This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/rAIFOipTXz-nvBP2tbIbbH5gFD0.roa File: rAIFOipTXz-nvBP2tbIbbH5gFD0.roa (raw, json) Hash identifier: 8BpQBkisfcek80W9GHDYmtVpodiYnaoe+nvCbHL/+jA= Subject key identifier: AC:02:05:3A:2A:53:5F:3F:A7:BC:13:F6:B5:B2:1B:6C:7E:60:14:3D Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB5E8DCFBC9401FEE4C03888F5141A Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/rAIFOipTXz-nvBP2tbIbbH5gFD0.roa Signing time: Fri 02 Jan 2026 08:20:38 +0000 ROA not before: Fri 02 Jan 2026 08:20:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198843 IP address blocks: 151.243.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:5e:8d:cf:bc:94:01:fe:e4:c0:38:88:f5:14:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ac02053a2a535f3fa7bc13f6b5b21b6c7e60143d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:66:87:26:a0:87:c8:10:03:aa:6e:11:0f:12: 08:3a:56:31:18:2a:f9:d9:5f:52:b7:74:87:52:3d: e3:40:ca:b1:64:fa:60:fa:3b:b9:c4:e6:34:3b:2a: 2d:c9:ad:9e:5d:6e:40:9c:a0:fd:a4:b9:4c:e6:ba: 71:96:ff:19:7b:d0:99:56:f8:bd:66:97:31:da:a0: 62:46:ab:fc:33:f7:d9:9e:14:87:97:1a:e0:2c:97: ba:72:ec:84:2b:75:53:ef:cd:2f:3c:da:0b:ac:8d: a9:84:7c:d0:79:1a:90:7a:4c:a4:80:be:60:e8:23: 9a:d0:8b:13:5a:68:fc:fd:5b:a2:40:69:8b:90:5b: 99:fd:dd:11:9f:03:54:1d:15:10:b0:4f:07:72:df: 1e:9d:df:e4:dd:1c:2a:0c:ee:ff:bd:eb:92:ec:36: 48:d5:99:30:22:3e:f8:17:ce:c0:45:c9:74:f4:90: 8d:66:76:99:2a:f1:e0:6c:92:a0:9c:dd:b8:7f:12: 2d:ee:69:36:d6:2d:37:2c:ee:94:bf:10:64:60:0c: cf:96:3d:9a:d6:dd:7b:b8:d2:ef:1a:09:26:da:c4: be:a3:e3:31:26:43:38:60:66:c8:39:c6:ae:2b:f7: 04:b0:3c:7b:07:be:4b:79:4f:1c:21:4a:6d:c9:9f: 92:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:02:05:3A:2A:53:5F:3F:A7:BC:13:F6:B5:B2:1B:6C:7E:60:14:3D X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/rAIFOipTXz-nvBP2tbIbbH5gFD0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.243.125.0/24 Signature Algorithm: sha256WithRSAEncryption 22:9f:a9:74:94:53:db:2d:56:ff:46:f9:95:0f:67:27:f2:d5: 58:1d:fd:1e:f2:8b:a0:13:84:f2:1e:8e:44:7d:91:55:0c:20: 39:6b:d0:58:5f:c9:41:d9:a1:d8:44:ed:7d:0b:2f:62:ac:f3: 70:7f:e6:2d:99:67:1b:cc:34:bd:b7:c3:71:fc:7f:a6:cb:c1: b7:e7:7c:b0:e6:a0:4e:25:e0:75:1b:29:16:e9:6c:8b:8f:83: 9b:f1:cf:a3:a6:58:47:c7:71:b4:07:12:13:6f:b8:04:46:f2: 5f:8e:83:0b:d3:6c:01:08:f1:19:df:3a:7d:71:cd:ef:8c:59: 2e:28:e1:47:4c:8f:dc:0b:98:e0:91:c5:2a:b2:54:8e:b9:75: 89:59:cc:57:bf:ac:cf:3a:dc:4b:49:f8:f3:39:44:d8:76:cb: c7:6e:58:0c:ba:ef:af:bd:0a:24:7f:16:33:b4:41:fe:80:9d: 91:a9:c8:de:50:0d:06:26:bc:38:c4:ba:59:5d:83:f0:9f:33: 13:f5:73:2e:16:11:02:67:86:f9:10:b1:ce:72:12:b1:28:e3: 42:8f:a0:3a:6a:9a:2a:74:08:23:fb:22:02:b5:e8:72:0f:ed: 3e:93:2e:91:24:52:84:2e:a1:05:1b:60:f8:bb:a4:d7:08:3f: 03:e5:1f:af -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y16Nz7yUAf7kwDiI9RQaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYzAyMDUzYTJhNTM1ZjNmYTdiYzEzZjZiNWIyMWI2YzdlNjAxNDNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGaHJqCHyBADqm4RDxIIOlYxGCr5 2V9St3SHUj3jQMqxZPpg+ju5xOY0Oyotya2eXW5AnKD9pLlM5rpxlv8Ze9CZVvi9 Zpcx2qBiRqv8M/fZnhSHlxrgLJe6cuyEK3VT780vPNoLrI2phHzQeRqQekykgL5g 6COa0IsTWmj8/VuiQGmLkFuZ/d0RnwNUHRUQsE8Hct8end/k3RwqDO7/veuS7DZI 1ZkwIj74F87ARcl09JCNZnaZKvHgbJKgnN24fxIt7mk21i03LO6UvxBkYAzPlj2a 1t17uNLvGgkm2sS+o+MxJkM4YGbIOcauK/cEsDx7B75LeU8cIUptyZ+SewIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKwCBToqU18/p7wT9rWyG2x+YBQ9MB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvckFJRk9pcFRYei1udkJQMnRiSWJiSDVnRkQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/N9MA0G CSqGSIb3DQEBCwUAA4IBAQAin6l0lFPbLVb/RvmVD2cn8tVYHf0e8ougE4TyHo5E fZFVDCA5a9BYX8lB2aHYRO19Cy9irPNwf+YtmWcbzDS9t8Nx/H+my8G353yw5qBO JeB1GykW6WyLj4Ob8c+jplhHx3G0BxITb7gERvJfjoML02wBCPEZ3zp9cc3vjFku KOFHTI/cC5jgkcUqslSOuXWJWcxXv6zPOtxLSfjzOUTYdsvHblgMuu+vvQokfxYz tEH+gJ2RqcjeUA0GJrw4xLpZXYPwnzMT9XMuFhECZ4b5ELHOchKxKONCj6A6apoq dAgj+yICtehyD+0+ky6RJFKELqEFG2D4u6TXCD8D5R+v -----END CERTIFICATE-----Generated at Sun Jan 18 06:27:43 2026 by rpki-client