This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/R-DfPDRCMSdKVBFyG4DVmhYMuQ4.roa File: R-DfPDRCMSdKVBFyG4DVmhYMuQ4.roa (raw, json) Hash identifier: ev82bFdmmtwzDsIcdflq42Wm2mn1QKW8oYrnf8Po4WM= Subject key identifier: 47:E0:DF:3C:34:42:31:27:4A:54:11:72:1B:80:D5:9A:16:0C:B9:0E Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB64BF40A869D1420CA548C26ABFC7 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/R-DfPDRCMSdKVBFyG4DVmhYMuQ4.roa Signing time: Fri 02 Jan 2026 08:20:40 +0000 ROA not before: Fri 02 Jan 2026 08:20:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202736 IP address blocks: 151.243.108.0/24 maxlen: 24 151.244.3.0/24 maxlen: 24 151.244.16.0/21 maxlen: 24 151.244.168.0/23 maxlen: 24 151.244.218.0/24 maxlen: 24 151.246.48.0/21 maxlen: 24 151.246.56.0/21 maxlen: 24 151.246.80.0/21 maxlen: 24 151.246.88.0/21 maxlen: 24 151.246.96.0/21 maxlen: 24 151.246.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:64:bf:40:a8:69:d1:42:0c:a5:48:c2:6a:bf:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=47e0df3c344231274a5411721b80d59a160cb90e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e7:c5:1a:2e:aa:91:ca:d2:08:37:38:bf:d5: d7:6a:3d:53:23:1c:4e:fd:e6:e2:b7:6b:df:ad:45: b7:33:0c:30:94:c7:b6:ac:28:ce:9a:bd:6a:bc:4a: 19:85:82:cf:a3:e9:f3:54:01:a2:de:1e:54:44:00: ce:68:95:30:19:01:a9:f9:00:ac:8c:c2:e9:f4:17: e7:fb:95:44:56:89:4a:43:4b:a5:c8:6f:a5:c3:1a: 24:3d:2a:4e:31:69:e1:e4:f4:13:21:1e:31:56:44: cf:f5:ac:fb:21:02:47:c3:a3:39:53:05:80:40:39: aa:5f:0a:37:c8:3e:d9:4f:96:3c:b6:8d:fe:a9:f7: 76:53:de:5c:a4:6e:1b:77:4f:ac:4e:c8:ce:53:e4: 58:62:ed:7e:45:3e:24:53:b9:69:85:cf:37:18:d0: d7:49:4b:84:d9:68:75:70:08:94:b6:3b:f1:4d:a3: 3e:fa:ac:ca:a3:e8:28:d9:7a:2e:23:fe:dd:a5:2b: fc:73:6b:2d:d0:f4:47:5b:5a:13:d5:76:48:aa:de: ca:32:f1:50:2d:33:e7:c6:d6:d5:0d:5c:8f:8b:d1: a8:85:b0:b6:76:66:b0:28:2c:2a:94:c7:78:32:24: 82:63:16:eb:18:04:0f:9e:ae:53:95:65:ec:bd:8b: 51:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E0:DF:3C:34:42:31:27:4A:54:11:72:1B:80:D5:9A:16:0C:B9:0E X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/R-DfPDRCMSdKVBFyG4DVmhYMuQ4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.243.108.0/24 151.244.3.0/24 151.244.16.0/21 151.244.168.0/23 151.244.218.0/24 151.246.48.0/20 151.246.80.0-151.246.103.255 151.246.112.0/21 Signature Algorithm: sha256WithRSAEncryption 94:84:5e:3c:41:de:c4:59:03:a5:da:59:e9:01:d5:f3:8c:ba: 0b:51:55:c9:7c:57:fc:46:fd:90:b6:f0:9c:f8:7f:e6:05:bf: fc:4c:e9:79:76:87:28:68:68:69:e0:6a:7c:71:53:4e:4a:a0: 24:1c:aa:2d:c2:43:a1:b3:27:41:2a:c3:cb:73:8b:ec:45:af: c6:03:f8:70:a5:fa:cb:dd:72:7f:c6:09:f6:44:b3:eb:ae:b1: 01:f3:a0:17:76:28:e9:81:72:c4:56:1b:0e:2c:17:74:70:c2: a3:f2:c3:f0:79:1c:75:79:c5:b7:b2:39:47:95:e3:d1:23:46: 6e:85:27:83:9b:2a:20:9d:34:a5:78:48:70:fc:37:68:ef:6a: 9b:70:61:8b:84:0c:3f:db:df:49:13:b7:f2:8b:92:de:a1:3f: 1d:e8:7a:d5:eb:cf:ca:19:2f:83:d4:64:0e:b1:f1:18:d9:06: 63:fb:2a:08:4e:5e:d1:da:79:36:82:42:34:e0:60:61:13:4a: 7d:f1:6f:0a:71:06:54:62:ab:bc:5e:8e:1f:d7:ce:1b:cb:e5: fe:1e:a5:c4:98:bf:6f:c6:4b:f4:16:a3:0d:b6:13:3b:0b:28: 82:d3:d8:54:dd:ac:b9:c3:5b:22:2b:bb:b3:f7:f8:12:fd:81: 68:cf:8c:53 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZt9y2S/QKhp0UIMpUjCar/HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0N2UwZGYzYzM0NDIzMTI3NGE1NDExNzIxYjgwZDU5YTE2MGNiOTBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtefFGi6qkcrSCDc4v9XXaj1TIxxO /ebit2vfrUW3MwwwlMe2rCjOmr1qvEoZhYLPo+nzVAGi3h5URADOaJUwGQGp+QCs jMLp9Bfn+5VEVolKQ0ulyG+lwxokPSpOMWnh5PQTIR4xVkTP9az7IQJHw6M5UwWA QDmqXwo3yD7ZT5Y8to3+qfd2U95cpG4bd0+sTsjOU+RYYu1+RT4kU7lphc83GNDX SUuE2Wh1cAiUtjvxTaM++qzKo+go2XouI/7dpSv8c2st0PRHW1oT1XZIqt7KMvFQ LTPnxtbVDVyPi9GohbC2dmawKCwqlMd4MiSCYxbrGAQPnq5TlWXsvYtRMwIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFEfg3zw0QjEnSlQRchuA1ZoWDLkOMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvUi1EZlBEUkNNU2RLVkJGeUc0RFZtaFlNdVE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4AwQAl/NsAwQA l/QDAwQDl/QQAwQBl/SoAwQAl/TaAwQEl/YwMAwDBASX9lADBAOX9mADBAOX9nAw DQYJKoZIhvcNAQELBQADggEBAJSEXjxB3sRZA6XaWekB1fOMugtRVcl8V/xG/ZC2 8Jz4f+YFv/xM6Xl2hyhoaGnganxxU05KoCQcqi3CQ6GzJ0Eqw8tzi+xFr8YD+HCl +svdcn/GCfZEs+uusQHzoBd2KOmBcsRWGw4sF3RwwqPyw/B5HHV5xbeyOUeV49Ej Rm6FJ4ObKiCdNKV4SHD8N2jvaptwYYuEDD/b30kTt/KLkt6hPx3oetXrz8oZL4PU ZA6x8RjZBmP7KghOXtHaeTaCQjTgYGETSn3xbwpxBlRiq7xejh/XzhvL5f4epcSY v2/GS/QWow22EzsLKILT2FTdrLnDWyIru7P3+BL9gWjPjFM= -----END CERTIFICATE-----Generated at Sun Jan 11 07:31:14 2026 by rpki-client