This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/I2jQfaxLKISTH7B8zgD6nj4vgJI.roa File: I2jQfaxLKISTH7B8zgD6nj4vgJI.roa (raw, json) Hash identifier: U3gCL5v8ToOjVSasN5bBGtq59kQaQUBtiI3CwNxEnn8= Subject key identifier: 23:68:D0:7D:AC:4B:28:84:93:1F:B0:7C:CE:00:FA:9E:3E:2F:80:92 Certificate issuer: /CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b Certificate serial: 019B7AC889BF9BFBAD3E1A63F2461A78502B Authority key identifier: 72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/I2jQfaxLKISTH7B8zgD6nj4vgJI.roa Signing time: Thu 01 Jan 2026 18:18:41 +0000 ROA not before: Thu 01 Jan 2026 18:18:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30848 IP address blocks: 151.248.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/clwMcRHi9X_K-BE6QuVW6ILdXEs.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/clwMcRHi9X_K-BE6QuVW6ILdXEs.mft rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:89:bf:9b:fb:ad:3e:1a:63:f2:46:1a:78:50:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b Validity Not Before: Jan 1 18:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2368d07dac4b2884931fb07cce00fa9e3e2f8092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6c:7b:e6:7e:a3:55:c5:3d:95:c9:5e:e5:1c: 63:c3:06:a3:50:e6:c5:c8:e7:95:96:4f:78:71:ce: 15:bf:d0:ff:4b:09:b9:0d:b6:58:63:13:83:f4:54: 0d:22:41:a2:60:9b:f4:8b:4e:9e:d0:87:45:04:89: b5:92:11:2d:59:6c:16:7e:b4:ae:b6:e9:bd:86:93: 56:0c:6c:de:eb:15:1a:be:52:ea:4e:d7:81:77:9e: d9:44:db:62:7c:c8:db:fa:dc:a5:aa:d0:b2:d8:1e: d8:4c:90:05:2f:63:84:73:e0:3c:84:63:fa:eb:53: 3e:eb:71:fe:b6:68:6c:bf:8f:24:25:4b:2f:66:92: db:6c:52:dc:f8:1b:97:74:fe:af:3d:4e:25:4c:66: 70:cb:c1:9b:a4:df:94:2a:64:ce:3f:75:60:91:6b: dc:e0:3e:11:66:62:79:d1:0a:6a:5e:14:ed:ee:ca: 01:ff:03:5e:30:cf:40:1a:6c:47:e2:b7:f4:d9:26: 51:47:12:a9:35:96:93:e0:56:da:4d:1b:5f:bf:58: d4:88:98:7c:a1:44:2a:0e:90:6f:f8:aa:a8:57:07: 4b:4f:03:39:04:92:34:78:35:01:62:1f:be:f8:4b: 6a:c7:f1:66:86:5c:c8:58:6f:d8:38:92:ca:63:b4: f7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:68:D0:7D:AC:4B:28:84:93:1F:B0:7C:CE:00:FA:9E:3E:2F:80:92 X509v3 Authority Key Identifier: keyid:72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/I2jQfaxLKISTH7B8zgD6nj4vgJI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/clwMcRHi9X_K-BE6QuVW6ILdXEs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.248.13.0/24 Signature Algorithm: sha256WithRSAEncryption 74:78:f6:61:07:ae:f4:53:25:6c:ea:0e:bb:54:c9:c5:85:4e: 