This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/AVOZiiXCHYknTtqiK3bzfvQdJUk.roa File: AVOZiiXCHYknTtqiK3bzfvQdJUk.roa (raw, json) Hash identifier: VzUZW4PkN7cUBPkjMQ+4h+TawUL1fKqkQQKQKS8MVTs= Subject key identifier: 01:53:99:8A:25:C2:1D:89:27:4E:DA:A2:2B:76:F3:7E:F4:1D:25:49 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCBAC2215B8A9DC810FBCD28EE39EED Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/AVOZiiXCHYknTtqiK3bzfvQdJUk.roa Signing time: Fri 02 Jan 2026 08:20:58 +0000 ROA not before: Fri 02 Jan 2026 08:20:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 395656 IP address blocks: 151.243.172.0/24 maxlen: 24 151.245.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:ac:22:15:b8:a9:dc:81:0f:bc:d2:8e:e3:9e:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0153998a25c21d89274edaa22b76f37ef41d2549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4d:7e:49:7a:b0:78:40:a7:31:ce:12:79:e5: 4c:9b:ef:6e:5d:66:4b:78:5e:34:4b:0b:f6:1d:9f: a6:93:ca:c4:ed:74:9a:55:5b:87:d3:84:1a:d7:45: c5:56:e9:a6:1c:f0:b6:39:23:9d:e4:61:40:99:69: 79:ce:a0:93:0c:37:62:89:a1:db:1c:08:53:2d:3e: 25:1c:11:57:f9:bd:d0:28:7f:84:af:0e:98:77:50: 72:ac:58:3a:2a:cb:f3:22:47:4d:aa:d1:6a:69:4e: a3:29:f8:71:7c:bf:56:3b:1a:69:f3:12:d8:05:e1: d6:db:fa:ba:87:57:ad:e0:cd:1a:30:b8:25:76:14: 7d:f5:0b:e7:1b:88:49:0f:84:9d:4f:bd:ba:33:16: 37:a3:ba:91:e2:b3:c8:6f:9c:d1:4d:d6:72:cf:54: 31:0e:42:6c:07:b6:45:64:93:91:a6:7b:ee:35:cb: cb:3d:d7:c6:de:fb:a1:a2:fd:10:52:e7:61:1a:9c: ac:ad:bf:89:87:97:0f:8a:41:7a:98:bc:ba:31:26: 94:95:0c:dc:d4:a1:33:f8:c0:0e:66:77:9d:ae:fc: 0b:e3:6f:1f:23:28:5d:13:36:59:2f:c9:28:88:0a: 95:cf:8b:66:4d:fc:63:ff:6f:d2:b8:ff:cf:55:86: a7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:53:99:8A:25:C2:1D:89:27:4E:DA:A2:2B:76:F3:7E:F4:1D:25:49 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/AVOZiiXCHYknTtqiK3bzfvQdJUk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.243.172.0/24 151.245.86.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:ce:14:f1:38:34:79:f0:54:4c:25:c7:e8:7e:19:13:38:c2: 67:9e:fa:fc:6d:be:cb:26:89:30:dc:54:a3:54:9d:b0:cd:54: 4a:b0:99:c1:82:70:b3:ff:0d:54:1a:50:fb:b1:38:bf:5d:f9: 65:b4:f5:9d:1d:5e:79:7d:b5:4c:13:e8:f0:b8:24:52:d6:8d: 63:ee:88:fd:1c:1f:70:41:0b:aa:c6:93:db:0e:40:3c:7a:f6: 75:23:dd:07:8b:19:39:05:70:a8:c3:69:0f:74:a2:64:08:ca: 44:63:23:0d:63:9d:80:c1:67:f7:74:44:ee:e3:a1:c0:d4:78: 4f:fa:5d:c2:eb:1f:b2:d9:1d:f9:34:41:96:97:67:16:79:ec: ea:a6:bd:12:4f:43:bc:f0:a4:be:9a:28:df:70:0a:fb:d9:87: 88:eb:3f:a6:17:ff:77:e1:d5:3b:e3:16:22:21:05:f3:76:f5: a9:fd:27:25:54:86:b6:bd:35:74:c9:15:d5:94:5f:40:87:87: 38:d4:55:ec:f9:40:8a:d9:fd:b8:64:30:cd:b4:f5:3b:ef:5e: 8a:96:ff:8f:a9:d3:7b:bc:75:62:c3:ad:07:58:a7:95:29:55: c3:ad:1b:c5:9b:49:b8:87:9c:cd:98:dd:0f:53:61:a4:84:77: 1f:d7:43:ad -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9y6wiFbip3IEPvNKO457tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMTUzOTk4YTI1YzIxZDg5Mjc0ZWRhYTIyYjc2ZjM3ZWY0MWQyNTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7E1+SXqweECnMc4SeeVMm+9uXWZL eF40Swv2HZ+mk8rE7XSaVVuH04Qa10XFVummHPC2OSOd5GFAmWl5zqCTDDdiiaHb HAhTLT4lHBFX+b3QKH+Erw6Yd1ByrFg6KsvzIkdNqtFqaU6jKfhxfL9WOxpp8xLY BeHW2/q6h1et4M0aMLgldhR99QvnG4hJD4SdT726MxY3o7qR4rPIb5zRTdZyz1Qx DkJsB7ZFZJORpnvuNcvLPdfG3vuhov0QUudhGpysrb+Jh5cPikF6mLy6MSaUlQzc 1KEz+MAOZnedrvwL428fIyhdEzZZL8koiAqVz4tmTfxj/2/SuP/PVYanvQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAFTmYolwh2JJ07aoit28370HSVJMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvQVZPWmlpWENIWWtuVHRxaUszYnpmdlFkSlVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAl/OsAwQA l/VWMA0GCSqGSIb3DQEBCwUAA4IBAQBMzhTxODR58FRMJcfofhkTOMJnnvr8bb7L Jokw3FSjVJ2wzVRKsJnBgnCz/w1UGlD7sTi/XflltPWdHV55fbVME+jwuCRS1o1j 7oj9HB9wQQuqxpPbDkA8evZ1I90Hixk5BXCow2kPdKJkCMpEYyMNY52AwWf3dETu 46HA1HhP+l3C6x+y2R35NEGWl2cWeezqpr0ST0O88KS+mijfcAr72YeI6z+mF/93 4dU74xYiIQXzdvWp/SclVIa2vTV0yRXVlF9Ah4c41FXs+UCK2f24ZDDNtPU7716K lv+PqdN7vHViw60HWKeVKVXDrRvFm0m4h5zNmN0PU2GkhHcf10Ot -----END CERTIFICATE-----Generated at Sun Jan 18 06:29:12 2026 by rpki-client