This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/3y6PMbCZUdoFDcWWmB-0Iuehc6U.roa File: 3y6PMbCZUdoFDcWWmB-0Iuehc6U.roa (raw, json) Hash identifier: Q41FcsnyG8jJbuQlkhNqkWz6AxDkdTam9XiW4qjkTkQ= Subject key identifier: DF:2E:8F:31:B0:99:51:DA:05:0D:C5:96:98:1F:B4:22:E7:A1:73:A5 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB104CC39EB1846180E5ED52834ECD Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/3y6PMbCZUdoFDcWWmB-0Iuehc6U.roa Signing time: Fri 02 Jan 2026 08:20:18 +0000 ROA not before: Fri 02 Jan 2026 08:20:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9381 IP address blocks: 151.242.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:10:4c:c3:9e:b1:84:61:80:e5:ed:52:83:4e:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=df2e8f31b09951da050dc596981fb422e7a173a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:29:ba:6a:5a:8e:bd:ae:c2:28:ef:5e:4c:cc: 26:40:44:55:28:fe:ce:b6:18:16:da:49:ca:aa:e0: e4:d8:50:e4:c6:1e:18:d6:18:c8:e3:61:4b:45:41: 94:64:36:1f:98:a5:57:22:24:45:fe:e7:d8:9f:e9: 69:76:52:84:15:e6:2c:62:9b:4f:89:28:48:62:bb: c8:d0:57:4d:dd:15:1c:da:28:6a:1e:84:f0:60:dd: 8b:79:d1:86:b5:65:88:d3:0e:38:77:49:3a:de:be: be:81:22:fa:7e:72:6a:38:27:3e:ae:75:5e:d9:22: 8c:0f:0e:1b:52:93:21:5f:63:94:4c:10:1a:85:6a: b6:c4:be:84:39:b9:2a:0c:77:f6:d1:eb:06:99:c1: 47:58:bd:99:7c:cb:e1:01:6b:fd:f3:91:05:b7:06: f2:d2:92:53:bd:47:c3:78:68:73:26:ea:3e:c6:bf: b5:58:34:8f:d7:75:dc:69:ce:c3:4b:1c:68:45:9b: 29:af:2f:57:66:0c:06:d7:51:fb:9c:90:db:2e:13: 69:f4:8a:f1:49:0e:08:4e:e8:db:3b:00:aa:61:ef: 5e:1c:a9:93:02:54:61:fc:3f:15:3c:a6:eb:ff:58: f6:3b:b9:dd:24:c5:57:be:7c:fd:a6:f5:51:e4:42: 94:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:2E:8F:31:B0:99:51:DA:05:0D:C5:96:98:1F:B4:22:E7:A1:73:A5 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/3y6PMbCZUdoFDcWWmB-0Iuehc6U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.242.180.0/22 Signature Algorithm: sha256WithRSAEncryption 02:ad:47:2a:b7:50:e6:d0:67:3b:a3:73:bb:a7:66:2b:42:73: b7:01:b2:e2:e5:97:e4:d2:80:2c:e0:ae:3a:38:5f:8a:80:13: 3d:37:06:5c:4e:13:a0:47:a0:74:e1:0c:11:d8:74:a6:1b:ae: 3b:1a:91:ba:b2:89:91:6c:03:a4:4e:35:bd:90:78:86:05:99: 6d:6f:ad:e5:eb:7d:6d:0d:70:85:64:e9:b8:cb:c9:69:5c:7a: bd:21:8b:c9:f3:08:90:31:a8:0f:94:0b:b9:b0:20:14:8d:c2: e3:fd:f4:26:37:36:53:e2:a7:d3:e6:1c:ad:08:fb:e8:99:c4: 68:b4:58:81:e6:9a:d1:d2:f3:a9:8b:d0:0b:09:9f:aa:b6:ce: 40:ff:c8:ae:7e:f4:4f:65:cd:99:d9:62:19:01:7e:54:5c:2a: 31:0c:28:df:c9:61:51:fe:69:be:c0:8f:75:66:f5:d8:32:52: b9:df:0c:6d:76:f1:3f:53:8b:f4:98:80:a4:46:e8:96:b7:36: 25:e7:83:9e:ae:3d:f5:76:14:fd:ef:07:f8:dd:a0:af:1d:02: c5:31:1c:06:aa:4e:1a:c3:cd:48:7d:91:28:57:d7:bc:e4:48: f7:d9:d4:37:2c:5e:3f:a8:35:53:61:25:d9:02:39:a3:d3:f5: ac:52:cd:70 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yxBMw56xhGGA5e1Sg07NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjJlOGYzMWIwOTk1MWRhMDUwZGM1OTY5ODFmYjQyMmU3YTE3M2E1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoym6alqOva7CKO9eTMwmQERVKP7O thgW2knKquDk2FDkxh4Y1hjI42FLRUGUZDYfmKVXIiRF/ufYn+lpdlKEFeYsYptP iShIYrvI0FdN3RUc2ihqHoTwYN2LedGGtWWI0w44d0k63r6+gSL6fnJqOCc+rnVe 2SKMDw4bUpMhX2OUTBAahWq2xL6EObkqDHf20esGmcFHWL2ZfMvhAWv985EFtwby 0pJTvUfDeGhzJuo+xr+1WDSP13Xcac7DSxxoRZspry9XZgwG11H7nJDbLhNp9Irx SQ4ITujbOwCqYe9eHKmTAlRh/D8VPKbr/1j2O7ndJMVXvnz9pvVR5EKUlwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN8ujzGwmVHaBQ3FlpgftCLnoXOlMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvM3k2UE1iQ1pVZG9GRGNXV21CLTBJdWVoYzZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCl/K0MA0G CSqGSIb3DQEBCwUAA4IBAQACrUcqt1Dm0Gc7o3O7p2YrQnO3AbLi5Zfk0oAs4K46 OF+KgBM9NwZcThOgR6B04QwR2HSmG647GpG6somRbAOkTjW9kHiGBZltb63l631t DXCFZOm4y8lpXHq9IYvJ8wiQMagPlAu5sCAUjcLj/fQmNzZT4qfT5hytCPvomcRo tFiB5prR0vOpi9ALCZ+qts5A/8iufvRPZc2Z2WIZAX5UXCoxDCjfyWFR/mm+wI91 ZvXYMlK53wxtdvE/U4v0mICkRuiWtzYl54Oerj31dhT97wf43aCvHQLFMRwGqk4a w81IfZEoV9e85Ej32dQ3LF4/qDVTYSXZAjmj0/WsUs1w -----END CERTIFICATE-----Generated at Sun Jan 18 06:27:36 2026 by rpki-client