This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/8ZTbVFN88ElJOvnxpynWkBywvcU.roa File: 8ZTbVFN88ElJOvnxpynWkBywvcU.roa (raw, json) Hash identifier: Zi7aMmYsFeMT6y4m/OMRvzAw9FlwVPNAsEeEWMyssQs= Subject key identifier: F1:94:DB:54:53:7C:F0:49:49:3A:F9:F1:A7:29:D6:90:1C:B0:BD:C5 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 019B7D5C355ABB70699A7BEF7C10D6208922 Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/8ZTbVFN88ElJOvnxpynWkBywvcU.roa Signing time: Fri 02 Jan 2026 06:19:13 +0000 ROA not before: Fri 02 Jan 2026 06:19:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201427 IP address blocks: 155.133.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:35:5a:bb:70:69:9a:7b:ef:7c:10:d6:20:89:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Jan 2 06:19:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f194db54537cf049493af9f1a729d6901cb0bdc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:8f:40:47:9b:c8:11:04:18:1f:08:80:c5:18: e7:b9:7d:97:46:06:0b:21:50:8a:b8:16:17:1e:92: 22:90:12:fb:d8:d2:74:38:55:21:2d:d6:92:15:28: 9a:6f:08:4c:21:5f:d9:4b:6c:e1:41:a2:44:44:0b: 33:2b:10:ad:fa:cc:f0:fb:8e:0d:9e:b9:57:61:d1: 1e:ca:e1:5c:e0:1d:ba:bd:8f:00:19:5c:8d:95:eb: 8a:92:74:f3:cc:b9:88:29:90:35:59:c0:ac:e4:03: e4:aa:2a:2e:f2:14:3f:03:8c:87:4d:63:90:8e:6f: 26:51:99:3c:b8:1e:d7:1e:f1:c7:94:8f:d8:e1:e3: e9:0f:24:6a:f9:ca:c5:7c:cf:7a:af:65:90:df:49: 9a:2a:9e:70:22:db:b5:4b:85:46:fa:8c:3b:64:78: 2f:85:ed:fa:ab:2d:05:6a:48:7e:69:b1:61:b8:aa: 93:08:b7:49:76:fa:3b:af:58:7a:bd:21:71:b7:91: 7d:0d:25:d1:63:e7:4f:11:3f:df:87:75:a7:86:18: f2:f3:7e:80:ec:23:d0:e6:2b:3c:2b:ea:a4:27:f3: 4b:3a:a6:33:a1:a6:af:46:d8:fd:60:d3:0a:ac:df: 36:28:71:19:b1:0e:31:c4:e5:b6:db:46:f0:6c:b0: b8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:94:DB:54:53:7C:F0:49:49:3A:F9:F1:A7:29:D6:90:1C:B0:BD:C5 X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/8ZTbVFN88ElJOvnxpynWkBywvcU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.133.96.0/21 Signature Algorithm: sha256WithRSAEncryption 1d:e7:a8:c2:f9:b1:cf:4c:69:3b:48:4d:af:1a:a7:ac:9d:db: 56:0a:2a:52:cf:27:a6:d8:6c:69:6f:08:21:2b:af:68:f8:74: b1:c8:ff:b8:ac:0e:b2:2a:78:5a:55:bf:d7:a6:7d:cd:65:74: 2d:79:4a:f9:e6:34:c3:71:75:6a:9d:b9:e8:25:61:8c:fd:e6: a3:47:9a:11:85:40:b1:6b:ae:10:1b:8d:37:d8:e5:dd:98:29: 77:3d:ca:e5:6c:40:bf:fd:bd:a8:90:b2:c0:5f:18:30:93:fd: e4:4a:e4:2c:45:a7:3c:e1:8e:36:12:70:b6:94:b6:fa:e3:a7: b7:ab:0b:ed:39:1b:50:27:31:e1:b8:8c:3a:e3:7e:df:72:1a: 94:f7:f2:1a:37:ca:49:fb:aa:c5:8a:ed:6b:6d:c9:59:34:16: 1a:c1:d0:90:02:e9:6e:ac:1b:88:3f:06:18:40:60:2e:2c:b6: 5a:65:d9:7a:6f:2e:bc:3f:df:50:25:62:e2:a0:b8:bc:6f:74: 65:1f:6f:0b:c3:96:08:f5:bb:12:2c:71:ac:68:03:13:81:87: 6f:0a:b3:4d:fc:96:8c:ff:4b:d0:4a:75:68:10:a1:64:a9:bc: 04:02:56:d3:fd:aa:15:9a:12:b2:af:61:0f:d6:b4:8e:4d:29: 2a:91:bc:03 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XDVau3BpmnvvfBDWIIkiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjYwMTAyMDYxOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMTk0ZGI1NDUzN2NmMDQ5NDkzYWY5ZjFhNzI5ZDY5MDFjYjBiZGM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi49AR5vIEQQYHwiAxRjnuX2XRgYL IVCKuBYXHpIikBL72NJ0OFUhLdaSFSiabwhMIV/ZS2zhQaJERAszKxCt+szw+44N nrlXYdEeyuFc4B26vY8AGVyNleuKknTzzLmIKZA1WcCs5APkqiou8hQ/A4yHTWOQ jm8mUZk8uB7XHvHHlI/Y4ePpDyRq+crFfM96r2WQ30maKp5wItu1S4VG+ow7ZHgv he36qy0Fakh+abFhuKqTCLdJdvo7r1h6vSFxt5F9DSXRY+dPET/fh3Wnhhjy836A 7CPQ5is8K+qkJ/NLOqYzoaavRtj9YNMKrN82KHEZsQ4xxOW220bwbLC4xwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPGU21RTfPBJSTr58acp1pAcsL3FMB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvOFpUYlZGTjg4RWxKT3ZueHB5bldrQnl3dmNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDm4VgMA0G CSqGSIb3DQEBCwUAA4IBAQAd56jC+bHPTGk7SE2vGqesndtWCipSzyem2Gxpbwgh K69o+HSxyP+4rA6yKnhaVb/Xpn3NZXQteUr55jTDcXVqnbnoJWGM/eajR5oRhUCx a64QG4032OXdmCl3PcrlbEC//b2okLLAXxgwk/3kSuQsRac84Y42EnC2lLb646e3 qwvtORtQJzHhuIw6437fchqU9/IaN8pJ+6rFiu1rbclZNBYawdCQAulurBuIPwYY QGAuLLZaZdl6by68P99QJWLioLi8b3RlH28Lw5YI9bsSLHGsaAMTgYdvCrNN/JaM /0vQSnVoEKFkqbwEAlbT/aoVmhKyr2EP1rSOTSkqkbwD -----END CERTIFICATE-----Generated at Sun Jan 25 22:41:49 2026 by rpki-client