This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/8YLqag4mCygaDHLzAbhy-nONeC0.roa File: 8YLqag4mCygaDHLzAbhy-nONeC0.roa (raw, json) Hash identifier: WDWMQAgKVwt2g8QEURIbTBfZK3tjTxc3I4pyxiS52E4= Subject key identifier: F1:82:EA:6A:0E:26:0B:28:1A:0C:72:F3:01:B8:72:FA:73:8D:78:2D Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB86955B5C4BEE5AE707286BC2CEAF Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/8YLqag4mCygaDHLzAbhy-nONeC0.roa Signing time: Fri 02 Jan 2026 08:20:48 +0000 ROA not before: Fri 02 Jan 2026 08:20:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211759 IP address blocks: 151.243.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:86:95:5b:5c:4b:ee:5a:e7:07:28:6b:c2:ce:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f182ea6a0e260b281a0c72f301b872fa738d782d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1b:a3:7d:b6:f7:09:75:30:db:9a:25:df:53: 82:b5:c3:12:10:21:7e:7f:78:a9:80:bb:2f:f3:e5: 2d:fd:f9:3b:68:13:8d:c0:20:44:4f:25:79:b9:21: 75:2e:5a:3b:57:7c:ba:9f:08:2d:e7:45:c3:9e:95: db:42:cb:2a:1a:e7:aa:51:78:ed:13:15:f6:c7:4e: ff:ee:cb:dd:67:51:57:25:0c:68:1a:cc:cc:0f:f9: e1:62:ac:1a:4a:a4:98:71:dc:13:06:4c:4b:1b:2e: 8c:f9:c4:0c:2e:31:17:96:fd:e6:05:22:8f:ce:02: db:94:23:28:d8:0b:09:0b:8f:43:5a:79:53:ad:ea: 77:a1:6f:cb:3d:5b:5f:96:17:67:cb:2e:fa:ef:75: 74:0c:a9:8f:ab:90:ea:7e:59:0b:b0:ad:10:a8:8d: 65:c4:5b:0d:de:30:8e:6d:4d:10:a9:64:17:c4:fc: 58:ed:11:6f:46:b0:35:98:0f:7b:77:4b:42:d9:e7: f0:39:b5:aa:45:c4:b9:f9:bf:ff:21:da:52:1b:26: 6a:0b:2e:03:55:2e:0e:7c:4d:39:04:6c:ea:59:4c: c1:db:76:0d:3f:b4:be:85:e3:9a:5d:46:d0:60:b6: 16:36:9f:47:e7:7f:5b:35:06:71:79:00:ed:0c:cc: cb:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:82:EA:6A:0E:26:0B:28:1A:0C:72:F3:01:B8:72:FA:73:8D:78:2D X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/8YLqag4mCygaDHLzAbhy-nONeC0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.243.38.0/24 Signature Algorithm: sha256WithRSAEncryption a0:34:af:49:67:85:bf:ff:2c:05:0a:bc:6d:63:20:38:d7:8d: aa:f3:44:9c:60:2c:a6:91:5b:72:c4:90:05:4b:47:91:be:af: 88:af:77:62:1b:0f:a0:8d:9f:8a:6b:90:a2:95:be:51:49:76: 92:08:bf:60:a4:ce:f3:cc:68:9a:6e:a8:8b:7f:d0:54:15:fb: e9:f1:70:e2:52:e7:d9:93:9d:29:74:44:2a:2f:42:1f:85:6f: 55:c6:01:c4:60:08:e7:c3:48:c7:d9:58:3d:d5:e0:f7:2e:3c: c6:a4:82:b4:36:b8:1c:77:aa:c6:e9:d0:a5:1e:4b:f7:bb:b8: 50:d6:35:63:8d:1d:31:27:02:a7:e8:bf:ee:c6:91:d9:31:9b: 4e:86:c1:3c:31:9d:0b:e6:3d:e8:73:3e:45:6a:c7:75:9b:b5: 6d:49:ef:2d:40:2c:b4:f7:5a:f7:f9:45:59:d9:82:56:14:28: de:70:9e:aa:71:62:93:36:69:46:50:3e:71:18:7e:d5:fc:ec: 69:23:f4:b3:d7:7d:2a:cd:76:a6:a5:e1:d2:f7:b8:0b:ff:22: 48:30:36:a9:53:e5:d7:c3:f7:9e:73:1b:e6:5b:b1:0e:11:b0: 50:f2:37:0c:c6:e5:92:53:27:6a:d8:00:6b:d3:fd:7f:24:c3: 78:36:be:fc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y4aVW1xL7lrnByhrws6vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMTgyZWE2YTBlMjYwYjI4MWEwYzcyZjMwMWI4NzJmYTczOGQ3ODJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0hujfbb3CXUw25ol31OCtcMSECF+ f3ipgLsv8+Ut/fk7aBONwCBETyV5uSF1Llo7V3y6nwgt50XDnpXbQssqGueqUXjt ExX2x07/7svdZ1FXJQxoGszMD/nhYqwaSqSYcdwTBkxLGy6M+cQMLjEXlv3mBSKP zgLblCMo2AsJC49DWnlTrep3oW/LPVtflhdnyy7673V0DKmPq5DqflkLsK0QqI1l xFsN3jCObU0QqWQXxPxY7RFvRrA1mA97d0tC2efwObWqRcS5+b//IdpSGyZqCy4D VS4OfE05BGzqWUzB23YNP7S+heOaXUbQYLYWNp9H539bNQZxeQDtDMzLuQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPGC6moOJgsoGgxy8wG4cvpzjXgtMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvOFlMcWFnNG1DeWdhREhMekFiaHktbk9OZUMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/MmMA0G CSqGSIb3DQEBCwUAA4IBAQCgNK9JZ4W//ywFCrxtYyA4142q80ScYCymkVtyxJAF S0eRvq+Ir3diGw+gjZ+Ka5Cilb5RSXaSCL9gpM7zzGiabqiLf9BUFfvp8XDiUufZ k50pdEQqL0IfhW9VxgHEYAjnw0jH2Vg91eD3LjzGpIK0Nrgcd6rG6dClHkv3u7hQ 1jVjjR0xJwKn6L/uxpHZMZtOhsE8MZ0L5j3ocz5Fasd1m7VtSe8tQCy091r3+UVZ 2YJWFCjecJ6qcWKTNmlGUD5xGH7V/OxpI/Sz130qzXampeHS97gL/yJIMDapU+XX w/eecxvmW7EOEbBQ8jcMxuWSUydq2ABr0/1/JMN4Nr78 -----END CERTIFICATE-----Generated at Sun Jan 18 06:28:47 2026 by rpki-client