This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/yvIgfQ8YEWULkwGit8l6lRBQ37U.roa File: yvIgfQ8YEWULkwGit8l6lRBQ37U.roa (raw, json) Hash identifier: tSvxDp4+h3DYAK3GYwRyQg1+FtIRmO72h8rz/GGqKAA= Subject key identifier: CA:F2:20:7D:0F:18:11:65:0B:93:01:A2:B7:C9:7A:95:10:50:DF:B5 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019BBB53A6AC675CED1C848C6896D8FCA427 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/yvIgfQ8YEWULkwGit8l6lRBQ37U.roa Signing time: Wed 14 Jan 2026 07:06:20 +0000 ROA not before: Wed 14 Jan 2026 07:06:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 401322 IP address blocks: 151.240.14.0/24 maxlen: 24 151.242.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:bb:53:a6:ac:67:5c:ed:1c:84:8c:68:96:d8:fc:a4:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 14 07:06:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=caf2207d0f1811650b9301a2b7c97a951050dfb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f0:01:2f:d4:2c:6d:2c:16:56:e5:20:07:da: 1e:c3:9f:58:1f:49:cc:c1:ff:f0:37:be:f4:18:38: 44:76:11:f9:24:46:5e:5d:85:4b:54:ca:34:a8:c3: 30:e2:98:06:e5:5d:83:a7:5d:00:1a:df:88:e7:11: 02:cd:bf:3c:46:57:a3:ca:bd:db:7c:c1:7d:bc:01: 53:67:de:08:87:28:5d:1f:cb:8e:c2:ed:32:64:3b: 69:b9:cf:34:ce:2f:83:e8:9e:0f:54:6d:e2:42:bc: 79:c0:db:59:fe:a8:68:af:39:17:e7:33:a3:e1:b5: 7f:8d:83:52:a9:8a:17:73:15:26:23:68:42:4a:15: 09:c5:db:d2:d3:ec:99:d0:7a:84:92:55:8d:47:27: 1c:3d:ec:76:39:a4:a5:30:3c:52:4f:ac:0d:ce:9c: 81:c8:c3:7b:c1:6d:ce:99:c9:9d:9b:e7:c3:d0:bd: 68:0e:8a:8a:a3:e6:14:d7:05:d1:a7:7e:b8:8c:3f: c6:29:eb:56:c0:12:61:6e:45:3e:0c:71:9e:5c:94: 32:2d:5e:6a:75:20:e5:ce:64:a6:b6:0f:52:d2:e4: f9:95:97:b5:51:7a:a8:f3:04:7e:6f:43:10:33:b7: dc:c6:d4:0a:0e:87:b3:58:7e:05:f4:ec:12:4e:61: 20:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F2:20:7D:0F:18:11:65:0B:93:01:A2:B7:C9:7A:95:10:50:DF:B5 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/yvIgfQ8YEWULkwGit8l6lRBQ37U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.240.14.0/24 151.242.134.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:96:ac:af:23:ba:e6:7c:60:3f:ef:0f:2b:18:4d:b7:71:38: 74:ef:20:96:36:b8:1c:44:e6:91:90:30:24:aa:de:e7:9e:57: f0:1f:42:20:eb:d0:d5:28:9b:ba:63:09:6d:c9:fe:fd:7f:08: 2a:15:6c:b1:f1:c3:b6:5c:7a:6e:be:b3:f3:ea:17:db:b6:ba: 87:c1:d4:3d:ab:9d:59:d2:69:e9:51:18:46:7a:c7:f1:34:6b: ff:c7:fa:bd:d9:84:31:f2:e6:e5:70:9b:5b:93:2b:73:5b:8a: 7a:9e:ba:a0:63:7a:bd:c2:91:fa:23:3b:c2:14:b6:57:a8:cc: 18:52:4d:4e:25:da:b4:68:f2:e0:08:dd:3f:5d:3b:24:5c:47: f8:a1:21:5c:f7:b1:66:20:b1:b7:52:39:19:da:94:bb:d0:f5: 44:33:64:eb:ef:e4:8f:46:84:bd:14:9f:41:da:fe:b6:a1:91: 52:62:2c:3a:b1:84:6a:de:bb:a3:60:a8:a0:f1:1e:0f:22:26: dd:79:74:d5:f5:bd:e4:09:76:5e:a3:df:f0:86:8a:9b:55:2b: 31:53:4f:ce:f2:ff:b1:dc:49:71:28:fa:62:85:ac:92:4f:14: e6:19:32:8a:d3:22:2b:86:b8:97:bb:ea:0a:d2:91:c8:a8:7a: 83:1c:39:33 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZu7U6asZ1ztHISMaJbY/KQnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTE0MDcwNjIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYWYyMjA3ZDBmMTgxMTY1MGI5MzAxYTJiN2M5N2E5NTEwNTBkZmI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8/ABL9QsbSwWVuUgB9oew59YH0nM wf/wN770GDhEdhH5JEZeXYVLVMo0qMMw4pgG5V2Dp10AGt+I5xECzb88Rlejyr3b fMF9vAFTZ94IhyhdH8uOwu0yZDtpuc80zi+D6J4PVG3iQrx5wNtZ/qhorzkX5zOj 4bV/jYNSqYoXcxUmI2hCShUJxdvS0+yZ0HqEklWNRyccPex2OaSlMDxST6wNzpyB yMN7wW3Omcmdm+fD0L1oDoqKo+YU1wXRp364jD/GKetWwBJhbkU+DHGeXJQyLV5q dSDlzmSmtg9S0uT5lZe1UXqo8wR+b0MQM7fcxtQKDoezWH4F9OwSTmEgjQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMryIH0PGBFlC5MBorfJepUQUN+1MB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEveXZJZ2ZROFlFV1VMa3dHaXQ4bDZsUkJRMzdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAl/AOAwQA l/KGMA0GCSqGSIb3DQEBCwUAA4IBAQAflqyvI7rmfGA/7w8rGE23cTh07yCWNrgc ROaRkDAkqt7nnlfwH0Ig69DVKJu6Ywltyf79fwgqFWyx8cO2XHpuvrPz6hfbtrqH wdQ9q51Z0mnpURhGesfxNGv/x/q92YQx8ublcJtbkytzW4p6nrqgY3q9wpH6IzvC FLZXqMwYUk1OJdq0aPLgCN0/XTskXEf4oSFc97FmILG3UjkZ2pS70PVEM2Tr7+SP RoS9FJ9B2v62oZFSYiw6sYRq3rujYKig8R4PIibdeXTV9b3kCXZeo9/whoqbVSsx U0/O8v+x3ElxKPpihaySTxTmGTKK0yIrhriXu+oK0pHIqHqDHDkz -----END CERTIFICATE-----Generated at Sun Jan 18 06:30:52 2026 by rpki-client