This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/7efcdc-f86b-41fd-ad93-ad1378289a13/1/LZNFvi7mOcE8_ZVpouUz24tkyec.roa File: LZNFvi7mOcE8_ZVpouUz24tkyec.roa (raw, json) Hash identifier: myArwp5tc/UREP9zG30cuUNHwS3mcS4sT+tZg6aQLPk= Subject key identifier: 2D:93:45:BE:2E:E6:39:C1:3C:FD:95:69:A2:E5:33:DB:8B:64:C9:E7 Certificate issuer: /CN=090d50ab0f67887c5f5ed1e887e78dd2f35926fd Certificate serial: 019B78A2CE9DC97E885DD03F92183733DD25 Authority key identifier: 09:0D:50:AB:0F:67:88:7C:5F:5E:D1:E8:87:E7:8D:D2:F3:59:26:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQ1Qqw9niHxfXtHoh-eN0vNZJv0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/7efcdc-f86b-41fd-ad93-ad1378289a13/1/LZNFvi7mOcE8_ZVpouUz24tkyec.roa Signing time: Thu 01 Jan 2026 08:18:14 +0000 ROA not before: Thu 01 Jan 2026 08:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60479 IP address blocks: 185.17.80.0/22 maxlen: 24 185.17.80.0/24 maxlen: 24 185.17.81.0/24 maxlen: 24 185.17.82.0/23 maxlen: 24 185.17.82.0/24 maxlen: 24 185.17.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/7efcdc-f86b-41fd-ad93-ad1378289a13/1/CQ1Qqw9niHxfXtHoh-eN0vNZJv0.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/7efcdc-f86b-41fd-ad93-ad1378289a13/1/CQ1Qqw9niHxfXtHoh-eN0vNZJv0.mft rsync://rpki.ripe.net/repository/DEFAULT/CQ1Qqw9niHxfXtHoh-eN0vNZJv0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 02:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:ce:9d:c9:7e:88:5d:d0:3f:92:18:37:33:dd:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=090d50ab0f67887c5f5ed1e887e78dd2f35926fd Validity Not Before: Jan 1 08:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2d9345be2ee639c13cfd9569a2e533db8b64c9e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:05:00:50:aa:fe:c2:53:83:b6:84:ef:ed:2f: 0e:88:ee:2f:e1:f7:58:3b:87:25:cc:b1:48:9a:05: 30:d3:4b:4a:ff:5e:a2:f6:b0:d6:af:4b:55:cf:7e: 42:22:3f:f1:06:19:50:d4:ff:e2:c1:75:cd:9a:60: ad:8b:ce:e9:3e:1f:c1:81:c6:14:51:ca:b9:a6:b5: 79:ab:76:70:de:30:95:c8:a7:87:92:f5:db:4c:31: 27:c5:f7:7c:49:20:32:95:8e:87:07:f9:60:1c:a6: 55:83:95:19:cd:4b:95:d9:9a:04:76:86:05:f0:0a: 9c:07:b6:1e:69:67:e0:04:0e:9a:72:05:04:7e:ab: 05:3b:eb:c8:7d:46:9c:24:51:f1:fb:f2:45:03:44: d8:9a:a1:99:f9:c3:b3:96:15:19:d6:1f:2c:5f:e1: 0c:51:65:b1:5a:55:f3:8b:05:87:28:31:7d:23:35: 39:be:cd:b9:f6:47:08:70:77:c9:8c:5e:c0:0a:84: 4a:68:dd:fc:4f:47:f0:3b:84:b9:da:49:4f:f5:12: c1:a8:45:12:8b:fe:64:b6:4b:be:65:0a:76:2e:10: 78:96:0e:2e:60:00:df:f9:79:f0:f6:29:55:2c:26: 20:eb:df:ac:54:9d:dd:ce:b3:eb:68:3f:16:01:da: ff:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:93:45:BE:2E:E6:39:C1:3C:FD:95:69:A2:E5:33:DB:8B:64:C9:E7 X509v3 Authority Key Identifier: