This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-qklvFVp7Tio7v-ajmVANS1i_R8.roa File: 1-qklvFVp7Tio7v-ajmVANS1i_R8.roa (raw, json) Hash identifier: b3ezGrmYphA3o9RT7OJtHMmu8oOizeQ/6BAIjopHEaE= Subject key identifier: FA:A9:25:BC:55:69:ED:38:A8:EE:FF:9A:8E:65:40:35:2D:62:FD:1F Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019A860EF4FCFEF20B118E5998FF49B46DA9 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-qklvFVp7Tio7v-ajmVANS1i_R8.roa Signing time: Sat 15 Nov 2025 05:48:38 +0000 ROA not before: Sat 15 Nov 2025 05:48:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 60439 IP address blocks: 151.240.151.0/24 maxlen: 24 151.243.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 05:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:86:0e:f4:fc:fe:f2:0b:11:8e:59:98:ff:49:b4:6d:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Nov 15 05:48:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=faa925bc5569ed38a8eeff9a8e6540352d62fd1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:39:d5:29:1f:47:15:46:24:1a:a0:58:85:47: 3e:3c:c7:e2:b6:29:9c:7a:1a:c0:7e:c2:05:96:52: 54:0b:60:f5:b0:98:22:b0:79:f2:15:e5:4b:e2:0c: 1a:c6:9e:9b:59:3e:b1:cb:b9:49:93:04:1e:21:ad: 07:22:30:cc:6a:f4:46:19:0e:56:db:63:f0:2e:4a: ac:bc:10:4f:a0:c9:fe:1f:80:02:ba:c8:69:89:3a: 7a:61:dd:13:27:33:b1:2e:0c:8f:82:d0:75:04:27: 42:f5:09:16:bb:23:a8:2d:53:83:a8:f8:cc:78:d4: 9d:41:68:3b:7f:7c:82:8f:4b:cc:14:ba:91:a4:34: d1:43:d0:53:8d:3e:8a:ea:75:2f:66:60:07:79:04: dd:e2:04:40:e6:ed:45:08:6a:8f:a9:31:21:e9:65: 80:a4:85:4d:73:0c:d0:30:aa:60:2a:a3:53:05:4c: 3b:2c:4b:2d:f4:3c:f3:8e:2f:b3:cb:5f:74:82:b1: 5f:b6:72:27:a4:75:fc:39:c0:1f:e8:76:a3:9d:3f: e6:7b:76:e5:6c:77:a3:b6:30:59:8a:c0:7c:0f:ce: f0:6e:3d:ea:e4:b7:d2:a5:e6:19:2e:10:0d:cc:ce: b9:54:26:11:8e:16:4f:57:dc:fc:a5:11:d2:bb:04: 77:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:A9:25:BC:55:69:ED:38:A8:EE:FF:9A:8E:65:40:35:2D:62:FD:1F X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1-qklvFVp7Tio7v-ajmVANS1i_R8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.240.151.0/24 151.243.28.0/24 Signature Algorithm: sha256WithRSAEncryption 27:3c:ae:28:81:d9:02:b1:d9:e8:7b:b8:e6:d8:1d:91:ff:e2: fa:07:6d:e9:1c:0b:e5:85:f9:6e:fc:d7:7f:12:81:e2:a2:02: 36:b5:7e:47:9d:e7:d6:63:92:fc:ef:5b:5b:67:6e:3d:c8:2c: ce:0e:e2:d8:aa:2c:da:74:b5:3a:f4:45:db:3e:c2:8f:2a:9d: 2b:b6:f4:f3:6e:f5:4f:9b:91:18:cc:f4:79:b1:05:59:a2:4d: 9c:66:7b:49:6e:78:c5:eb:80:00:1e:65:62:3c:35:cb:af:05: 6e:50:48:91:63:a2:d1:ae:77:03:21:29:97:d4:03:96:90:e0: 57:d0:d0:1e:93:1b:c9:74:86:01:74:67:3b:cd:e2:42:17:a4: e5:a7:78:03:0b:e5:42:33:50:5e:39:7a:6e:fc:70:99:41:78: 59:a4:f9:fb:0b:84:53:d8:1d:22:05:ad:73:18:b3:94:8d:1c: 47:32:02:2f:da:b8:78:f8:ea:7f:34:74:4e:5b:ce:46:b8:d4: ee:3a:2d:da:94:ef:59:92:08:f9:c6:ab:2a:ce:3d:29:72:ae: 73:0f:f2:b7:54:06:9a:dd:57:9b:1b:5d:0e:87:0b:d6:e2:f0: d9:1f:00:cb:cf:36:14:47:ec:99:f0:51:94:4c:a3:00:dc:18: 6d:35:d6:ab -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgISAZqGDvT8/vILEY5ZmP9JtG2pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjUxMTE1MDU0ODM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYWE5MjViYzU1NjllZDM4YThlZWZmOWE4ZTY1NDAzNTJkNjJmZDFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTnVKR9HFUYkGqBYhUc+PMfitimc ehrAfsIFllJUC2D1sJgisHnyFeVL4gwaxp6bWT6xy7lJkwQeIa0HIjDMavRGGQ5W 22PwLkqsvBBPoMn+H4ACushpiTp6Yd0TJzOxLgyPgtB1BCdC9QkWuyOoLVODqPjM eNSdQWg7f3yCj0vMFLqRpDTRQ9BTjT6K6nUvZmAHeQTd4gRA5u1FCGqPqTEh6WWA pIVNcwzQMKpgKqNTBUw7LEst9Dzzji+zy190grFftnInpHX8OcAf6HajnT/me3bl bHejtjBZisB8D87wbj3q5LfSpeYZLhANzM65VCYRjhZPV9z8pRHSuwR3wQIDAQAB o4ICEDCCAgwwHQYDVR0OBBYEFPqpJbxVae04qO7/mo5lQDUtYv0fMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvMS1xa2x2RlZwN1Rpbzd2LWFqbVZBTlMxaV9SOC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOGUvZjQzYjFkLTllNTAtNDU1MS1hZTZhLTE3YjlkZTE0MTI1 Mi8xL3htSm05R2I3SkppamxGbXpOUzJpVVZHbHBNQS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAJfwlwME AJfzHDANBgkqhkiG9w0BAQsFAAOCAQEAJzyuKIHZArHZ6Hu45tgdkf/i+gdt6RwL 5YX5bvzXfxKB4qICNrV+R53n1mOS/O9bW2duPcgszg7i2Kos2nS1OvRF2z7Cjyqd K7b08271T5uRGMz0ebEFWaJNnGZ7SW54xeuAAB5lYjw1y68FblBIkWOi0a53AyEp l9QDlpDgV9DQHpMbyXSGAXRnO83iQhek5ad4AwvlQjNQXjl6bvxwmUF4WaT5+wuE U9gdIgWtcxizlI0cRzICL9q4ePjqfzR0TlvORrjU7jot2pTvWZII+carKs49KXKu cw/yt1QGmt1XmxtdDocL1uLw2R8Ay882FEfsmfBRlEyjANwYbTXWqw== -----END CERTIFICATE-----Generated at Wed Dec 3 09:41:55 2025 by rpki-client