This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/BHybM36LXBYr5vojdq1pbGFUFJU.roa File: BHybM36LXBYr5vojdq1pbGFUFJU.roa (raw, json) Hash identifier: ND4LFLxR4kQkeNoMBWcX+9BUGU5HTj31RFz07AEKii0= Subject key identifier: 04:7C:9B:33:7E:8B:5C:16:2B:E6:FA:23:76:AD:69:6C:61:54:14:95 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019A61F5A0ECCA511E883CDAD5009C0958E2 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/BHybM36LXBYr5vojdq1pbGFUFJU.roa Signing time: Sat 08 Nov 2025 05:34:38 +0000 ROA not before: Sat 08 Nov 2025 05:34:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133153 IP address blocks: 151.241.156.0/22 maxlen: 24 151.245.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 05:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:61:f5:a0:ec:ca:51:1e:88:3c:da:d5:00:9c:09:58:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Nov 8 05:34:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=047c9b337e8b5c162be6fa2376ad696c61541495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9f:14:b0:6b:94:0b:a5:b5:b4:66:aa:03:f0: 41:ba:1c:61:e9:14:90:11:c8:00:5f:c6:f9:d4:58: a6:e7:f5:02:6c:fa:5f:22:4a:39:0b:11:e2:54:ca: 46:97:f9:07:71:ad:8c:e5:2f:17:3e:7f:83:6a:49: ef:87:c1:62:6c:b9:18:05:80:cb:77:c4:ca:bb:62: 4c:8c:85:09:5c:86:a4:97:ef:a7:cd:22:87:af:ff: fa:74:40:91:7e:d1:00:ef:45:c8:c8:8e:e0:cb:1b: 1b:25:cc:91:32:9a:01:42:41:a2:ef:72:ee:db:d8: 67:ca:5e:78:5b:6f:34:d2:50:63:5b:c2:eb:06:54: b3:b5:7d:73:f3:4f:28:29:fc:87:6b:ca:31:17:bc: 80:1d:9b:43:e3:d1:e8:8b:f7:4a:19:5b:71:9b:e8: 0a:6f:9b:ed:d4:27:ce:9b:23:0d:ca:b5:f2:f0:cb: a8:df:e1:4f:75:1a:c6:b6:a9:0c:38:74:9b:af:6e: d4:c3:9f:db:10:f2:2d:75:0f:f9:82:80:14:5b:ad: ad:1f:7c:f8:2d:03:dd:9d:af:e0:f9:23:f8:2e:29: 63:e0:31:b7:11:8c:5b:1e:d1:a6:19:7a:89:37:7a: 9d:78:38:8d:a3:a1:c1:96:56:a3:00:02:01:46:94: e5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:7C:9B:33:7E:8B:5C:16:2B:E6:FA:23:76:AD:69:6C:61:54:14:95 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/BHybM36LXBYr5vojdq1pbGFUFJU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.241.156.0/22 151.245.178.0/24 Signature Algorithm: sha256WithRSAEncryption 48:6d:10:65:92:0b:4d:af:37:ba:82:0d:27:1f:9c:cf:f2:f2: 51:4f:50:81:fc:be:08:0a:63:ba:d4:b9:eb:a0:d9:21:62:13: b2:27:cb:3b:31:14:11:7e:81:5c:7d:1a:d2:2e:a1:4d:a5:59: 5c:cc:76:73:a8:8b:ae:8d:82:2e:3a:a7:da:1b:e6:0e:76:9c: b6:21:7b:a5:89:22:e6:0f:a7:91:2f:13:4b:81:8c:89:f8:b8: 3e:1d:83:c3:fe:6c:9d:3e:50:54:91:27:46:69:53:f4:76:21: 3d:98:63:e0:d3:c8:cc:bd:f7:ff:14:c3:38:fd:1e:f0:64:0a: 6e:6c:d2:91:1f:ce:ed:7d:5b:bf:60:ac:29:ed:93:08:72:c4: a4:b4:f1:a2:64:68:2a:63:d4:d0:fa:4e:e3:e1:4c:69:19:b2: 05:4a:8c:b9:b9:5b:75:11:66:f7:17:e0:43:4c:4e:1e:2b:a5: 66:68:1a:77:b7:21:62:73:eb:10:30:c5:21:40:9c:6b:80:8e: 66:23:d6:c8:05:88:12:fc:47:33:b8:e5:9d:ff:47:76:9a:bc: 7e:18:44:dd:a1:68:48:c8:d9:ad:78:7c:ea:f8:04:3b:41:d6: 76:f4:0a:38:fd:c7:e7:6d:60:05:90:c8:17:d1:2b:74:d3:e4: 9f:2b:d7:ef -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZph9aDsylEeiDza1QCcCVjiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjUxMTA4MDUzNDM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNDdjOWIzMzdlOGI1YzE2MmJlNmZhMjM3NmFkNjk2YzYxNTQxNDk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt58UsGuUC6W1tGaqA/BBuhxh6RSQ EcgAX8b51Fim5/UCbPpfIko5CxHiVMpGl/kHca2M5S8XPn+Daknvh8FibLkYBYDL d8TKu2JMjIUJXIakl++nzSKHr//6dECRftEA70XIyI7gyxsbJcyRMpoBQkGi73Lu 29hnyl54W2800lBjW8LrBlSztX1z808oKfyHa8oxF7yAHZtD49Hoi/dKGVtxm+gK b5vt1CfOmyMNyrXy8Muo3+FPdRrGtqkMOHSbr27Uw5/bEPItdQ/5goAUW62tH3z4 LQPdna/g+SP4Lilj4DG3EYxbHtGmGXqJN3qdeDiNo6HBllajAAIBRpTlMwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAR8mzN+i1wWK+b6I3ataWxhVBSVMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvQkh5Yk0zNkxYQllyNXZvamRxMXBiR0ZVRkpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCl/GcAwQA l/WyMA0GCSqGSIb3DQEBCwUAA4IBAQBIbRBlkgtNrze6gg0nH5zP8vJRT1CB/L4I CmO61LnroNkhYhOyJ8s7MRQRfoFcfRrSLqFNpVlczHZzqIuujYIuOqfaG+YOdpy2 IXuliSLmD6eRLxNLgYyJ+Lg+HYPD/mydPlBUkSdGaVP0diE9mGPg08jMvff/FMM4 /R7wZApubNKRH87tfVu/YKwp7ZMIcsSktPGiZGgqY9TQ+k7j4UxpGbIFSoy5uVt1 EWb3F+BDTE4eK6VmaBp3tyFic+sQMMUhQJxrgI5mI9bIBYgS/EczuOWd/0d2mrx+ GETdoWhIyNmteHzq+AQ7QdZ29Ao4/cfnbWAFkMgX0St00+SfK9fv -----END CERTIFICATE-----Generated at Wed Dec 3 09:42:31 2025 by rpki-client