This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/91b994-2186-4d2b-b065-e86fff93f45d/1/MBwPXOKM_iWsdzlsSXqDs7ZTH3I.roa File: MBwPXOKM_iWsdzlsSXqDs7ZTH3I.roa (raw, json) Hash identifier: 6X+PmBDPGX3JlUhHkCIG/oJUZITMm91IUs89tz0dREE= Subject key identifier: 30:1C:0F:5C:E2:8C:FE:25:AC:77:39:6C:49:7A:83:B3:B6:53:1F:72 Certificate issuer: /CN=16d15539c01121066eafe95be3401dfa44407785 Certificate serial: 019B76EAE3E964B2FA6F3D3D092AB7D27373 Authority key identifier: 16:D1:55:39:C0:11:21:06:6E:AF:E9:5B:E3:40:1D:FA:44:40:77:85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FtFVOcARIQZur-lb40Ad-kRAd4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/91b994-2186-4d2b-b065-e86fff93f45d/1/MBwPXOKM_iWsdzlsSXqDs7ZTH3I.roa Signing time: Thu 01 Jan 2026 00:17:43 +0000 ROA not before: Thu 01 Jan 2026 00:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200428 IP address blocks: 217.20.254.0/24 maxlen: 24 2a13::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/91b994-2186-4d2b-b065-e86fff93f45d/1/FtFVOcARIQZur-lb40Ad-kRAd4U.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/91b994-2186-4d2b-b065-e86fff93f45d/1/FtFVOcARIQZur-lb40Ad-kRAd4U.mft rsync://rpki.ripe.net/repository/DEFAULT/FtFVOcARIQZur-lb40Ad-kRAd4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:e3:e9:64:b2:fa:6f:3d:3d:09:2a:b7:d2:73:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16d15539c01121066eafe95be3401dfa44407785 Validity Not Before: Jan 1 00:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=301c0f5ce28cfe25ac77396c497a83b3b6531f72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:18:42:9e:40:03:43:45:47:96:4d:35:33:73: c5:ca:98:b3:80:07:2d:25:54:d2:76:cb:04:4a:06: e9:86:5d:9c:7e:0a:de:12:da:5f:3a:63:71:4f:43: 46:3f:91:23:5d:4f:c2:b6:d8:14:12:a6:f5:d7:23: 65:25:ae:36:bb:e5:37:3f:7d:c3:5d:f4:dd:ea:a6: 81:97:30:11:d9:f0:36:3d:bf:63:1e:84:ee:35:2a: 6b:8f:75:e1:56:eb:ee:9b:01:f0:63:3c:17:55:fc: 07:f9:fb:d9:c4:48:5d:4a:d2:11:9f:4c:a6:ab:75: d8:5d:57:75:a5:c0:fe:59:d5:04:e6:b7:04:3d:96: 61:30:4e:be:ec:b6:6f:c2:32:b8:53:c3:c8:2c:fb: 1e:e1:40:cc:e1:ca:b4:7c:d6:04:dc:13:c8:d0:97: 40:a1:c7:42:83:40:69:37:ac:88:66:42:3f:73:89: c8:57:ce:15:91:58:0f:4a:ff:0b:18:25:be:fa:8b: 92:a8:5d:86:61:63:4a:ef:d1:8d:5c:48:89:df:b0: 74:54:5b:e9:ee:18:14:13:fa:b8:f6:aa:6b:f3:0d: 3c:fd:e9:08:6d:7b:d9:2e:34:0c:8b:72:af:3c:c1: 27:68:6e:44:f2:2f:72:1c:53:43:90:aa:e9:4b:28: 47:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1C:0F:5C:E2:8C:FE:25:AC:77:39:6C:49:7A:83:B3:B6:53:1F:72 X509v3 Authority Key Identifier: keyid:16:D1:55:39:C0:11:21:06:6E:AF:E9:5B:E3:40:1D:FA:44:40:77:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FtFVOcARIQZur-lb40Ad-kRAd4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/91b994-2186-4d2b-b065-e86fff93f45d/1/MBwPXOKM_iWsdzlsSXqDs7ZTH3I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/91b994-2186-4d2b-b065-e86fff93f45d/1/FtFVOcARIQZur-lb40Ad-kRAd4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.20.254.0/24 