This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/0vULhKVoRLbH5XBHf0YZlsHIebA.roa File: 0vULhKVoRLbH5XBHf0YZlsHIebA.roa (raw, json) Hash identifier: 3XJb7bR3i7NV7lnQueQ2m8jR61CTuzOgq8oB0VfsCe8= Subject key identifier: D2:F5:0B:84:A5:68:44:B6:C7:E5:70:47:7F:46:19:96:C1:C8:79:B0 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB596E7E8BCE91F68BB9E3B47A8561 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/0vULhKVoRLbH5XBHf0YZlsHIebA.roa Signing time: Fri 02 Jan 2026 08:20:37 +0000 ROA not before: Fri 02 Jan 2026 08:20:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 152611 IP address blocks: 151.242.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:59:6e:7e:8b:ce:91:f6:8b:b9:e3:b4:7a:85:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d2f50b84a56844b6c7e570477f461996c1c879b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:81:68:d6:24:5f:3c:be:c3:5d:fc:5e:58:bf: a2:e0:e8:da:36:c7:6f:fe:d1:d9:d0:a9:4f:f0:90: f5:80:f0:66:cb:eb:dd:d6:17:97:5d:8f:96:88:e1: 07:02:71:d1:de:d3:65:ba:ae:9e:9b:4e:a0:d9:34: ea:8a:a0:b0:01:c7:d1:fc:1c:67:42:c7:68:2b:ec: c3:07:3f:76:05:1d:fa:36:61:6b:ac:5d:5c:32:db: ad:07:32:c0:99:52:81:a5:a7:a5:17:4e:56:0f:78: 9c:aa:60:e2:b1:c4:74:51:f3:0e:e6:7a:4b:75:67: 44:ce:2f:34:d0:28:34:e2:9b:5b:66:a1:4a:7b:41: 29:a8:9a:ea:96:8c:b4:c7:2b:d3:50:92:ca:b4:ed: 25:52:da:16:da:7f:b4:a3:25:9d:fe:9f:3e:32:5c: 35:29:5b:ba:c7:12:6a:e4:2e:a3:7d:b7:54:be:48: 78:0d:10:02:16:b8:76:83:15:6b:37:e0:ef:1e:18: 31:46:e1:77:16:68:d3:d2:1f:53:86:b0:5f:d4:44: 7d:87:f8:53:e6:f9:fc:d0:8c:5a:c1:b8:d7:20:63: 31:53:0c:a8:ce:f8:29:1b:14:2b:7d:2a:f6:4d:d9: 4d:b3:89:9b:c2:31:3d:fd:e3:bf:33:37:8b:39:fa: f3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F5:0B:84:A5:68:44:B6:C7:E5:70:47:7F:46:19:96:C1:C8:79:B0 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/0vULhKVoRLbH5XBHf0YZlsHIebA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.242.53.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:a4:c0:e8:89:24:1c:1b:f3:55:db:1e:c8:28:99:00:f1:d1: b4:aa:e6:54:b4:18:86:81:b5:c3:de:fe:16:fb:c8:a8:85:db: 35:03:3f:f8:f0:6b:7b:09:2b:14:ad:53:ef:d9:1c:dc:d5:76: b2:5b:e0:a6:ed:0d:dd:73:10:fe:d2:a1:96:8d:12:5f:40:9b: f6:6b:cc:db:4e:a6:8c:14:6e:b9:c6:82:7a:0a:89:b9:f1:ae: 26:17:0d:67:d0:d1:d9:76:75:8c:da:41:e1:f3:52:40:7c:7c: a2:4f:25:94:5a:04:94:1a:91:4c:5b:c9:a6:32:ad:f8:65:63: d6:fc:ff:31:67:a8:14:91:70:cf:c5:5c:cd:a1:7e:28:d1:6f: 00:f9:6c:b3:c8:97:77:e5:b0:4d:2e:de:65:f6:b5:48:24:be: 2e:2f:89:2c:08:77:8e:79:59:6b:81:e9:a2:bc:f4:f7:07:13: 2f:32:5c:11:a1:40:90:78:55:f3:11:d4:9f:c5:44:51:77:49: b6:86:72:83:7e:97:8d:19:1d:9a:c0:0a:8b:cb:45:f9:03:7b: fd:76:54:c2:10:7d:bd:63:6c:e3:1e:30:a3:d8:66:14:02:b7: 03:99:97:8e:6b:6a:d2:ae:6f:52:8a:af:09:f6:a5:1c:16:9a: 4a:8f:16:d6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y1lufovOkfaLueO0eoVhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMmY1MGI4NGE1Njg0NGI2YzdlNTcwNDc3ZjQ2MTk5NmMxYzg3OWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooFo1iRfPL7DXfxeWL+i4OjaNsdv /tHZ0KlP8JD1gPBmy+vd1heXXY+WiOEHAnHR3tNluq6em06g2TTqiqCwAcfR/Bxn QsdoK+zDBz92BR36NmFrrF1cMtutBzLAmVKBpaelF05WD3icqmDiscR0UfMO5npL dWdEzi800Cg04ptbZqFKe0EpqJrqloy0xyvTUJLKtO0lUtoW2n+0oyWd/p8+Mlw1 KVu6xxJq5C6jfbdUvkh4DRACFrh2gxVrN+DvHhgxRuF3FmjT0h9ThrBf1ER9h/hT 5vn80IxawbjXIGMxUwyozvgpGxQrfSr2TdlNs4mbwjE9/eO/MzeLOfrz+wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNL1C4SlaES2x+VwR39GGZbByHmwMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvMHZVTGhLVm9STGJINVhCSGYwWVpsc0hJZWJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/I1MA0G CSqGSIb3DQEBCwUAA4IBAQBtpMDoiSQcG/NV2x7IKJkA8dG0quZUtBiGgbXD3v4W +8iohds1Az/48Gt7CSsUrVPv2Rzc1XayW+Cm7Q3dcxD+0qGWjRJfQJv2a8zbTqaM FG65xoJ6Com58a4mFw1n0NHZdnWM2kHh81JAfHyiTyWUWgSUGpFMW8mmMq34ZWPW /P8xZ6gUkXDPxVzNoX4o0W8A+WyzyJd35bBNLt5l9rVIJL4uL4ksCHeOeVlrgemi vPT3BxMvMlwRoUCQeFXzEdSfxURRd0m2hnKDfpeNGR2awAqLy0X5A3v9dlTCEH29 Y2zjHjCj2GYUArcDmZeOa2rSrm9Siq8J9qUcFppKjxbW -----END CERTIFICATE-----Generated at Sun Jan 18 06:28:51 2026 by rpki-client