This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/b4566b-bcc8-4df5-ba2f-e15e666ad6c2/1/Mi5D2M_HprHAZ6xFScJJj8v0UdM.roa File: Mi5D2M_HprHAZ6xFScJJj8v0UdM.roa (raw, json) Hash identifier: IpYxb24SlDnBpv9XoJmCrfHXM9lZpB+q4SQWyKfbWes= Subject key identifier: 32:2E:43:D8:CF:C7:A6:B1:C0:67:AC:45:49:C2:49:8F:CB:F4:51:D3 Certificate issuer: /CN=075e993e76f9d7fa404d69a6cb60d4bf98f2ba1e Certificate serial: 019B7F14DD4034BF606568C0CF611B2842DB Authority key identifier: 07:5E:99:3E:76:F9:D7:FA:40:4D:69:A6:CB:60:D4:BF:98:F2:BA:1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B16ZPnb51_pATWmmy2DUv5jyuh4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/b4566b-bcc8-4df5-ba2f-e15e666ad6c2/1/Mi5D2M_HprHAZ6xFScJJj8v0UdM.roa Signing time: Fri 02 Jan 2026 14:20:32 +0000 ROA not before: Fri 02 Jan 2026 14:20:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3303 IP address blocks: 194.11.156.0/22 maxlen: 23 2001:67c:5d8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/b4566b-bcc8-4df5-ba2f-e15e666ad6c2/1/B16ZPnb51_pATWmmy2DUv5jyuh4.crl rsync://rpki.ripe.net/repository/DEFAULT/02/b4566b-bcc8-4df5-ba2f-e15e666ad6c2/1/B16ZPnb51_pATWmmy2DUv5jyuh4.mft rsync://rpki.ripe.net/repository/DEFAULT/B16ZPnb51_pATWmmy2DUv5jyuh4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:dd:40:34:bf:60:65:68:c0:cf:61:1b:28:42:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=075e993e76f9d7fa404d69a6cb60d4bf98f2ba1e Validity Not Before: Jan 2 14:20:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=322e43d8cfc7a6b1c067ac4549c2498fcbf451d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fb:e1:96:dc:dd:4d:97:79:c5:2c:b5:a9:81: e6:9b:4b:58:d8:8f:09:fc:ee:14:4f:f1:8a:02:57: 9b:c6:86:a4:aa:b0:77:69:da:9c:b2:94:18:6e:af: e8:58:e3:79:98:3f:a0:c7:5b:f4:f1:83:9e:ac:55: e9:0e:11:e1:ef:9b:94:4c:ee:43:96:7d:f2:25:11: d5:4b:d9:ac:49:e2:6f:5b:db:2c:3f:ea:fe:38:28: 8b:d5:47:dc:02:d5:0e:ec:12:03:a8:3f:20:8c:ea: 7d:4f:b4:39:1c:cb:9a:b4:49:40:6d:25:8f:ef:9e: 56:ff:a7:bf:e1:4b:cb:70:02:89:37:92:10:bf:0f: 32:d5:ee:95:9c:64:41:e3:b5:fe:bc:99:27:24:bc: e8:18:02:3b:88:94:63:13:dd:f3:9e:be:98:24:8a: af:f7:f8:ea:99:ea:22:30:ce:a8:de:fb:9d:a1:00: cd:7b:1f:f2:71:71:ee:35:2b:c5:6d:c0:38:7d:66: e0:18:66:8c:6e:ee:5f:11:26:8f:37:11:59:5a:3a: 12:62:48:b6:31:68:26:3e:3f:2c:ed:64:94:9b:b1: b6:19:8c:f1:10:57:15:1e:1a:30:18:e6:49:91:7c: fc:5c:ec:bb:ba:a5:9f:d7:62:29:aa:c5:07:64:4b: 69:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:2E:43:D8:CF:C7:A6:B1:C0:67:AC:45:49:C2:49:8F:CB:F4:51:D3 X509v3 Authority Key Identifier: keyid:07:5E:99:3E:76:F9:D7:FA:40:4D:69:A6:CB:60:D4:BF:98:F2:BA:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B16ZPnb51_pATWmmy2DUv5jyuh4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b4566b-bcc8-4df5-ba2f-e15e666ad6c2/1/Mi5D2M_HprHAZ6xFScJJj8v0UdM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b4566b-bcc8-4df5-ba2f-e15e666ad6c2/1/B16ZPnb51_pATWmmy2DUv5jyuh4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.11.156.0/22 