This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/zMUSC5kQmP_Yu7WMk5P3_RSb8ec.roa File: zMUSC5kQmP_Yu7WMk5P3_RSb8ec.roa (raw, json) Hash identifier: aP6fgJhopUKUXthaDrOl6nPTwl1A4fURanPj1kuGJEM= Subject key identifier: CC:C5:12:0B:99:10:98:FF:D8:BB:B5:8C:93:93:F7:FD:14:9B:F1:E7 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCBB3AD5C65EFDCF7C265899E17C484 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/zMUSC5kQmP_Yu7WMk5P3_RSb8ec.roa Signing time: Fri 02 Jan 2026 08:21:00 +0000 ROA not before: Fri 02 Jan 2026 08:21:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 400810 IP address blocks: 151.243.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:b3:ad:5c:65:ef:dc:f7:c2:65:89:9e:17:c4:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:21:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ccc5120b991098ffd8bbb58c9393f7fd149bf1e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a6:03:56:46:bf:f9:d6:72:69:0b:03:45:26: 3a:8e:73:1a:42:06:08:1b:45:80:26:26:97:ad:45: d3:bf:22:30:0a:75:78:8c:76:66:ad:af:3e:36:24: 9a:69:e5:90:e6:dd:a3:f5:93:2f:14:0f:95:d5:a9: 63:4b:e7:91:0d:27:0f:d5:cb:db:07:6c:31:47:d7: ed:94:7b:74:b4:c4:91:51:fa:4d:91:5b:31:a4:96: 73:18:6e:20:13:cd:a4:0b:61:0a:dd:01:da:98:d6: 35:ad:f2:cc:b0:1d:93:f1:4e:06:7a:6b:5c:18:20: 73:6c:c4:13:c0:5d:bc:35:e4:dc:9d:a2:0a:03:59: 6f:52:d4:87:bc:09:bb:c9:0f:83:b0:28:05:c0:e7: aa:10:80:99:59:85:1a:99:27:f5:1f:69:b8:c7:e5: 16:8a:ba:44:12:04:80:cb:90:2b:e1:b4:cd:13:37: 74:7e:f9:2a:8a:77:08:3f:5a:f3:4f:26:64:9c:41: 1c:2b:7c:43:0f:7d:5f:e6:fd:ac:d7:62:47:d0:9d: 3b:4d:c6:04:d5:c3:74:39:44:78:ff:86:dd:07:09: f3:22:75:de:54:a4:b5:22:1d:b5:1c:cc:45:d5:8a: 9d:2a:25:71:1a:7c:d8:16:02:f9:1d:86:74:0a:7e: 05:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C5:12:0B:99:10:98:FF:D8:BB:B5:8C:93:93:F7:FD:14:9B:F1:E7 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/zMUSC5kQmP_Yu7WMk5P3_RSb8ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.243.143.0/24 Signature Algorithm: sha256WithRSAEncryption 62:22:46:07:70:4e:3d:70:2a:30:e3:29:ef:26:d1:da:7e:43: cb:da:9c:a8:66:61:81:05:8c:af:e7:37:92:6f:05:0c:dd:74: 7b:a7:83:ef:d4:50:47:58:9b:66:e2:0a:db:4b:68:8e:48:89: a7:0c:ac:ca:ff:bb:be:18:68:76:46:3d:00:27:1b:19:70:5b: b8:71:11:83:89:24:3f:40:82:d3:65:78:ec:c5:ce:2f:f6:33: 4d:ea:78:c8:0c:cc:97:f4:ab:7f:75:bb:47:fd:39:4e:87:1a: 31:a9:a8:21:4a:f3:d8:7e:d3:ce:62:3f:64:1b:0f:c0:35:61: 16:1f:ea:af:00:b8:0c:db:10:fb:e3:39:af:ae:0d:42:49:d4: cf:c9:75:aa:6b:f5:e2:ac:4b:76:8e:d3:4c:ea:71:b0:07:de: 2c:47:4c:9f:b9:f9:47:b7:ae:4f:6b:f3:80:0c:4e:04:d1:aa: b3:f2:22:d9:d3:8e:54:76:22:8a:8e:66:96:62:c2:5f:eb:f5: 45:f5:0c:da:7d:ca:62:87:0e:29:00:70:85:ec:58:b5:06:92: 55:c1:e5:82:3c:83:8f:18:13:ee:6d:ca:be:48:df:8a:1e:0c: b6:df:dd:fc:84:fc:ec:0f:5a:6e:56:b9:e7:b6:ae:75:c1:64: 3f:1e:39:22 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y7OtXGXv3PfCZYmeF8SEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjY2M1MTIwYjk5MTA5OGZmZDhiYmI1OGM5MzkzZjdmZDE0OWJmMWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwqYDVka/+dZyaQsDRSY6jnMaQgYI G0WAJiaXrUXTvyIwCnV4jHZmra8+NiSaaeWQ5t2j9ZMvFA+V1aljS+eRDScP1cvb B2wxR9ftlHt0tMSRUfpNkVsxpJZzGG4gE82kC2EK3QHamNY1rfLMsB2T8U4Gemtc GCBzbMQTwF28NeTcnaIKA1lvUtSHvAm7yQ+DsCgFwOeqEICZWYUamSf1H2m4x+UW irpEEgSAy5Ar4bTNEzd0fvkqincIP1rzTyZknEEcK3xDD31f5v2s12JH0J07TcYE 1cN0OUR4/4bdBwnzInXeVKS1Ih21HMxF1YqdKiVxGnzYFgL5HYZ0Cn4FFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMzFEguZEJj/2Lu1jJOT9/0Um/HnMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvek1VU0M1a1FtUF9ZdTdXTWs1UDNfUlNiOGVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/OPMA0G CSqGSIb3DQEBCwUAA4IBAQBiIkYHcE49cCow4ynvJtHafkPL2pyoZmGBBYyv5zeS bwUM3XR7p4Pv1FBHWJtm4grbS2iOSImnDKzK/7u+GGh2Rj0AJxsZcFu4cRGDiSQ/ QILTZXjsxc4v9jNN6njIDMyX9Kt/dbtH/TlOhxoxqaghSvPYftPOYj9kGw/ANWEW H+qvALgM2xD74zmvrg1CSdTPyXWqa/XirEt2jtNM6nGwB94sR0yfuflHt65Pa/OA DE4E0aqz8iLZ045UdiKKjmaWYsJf6/VF9Qzafcpihw4pAHCF7Fi1BpJVweWCPIOP GBPubcq+SN+KHgy23938hPzsD1puVrnntq51wWQ/Hjki -----END CERTIFICATE-----Generated at Sun Jan 18 06:27:20 2026 by rpki-client