This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/I9T3Z_lax3YP3jhZJaMObuSdsBA.roa File: I9T3Z_lax3YP3jhZJaMObuSdsBA.roa (raw, json) Hash identifier: 350jra/tmx4qmusaq0aKjGktD1rNVUnVqiD+TgEn3bY= Subject key identifier: 23:D4:F7:67:F9:5A:C7:76:0F:DE:38:59:25:A3:0E:6E:E4:9D:B0:10 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB19B44BAE37068030BC1DB31850A1 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/I9T3Z_lax3YP3jhZJaMObuSdsBA.roa Signing time: Fri 02 Jan 2026 08:20:20 +0000 ROA not before: Fri 02 Jan 2026 08:20:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15353 IP address blocks: 151.243.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:19:b4:4b:ae:37:06:80:30:bc:1d:b3:18:50:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=23d4f767f95ac7760fde385925a30e6ee49db010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d4:3e:28:1c:8c:57:86:f3:a7:09:7c:82:68: 36:8b:15:b4:31:88:51:28:6c:3c:3e:53:82:34:a3: 2d:84:14:09:d8:d6:96:ed:86:69:11:e6:03:e7:2a: fd:2b:5e:c8:85:95:d0:c7:5b:b1:f7:93:c3:cb:14: 50:bb:07:fb:e9:2c:2b:94:bc:89:eb:c9:6f:e8:63: d2:15:9b:bc:f3:4e:09:fa:1b:93:5b:9b:b7:d0:6d: c9:f6:1f:83:ea:ff:fd:40:09:09:76:81:02:67:af: f6:37:e3:64:e6:d5:4d:77:bd:03:52:a4:14:93:3f: 1f:86:ec:3c:66:7b:55:81:05:ef:e6:6b:3d:77:84: b7:eb:88:04:a2:de:37:41:44:21:37:84:d2:13:30: 9f:7b:0f:d8:87:ba:92:9b:52:e6:d3:f5:3f:8f:59: ea:a6:ae:40:e7:35:29:29:fd:94:85:f5:d8:84:9d: 10:65:5d:ad:c7:06:90:aa:9c:90:70:35:4a:2f:50: 8d:1e:26:d1:25:dc:29:90:bf:b1:c0:07:94:b0:33: 86:7b:51:8b:51:8a:c6:ca:59:81:27:21:17:2c:ce: a1:a9:b2:b9:bf:47:64:f4:28:4f:df:ac:f7:72:97: 88:a1:5a:83:fb:7d:31:33:ba:d0:d4:d0:92:6d:4f: d1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D4:F7:67:F9:5A:C7:76:0F:DE:38:59:25:A3:0E:6E:E4:9D:B0:10 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/I9T3Z_lax3YP3jhZJaMObuSdsBA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.243.112.0/24 Signature Algorithm: sha256WithRSAEncryption a8:5e:f3:c8:a0:a6:6f:d5:f1:d8:05:7e:ea:03:da:d0:c9:e7: a4:58:c9:f5:6c:78:11:71:89:4a:da:01:31:58:ec:62:2a:95: 9e:c1:1d:3a:b8:b1:46:58:94:4d:72:66:ef:08:af:4a:e5:60: 14:d6:74:88:0c:36:f1:cb:c3:ee:cf:a0:24:df:f3:96:9c:ac: 42:ba:82:e5:b5:f3:ac:9f:5f:a6:dc:88:9f:10:32:88:f4:75: 79:5e:7a:08:aa:a9:00:96:84:1f:5e:16:74:0c:42:b2:3b:7c: 59:74:0c:f8:b0:16:a3:9a:1e:b5:98:ba:0a:6c:cf:78:76:a1: 1d:08:53:32:55:38:ab:01:6c:1c:3b:0b:a7:98:98:c2:ea:90: 14:24:46:9d:f1:a2:29:18:e6:7a:28:fd:6b:47:91:5f:39:84: 10:a3:48:0c:a8:d3:aa:99:f7:b2:be:d1:17:36:49:23:9d:3a: d2:0d:b4:9f:6a:4d:59:43:ab:45:e0:08:31:9e:42:57:86:70: 6d:05:17:6f:14:d2:a0:af:8b:02:0d:ab:af:76:2a:b9:d9:53: ac:e2:80:09:9d:09:89:2d:82:a3:73:c2:84:32:77:5c:ad:01: ad:1a:8e:a6:e3:db:f3:19:87:80:ae:4e:93:9f:31:13:72:98: cd:41:0d:b9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yxm0S643BoAwvB2zGFChMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyM2Q0Zjc2N2Y5NWFjNzc2MGZkZTM4NTkyNWEzMGU2ZWU0OWRiMDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9Q+KByMV4bzpwl8gmg2ixW0MYhR KGw8PlOCNKMthBQJ2NaW7YZpEeYD5yr9K17IhZXQx1ux95PDyxRQuwf76SwrlLyJ 68lv6GPSFZu8804J+huTW5u30G3J9h+D6v/9QAkJdoECZ6/2N+Nk5tVNd70DUqQU kz8fhuw8ZntVgQXv5ms9d4S364gEot43QUQhN4TSEzCfew/Yh7qSm1Lm0/U/j1nq pq5A5zUpKf2UhfXYhJ0QZV2txwaQqpyQcDVKL1CNHibRJdwpkL+xwAeUsDOGe1GL UYrGylmBJyEXLM6hqbK5v0dk9ChP36z3cpeIoVqD+30xM7rQ1NCSbU/RLwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCPU92f5Wsd2D944WSWjDm7knbAQMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvSTlUM1pfbGF4M1lQM2poWkphTU9idVNkc0JBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/NwMA0G CSqGSIb3DQEBCwUAA4IBAQCoXvPIoKZv1fHYBX7qA9rQyeekWMn1bHgRcYlK2gEx WOxiKpWewR06uLFGWJRNcmbvCK9K5WAU1nSIDDbxy8Puz6Ak3/OWnKxCuoLltfOs n1+m3IifEDKI9HV5XnoIqqkAloQfXhZ0DEKyO3xZdAz4sBajmh61mLoKbM94dqEd CFMyVTirAWwcOwunmJjC6pAUJEad8aIpGOZ6KP1rR5FfOYQQo0gMqNOqmfeyvtEX NkkjnTrSDbSfak1ZQ6tF4AgxnkJXhnBtBRdvFNKgr4sCDauvdiq52VOs4oAJnQmJ LYKjc8KEMndcrQGtGo6m49vzGYeArk6TnzETcpjNQQ25 -----END CERTIFICATE-----Generated at Sun Jan 18 06:29:13 2026 by rpki-client