This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-mDvSUwByQAo73g8095d5CwoR9g.roa File: 1-mDvSUwByQAo73g8095d5CwoR9g.roa (raw, json) Hash identifier: /9+P4JAzUeXpIfqDFvHMC5GIPnLscEVCzJl0z+qUWJY= Subject key identifier: FA:60:EF:49:4C:01:C9:00:28:EF:78:3C:D3:DE:5D:E4:2C:28:47:D8 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB1F4028DAB1128F2538F689D48381 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-mDvSUwByQAo73g8095d5CwoR9g.roa Signing time: Fri 02 Jan 2026 08:20:22 +0000 ROA not before: Fri 02 Jan 2026 08:20:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21859 IP address blocks: 37.202.222.0/24 maxlen: 24 151.240.28.0/24 maxlen: 24 151.242.87.0/24 maxlen: 24 151.242.174.0/23 maxlen: 23 151.242.192.0/23 maxlen: 23 151.243.101.0/24 maxlen: 24 151.244.188.0/24 maxlen: 24 151.245.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:1f:40:28:da:b1:12:8f:25:38:f6:89:d4:83:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa60ef494c01c90028ef783cd3de5de42c2847d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:60:5d:35:73:58:e0:c5:bb:9b:7e:01:fb:e4: 5f:d7:ab:69:0d:2e:7f:38:a8:08:3c:8a:57:dc:52: 44:c6:9a:21:88:f5:e6:3f:0a:10:d2:99:a4:5c:d9: ea:17:3f:1c:8f:4e:54:a3:f6:35:7d:e7:6d:b8:06: 5c:8b:b3:ca:38:24:c8:19:63:92:fa:c2:88:44:23: 4a:53:7d:df:f5:9f:54:ae:e6:8c:c6:6d:85:e3:96: ac:df:99:c8:c8:60:ba:71:30:a3:29:cb:fd:cf:92: ab:50:34:f5:72:e8:48:66:02:d1:be:59:64:6a:5a: 45:b5:18:f6:fe:52:dd:51:de:6d:d2:e3:18:27:dc: 48:d5:4d:7a:ee:ab:98:c5:db:08:6d:f0:aa:6f:7f: 2b:69:4e:8b:a8:d3:ca:76:bf:48:92:f3:c5:c2:ae: 49:9e:6c:0d:38:f1:db:39:83:a8:83:6d:5e:ab:98: c0:d9:b8:87:fb:75:bf:61:34:dc:f0:9b:02:c3:a5: fd:17:29:06:60:0d:b2:97:94:2f:90:a5:6f:48:30: 69:c8:47:d8:33:b1:4e:39:ac:ad:0a:59:68:d3:c7: 5c:09:e0:d4:c8:08:df:62:98:ac:4f:c7:14:9f:1c: 0e:39:65:75:24:38:90:bf:09:21:e7:24:e5:fe:1d: 06:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:60:EF:49:4C:01:C9:00:28:EF:78:3C:D3:DE:5D:E4:2C:28:47:D8 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-mDvSUwByQAo73g8095d5CwoR9g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.202.222.0/24 151.240.28.0/24 151.242.87.0/24 151.242.174.0/23 151.242.192.0/23 151.243.101.0/24 151.244.188.0/24 151.245.4.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:47:bb:1b:2b:eb:03:ee:8b:ac:01:a2:c1:10:ec:c7:9f:bf: f1:06:38:0d:6f:a8:ef:bb:26:67:56:6c:c5:69:69:06:50:f5: d0:78:fc:12:2e:8d:31:c0:c7:55:42:11:eb:07:8c:f3:c8:1a: 9c:a9:15:75:81:ac:96:bf:34:cb:95:75:4a:df:91:27:3e:2f: 5c:ea:a2:52:75:8c:76:fa:2b:0b:f5:a2:3d:7e:51:f0:46:69: 97:bf:38:e1:94:f4:72:52:4d:8e:03:d3:d8:78:42:d9:14:0e: 87:c6:cd:22:23:b8:40:03:09:d9:43:89:3a:31:b7:9b:83:e3: 30:fd:42:d1:bb:15:77:32:ac:a8:c2:4c:68:39:fa:08:dd:da: 88:61:90:7b:45:b4:a3:57:4f:ba:b7:59:fc:d5:8c:5f:32:7c: 99:37:d8:7d:f1:aa:c8:a0:7a:d5:ae:99:d1:fd:5a:f2:9c:fd: fa:7e:61:1a:20:ac:38:8c:37:5c:b4:14:1f:29:90:06:ae:68: 0c:43:70:ce:77:15:54:bc:df:91:f6:28:9e:3e:7c:a9:1c:0a: a9:e4:58:84:84:33:bf:75:37:f2:d5:46:78:ea:7d:cf:32:1c: b8:ac:3c:c8:e7:f5:3d:07:f6:ff:db:35:77:3b:d0:d1:4d:6b: 67:60:bf:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgISAZt9yx9AKNqxEo8lOPaJ1IOBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTYwZWY0OTRjMDFjOTAwMjhlZjc4M2NkM2RlNWRlNDJjMjg0N2Q4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWBdNXNY4MW7m34B++Rf16tpDS5/ OKgIPIpX3FJExpohiPXmPwoQ0pmkXNnqFz8cj05Uo/Y1fedtuAZci7PKOCTIGWOS +sKIRCNKU33f9Z9UruaMxm2F45as35nIyGC6cTCjKcv9z5KrUDT1cuhIZgLRvllk alpFtRj2/lLdUd5t0uMYJ9xI1U167quYxdsIbfCqb38raU6LqNPKdr9IkvPFwq5J nmwNOPHbOYOog21eq5jA2biH+3W/YTTc8JsCw6X9FykGYA2yl5QvkKVvSDBpyEfY M7FOOaytCllo08dcCeDUyAjfYpisT8cUnxwOOWV1JDiQvwkh5yTl/h0G3QIDAQAB o4ICNDCCAjAwHQYDVR0OBBYEFPpg70lMAckAKO94PNPeXeQsKEfYMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvMS1tRHZTVXdCeVFBbzczZzgwOTVkNUN3b1I5Zy5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOGUvZjQzYjFkLTllNTAtNDU1MS1hZTZhLTE3YjlkZTE0MTI1 Mi8xL3htSm05R2I3SkppamxGbXpOUzJpVVZHbHBNQS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBJBggrBgEFBQcBBwEB/wQ6MDgwNgQCAAEwMAMEACXK3gME AJfwHAMEAJfyVwMEAZfyrgMEAZfywAMEAJfzZQMEAJf0vAMEAJf1BDANBgkqhkiG 9w0BAQsFAAOCAQEATke7GyvrA+6LrAGiwRDsx5+/8QY4DW+o77smZ1ZsxWlpBlD1 0Hj8Ei6NMcDHVUIR6weM88ganKkVdYGslr80y5V1St+RJz4vXOqiUnWMdvorC/Wi PX5R8EZpl7844ZT0clJNjgPT2HhC2RQOh8bNIiO4QAMJ2UOJOjG3m4PjMP1C0bsV dzKsqMJMaDn6CN3aiGGQe0W0o1dPurdZ/NWMXzJ8mTfYffGqyKB61a6Z0f1a8pz9 +n5hGiCsOIw3XLQUHymQBq5oDENwzncVVLzfkfYonj58qRwKqeRYhIQzv3U38tVG eOp9zzIcuKw8yOf1PQf2/9s1dzvQ0U1rZ2C/Vw== -----END CERTIFICATE-----Generated at Thu Jan 8 17:25:06 2026 by rpki-client