ7 aUBYsIDKTfhprJ7G0wfTcsvv/gfXJsIqQOc9MyDZfm27qUAqIoPLWuvdpep9kWJW 3GDqyY2zzyozKJD93uUsjHyUC8/w/vi47dX5j9mUHl4KK0eE1XjDvYL4fQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJYYZHZ420xXDH/1kkOlXXO3FIC4MB8GA1UdIwQY MBaAFLmw0zQy7Kd8BU6PqHBySNpOR9sLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWJEVE5ETHNwM3dGVG8tb2NISkkyazVIMndzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9iNDMxY2EtNTI3NS00MmI1LThkNTQt ZDE5NmY5MjkxNzMyLzEvbGhoa2RuamJURmNNZl9XU1E2VmRjN2NVZ0xnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC9iNDMxY2EtNTI3NS00MmI1LThkNTQtZDE5NmY5MjkxNzMy LzEvdWJEVE5ETHNwM3dGVG8tb2NISkkyazVIMndzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLVVeMA0G CSqGSIb3DQEBCwUAA4IBAQBz+oxTSF88yW3R0mD566rzxtvFFPGySlcs/Obx6yNF hQjorVUVKA7lcMevZIJaW9Nv2k90rqN/Yo3jktEX8bE43X7a8hV6rktzUn+ALaqD xLxVE4IFNZ4peSdg2dn5eBzI8Mrv4ANhvQfP0NIKILrYotXZjPeunbD49dUxLdp1 iG0Z/avtKcrtxC8ALDyY0CcPwV1H5hTX1sGh6mq+0ee3B4EoSG1mJghFwHeY1PPf U+Yslosl6h3ahBMavdrj0ZqINKjlekbynG19m9bmGfIgk4Yt7JuJFONaAYrq5zi2 Ho/EjP7Gtj8keWSk+wc5zpCV8GXgt6sNOurnyrdpVrvm -----END CERTIFICATE-----Generated at Sun Jan 25 17:34:14 2026 by rpki-client