This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/7282b4-7f11-4ee0-abea-e13e5579c5dc/1/g8lpKS3Uw8kC5lMG62drJ46w5hs.roa File: g8lpKS3Uw8kC5lMG62drJ46w5hs.roa (raw, json) Hash identifier: 83NMQZQtm0Gu60VzRcxhZibSAqmZFrS/fqUqV713Mcs= Subject key identifier: 83:C9:69:29:2D:D4:C3:C9:02:E6:53:06:EB:67:6B:27:8E:B0:E6:1B Certificate issuer: /CN=43d5ba0815c9f5193f80989ee893acacc4ba8849 Certificate serial: 019B7BA3C9D274C0877B8E55650F82F7016A Authority key identifier: 43:D5:BA:08:15:C9:F5:19:3F:80:98:9E:E8:93:AC:AC:C4:BA:88:49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9W6CBXJ9Rk_gJie6JOsrMS6iEk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/7282b4-7f11-4ee0-abea-e13e5579c5dc/1/g8lpKS3Uw8kC5lMG62drJ46w5hs.roa Signing time: Thu 01 Jan 2026 22:18:10 +0000 ROA not before: Thu 01 Jan 2026 22:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15830 IP address blocks: 57.250.40.0/24 maxlen: 24 57.250.42.0/24 maxlen: 24 57.250.48.0/24 maxlen: 24 57.250.50.0/24 maxlen: 24 57.250.56.0/24 maxlen: 24 57.250.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/7282b4-7f11-4ee0-abea-e13e5579c5dc/1/Q9W6CBXJ9Rk_gJie6JOsrMS6iEk.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/7282b4-7f11-4ee0-abea-e13e5579c5dc/1/Q9W6CBXJ9Rk_gJie6JOsrMS6iEk.mft rsync://rpki.ripe.net/repository/DEFAULT/Q9W6CBXJ9Rk_gJie6JOsrMS6iEk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:c9:d2:74:c0:87:7b:8e:55:65:0f:82:f7:01:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43d5ba0815c9f5193f80989ee893acacc4ba8849 Validity Not Before: Jan 1 22:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=83c969292dd4c3c902e65306eb676b278eb0e61b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:85:30:87:22:bc:8a:e9:62:8f:c2:4c:41:43: 90:43:37:67:28:31:b0:f7:47:a0:2a:fb:4d:51:de: 03:e3:7e:d9:7a:c0:44:70:e3:60:cd:17:e7:93:3b: 9b:c3:8d:92:55:7d:01:c1:63:76:a2:66:09:a6:cf: e8:8a:b1:8d:bc:fd:a1:ea:5c:7a:64:3b:34:02:81: d4:d7:11:b3:85:9e:0f:e7:96:93:da:22:ac:d9:81: f9:37:55:7e:30:68:6a:a7:eb:7b:66:e9:67:38:05: 68:78:8e:7a:77:79:f2:ae:7d:93:e5:52:62:e7:b5: c0:aa:60:11:d1:77:9a:33:26:42:39:f7:16:33:d8: f4:34:66:78:56:83:dd:49:86:30:50:86:3f:64:aa: bd:2b:c7:98:d7:a1:d8:50:a9:80:9b:e7:c1:2c:f7: 8e:c6:ca:6e:11:39:4c:e9:82:e0:77:36:1b:ae:1d: 51:e4:b0:d3:09:5c:a4:c4:25:2b:c2:09:81:ba:c9: f7:e8:99:23:c2:ea:b9:4c:a9:53:9c:42:d3:3a:90: 55:8b:7f:3f:4b:b9:a7:c0:53:45:86:3c:94:48:93: 62:de:33:bf:72:3d:91:1c:ee:26:f3:0e:b5:4b:a8: a8:17:aa:be:dc:58:8c:9b:c8:a3:4d:12:6a:ab:00: 13:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C9:69:29:2D:D4:C3:C9:02:E6:53:06:EB:67:6B:27:8E:B0:E6:1B X509v3 Authority Key Identifier: keyid:43:D5:BA:08:15:C9:F5:19:3F:80:98:9E:E8:93:AC:AC:C4:BA:88:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9W6CBXJ9Rk_gJie6JOsrMS6iEk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/7282b4-7f11-4ee0-abea-e13e5579c5dc/1/g8lpKS3Uw8kC5lMG62drJ46w5hs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/7282b4-7f11-4ee0-abea-e13e5579c5dc/1/Q9W6CBXJ9Rk_gJie6JOsrMS6iEk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.250.40.0/24 