5e:07:29:02:74:f7:eb:cd:35:8e:e2:88:17:cd:d1:03:33:d1: e8:f7:c5:ce:28:cc:d4:95:30:91:51:50:ab:6d:7d:da:76:61: 04:e9:9f:d9:b1:d7:69:ed:72:52:e2:41:de:b9:6e:d6:20:c9: b2:f6:36:40:01:2d:e3:30:af:f6:6a:cc:7e:14:22:45:82:6d: d6:c5:ae:96:68:09:a0:dd:35:8e:2c:38:32:11:99:65:87:17: c5:2b:0a:31:56:a6:8a:ae:aa:57:20:5c:84:65:0b:fc:ef:b7: 91:ce:29:e1:f0:63:0a:79:91:6c:62:30:91:f7:6c:fb:dc:5c: b1:a9:89:85:d5:2b:dc:ce:5a:d5:7a:37:02:e6:b3:1c:fa:7d: 71:54:29:5b:0e:35:10:40:6d:35:29:44:0a:3a:d4:fe:e5:04: 6a:3c:a6:2c:b8:a2:c0:36:d2:35:e3:73:1b:de:26:9a:bc:fd: 10:64:25:c3:dc:08:18:46:a4:f8:2e:d0:0e:8d:1d:4d:95:7b: 01:0c:c9:46:da:45:f4:dc:51:e8:05:93:0a:7d:68:93:78:68: 89:11:73:df:4d:af:4a:6a:9b:12:1f:a0:3f:67:17:b2:00:df: 85:1b:ca:c4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yIm/m/utPhpj8kYaeFArMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNWMwYzcxMTFlMmY1N2ZjYWY4MTEzYTQyZTU1NmU4ODJk ZDVjNGIwHhcNMjYwMTAxMTgxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzY4ZDA3ZGFjNGIyODg0OTMxZmIwN2NjZTAwZmE5ZTNlMmY4MDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGx75n6jVcU9lcle5RxjwwajUObF yOeVlk94cc4Vv9D/Swm5DbZYYxOD9FQNIkGiYJv0i06e0IdFBIm1khEtWWwWfrSu tum9hpNWDGze6xUavlLqTteBd57ZRNtifMjb+tylqtCy2B7YTJAFL2OEc+A8hGP6 61M+63H+tmhsv48kJUsvZpLbbFLc+BuXdP6vPU4lTGZwy8GbpN+UKmTOP3VgkWvc 4D4RZmJ50QpqXhTt7soB/wNeMM9AGmxH4rf02SZRRxKpNZaT4FbaTRtfv1jUiJh8 oUQqDpBv+KqoVwdLTwM5BJI0eDUBYh+++Etqx/FmhlzIWG/YOJLKY7T35wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCNo0H2sSyiEkx+wfM4A+p4+L4CSMB8GA1UdIwQY MBaAFHJcDHER4vV/yvgROkLlVuiC3VxLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2x3TWNSSGk5WF9LLUJFNlF1Vlc2SUxkWEVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wYzliNTQtMTMwYS00OTlhLWJmOWYt NzYxMGFhYmFhMjc0LzEvSTJqUWZheExLSVNUSDdCOHpnRDZuajR2Z0pJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8wYzliNTQtMTMwYS00OTlhLWJmOWYtNzYxMGFhYmFhMjc0 LzEvY2x3TWNSSGk5WF9LLUJFNlF1Vlc2SUxkWEVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/gNMA0G CSqGSIb3DQEBCwUAA4IBAQB0ePZhB670UyVs6g67VMnFhU5eBykCdPfrzTWO4ogX zdEDM9Ho98XOKMzUlTCRUVCrbX3admEE6Z/Zsddp7XJS4kHeuW7WIMmy9jZAAS3j MK/2asx+FCJFgm3Wxa6WaAmg3TWOLDgyEZllhxfFKwoxVqaKrqpXIFyEZQv877eR zinh8GMKeZFsYjCR92z73FyxqYmF1SvczlrVejcC5rMc+n1xVClbDjUQQG01KUQK OtT+5QRqPKYsuKLANtI143Mb3iaavP0QZCXD3AgYRqT4LtAOjR1NlXsBDMlG2kX0 3FHoBZMKfWiTeGiJEXPfTa9KapsSH6A/ZxeyAN+FG8rE -----END CERTIFICATE-----Generated at Sun Jan 25 21:28:47 2026 by rpki-client