This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/0zd4nb5fhm2xTq0WOAi4Xp6bvJc.roa File: 0zd4nb5fhm2xTq0WOAi4Xp6bvJc.roa (raw, json) Hash identifier: uMgyt3DoicP5DNjGaZ/5LrHhGzYKFxFylJxozZr11JQ= Subject key identifier: D3:37:78:9D:BE:5F:86:6D:B1:4E:AD:16:38:08:B8:5E:9E:9B:BC:97 Certificate issuer: /CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3 Certificate serial: 019B7C133DF9A2DD72C142C7448E316ED46B Authority key identifier: 30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/0zd4nb5fhm2xTq0WOAi4Xp6bvJc.roa Signing time: Fri 02 Jan 2026 00:19:54 +0000 ROA not before: Fri 02 Jan 2026 00:19:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197732 IP address blocks: 217.119.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.mft rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:3d:f9:a2:dd:72:c1:42:c7:44:8e:31:6e:d4:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3 Validity Not Before: Jan 2 00:19:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d337789dbe5f866db14ead163808b85e9e9bbc97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b2:8f:d6:75:34:c9:bf:1c:67:3b:0b:eb:f5: 07:6e:d2:15:e3:3c:d9:e4:3f:9e:72:15:93:06:bf: 3a:3f:82:d3:6f:4c:90:50:54:dd:56:13:28:f4:81: 14:bd:3b:59:dd:30:f3:56:f5:3d:77:73:8a:84:c5: ce:da:84:57:b4:5c:93:3a:e2:34:44:ff:37:9f:6e: a2:69:1a:8e:e6:46:a2:2c:2f:7a:c4:b4:de:24:92: 23:8b:f3:90:4a:ea:b9:80:f2:a1:cd:13:0e:59:30: fe:80:ff:92:dd:a7:8d:ee:29:e8:b2:96:dd:9d:76: 3a:52:0e:69:97:ab:62:59:b7:d9:68:ad:40:4a:b8: fb:83:78:df:11:2f:b5:81:19:4e:9a:f3:9f:98:29: 7c:fb:6d:a4:a7:2b:f6:ee:4f:9e:fb:c9:d9:cf:c8: 48:b8:41:c8:4c:f4:50:02:e0:11:a7:4b:cb:8e:41: 46:97:9f:2a:11:17:1b:0a:d1:2b:49:9c:05:f0:ca: b5:55:1c:58:b2:bd:be:37:5e:aa:40:56:3f:fc:38: c7:76:4b:fc:1e:80:3e:6e:97:15:b7:b3:f0:eb:49: 78:6e:25:5a:96:6f:6b:91:6d:82:e5:13:f0:e6:16: 83:8b:bd:ce:b4:78:7f:ec:7e:12:2e:e9:ef:27:6f: 86:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:37:78:9D:BE:5F:86:6D:B1:4E:AD:16:38:08:B8:5E:9E:9B:BC:97 X509v3 Authority Key Identifier: keyid:30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/0zd4nb5fhm2xTq0WOAi4Xp6bvJc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.119.180.0/23 Signature Algorithm: sha256WithRSAEncryption 81:18:b4:df:30:cf:ca:5f:33:66:fe:11:26:94:0c:22:65:8e: 1d:33:31:09:0f:0b:07:f1:b0:98:74:e6:f9:27:e6:59:5e:2f: 74:6c:eb:4e:86:33:14:cf:9b:8d:f8:55:2d:9e:b1:ca:a1:3b: 2f:5c:92:4d:68:2f:94:da:45:2e:c3:78:8a:2c:64:03:24:b5: 45:14:d1:21:e5:4e:9b:7d:26:aa:23:75:9f:d3:3b:9f:36:d3: 33:b5:18:1e:f8:b8:c9:fc:9c:52:11:f9:02:a3:95:9e:90:90: 90:ce:0a:26:d6:4e:a0:d8:16:b6:f8:3e:60:08:24:c5:ac:5c: 3b:72:fa:fe:60:1c:7c:0f:3c:1d:07:10:10:36:94:b2:be:f9: d1:9e:1e:e2:37:e0:75:f7:ad:ec:da:f4:b5:a4:20:96:6b:8f: 0f:0b:d7:7b:36:1a:28:f5:f6:81:1e:bf:b5:ea:b0:1c:ab:7a: 3b:fd:4d:6c:ea:39:41:5b:89:24:41:20:33:2e:03:0d:80:8d: ae:ad:1b:86:0f:05:99:ed:86:ae:98:cd:9d:a9:5e:0c:bb:32: 75:5d:e7:c6:13:61:45:82:e5:3f:3b:ee:44:3c:31:12:74:e0: 5a:ee:c2:a5:ef:7a:86:50:0b:a5:de:d1:24:53:50:25:7b:e5: 2f:35:34:f4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Ez35ot1ywULHRI4xbtRrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwN2Q4ODdjMDJlMDdjOWU0NzRkMWY4ZTIxMDQ5Y2FhNmNl M2ZiZDMwHhcNMjYwMTAyMDAxOTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzM3Nzg5ZGJlNWY4NjZkYjE0ZWFkMTYzODA4Yjg1ZTllOWJiYzk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA47KP1nU0yb8cZzsL6/UHbtIV4zzZ 5D+echWTBr86P4LTb0yQUFTdVhMo9IEUvTtZ3TDzVvU9d3OKhMXO2oRXtFyTOuI0 RP83n26iaRqO5kaiLC96xLTeJJIji/OQSuq5gPKhzRMOWTD+gP+S3aeN7inospbd nXY6Ug5pl6tiWbfZaK1ASrj7g3jfES+1gRlOmvOfmCl8+22kpyv27k+e+8nZz8hI uEHITPRQAuARp0vLjkFGl58qERcbCtErSZwF8Mq1VRxYsr2+N16qQFY//DjHdkv8 HoA+bpcVt7Pw60l4biValm9rkW2C5RPw5haDi73OtHh/7H4SLunvJ2+GTwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNM3eJ2+X4ZtsU6tFjgIuF6em7yXMB8GA1UdIwQY MBaAFDB9iHwC4HyeR00fjiEEnKps4/vTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUgySWZBTGdmSjVIVFItT0lRU2NxbXpqLTlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9iMjBkODMtNjEyYy00YjYyLTk3YTMt MWE1ZTVmMTkxYmZhLzEvMHpkNG5iNWZobTJ4VHEwV09BaTRYcDZidkpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy9iMjBkODMtNjEyYy00YjYyLTk3YTMtMWE1ZTVmMTkxYmZh LzEvTUgySWZBTGdmSjVIVFItT0lRU2NxbXpqLTlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB2Xe0MA0G CSqGSIb3DQEBCwUAA4IBAQCBGLTfMM/KXzNm/hEmlAwiZY4dMzEJDwsH8bCYdOb5 J+ZZXi90bOtOhjMUz5uN+FUtnrHKoTsvXJJNaC+U2kUuw3iKLGQDJLVFFNEh5U6b fSaqI3Wf0zufNtMztRge+LjJ/JxSEfkCo5WekJCQzgom1k6g2Ba2+D5gCCTFrFw7 cvr+YBx8DzwdBxAQNpSyvvnRnh7iN+B1963s2vS1pCCWa48PC9d7Nhoo9faBHr+1 6rAcq3o7/U1s6jlBW4kkQSAzLgMNgI2urRuGDwWZ7YaumM2dqV4MuzJ1XefGE2FF guU/O+5EPDESdOBa7sKl73qGUAul3tEkU1Ale+UvNTT0 -----END CERTIFICATE-----Generated at Sun Jan 25 23:31:51 2026 by rpki-client