57.250.42.0/24 57.250.48.0/24 57.250.50.0/24 57.250.56.0/24 57.250.58.0/24 Signature Algorithm: sha256WithRSAEncryption 44:c8:96:0d:ec:55:69:04:2a:09:4b:85:29:6c:2c:f9:f2:31: 75:6b:ec:2b:9e:73:a9:05:be:2d:22:48:a0:bc:8e:61:94:ca: 7c:bf:a1:46:e7:17:e2:33:eb:cf:23:8b:8e:de:31:95:42:50: 6a:ab:ff:54:b7:47:d1:03:f6:fc:fb:2d:38:d4:28:26:38:09: 12:ae:e7:82:3f:10:9f:e7:d2:6b:70:42:7b:c9:1d:da:2a:ab: 6d:70:27:be:e5:c5:f5:76:2e:0d:76:61:b1:33:97:53:ac:bc: 4d:21:ba:ce:40:4d:c1:87:08:5c:ba:63:5e:92:14:aa:bf:11: 81:95:23:24:a0:92:13:42:68:b2:3b:21:74:d4:4f:b2:d3:a1: a4:98:74:24:81:8c:db:4c:d6:20:75:07:26:fd:39:ad:d5:48: 46:c6:97:16:72:7f:84:53:4d:79:01:b0:76:e8:f2:87:84:10: 1f:a3:2a:fc:ec:b0:61:eb:87:48:77:4a:e6:70:10:aa:83:7e: a0:1b:f7:bc:3e:62:07:8a:18:55:bb:ac:b2:e4:03:3d:ff:f5: d7:0f:d9:2c:b7:ac:fb:f2:c3:6f:b7:29:3e:de:c0:51:c3:6d: 7e:c4:5d:32:25:cf:44:d6:8b:51:8e:be:14:d2:07:bc:20:a2: 9e:fc:8e:d2 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt7o8nSdMCHe45VZQ+C9wFqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzZDViYTA4MTVjOWY1MTkzZjgwOTg5ZWU4OTNhY2FjYzRi YTg4NDkwHhcNMjYwMTAxMjIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4M2M5NjkyOTJkZDRjM2M5MDJlNjUzMDZlYjY3NmIyNzhlYjBlNjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnIUwhyK8iulij8JMQUOQQzdnKDGw 90egKvtNUd4D437ZesBEcONgzRfnkzubw42SVX0BwWN2omYJps/oirGNvP2h6lx6 ZDs0AoHU1xGzhZ4P55aT2iKs2YH5N1V+MGhqp+t7ZulnOAVoeI56d3nyrn2T5VJi 57XAqmAR0XeaMyZCOfcWM9j0NGZ4VoPdSYYwUIY/ZKq9K8eY16HYUKmAm+fBLPeO xspuETlM6YLgdzYbrh1R5LDTCVykxCUrwgmBusn36Jkjwuq5TKlTnELTOpBVi38/ S7mnwFNFhjyUSJNi3jO/cj2RHO4m8w61S6ioF6q+3FiMm8ijTRJqqwATMwIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFIPJaSkt1MPJAuZTButnayeOsOYbMB8GA1UdIwQY MBaAFEPVuggVyfUZP4CYnuiTrKzEuohJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTlXNkNCWEo5UmtfZ0ppZTZKT3NyTVM2aUVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi83MjgyYjQtN2YxMS00ZWUwLWFiZWEt ZTEzZTU1NzljNWRjLzEvZzhscEtTM1V3OGtDNWxNRzYyZHJKNDZ3NWhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi83MjgyYjQtN2YxMS00ZWUwLWFiZWEtZTEzZTU1NzljNWRj LzEvUTlXNkNCWEo5UmtfZ0ppZTZKT3NyTVM2aUVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAOfooAwQA OfoqAwQAOfowAwQAOfoyAwQAOfo4AwQAOfo6MA0GCSqGSIb3DQEBCwUAA4IBAQBE yJYN7FVpBCoJS4UpbCz58jF1a+wrnnOpBb4tIkigvI5hlMp8v6FG5xfiM+vPI4uO 3jGVQlBqq/9Ut0fRA/b8+y041CgmOAkSrueCPxCf59JrcEJ7yR3aKqttcCe+5cX1 di4NdmGxM5dTrLxNIbrOQE3BhwhcumNekhSqvxGBlSMkoJITQmiyOyF01E+y06Gk mHQkgYzbTNYgdQcm/Tmt1UhGxpcWcn+EU015AbB26PKHhBAfoyr87LBh64dId0rm cBCqg36gG/e8PmIHihhVu6yy5AM9//XXD9kst6z78sNvtyk+3sBRw21+xF0yJc9E 1otRjr4U0ge8IKKe/I7S -----END CERTIFICATE-----Generated at Sat Jan 3 04:53:26 2026 by rpki-client