IPv6: 2001:67c:5d8::/48 Signature Algorithm: sha256WithRSAEncryption 97:a0:6a:6e:cb:95:2b:dc:78:61:92:99:9a:8d:b6:bf:22:9d: c9:d4:7b:50:19:90:a1:49:b5:ea:56:a0:79:bb:02:bf:e2:85: 00:dc:cb:ad:d8:46:6d:cf:f5:00:bd:29:39:2e:f2:ae:88:26: eb:73:79:22:f1:d8:26:d2:f4:82:e3:4f:01:2f:87:2b:b7:e0: 91:d7:e7:1a:90:3f:8f:93:03:54:f6:8a:33:94:50:ca:83:b8: 4f:aa:07:8f:9f:17:6b:8b:71:7c:9b:9d:1e:ec:58:e9:4e:7a: 0b:7e:17:eb:b4:f5:a4:7e:ee:09:b5:87:19:60:85:24:e7:59: 0b:cd:eb:c3:a1:ac:66:1d:4e:da:14:c3:a6:39:9e:2d:4c:ee: ab:9e:5f:df:e4:91:eb:a8:f0:1e:84:95:47:8f:59:3d:fe:b0: 54:d4:ef:6d:27:58:6d:8e:52:b0:c4:eb:89:71:f5:6d:e2:37: 1f:c9:c6:5d:45:ae:e6:a3:45:00:3d:7c:76:92:1b:40:6c:9b: a3:f0:d3:c6:b6:6e:08:98:27:0f:3c:7a:f6:07:55:c6:a2:51: cc:ee:1e:be:b8:0d:08:44:8f:5e:6b:07:5a:ef:ed:2e:31:31: 02:c8:83:bd:37:74:0b:62:7a:e5:07:a4:19:dd:43:ae:00:ba: b7:28:8e:3a -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/FN1ANL9gZWjAz2EbKELbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3NWU5OTNlNzZmOWQ3ZmE0MDRkNjlhNmNiNjBkNGJmOThm MmJhMWUwHhcNMjYwMTAyMTQyMDMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMjJlNDNkOGNmYzdhNmIxYzA2N2FjNDU0OWMyNDk4ZmNiZjQ1MWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvvhltzdTZd5xSy1qYHmm0tY2I8J /O4UT/GKAlebxoakqrB3adqcspQYbq/oWON5mD+gx1v08YOerFXpDhHh75uUTO5D ln3yJRHVS9msSeJvW9ssP+r+OCiL1UfcAtUO7BIDqD8gjOp9T7Q5HMuatElAbSWP 755W/6e/4UvLcAKJN5IQvw8y1e6VnGRB47X+vJknJLzoGAI7iJRjE93znr6YJIqv 9/jqmeoiMM6o3vudoQDNex/ycXHuNSvFbcA4fWbgGGaMbu5fESaPNxFZWjoSYki2 MWgmPj8s7WSUm7G2GYzxEFcVHhowGOZJkXz8XOy7uqWf12IpqsUHZEtpzQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFDIuQ9jPx6axwGesRUnCSY/L9FHTMB8GA1UdIwQY MBaAFAdemT52+df6QE1ppstg1L+Y8roeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQjE2WlBuYjUxX3BBVFdtbXkyRFV2NWp5dWg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iNDU2NmItYmNjOC00ZGY1LWJhMmYt ZTE1ZTY2NmFkNmMyLzEvTWk1RDJNX0hwckhBWjZ4RlNjSkpqOHYwVWRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9iNDU2NmItYmNjOC00ZGY1LWJhMmYtZTE1ZTY2NmFkNmMy LzEvQjE2WlBuYjUxX3BBVFdtbXkyRFV2NWp5dWg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCwgucMA8E AgACMAkDBwAgAQZ8BdgwDQYJKoZIhvcNAQELBQADggEBAJegam7LlSvceGGSmZqN tr8incnUe1AZkKFJtepWoHm7Ar/ihQDcy63YRm3P9QC9KTku8q6IJutzeSLx2CbS 9ILjTwEvhyu34JHX5xqQP4+TA1T2ijOUUMqDuE+qB4+fF2uLcXybnR7sWOlOegt+ F+u09aR+7gm1hxlghSTnWQvN68OhrGYdTtoUw6Y5ni1M7queX9/kkeuo8B6ElUeP WT3+sFTU720nWG2OUrDE64lx9W3iNx/Jxl1FruajRQA9fHaSG0Bsm6Pw08a2bgiY Jw88evYHVcaiUczuHr64DQhEj15rB1rv7S4xMQLIg703dAtieuUHpBndQ64Aurco jjo= -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:42 2026 by rpki-client