This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/sfXQX4jlBP3dUNmiUExgCXT2mlE.roa File: sfXQX4jlBP3dUNmiUExgCXT2mlE.roa (raw, json) Hash identifier: 4ONxtjJsuzcPkkmLDZrd2739CjgGGKewId347ID1Qf8= Subject key identifier: B1:F5:D0:5F:88:E5:04:FD:DD:50:D9:A2:50:4C:60:09:74:F6:9A:51 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB1C1C8249257C8B19459A05D9F9F3 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/sfXQX4jlBP3dUNmiUExgCXT2mlE.roa Signing time: Fri 02 Jan 2026 08:20:21 +0000 ROA not before: Fri 02 Jan 2026 08:20:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19318 IP address blocks: 151.241.108.0/24 maxlen: 24 151.242.41.0/24 maxlen: 24 151.242.58.0/24 maxlen: 24 151.242.122.0/24 maxlen: 24 151.243.52.0/23 maxlen: 24 151.243.254.0/24 maxlen: 24 151.244.136.0/22 maxlen: 22 151.244.160.0/22 maxlen: 22 151.244.170.0/24 maxlen: 24 151.244.172.0/22 maxlen: 22 151.244.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:1c:1c:82:49:25:7c:8b:19:45:9a:05:d9:f9:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b1f5d05f88e504fddd50d9a2504c600974f69a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e3:b9:9c:59:07:73:fd:7a:90:d2:fb:5d:b5: da:c8:75:f1:94:7a:57:67:55:1a:80:5c:93:9c:45: 6a:8e:25:3f:a5:3d:39:7f:41:04:b7:05:4d:c2:01: 15:c8:8c:1e:a7:0b:66:bb:ab:b1:b9:ef:5d:f3:01: 65:d7:58:ca:4a:b3:f6:d5:7f:85:a7:9f:68:c2:27: 3d:fd:c7:b5:a2:ef:07:3d:3a:3e:f2:f5:d7:7b:8d: fa:24:77:6b:e9:b3:06:3c:ec:19:97:40:34:8f:14: e9:e1:8b:a0:94:07:e7:17:9a:78:e0:4f:d5:e4:ae: a4:af:6c:f6:b1:72:9a:30:b0:f8:f1:f7:38:61:7e: 27:f5:0f:8d:c4:a4:54:46:7e:85:1b:3d:64:e8:c4: c4:e6:4f:5e:bd:4a:a7:28:e1:83:38:37:b9:e4:e9: 44:aa:29:81:12:4b:c1:61:1b:44:92:88:24:2a:e1: 91:e8:2e:ed:91:85:a9:5b:92:1f:87:31:55:98:81: 12:1e:ff:74:ec:b6:15:8a:ce:3a:65:a1:9a:ba:a1: 55:2e:22:a6:a0:93:89:16:91:62:a4:29:77:58:39: f5:50:a8:ed:ec:08:6b:1a:2a:e5:51:04:a6:57:b1: f8:b1:22:a8:ef:78:25:39:f9:1e:d6:c5:69:a4:87: f9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F5:D0:5F:88:E5:04:FD:DD:50:D9:A2:50:4C:60:09:74:F6:9A:51 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/sfXQX4jlBP3dUNmiUExgCXT2mlE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.241.108.0/24 151.242.41.0/24 151.242.58.0/24 151.242.122.0/24 151.243.52.0/23 151.243.254.0/24 151.244.136.0/22 151.244.160.0/22 151.244.170.0/24 151.244.172.0-151.244.179.255 Signature Algorithm: sha256WithRSAEncryption a6:70:77:8e:ea:de:cc:cc:bc:b4:77:4f:91:f4:ee:91:21:5b: 01:77:2f:db:2b:8a:56:49:71:e5:4d:24:4a:45:cf:dd:b0:0e: ad:7c:17:6e:a3:9f:03:25:46:01:7b:ef:9b:51:93:aa:43:93: 99:83:41:22:40:2a:57:60:27:8a:b4:99:f4:8b:98:67:d1:0d: e6:06:22:11:6f:00:64:f8:cf:e1:fe:76:79:c3:86:57:de:a8: 29:c9:19:82:d4:c8:f4:ff:74:a3:23:ca:6d:a7:71:17:00:b4: b4:42:04:02:89:2b:b7:a5:01:8e:08:75:45:01:c1:71:95:c1: 2b:9e:3d:2a:40:fa:2a:2c:32:e3:e6:bf:73:4e:09:2c:6b:10: 5a:40:dd:3f:a1:e6:ae:7c:f3:5d:95:02:9f:4a:ee:25:88:0b: 58:52:ef:b0:b1:37:84:a9:6d:ef:34:d3:8a:d8:18:02:aa:73: c3:fc:81:7c:6f:54:26:91:71:08:86:75:b3:d2:57:0b:7c:06: 3e:04:dc:2e:82:d3:cd:ac:08:c8:0d:e2:b2:e5:9e:43:9e:39: c9:37:1d:2c:fd:03:f5:39:b9:ec:b4:0b:03:80:93:c2:b3:43: dd:18:5c:04:fa:65:4d:a5:7d:71:52:a3:ed:48:c1:35:f2:0f: e9:d0:2e:3f -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgISAZt9yxwcgkklfIsZRZoF2fnzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMWY1ZDA1Zjg4ZTUwNGZkZGQ1MGQ5YTI1MDRjNjAwOTc0ZjY5YTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7eO5nFkHc/16kNL7XbXayHXxlHpX Z1UagFyTnEVqjiU/pT05f0EEtwVNwgEVyIwepwtmu6uxue9d8wFl11jKSrP21X+F p59owic9/ce1ou8HPTo+8vXXe436JHdr6bMGPOwZl0A0jxTp4YuglAfnF5p44E/V 5K6kr2z2sXKaMLD48fc4YX4n9Q+NxKRURn6FGz1k6MTE5k9evUqnKOGDODe55OlE qimBEkvBYRtEkogkKuGR6C7tkYWpW5IfhzFVmIESHv907LYVis46ZaGauqFVLiKm oJOJFpFipCl3WDn1UKjt7AhrGirlUQSmV7H4sSKo73glOfke1sVppIf56QIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFLH10F+I5QT93VDZolBMYAl09ppRMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvc2ZYUVg0amxCUDNkVU5taVVFeGdDWFQybWxFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDBKBAIAATBEAwQAl/FsAwQA l/IpAwQAl/I6AwQAl/J6AwQBl/M0AwQAl/P+AwQCl/SIAwQCl/SgAwQAl/SqMAwD BAKX9KwDBAKX9LAwDQYJKoZIhvcNAQELBQADggEBAKZwd47q3szMvLR3T5H07pEh WwF3L9srilZJceVNJEpFz92wDq18F26jnwMlRgF775tRk6pDk5mDQSJAKldgJ4q0 mfSLmGfRDeYGIhFvAGT4z+H+dnnDhlfeqCnJGYLUyPT/dKMjym2ncRcAtLRCBAKJ K7elAY4IdUUBwXGVwSuePSpA+iosMuPmv3NOCSxrEFpA3T+h5q58812VAp9K7iWI C1hS77CxN4Spbe8004rYGAKqc8P8gXxvVCaRcQiGdbPSVwt8Bj4E3C6C082sCMgN 4rLlnkOeOck3HSz9A/U5uey0CwOAk8KzQ90YXAT6ZU2lfXFSo+1IwTXyD+nQLj8= -----END CERTIFICATE-----Generated at Sun Jan 18 06:27:44 2026 by rpki-client