This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/MrkTSTOQnAaGRm2DjkE4wDAii6I.roa File: MrkTSTOQnAaGRm2DjkE4wDAii6I.roa (raw, json) Hash identifier: IemK3qnTPE/e8MsNSBvQ7f7MgzptN5jWR7/rlu58qzM= Subject key identifier: 32:B9:13:49:33:90:9C:06:86:46:6D:83:8E:41:38:C0:30:22:8B:A2 Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2 Certificate serial: 019B7EA5276C1966BE9AD23CB42EFEF7BC48 Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/MrkTSTOQnAaGRm2DjkE4wDAii6I.roa Signing time: Fri 02 Jan 2026 12:18:31 +0000 ROA not before: Fri 02 Jan 2026 12:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205550 IP address blocks: 82.99.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.mft rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 03:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:27:6c:19:66:be:9a:d2:3c:b4:2e:fe:f7:bc:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2 Validity Not Before: Jan 2 12:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=32b9134933909c0686466d838e4138c030228ba2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:15:f4:7d:52:fb:86:4e:b1:b0:f1:f0:c7:b6: 83:6c:c2:ad:15:67:35:1f:1f:f8:c9:49:bf:dd:c4: 0c:8b:b1:06:8f:d1:88:67:f9:f4:17:9c:4f:72:b8: 73:58:70:42:4d:20:87:17:7c:9d:94:fe:6f:12:12: 8d:59:c0:27:9f:b2:e3:f5:a0:50:af:f8:be:6f:59: 71:bf:7b:6a:f0:0c:a0:86:b9:9b:41:cc:dc:81:3c: 9f:48:27:25:f7:99:b7:4e:68:ad:e0:13:25:9e:53: 2d:8b:ae:6e:d3:ca:5b:a0:e8:cf:62:81:b3:32:e9: 39:d1:99:6c:bc:3a:69:f8:39:f6:1e:21:94:5d:3c: c1:d2:77:00:6b:da:78:39:e3:b9:da:5a:36:96:dd: 48:d7:73:e9:a4:e2:be:b2:0b:5e:a8:e0:41:51:e4: a8:0e:fd:72:ff:73:1c:16:69:24:d3:74:1d:e2:65: b1:89:0a:12:6c:7d:6c:01:89:16:8b:c9:f1:88:32: e4:be:d1:e1:15:f6:b3:fe:18:13:68:6a:19:a4:b7: 1b:5e:c4:a4:b7:ea:31:dc:c1:d8:d8:4e:79:a2:ad: 57:40:14:95:bc:98:9c:36:d5:6b:49:35:21:f1:ff: 5a:77:90:40:93:b3:09:67:93:79:f0:cb:be:98:81: 49:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B9:13:49:33:90:9C:06:86:46:6D:83:8E:41:38:C0:30:22:8B:A2 X509v3 Authority Key Identifier: keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/MrkTSTOQnAaGRm2DjkE4wDAii6I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.99.224.0/24 Signature Algorithm: sha256WithRSAEncryption 83:8c:3e:59:ab:83:2c:06:42:0a:12:a3:7d:0c:9b:de:ee:e9: 9b:d3:a1:b6:34:45:2e:87:da:3d:c9:4b:2e:55:3c:06:18:3b: e4:38:ba:5e:aa:72:6a:cf:4a:4f:fe:ee:e1:18:0d:b0:d8:aa: 52:51:15:b4:50:9a:88:30:77:2f:ba:86:30:18:64:86:bc:94: d3:53:af:e2:49:b7:9f:01:fa:62:75:e7:ec:0c:9b:36:47:ed: 86:9d:0d:85:5a:8e:57:0a:0a:3d:e9:c9:8e:6f:5b:6d:0e:78: c7:06:b4:81:25:5f:d1:59:28:57:3c:89:02:26:5c:11:29:34: d5:09:0b:01:05:3f:39:38:a6:f7:69:33:4e:d9:23:bb:22:d9: 6a:36:70:95:03:2f:79:ff:ad:41:05:2c:69:f8:98:37:4f:c2: 92:60:4b:bc:79:b5:cc:81:9c:f0:e8:d6:c0:84:b9:39:b4:cc: e8:21:9b:f9:63:0d:3f:50:95:80:52:1c:60:07:52:24:2a:7d: 91:01:3a:53:c7:ef:10:be:55:4f:84:2b:3b:3e:08:e0:ba:06: 29:1e:eb:b2:6b:3e:d0:1c:5c:bd:d0:11:18:b1:33:20:22:da: 53:99:e1:73:04:fd:dd:b2:dc:7b:8c:07:f6:ea:4b:ce:83:bc: 4d:dd:56:85 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pSdsGWa+mtI8tC7+97xIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmODE0YWRjMWQ1MjA5ZTA5OGYwNzhhZGJjODU2YmFkODNi NzQ5YzIwHhcNMjYwMTAyMTIxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMmI5MTM0OTMzOTA5YzA2ODY0NjZkODM4ZTQxMzhjMDMwMjI4YmEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7BX0fVL7hk6xsPHwx7aDbMKtFWc1 Hx/4yUm/3cQMi7EGj9GIZ/n0F5xPcrhzWHBCTSCHF3ydlP5vEhKNWcAnn7Lj9aBQ r/i+b1lxv3tq8AyghrmbQczcgTyfSCcl95m3Tmit4BMlnlMti65u08pboOjPYoGz Muk50ZlsvDpp+Dn2HiGUXTzB0ncAa9p4OeO52lo2lt1I13PppOK+sgteqOBBUeSo Dv1y/3McFmkk03Qd4mWxiQoSbH1sAYkWi8nxiDLkvtHhFfaz/hgTaGoZpLcbXsSk t+ox3MHY2E55oq1XQBSVvJicNtVrSTUh8f9ad5BAk7MJZ5N58Mu+mIFJ3QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDK5E0kzkJwGhkZtg45BOMAwIouiMB8GA1UdIwQY MBaAFC+BStwdUgngmPB4rbyFa62Dt0nCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDRGSzNCMVNDZUNZOEhpdHZJVnJyWU8zU2NJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8xM2UxMmEtMmJhYy00NzUyLTk5N2Qt ZGY4NmI2ZGQ5OTdjLzEvTXJrVFNUT1FuQWFHUm0yRGprRTR3REFpaTZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi8xM2UxMmEtMmJhYy00NzUyLTk5N2QtZGY4NmI2ZGQ5OTdj LzEvTDRGSzNCMVNDZUNZOEhpdHZJVnJyWU8zU2NJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUmPgMA0G CSqGSIb3DQEBCwUAA4IBAQCDjD5Zq4MsBkIKEqN9DJve7umb06G2NEUuh9o9yUsu VTwGGDvkOLpeqnJqz0pP/u7hGA2w2KpSURW0UJqIMHcvuoYwGGSGvJTTU6/iSbef AfpidefsDJs2R+2GnQ2FWo5XCgo96cmOb1ttDnjHBrSBJV/RWShXPIkCJlwRKTTV CQsBBT85OKb3aTNO2SO7ItlqNnCVAy95/61BBSxp+Jg3T8KSYEu8ebXMgZzw6NbA hLk5tMzoIZv5Yw0/UJWAUhxgB1IkKn2RATpTx+8QvlVPhCs7PgjgugYpHuuyaz7Q HFy90BEYsTMgItpTmeFzBP3dstx7jAf26kvOg7xN3VaF -----END CERTIFICATE-----Generated at Mon Jan 26 13:44:43 2026 by rpki-client