This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/rrLI-jNMb-PM7GQzC-fJdvBn4gw.roa File: rrLI-jNMb-PM7GQzC-fJdvBn4gw.roa (raw, json) Hash identifier: AeVZ7YJWfd0bEO0QzZXUIYRcU/Bk7odLxrChghYKPQg= Subject key identifier: AE:B2:C8:FA:33:4C:6F:E3:CC:EC:64:33:0B:E7:C9:76:F0:67:E2:0C Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB54B2D0D947BB7E5853A9F6217E8A Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/rrLI-jNMb-PM7GQzC-fJdvBn4gw.roa Signing time: Fri 02 Jan 2026 08:20:36 +0000 ROA not before: Fri 02 Jan 2026 08:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 147293 IP address blocks: 151.243.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:54:b2:d0:d9:47:bb:7e:58:53:a9:f6:21:7e:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aeb2c8fa334c6fe3ccec64330be7c976f067e20c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:19:8c:9e:13:02:a4:fe:6f:06:48:58:37:a7: bd:7b:34:73:be:97:b7:c3:1b:71:8e:8a:bd:5c:92: a1:fb:b1:75:e5:a5:f5:7d:49:4d:24:ec:3a:9c:37: bc:0d:de:59:38:77:a9:d8:42:a6:b8:76:61:a3:45: c4:c4:49:03:7d:4f:63:db:c3:d8:f5:fd:fd:6a:f8: bd:79:0c:25:d0:55:d7:41:b4:23:79:99:c9:38:b4: 12:7d:ef:a0:76:7d:5d:5f:d9:1f:8d:cf:e8:3e:ae: 17:f3:f2:88:26:62:ae:c8:d4:c4:1f:00:05:86:75: a7:e5:1b:76:f7:e9:f7:3e:38:b4:76:7d:03:b9:df: 51:78:9c:aa:0b:4a:be:78:f1:bf:59:33:a9:30:b1: 00:a1:38:31:cb:86:7c:1d:2b:32:9c:c3:fc:a9:51: c7:32:dd:a8:cd:7c:fc:05:71:dd:91:8f:14:fc:04: 15:74:f0:6c:ad:91:01:42:98:5c:1a:05:8e:d0:ea: a4:72:3b:3f:5d:be:ec:e3:ff:47:9b:04:51:82:19: b1:f1:c3:f7:a6:60:c0:15:9d:52:f7:80:ab:d8:03: 18:41:48:6a:99:1d:41:85:04:da:12:b1:de:15:51: 23:3f:85:e0:5b:9d:a6:75:fd:3d:e3:0d:c3:f3:63: 54:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:B2:C8:FA:33:4C:6F:E3:CC:EC:64:33:0B:E7:C9:76:F0:67:E2:0C X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/rrLI-jNMb-PM7GQzC-fJdvBn4gw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.243.20.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:9c:eb:59:47:20:64:af:02:fb:4a:6d:75:a3:99:57:ef:62: a6:32:5d:dd:af:5b:18:fb:5a:03:3f:f6:72:34:0d:3a:34:67: c6:0f:3f:32:ec:76:cf:d2:1a:ae:39:92:3d:97:39:a0:1f:db: a3:72:fb:ec:e4:89:51:4c:ac:ae:b0:5c:cc:d8:ab:44:a7:8e: 93:33:bf:a2:96:ed:64:eb:b2:5d:e3:fe:6f:c9:5d:df:1b:5e: a0:87:b2:c7:f6:1c:2c:28:10:ec:eb:20:c3:35:94:2b:52:59: 24:81:a2:31:4a:65:ae:4c:4e:a4:67:76:ed:01:d0:09:61:69: 3f:fe:a8:7c:a0:1d:08:71:e2:6e:b7:34:20:27:75:92:9c:10: cc:8c:af:8f:d8:99:7e:37:3e:85:99:26:9a:5a:e9:21:05:9e: d8:b3:81:8b:db:5c:ee:a0:e6:9e:12:ba:32:ca:38:42:17:52: 82:94:ba:15:28:dc:c9:9d:8f:dc:5e:cd:c1:9d:4a:23:54:6a: 9b:70:b8:52:42:59:e7:05:a5:6d:88:1d:cc:d5:26:29:a1:62: 30:99:21:84:e9:a5:b5:eb:57:a6:e4:70:62:8e:01:26:d1:e8: 87:ca:59:7e:fe:91:c0:29:98:0f:bb:8f:76:9c:9c:c1:9f:20: cb:f1:dc:a4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y1Sy0NlHu35YU6n2IX6KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZWIyYzhmYTMzNGM2ZmUzY2NlYzY0MzMwYmU3Yzk3NmYwNjdlMjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxmMnhMCpP5vBkhYN6e9ezRzvpe3 wxtxjoq9XJKh+7F15aX1fUlNJOw6nDe8Dd5ZOHep2EKmuHZho0XExEkDfU9j28PY 9f39avi9eQwl0FXXQbQjeZnJOLQSfe+gdn1dX9kfjc/oPq4X8/KIJmKuyNTEHwAF hnWn5Rt29+n3Pji0dn0Dud9ReJyqC0q+ePG/WTOpMLEAoTgxy4Z8HSsynMP8qVHH Mt2ozXz8BXHdkY8U/AQVdPBsrZEBQphcGgWO0Oqkcjs/Xb7s4/9HmwRRghmx8cP3 pmDAFZ1S94Cr2AMYQUhqmR1BhQTaErHeFVEjP4XgW52mdf094w3D82NUGQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK6yyPozTG/jzOxkMwvnyXbwZ+IMMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvcnJMSS1qTk1iLVBNN0dRekMtZkpkdkJuNGd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/MUMA0G CSqGSIb3DQEBCwUAA4IBAQBanOtZRyBkrwL7Sm11o5lX72KmMl3dr1sY+1oDP/Zy NA06NGfGDz8y7HbP0hquOZI9lzmgH9ujcvvs5IlRTKyusFzM2KtEp46TM7+ilu1k 67Jd4/5vyV3fG16gh7LH9hwsKBDs6yDDNZQrUlkkgaIxSmWuTE6kZ3btAdAJYWk/ /qh8oB0IceJutzQgJ3WSnBDMjK+P2Jl+Nz6FmSaaWukhBZ7Ys4GL21zuoOaeEroy yjhCF1KClLoVKNzJnY/cXs3BnUojVGqbcLhSQlnnBaVtiB3M1SYpoWIwmSGE6aW1 61em5HBijgEm0eiHyll+/pHAKZgPu492nJzBnyDL8dyk -----END CERTIFICATE-----Generated at Sun Jan 18 06:32:04 2026 by rpki-client