This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ogBTZZsxbVbO6ihL1gAGP6Ugx24.roa File: ogBTZZsxbVbO6ihL1gAGP6Ugx24.roa (raw, json) Hash identifier: u6g2XPVk8qhPdhJA2CXzM2G+ElldY8wQDi9T95M5rk8= Subject key identifier: A2:00:53:65:9B:31:6D:56:CE:EA:28:4B:D6:00:06:3F:A5:20:C7:6E Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B49AB708B62416D8B8451A116D7E46AA9 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ogBTZZsxbVbO6ihL1gAGP6Ugx24.roa Signing time: Tue 23 Dec 2025 05:25:30 +0000 ROA not before: Tue 23 Dec 2025 05:25:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215784 IP address blocks: 151.242.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 10:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:ab:70:8b:62:41:6d:8b:84:51:a1:16:d7:e4:6a:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Dec 23 05:25:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=a20053659b316d56ceea284bd600063fa520c76e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:29:eb:c0:d6:78:54:a8:9b:5a:7e:5a:9b:ca: 60:29:17:2e:80:3b:0e:23:ea:58:6e:73:a0:c7:c1: e6:7d:e9:62:8f:15:b1:c2:37:78:9d:60:e7:02:58: f0:05:c6:ae:9c:f2:1e:97:1f:ac:91:81:27:56:b9: a2:2f:fa:2b:1a:15:cf:aa:cb:d5:a7:c4:e9:81:56: d8:c3:a4:15:fd:ec:ea:e2:17:11:3e:37:df:d5:46: 0f:84:a7:e9:d3:0b:10:96:4c:7a:02:17:14:fd:62: b1:c0:cc:a8:8b:f3:59:a8:3d:03:17:7e:c9:95:4f: 56:43:be:8d:b7:f2:7e:c7:40:15:ec:0b:79:f9:34: d7:ac:80:b9:15:5f:9b:e4:c8:86:0d:78:c2:4b:06: 4a:3e:82:46:ea:78:64:0f:d1:e6:b5:90:c2:ed:81: a0:b4:3b:ed:b4:de:f6:17:25:60:a4:c0:5b:e1:1e: 00:31:67:47:3d:be:16:5b:57:da:a9:3c:4b:43:3b: c3:1a:3e:8f:6d:6d:93:f5:82:19:60:71:8b:00:53: 0d:cb:91:ac:26:cc:bc:c7:7e:3e:31:29:ad:1e:c9: d0:8c:72:68:bd:fb:96:05:16:a2:6a:6a:f8:61:3b: be:43:f4:31:13:e6:b4:cf:a0:f7:ff:a8:32:df:2e: be:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:00:53:65:9B:31:6D:56:CE:EA:28:4B:D6:00:06:3F:A5:20:C7:6E X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ogBTZZsxbVbO6ihL1gAGP6Ugx24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.242.159.0/24 Signature Algorithm: sha256WithRSAEncryption aa:e2:34:fa:bc:8a:64:0d:18:b1:3b:a7:73:c6:2f:7d:14:2f: 4d:e1:9f:6d:bf:2c:b4:0b:1c:4c:c3:30:57:81:aa:54:66:20: ac:cf:b0:69:30:ba:07:c7:54:21:cc:19:63:09:3a:5a:c1:9a: 59:0d:8d:4a:9a:e9:04:b5:56:05:00:02:3b:65:11:2d:d5:12: 50:22:2b:e4:d3:21:60:cd:a7:2e:c5:b5:3a:83:aa:b0:ea:a3: 0e:c8:ed:05:70:49:b8:3c:76:64:f5:18:f3:14:50:a2:fa:b9: 26:1a:04:5f:80:5b:16:fe:1b:77:77:91:79:d0:d9:fc:9f:6b: 6b:f3:29:c3:9f:bc:6e:6a:de:c6:86:e4:5a:3a:10:1c:54:b9: 09:e4:45:09:56:5d:6c:91:50:38:e5:d3:6a:27:06:a4:97:dd: 51:30:64:d0:da:42:1b:e6:98:4b:85:93:50:31:ef:f3:1e:6b: 06:16:30:92:15:f4:b5:62:54:2d:64:3c:25:89:fc:a8:df:29: b0:bf:0c:cb:26:ce:ed:39:cb:20:38:be:16:b1:06:da:2c:6a: 49:41:7c:c6:6d:22:a1:2a:01:41:fb:27:44:3f:5b:13:93:08: b8:78:67:03:14:4d:10:e3:ca:fd:37:f0:e8:1b:1f:e0:88:36: 2b:71:e2:71 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZtJq3CLYkFti4RRoRbX5GqpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjUxMjIzMDUyNTMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjAwNTM2NTliMzE2ZDU2Y2VlYTI4NGJkNjAwMDYzZmE1MjBjNzZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5inrwNZ4VKibWn5am8pgKRcugDsO I+pYbnOgx8HmfelijxWxwjd4nWDnAljwBcaunPIelx+skYEnVrmiL/orGhXPqsvV p8TpgVbYw6QV/ezq4hcRPjff1UYPhKfp0wsQlkx6AhcU/WKxwMyoi/NZqD0DF37J lU9WQ76Nt/J+x0AV7At5+TTXrIC5FV+b5MiGDXjCSwZKPoJG6nhkD9HmtZDC7YGg tDvttN72FyVgpMBb4R4AMWdHPb4WW1faqTxLQzvDGj6PbW2T9YIZYHGLAFMNy5Gs Jsy8x34+MSmtHsnQjHJovfuWBRaiamr4YTu+Q/QxE+a0z6D3/6gy3y6+BQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKIAU2WbMW1WzuooS9YABj+lIMduMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvb2dCVFpac3hiVmJPNmloTDFnQUdQNlVneDI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/KfMA0G CSqGSIb3DQEBCwUAA4IBAQCq4jT6vIpkDRixO6dzxi99FC9N4Z9tvyy0CxxMwzBX gapUZiCsz7BpMLoHx1QhzBljCTpawZpZDY1KmukEtVYFAAI7ZREt1RJQIivk0yFg zacuxbU6g6qw6qMOyO0FcEm4PHZk9RjzFFCi+rkmGgRfgFsW/ht3d5F50Nn8n2tr 8ynDn7xuat7GhuRaOhAcVLkJ5EUJVl1skVA45dNqJwakl91RMGTQ2kIb5phLhZNQ Me/zHmsGFjCSFfS1YlQtZDwlifyo3ymwvwzLJs7tOcsgOL4WsQbaLGpJQXzGbSKh KgFB+ydEP1sTkwi4eGcDFE0Q48r9N/DoGx/giDYrceJx -----END CERTIFICATE-----Generated at Tue Dec 23 17:59:13 2025 by rpki-client