keyid:09:0D:50:AB:0F:67:88:7C:5F:5E:D1:E8:87:E7:8D:D2:F3:59:26:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQ1Qqw9niHxfXtHoh-eN0vNZJv0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/7efcdc-f86b-41fd-ad93-ad1378289a13/1/LZNFvi7mOcE8_ZVpouUz24tkyec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/7efcdc-f86b-41fd-ad93-ad1378289a13/1/CQ1Qqw9niHxfXtHoh-eN0vNZJv0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.17.80.0/22 Signature Algorithm: sha256WithRSAEncryption 20:32:3f:ed:cf:c6:9e:f0:89:e9:75:bf:e6:9b:c7:2b:71:61: 5f:20:01:f9:27:f1:ec:1d:be:5b:2d:1b:ff:11:45:87:76:1d: 0d:a6:8e:b9:72:23:1f:6c:d7:a9:8f:da:45:5d:2f:25:ee:5d: bc:aa:2c:15:31:9f:5c:bf:a2:30:10:b1:2d:30:2c:6e:a5:8c: c4:c8:04:6d:89:7a:5f:63:48:e9:98:b3:b3:c6:06:4c:4f:78: 14:9c:d7:6b:02:d5:2a:d0:42:95:21:cd:ae:7c:32:dc:42:6c: e7:8c:6d:2e:61:d1:ec:41:00:36:d0:f7:ac:df:7a:b8:30:9e: 19:94:26:53:e9:63:db:c8:3c:30:1f:b6:f7:0c:91:bd:84:3f: 68:38:fa:bb:7d:ed:eb:c7:3d:61:46:59:f4:4e:3b:bc:d0:71: ee:4a:6f:b1:b4:1b:46:a5:26:e8:9b:af:f5:90:dd:0d:95:46: fc:11:f5:66:6f:61:6e:e0:ae:20:d3:a5:2f:be:e2:4b:27:a5: bc:b3:81:ce:c0:f9:a0:62:1a:fc:2d:de:9e:81:e3:6e:6d:54: e3:9c:e9:8b:45:7a:48:68:26:a9:57:45:29:bd:28:8f:83:0d: 5c:df:cd:40:8d:3b:24:9d:4e:f1:78:6c:01:3d:0b:93:3f:19: 9d:6a:f0:b2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4os6dyX6IXdA/khg3M90lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MGQ1MGFiMGY2Nzg4N2M1ZjVlZDFlODg3ZTc4ZGQyZjM1 OTI2ZmQwHhcNMjYwMTAxMDgxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDkzNDViZTJlZTYzOWMxM2NmZDk1NjlhMmU1MzNkYjhiNjRjOWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQUAUKr+wlODtoTv7S8OiO4v4fdY O4clzLFImgUw00tK/16i9rDWr0tVz35CIj/xBhlQ1P/iwXXNmmCti87pPh/BgcYU Ucq5prV5q3Zw3jCVyKeHkvXbTDEnxfd8SSAylY6HB/lgHKZVg5UZzUuV2ZoEdoYF 8AqcB7YeaWfgBA6acgUEfqsFO+vIfUacJFHx+/JFA0TYmqGZ+cOzlhUZ1h8sX+EM UWWxWlXziwWHKDF9IzU5vs259kcIcHfJjF7ACoRKaN38T0fwO4S52klP9RLBqEUS i/5ktku+ZQp2LhB4lg4uYADf+Xnw9ilVLCYg69+sVJ3dzrPraD8WAdr/7QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC2TRb4u5jnBPP2VaaLlM9uLZMnnMB8GA1UdIwQY MBaAFAkNUKsPZ4h8X17R6IfnjdLzWSb9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ExUXF3OW5pSHhmWHRIb2gtZU4wdk5aSnYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi83ZWZjZGMtZjg2Yi00MWZkLWFkOTMt YWQxMzc4Mjg5YTEzLzEvTFpORnZpN21PY0U4X1pWcG91VXoyNHRreWVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi83ZWZjZGMtZjg2Yi00MWZkLWFkOTMtYWQxMzc4Mjg5YTEz LzEvQ1ExUXF3OW5pSHhmWHRIb2gtZU4wdk5aSnYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuRFQMA0G CSqGSIb3DQEBCwUAA4IBAQAgMj/tz8ae8Inpdb/mm8crcWFfIAH5J/HsHb5bLRv/ EUWHdh0Npo65ciMfbNepj9pFXS8l7l28qiwVMZ9cv6IwELEtMCxupYzEyARtiXpf Y0jpmLOzxgZMT3gUnNdrAtUq0EKVIc2ufDLcQmznjG0uYdHsQQA20Pes33q4MJ4Z lCZT6WPbyDwwH7b3DJG9hD9oOPq7fe3rxz1hRln0Tju80HHuSm+xtBtGpSbom6/1 kN0NlUb8EfVmb2Fu4K4g06UvvuJLJ6W8s4HOwPmgYhr8Ld6egeNubVTjnOmLRXpI aCapV0UpvSiPgw1c381AjTsknU7xeGwBPQuTPxmdavCy -----END CERTIFICATE-----Generated at Mon Jan 26 11:44:56 2026 by rpki-client