This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/hRanoEmGG51uz-50oc4AyGottqI.roa File: hRanoEmGG51uz-50oc4AyGottqI.roa (raw, json) Hash identifier: pIsxcal+5xwAaW88O9SN1Gv7CjZt65XAJmYDy4UVpxk= Subject key identifier: 85:16:A7:A0:49:86:1B:9D:6E:CF:EE:74:A1:CE:00:C8:6A:2D:B6:A2 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB5851F305BE07D90258F78A06AAB6 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/hRanoEmGG51uz-50oc4AyGottqI.roa Signing time: Fri 02 Jan 2026 08:20:36 +0000 ROA not before: Fri 02 Jan 2026 08:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 152179 IP address blocks: 151.240.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:58:51:f3:05:be:07:d9:02:58:f7:8a:06:aa:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8516a7a049861b9d6ecfee74a1ce00c86a2db6a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e3:0d:29:19:9a:b1:fe:5b:cf:f1:55:3d:a5: 01:5c:ca:e8:31:15:ec:b1:ff:24:9b:2c:b0:ce:69: 16:93:62:8c:f3:c4:2a:d0:80:5b:1a:1d:ad:78:68: 87:ca:47:9c:6b:f9:d3:66:ec:d8:74:81:f7:42:38: 96:35:ab:f4:0b:23:ef:de:d8:dd:34:9a:21:e8:db: 72:8d:ff:31:e3:3b:2d:7c:3a:58:7d:5c:8e:04:a6: ec:16:a1:31:db:25:64:ea:67:a5:2f:46:a6:f9:42: 15:aa:ae:0c:20:23:e0:bd:96:f0:1f:41:9f:b7:09: 11:fc:ce:02:94:43:ab:08:8d:8a:ce:e0:92:a2:8e: 64:6d:5b:fe:02:e0:87:03:25:dc:9a:89:7d:55:58: 75:b8:29:b2:30:f8:d4:e7:ed:57:4d:0f:fe:52:07: 8f:df:69:87:4c:9c:09:af:e4:6b:d6:8b:6e:77:e5: b6:37:5c:b3:10:76:35:a2:93:7f:b1:e8:76:be:c8: 1d:a9:f3:df:5d:9f:9b:e0:dc:77:8c:b8:41:42:bd: 9c:ac:b6:c0:cc:71:08:a6:78:b8:3b:67:38:1d:93: 41:2a:41:9d:bf:9b:16:b7:32:bf:fb:ee:83:9f:35: eb:4a:14:f7:89:03:59:28:8a:d4:4b:f7:f0:f3:20: c4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:16:A7:A0:49:86:1B:9D:6E:CF:EE:74:A1:CE:00:C8:6A:2D:B6:A2 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/hRanoEmGG51uz-50oc4AyGottqI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.240.126.0/23 Signature Algorithm: sha256WithRSAEncryption 32:d0:b1:f7:c0:62:5c:10:27:90:97:7b:c0:4a:de:59:1b:e8: 1a:ba:64:46:33:ff:3f:a3:aa:6a:61:5a:89:f1:f5:3f:07:2f: d1:c2:25:35:91:bb:72:f3:b5:81:75:6b:c8:4b:92:cd:ab:14: 2e:5d:36:11:e8:33:3d:41:2c:be:31:0b:c7:3a:a8:f2:a3:5f: bd:1c:13:64:ac:0b:2b:a5:10:8e:1d:dc:a4:d6:71:29:d5:bf: 1b:b3:63:04:2b:07:b5:0c:b3:92:8e:b3:b0:01:88:2b:01:07: 9d:25:0e:bc:bd:d3:a5:33:91:51:7f:e7:58:77:84:48:06:91: 36:df:7b:dd:31:2d:23:ec:44:96:1a:85:06:14:77:05:9c:3a: c7:a4:03:93:21:5e:28:47:34:ee:83:a5:06:fb:7c:47:89:6d: d0:33:36:dc:2c:72:28:dd:11:87:a4:18:02:ff:1e:3c:28:53: 53:ea:c0:db:93:a1:f7:87:1a:b9:3c:3e:a9:b2:21:bc:bf:b3: 2b:31:b1:4b:eb:bf:23:45:b3:0c:b9:fc:1f:fb:bd:f8:66:9f: 96:89:13:25:6d:da:34:96:68:f1:05:5c:65:3d:1c:5b:6f:36: 71:4e:61:cb:d9:05:1d:5b:75:6f:40:dd:e6:bf:b9:aa:b3:f1: 44:1c:4a:48 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y1hR8wW+B9kCWPeKBqq2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTE2YTdhMDQ5ODYxYjlkNmVjZmVlNzRhMWNlMDBjODZhMmRiNmEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOMNKRmasf5bz/FVPaUBXMroMRXs sf8kmyywzmkWk2KM88Qq0IBbGh2teGiHykeca/nTZuzYdIH3QjiWNav0CyPv3tjd NJoh6Ntyjf8x4zstfDpYfVyOBKbsFqEx2yVk6melL0am+UIVqq4MICPgvZbwH0Gf twkR/M4ClEOrCI2KzuCSoo5kbVv+AuCHAyXcmol9VVh1uCmyMPjU5+1XTQ/+UgeP 32mHTJwJr+Rr1otud+W2N1yzEHY1opN/seh2vsgdqfPfXZ+b4Nx3jLhBQr2crLbA zHEIpni4O2c4HZNBKkGdv5sWtzK/++6DnzXrShT3iQNZKIrUS/fw8yDExwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIUWp6BJhhudbs/udKHOAMhqLbaiMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvaFJhbm9FbUdHNTF1ei01MG9jNEF5R290dHFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBl/B+MA0G CSqGSIb3DQEBCwUAA4IBAQAy0LH3wGJcECeQl3vASt5ZG+gaumRGM/8/o6pqYVqJ 8fU/By/RwiU1kbty87WBdWvIS5LNqxQuXTYR6DM9QSy+MQvHOqjyo1+9HBNkrAsr pRCOHdyk1nEp1b8bs2MEKwe1DLOSjrOwAYgrAQedJQ68vdOlM5FRf+dYd4RIBpE2 33vdMS0j7ESWGoUGFHcFnDrHpAOTIV4oRzTug6UG+3xHiW3QMzbcLHIo3RGHpBgC /x48KFNT6sDbk6H3hxq5PD6psiG8v7MrMbFL678jRbMMufwf+734Zp+WiRMlbdo0 lmjxBVxlPRxbbzZxTmHL2QUdW3VvQN3mv7mqs/FEHEpI -----END CERTIFICATE-----Generated at Sun Jan 18 06:31:38 2026 by rpki-client