This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/iH-W1KrCxFHlEwTj-N3qmKRJjJM.roa File: iH-W1KrCxFHlEwTj-N3qmKRJjJM.roa (raw, json) Hash identifier: KY2lJTniA4rnCiE0KdvRBg56MPlz79jziBGeziSB/MY= Subject key identifier: 88:7F:96:D4:AA:C2:C4:51:E5:13:04:E3:F8:DD:EA:98:A4:49:8C:93 Certificate issuer: /CN=2f0342e0d23ef7e06b1dff5cc6ee4fa17af8bd98 Certificate serial: 019B7C7FD9593C10149C7BA3F347F92793BC Authority key identifier: 2F:03:42:E0:D2:3E:F7:E0:6B:1D:FF:5C:C6:EE:4F:A1:7A:F8:BD:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LwNC4NI-9-BrHf9cxu5PoXr4vZg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/iH-W1KrCxFHlEwTj-N3qmKRJjJM.roa Signing time: Fri 02 Jan 2026 02:18:32 +0000 ROA not before: Fri 02 Jan 2026 02:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44002 IP address blocks: 79.98.72.0/21 maxlen: 21 79.98.72.0/24 maxlen: 24 79.98.73.0/24 maxlen: 24 79.98.74.0/24 maxlen: 24 79.98.75.0/24 maxlen: 24 79.98.76.0/24 maxlen: 24 79.98.77.0/24 maxlen: 24 79.98.78.0/24 maxlen: 24 79.98.79.0/24 maxlen: 24 185.4.200.0/22 maxlen: 22 185.4.200.0/24 maxlen: 24 185.4.201.0/24 maxlen: 24 185.4.202.0/24 maxlen: 24 185.4.203.0/24 maxlen: 24 2a02:970::/32 maxlen: 48 2a02:970:1::/48 maxlen: 48 2a02:970:1006::/48 maxlen: 48 2a02:970:1017::/48 maxlen: 48 2a02:970:1019::/48 maxlen: 48 2a02:970:1028::/48 maxlen: 48 2a02:970:1052::/48 maxlen: 48 2a02:970:1061::/48 maxlen: 48 2a02:970:1176::/48 maxlen: 48 2a02:970:1185::/48 maxlen: 48 2a02:970:1192::/48 maxlen: 48 2a02:970:1206::/48 maxlen: 48 2a02:970:1208::/48 maxlen: 48 2a02:970:1245::/48 maxlen: 48 2a02:970:1366::/48 maxlen: 48 2a02:970:1446::/48 maxlen: 48 2a02:970:1c01::/48 maxlen: 48 2a02:970:2006::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/LwNC4NI-9-BrHf9cxu5PoXr4vZg.crl rsync://rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/LwNC4NI-9-BrHf9cxu5PoXr4vZg.mft rsync://rpki.ripe.net/repository/DEFAULT/LwNC4NI-9-BrHf9cxu5PoXr4vZg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 22:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:d9:59:3c:10:14:9c:7b:a3:f3:47:f9:27:93:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f0342e0d23ef7e06b1dff5cc6ee4fa17af8bd98 Validity Not Before: Jan 2 02:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=887f96d4aac2c451e51304e3f8ddea98a4498c93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e1:47:49:63:e8:40:13:67:a7:fb:f2:f4:10: 61:64:1b:d1:80:3b:7a:8f:15:8f:a2:af:8e:85:0d: 66:5b:f4:a8:a0:2c:f0:dc:af:6e:4a:41:0d:9c:b3: 3b:6a:c5:2e:29:07:ca:14:ba:d7:62:1f:13:32:1d: 6a:c4:3d:f9:06:be:87:7e:53:45:5e:22:20:66:c9: 6b:0b:8a:6b:e8:e2:a4:74:cc:6d:47:7d:ff:e2:dd: 11:a8:a1:36:4e:07:f7:e0:55:dc:f0:97:dc:88:db: e0:c3:9e:87:1f:4d:b5:9c:9b:99:f5:68:cd:f4:7f: 8a:81:b9:9e:1e:e5:0e:79:91:72:f0:d5:7f:7b:c8: b3:d7:a2:9f:fe:5d:00:d5:d1:8e:1b:8f:34:26:2c: fd:49:1c:3f:1f:14:4e:37:ae:b9:91:2a:12:a7:91: 96:91:7a:d9:f9:a2:21:27:ea:47:bd:7c:89:a8:97: 49:c1:79:a9:27:4f:1d:eb:e8:11:fe:c6:05:19:e8: 43:4c:8c:76:04:e2:a5:3e:53:e3:ff:c5:6f:bb:b2: 47:ac:4f:e8:17:a5:c2:af:bb:90:07:d3:3e:7e:77: f0:55:3b:da:48:85:47:f2:fb:51:68:13:29:ad:13: 58:56:d4:6b:85:3e:5c:b9:15:3d:4e:47:37:ff:20: be:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:7F:96:D4:AA:C2:C4:51:E5:13:04:E3:F8:DD:EA:98:A4:49:8C:93 X509v3 Authority Key Identifier: keyid:2F:03:42:E0:D2:3E:F7:E0:6B:1D:FF:5C:C6:EE:4F:A1:7A:F8:BD:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LwNC4NI-9-BrHf9cxu5PoXr4vZg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/iH-W1KrCxFHlEwTj-N3qmKRJjJM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/LwNC4NI-9-BrHf9cxu5PoXr4vZg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.98.72.0/21 185.4.200.0/22 IPv6: 2a02:970::/32 Signature Algorithm: sha256WithRSAEncryption a3:18:ec:2f:32:c6:62:09:9f:6d:4a:ad:af:37:ba:c4:0a:c7: 41:9e:55:9f:ea:da:f7:9e:cc:d2:53:98:da:96:ea:37:d9:4a: 03:50:83:bd:25:3c:bf:d2:34:c2:a8:04:85:5c:d6:07:ff:38: ec:8f:e9:db:d2:50:94:49:49:a5:38:8d:67:bf:32:e3:46:d7: 06:3d:f8:6d:41:54:b9:e1:06:08:74:4a:fe:96:9f:f4:e7:3a: b5:e6:78:cc:fe:a0:ad:8a:e0:f3:0e:74:5b:7d:54:44:fd:80: f3:a5:86:94:08:70:67:25:5e:32:7f:b4:89:04:4b:b8:45:25: b1:0e:c7:14:89:67:54:bf:13:33:4c:16:9a:53:cd:ff:13:c4: 12:5a:34:a5:7f:09:3f:1d:76:e1:f5:b6:4b:38:03:32:78:e8: e0:36:38:26:84:5a:2f:ac:8b:0e:92:67:e4:1c:97:bc:0f:ef: 11:22:5f:ad:fe:47:cb:4c:fa:43:67:5c:32:20:f0:e2:72:b5: fe:22:e0:39:36:95:5f:09:cf:a0:ef:6d:88:a3:0a:63:81:45: be:74:a0:d6:9a:54:19:a9:83:5b:7a:86:86:d0:e7:e4:6e:fa: c5:04:8f:db:30:77:b4:e6:d7:b3:ca:8c:b9:31:1b:a5:f7:c0: b1:68:72:b6 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt8f9lZPBAUnHuj80f5J5O8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmMDM0MmUwZDIzZWY3ZTA2YjFkZmY1Y2M2ZWU0ZmExN2Fm OGJkOTgwHhcNMjYwMTAyMDIxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODdmOTZkNGFhYzJjNDUxZTUxMzA0ZTNmOGRkZWE5OGE0NDk4YzkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAseFHSWPoQBNnp/vy9BBhZBvRgDt6 jxWPoq+OhQ1mW/SooCzw3K9uSkENnLM7asUuKQfKFLrXYh8TMh1qxD35Br6HflNF XiIgZslrC4pr6OKkdMxtR33/4t0RqKE2Tgf34FXc8JfciNvgw56HH021nJuZ9WjN 9H+KgbmeHuUOeZFy8NV/e8iz16Kf/l0A1dGOG480Jiz9SRw/HxRON665kSoSp5GW kXrZ+aIhJ+pHvXyJqJdJwXmpJ08d6+gR/sYFGehDTIx2BOKlPlPj/8Vvu7JHrE/o F6XCr7uQB9M+fnfwVTvaSIVH8vtRaBMprRNYVtRrhT5cuRU9Tkc3/yC+JQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFIh/ltSqwsRR5RME4/jd6pikSYyTMB8GA1UdIwQY MBaAFC8DQuDSPvfgax3/XMbuT6F6+L2YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHdOQzROSS05LUJySGY5Y3h1NVBvWHI0dlpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9kMWZkNDgtOTE2Yi00ZDgzLTk2Y2Mt YzkxMGFmOTNlNDI2LzEvaUgtVzFLckN4RkhsRXdUai1OM3FtS1JKakpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy9kMWZkNDgtOTE2Yi00ZDgzLTk2Y2MtYzkxMGFmOTNlNDI2 LzEvTHdOQzROSS05LUJySGY5Y3h1NVBvWHI0dlpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDT2JIAwQC uQTIMA0EAgACMAcDBQAqAglwMA0GCSqGSIb3DQEBCwUAA4IBAQCjGOwvMsZiCZ9t Sq2vN7rECsdBnlWf6tr3nszSU5jaluo32UoDUIO9JTy/0jTCqASFXNYH/zjsj+nb 0lCUSUmlOI1nvzLjRtcGPfhtQVS54QYIdEr+lp/05zq15njM/qCtiuDzDnRbfVRE /YDzpYaUCHBnJV4yf7SJBEu4RSWxDscUiWdUvxMzTBaaU83/E8QSWjSlfwk/HXbh 9bZLOAMyeOjgNjgmhFovrIsOkmfkHJe8D+8RIl+t/kfLTPpDZ1wyIPDicrX+IuA5 NpVfCc+g722IowpjgUW+dKDWmlQZqYNbeoaG0OfkbvrFBI/bMHe05tezyoy5MRul 98CxaHK2 -----END CERTIFICATE-----Generated at Thu Jan 8 05:20:40 2026 by rpki-client