This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/h8gP43VAX6Z2voOleykHWssPRYE.roa File: h8gP43VAX6Z2voOleykHWssPRYE.roa (raw, json) Hash identifier: iVZlXNEorP5claoi/R4qR6rMZOF/jdvWQTUt9bdAdyM= Subject key identifier: 87:C8:0F:E3:75:40:5F:A6:76:BE:83:A5:7B:29:07:5A:CB:0F:45:81 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019AED9CDBDC7E490A588ABF759A38AC37EA Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/h8gP43VAX6Z2voOleykHWssPRYE.roa Signing time: Fri 05 Dec 2025 08:24:31 +0000 ROA not before: Fri 05 Dec 2025 08:24:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 40676 IP address blocks: 151.242.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ed:9c:db:dc:7e:49:0a:58:8a:bf:75:9a:38:ac:37:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Dec 5 08:24:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=87c80fe375405fa676be83a57b29075acb0f4581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:ea:74:34:c7:56:f9:a4:1b:31:15:3d:2e:1f: 59:db:6b:08:9d:6e:f2:f4:39:88:d0:d9:22:e5:c3: e9:e7:15:ca:be:0b:31:c0:30:25:1c:24:e3:b4:98: 2c:3c:1e:6c:8d:fd:30:08:35:69:e5:ae:82:ff:21: da:44:e3:37:5e:30:50:c9:f2:ee:17:f8:2b:70:8f: 4f:84:4b:50:73:f8:a5:22:79:18:5a:0d:96:eb:37: 25:b3:f8:6d:cd:27:ac:07:ca:75:2f:13:88:ee:27: 66:a6:28:1f:e6:34:ec:32:61:2c:15:3a:9e:f6:83: c5:d5:7f:3d:ed:13:41:20:17:fc:24:09:98:58:22: 1f:27:b1:bc:54:a4:14:9f:c9:74:64:38:ea:84:58: 11:80:5a:fc:27:5f:20:06:92:17:23:4c:e4:02:35: cd:4e:10:82:1d:e0:d1:b9:dc:1e:f7:04:5f:99:a4: 7d:2e:44:12:fd:2e:4b:8c:8a:ce:2e:42:a4:1f:24: f3:a7:30:7a:6e:5f:55:36:10:a2:4d:47:6c:86:4c: 89:67:58:6a:6f:52:e7:3f:fa:09:43:9a:fd:74:91: cc:8d:ec:31:85:b1:6a:97:51:a4:13:bd:48:b3:b4: a3:cc:2a:ab:67:c9:11:6f:3a:c4:d4:ea:4d:19:a2: 14:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C8:0F:E3:75:40:5F:A6:76:BE:83:A5:7B:29:07:5A:CB:0F:45:81 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/h8gP43VAX6Z2voOleykHWssPRYE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.242.61.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:bb:8e:56:97:49:17:43:ed:b3:0d:3d:a9:cf:45:a1:77:7e: 18:20:3b:de:4a:78:c8:08:b4:ad:b7:3f:d7:1d:9e:51:d3:57: 3e:ff:06:7a:94:17:22:83:8e:e2:60:6e:a3:8a:4c:9c:c4:88: cf:0b:28:97:f4:8a:72:5d:29:a7:ab:8c:77:6c:92:60:d4:ae: f7:e6:40:b5:22:40:c1:b2:e8:dc:ee:f1:47:6c:c5:f7:4a:08: ff:bd:08:98:e0:2e:f0:5d:6c:15:60:e6:e4:4d:7c:b3:34:ca: 9e:d9:14:d3:bb:f3:c3:ec:24:bc:46:32:5e:6e:cc:2a:af:e1: e9:7b:85:5b:16:cd:93:a4:83:e8:f5:a3:6c:b6:a6:a6:d6:cb: 63:c2:65:24:7d:24:45:5c:f2:42:af:c4:8c:0e:f4:a2:1d:3d: 8c:8d:8f:37:ca:a3:6f:08:06:01:61:d9:03:1a:dd:9c:0f:51: 21:3d:ec:fb:af:97:3e:c2:51:e1:34:f1:0f:b0:31:18:d0:f7: 92:dc:aa:51:bd:49:b2:b1:6a:30:7c:bf:2f:bb:2b:8b:fe:42: 10:27:a5:7b:b6:ce:1b:7e:46:4d:6b:fb:29:4d:33:a0:63:84: e0:5c:8f:8c:ae:da:ee:22:c4:ff:56:21:83:b6:55:69:34:36: d6:e7:b8:9e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZrtnNvcfkkKWIq/dZo4rDfqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjUxMjA1MDgyNDMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4N2M4MGZlMzc1NDA1ZmE2NzZiZTgzYTU3YjI5MDc1YWNiMGY0NTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+up0NMdW+aQbMRU9Lh9Z22sInW7y 9DmI0Nki5cPp5xXKvgsxwDAlHCTjtJgsPB5sjf0wCDVp5a6C/yHaROM3XjBQyfLu F/grcI9PhEtQc/ilInkYWg2W6zcls/htzSesB8p1LxOI7idmpigf5jTsMmEsFTqe 9oPF1X897RNBIBf8JAmYWCIfJ7G8VKQUn8l0ZDjqhFgRgFr8J18gBpIXI0zkAjXN ThCCHeDRudwe9wRfmaR9LkQS/S5LjIrOLkKkHyTzpzB6bl9VNhCiTUdshkyJZ1hq b1LnP/oJQ5r9dJHMjewxhbFql1GkE71Is7SjzCqrZ8kRbzrE1OpNGaIU2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIfID+N1QF+mdr6DpXspB1rLD0WBMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvaDhnUDQzVkFYNloydm9PbGV5a0hXc3NQUllFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/I9MA0G CSqGSIb3DQEBCwUAA4IBAQBcu45Wl0kXQ+2zDT2pz0Whd34YIDveSnjICLSttz/X HZ5R01c+/wZ6lBcig47iYG6jikycxIjPCyiX9IpyXSmnq4x3bJJg1K735kC1IkDB sujc7vFHbMX3Sgj/vQiY4C7wXWwVYObkTXyzNMqe2RTTu/PD7CS8RjJebswqr+Hp e4VbFs2TpIPo9aNstqam1stjwmUkfSRFXPJCr8SMDvSiHT2MjY83yqNvCAYBYdkD Gt2cD1EhPez7r5c+wlHhNPEPsDEY0PeS3KpRvUmysWowfL8vuyuL/kIQJ6V7ts4b fkZNa/spTTOgY4TgXI+MrtruIsT/ViGDtlVpNDbW57ie -----END CERTIFICATE-----Generated at Sat Dec 6 08:55:33 2025 by rpki-client