IPv6: 2a13::/29 Signature Algorithm: sha256WithRSAEncryption ae:70:87:23:72:bf:ad:ca:a3:8b:be:52:57:5e:90:2f:e9:74: 84:b5:3c:90:c0:7e:3c:73:72:ef:f1:9a:6e:88:8d:0b:f5:27: 04:47:e3:27:d5:79:42:a3:98:4d:9b:69:1d:7e:65:06:27:c0: 8d:ec:87:f8:30:af:86:d0:66:70:12:fe:1a:c8:e0:e8:75:21: c5:7e:b6:2c:7c:a2:1a:a4:84:38:29:ba:bc:27:f2:e1:a5:25: 19:8a:ce:25:fa:59:44:05:4d:6f:0c:d0:a5:10:a4:f6:dc:a0: 16:eb:8d:c2:3d:d7:8d:1c:da:07:cf:5d:18:0f:54:ca:1c:73: c0:5d:f3:05:eb:19:41:fb:53:bc:63:b3:c0:fe:6e:0a:f8:79: 2b:ac:f3:07:c9:64:f4:ad:cb:4f:86:63:82:40:56:52:d1:81: 47:c2:3f:85:c6:56:26:05:cf:0d:83:c9:c6:19:ae:62:93:8e: 2c:da:13:9e:ee:5f:1d:86:8f:ba:a4:49:41:d8:9e:ff:58:13: 63:b7:1e:6c:4b:0b:fa:43:e8:70:ca:f2:93:98:1a:f1:19:7f: 92:81:0a:6c:f2:54:b7:93:cc:57:d0:b8:14:c7:04:fe:39:b7: d6:9a:b8:58:00:33:fa:85:c9:45:67:f2:88:cf:5e:67:28:b3: 94:ce:dd:49 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt26uPpZLL6bz09CSq30nNzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2ZDE1NTM5YzAxMTIxMDY2ZWFmZTk1YmUzNDAxZGZhNDQ0 MDc3ODUwHhcNMjYwMTAxMDAxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMDFjMGY1Y2UyOGNmZTI1YWM3NzM5NmM0OTdhODNiM2I2NTMxZjcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhhCnkADQ0VHlk01M3PFypizgAct JVTSdssESgbphl2cfgreEtpfOmNxT0NGP5EjXU/CttgUEqb11yNlJa42u+U3P33D XfTd6qaBlzAR2fA2Pb9jHoTuNSprj3XhVuvumwHwYzwXVfwH+fvZxEhdStIRn0ym q3XYXVd1pcD+WdUE5rcEPZZhME6+7LZvwjK4U8PILPse4UDM4cq0fNYE3BPI0JdA ocdCg0BpN6yIZkI/c4nIV84VkVgPSv8LGCW++ouSqF2GYWNK79GNXEiJ37B0VFvp 7hgUE/q49qpr8w08/ekIbXvZLjQMi3KvPMEnaG5E8i9yHFNDkKrpSyhH2wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDAcD1zijP4lrHc5bEl6g7O2Ux9yMB8GA1UdIwQY MBaAFBbRVTnAESEGbq/pW+NAHfpEQHeFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRnRGVk9jQVJJUVp1ci1sYjQwQWQta1JBZDRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC85MWI5OTQtMjE4Ni00ZDJiLWIwNjUt ZTg2ZmZmOTNmNDVkLzEvTUJ3UFhPS01faVdzZHpsc1NYcURzN1pUSDNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC85MWI5OTQtMjE4Ni00ZDJiLWIwNjUtZTg2ZmZmOTNmNDVk LzEvRnRGVk9jQVJJUVp1ci1sYjQwQWQta1JBZDRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQA2RT+MA0E AgACMAcDBQMqEwAAMA0GCSqGSIb3DQEBCwUAA4IBAQCucIcjcr+tyqOLvlJXXpAv 6XSEtTyQwH48c3Lv8ZpuiI0L9ScER+Mn1XlCo5hNm2kdfmUGJ8CN7If4MK+G0GZw Ev4ayODodSHFfrYsfKIapIQ4Kbq8J/LhpSUZis4l+llEBU1vDNClEKT23KAW643C PdeNHNoHz10YD1TKHHPAXfMF6xlB+1O8Y7PA/m4K+HkrrPMHyWT0rctPhmOCQFZS 0YFHwj+FxlYmBc8Ng8nGGa5ik44s2hOe7l8dho+6pElB2J7/WBNjtx5sSwv6Q+hw yvKTmBrxGX+SgQps8lS3k8xX0LgUxwT+ObfWmrhYADP6hclFZ/KIz15nKLOUzt1J -----END CERTIFICATE-----Generated at Sun Jan 25 18:20:46 2026 by rpki-client