This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/39I5VXx0UIXHt1zozwqdbXWW7v4.roa File: 39I5VXx0UIXHt1zozwqdbXWW7v4.roa (raw, json) Hash identifier: hyERNsJ9eZKGNncryqoYkt14K+EhBxAm1+ItcC3gjFs= Subject key identifier: DF:D2:39:55:7C:74:50:85:C7:B7:5C:E8:CF:0A:9D:6D:75:96:EE:FE Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCBA0030DECA5C1DB12536D0E323DB3 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/39I5VXx0UIXHt1zozwqdbXWW7v4.roa Signing time: Fri 02 Jan 2026 08:20:55 +0000 ROA not before: Fri 02 Jan 2026 08:20:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215703 IP address blocks: 151.241.100.0/24 maxlen: 24 151.241.161.0/24 maxlen: 24 151.243.93.0/24 maxlen: 24 151.243.113.0/24 maxlen: 24 151.244.72.0/24 maxlen: 24 151.244.233.0/24 maxlen: 24 151.244.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:a0:03:0d:ec:a5:c1:db:12:53:6d:0e:32:3d:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dfd239557c745085c7b75ce8cf0a9d6d7596eefe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:66:fc:f6:1a:91:df:e9:be:12:2b:44:c2:ea: 3e:f4:4b:90:b3:1c:b1:c0:0f:97:2e:ba:c8:9a:5f: 3c:7b:62:0a:8e:63:d3:71:bb:1c:d0:63:fb:c8:a2: c1:99:a2:c1:3b:9c:a1:9e:00:2f:39:73:3b:4b:89: ad:c9:01:16:5a:92:e0:35:2b:ee:bf:ed:ae:fa:d2: 2d:5f:63:5f:93:9c:d1:80:3b:5c:24:dd:91:c1:3d: ba:4f:bf:0b:81:fc:e9:42:dc:1d:93:18:60:1e:30: 43:63:f4:70:63:c4:eb:ec:02:17:40:b9:86:9d:21: dc:5d:05:bb:f0:59:9d:83:00:e8:18:7d:36:45:04: 96:e5:47:3e:7f:13:39:c8:cb:9f:ec:36:67:01:b7: fd:e1:55:8b:f3:65:f9:d1:be:eb:97:d2:46:dc:47: 6b:ec:c5:44:a6:74:83:03:e2:0f:3c:36:db:51:b2: a5:be:ab:86:ee:7f:5d:55:ed:62:73:c7:7e:0a:d3: 0c:74:be:c9:f1:59:87:28:2d:1f:87:a5:ba:01:e5: 43:19:4b:06:8c:26:18:f3:9a:3c:e4:3e:90:4a:e6: 10:68:a0:65:55:6b:51:2c:d9:bd:2b:dd:12:ef:ba: b5:75:73:56:eb:81:30:85:5b:88:c7:f3:3b:80:8d: d9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:D2:39:55:7C:74:50:85:C7:B7:5C:E8:CF:0A:9D:6D:75:96:EE:FE X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/39I5VXx0UIXHt1zozwqdbXWW7v4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.241.100.0/24 151.241.161.0/24 151.243.93.0/24 151.243.113.0/24 151.244.72.0/24 151.244.233.0/24 151.244.237.0/24 Signature Algorithm: sha256WithRSAEncryption 83:c4:03:f4:e5:f9:a4:42:28:a6:97:a8:e7:2a:70:e8:59:77: b3:04:eb:d2:da:f0:d2:24:a6:41:e3:20:67:aa:82:84:ad:c6: 97:f5:c2:ad:42:fe:19:9b:19:24:6c:b5:a3:b8:4b:be:e5:07: ad:4b:e9:3a:ea:ca:69:fa:39:ef:43:41:ed:e7:11:74:58:42: 3b:12:9c:cf:21:ee:30:d4:2d:d5:3b:8d:bf:94:9f:05:29:b8: 0d:4a:9a:74:08:17:b5:84:cb:a5:17:74:2d:01:b6:ba:d1:1c: c6:af:43:69:f8:da:a6:f8:74:8f:43:16:81:38:b4:4b:ea:50: f9:a9:47:d4:67:b1:c3:83:f4:dd:b2:70:66:3e:ed:79:59:6c: 30:a2:63:78:d1:c3:9b:33:51:ee:37:71:df:49:88:7f:da:24: 72:33:ae:44:15:6a:23:21:f5:ad:ff:5b:0e:ac:27:78:92:5a: cb:39:3d:15:ce:24:ba:ed:d1:17:f5:5d:27:c4:ae:0f:12:92: 12:ff:5d:02:2a:6d:7e:1a:74:a1:2e:57:71:1b:e0:12:4b:b4: d2:29:b9:8d:96:2d:95:64:b1:82:c1:9e:22:1a:e5:19:7f:26: 8a:9b:fb:47:aa:c9:27:6c:c3:02:e1:e8:46:68:c2:36:3f:55: 0b:ad:eb:8e -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt9y6ADDeylwdsSU20OMj2zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZmQyMzk1NTdjNzQ1MDg1YzdiNzVjZThjZjBhOWQ2ZDc1OTZlZWZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWb89hqR3+m+EitEwuo+9EuQsxyx wA+XLrrIml88e2IKjmPTcbsc0GP7yKLBmaLBO5yhngAvOXM7S4mtyQEWWpLgNSvu v+2u+tItX2Nfk5zRgDtcJN2RwT26T78LgfzpQtwdkxhgHjBDY/RwY8Tr7AIXQLmG nSHcXQW78FmdgwDoGH02RQSW5Uc+fxM5yMuf7DZnAbf94VWL82X50b7rl9JG3Edr 7MVEpnSDA+IPPDbbUbKlvquG7n9dVe1ic8d+CtMMdL7J8VmHKC0fh6W6AeVDGUsG jCYY85o85D6QSuYQaKBlVWtRLNm9K90S77q1dXNW64EwhVuIx/M7gI3Z+wIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFN/SOVV8dFCFx7dc6M8KnW11lu7+MB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvMzlJNVZYeDBVSVhIdDF6b3p3cWRiWFdXN3Y0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAl/FkAwQA l/GhAwQAl/NdAwQAl/NxAwQAl/RIAwQAl/TpAwQAl/TtMA0GCSqGSIb3DQEBCwUA A4IBAQCDxAP05fmkQiiml6jnKnDoWXezBOvS2vDSJKZB4yBnqoKErcaX9cKtQv4Z mxkkbLWjuEu+5QetS+k66spp+jnvQ0Ht5xF0WEI7EpzPIe4w1C3VO42/lJ8FKbgN Spp0CBe1hMulF3QtAba60RzGr0Np+Nqm+HSPQxaBOLRL6lD5qUfUZ7HDg/TdsnBm Pu15WWwwomN40cObM1HuN3HfSYh/2iRyM65EFWojIfWt/1sOrCd4klrLOT0VziS6 7dEX9V0nxK4PEpIS/10CKm1+GnShLldxG+ASS7TSKbmNli2VZLGCwZ4iGuUZfyaK m/tHqsknbMMC4ehGaMI2P1ULreuO -----END CERTIFICATE-----Generated at Sun Jan 18 06:27:41 2026 by rpki-client