This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b4df4d-8a84-4be3-8e79-e2abc63100bb/1/MGGeam7llhDq2FLJ6zvvA80CGko.roa File: MGGeam7llhDq2FLJ6zvvA80CGko.roa (raw, json) Hash identifier: YxemhPkHhbnVR4JIFpydLIzQBu/u0QukoPhhWFPkjhM= Subject key identifier: 30:61:9E:6A:6E:E5:96:10:EA:D8:52:C9:EB:3B:EF:03:CD:02:1A:4A Certificate issuer: /CN=da5f25e8950f69e2d75b93b92f5404199e044762 Certificate serial: 019A72CAAEF12855FF9A64367567054C54AE Authority key identifier: DA:5F:25:E8:95:0F:69:E2:D7:5B:93:B9:2F:54:04:19:9E:04:47:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2l8l6JUPaeLXW5O5L1QEGZ4ER2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b4df4d-8a84-4be3-8e79-e2abc63100bb/1/MGGeam7llhDq2FLJ6zvvA80CGko.roa Signing time: Tue 11 Nov 2025 12:01:17 +0000 ROA not before: Tue 11 Nov 2025 12:01:17 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215125 IP address blocks: 2001:67c:e60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b4df4d-8a84-4be3-8e79-e2abc63100bb/1/2l8l6JUPaeLXW5O5L1QEGZ4ER2I.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/b4df4d-8a84-4be3-8e79-e2abc63100bb/1/2l8l6JUPaeLXW5O5L1QEGZ4ER2I.mft rsync://rpki.ripe.net/repository/DEFAULT/2l8l6JUPaeLXW5O5L1QEGZ4ER2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:72:ca:ae:f1:28:55:ff:9a:64:36:75:67:05:4c:54:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da5f25e8950f69e2d75b93b92f5404199e044762 Validity Not Before: Nov 11 12:01:17 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=30619e6a6ee59610ead852c9eb3bef03cd021a4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fa:02:92:71:fe:3b:20:91:88:2a:ee:4b:25: e5:11:7b:8c:e0:6a:7b:5f:ec:46:11:b6:a6:ae:dc: 27:eb:73:e8:3c:e8:52:c5:8a:4d:2a:4f:40:f4:da: b9:8d:46:5d:e8:77:45:e0:9f:e9:a5:07:49:49:5f: b7:39:2f:72:9d:8e:e9:96:2d:31:36:c0:94:2e:a1: 96:98:4e:ae:f3:28:02:5c:3e:49:f8:b7:b4:3a:a6: f9:7f:de:b5:2b:bd:72:c7:8c:a0:aa:c4:8a:d7:81: ac:d3:fd:d0:a4:9b:87:99:a6:a4:05:52:39:05:cd: 10:e5:0f:7e:ce:f6:34:dc:ea:5f:43:04:77:85:d9: 57:79:9f:82:76:0a:2d:a8:cc:74:4e:71:c7:7d:f2: b5:9e:fa:eb:23:2f:9a:a2:e7:20:90:6b:9d:77:57: 25:8b:05:ab:dc:db:a4:a2:0a:7c:a9:b4:e7:c9:db: 1c:5b:19:f8:0d:3a:29:32:ee:39:ba:b1:8f:29:b6: d5:d6:7a:a9:bb:d8:84:b4:e6:aa:4e:41:39:9b:94: b3:be:6e:89:ae:02:bc:da:9d:83:a3:ca:8c:cf:ee: 62:79:4b:56:93:ae:90:0c:fa:8b:e8:09:ce:f5:10: 23:25:99:45:24:40:f7:63:b5:37:ad:53:60:71:42: 06:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:61:9E:6A:6E:E5:96:10:EA:D8:52:C9:EB:3B:EF:03:CD:02:1A:4A X509v3 Authority Key Identifier: keyid:DA:5F:25:E8:95:0F:69:E2:D7:5B:93:B9:2F:54:04:19:9E:04:47:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2l8l6JUPaeLXW5O5L1QEGZ4ER2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b4df4d-8a84-4be3-8e79-e2abc63100bb/1/MGGeam7llhDq2FLJ6zvvA80CGko.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b4df4d-8a84-4be3-8e79-e2abc63100bb/1/2l8l6JUPaeLXW5O5L1QEGZ4ER2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:e60::/48 Signature Algorithm: sha256WithRSAEncryption 96:83:14:dd:79:f6:2d:c7:9a:2e:73:97:d2:f3:9e:2e:b6:ae: b4:9b:df:cc:86:f4:4f:e0:8b:09:77:a4:94:94:d0:63:22:59: ba:b0:d6:0a:36:ba:9f:57:ab:4c:98:6e:3f:bb:8e:86:0c:3d: c0:42:e7:4e:ed:18:b0:36:bc:69:e7:1b:90:a1:c0:09:4d:29: 13:9b:9d:06:d7:fa:e5:3b:60:ac:e8:78:15:98:2b:fa:06:dc: e0:99:ea:e2:41:94:33:77:72:78:d3:09:a1:d8:ec:81:c1:53: 4c:5b:f6:74:2a:83:60:00:46:37:a3:34:71:0b:90:58:5c:a7: 3a:c1:4a:2a:5b:73:39:43:d6:ce:a7:9a:9e:f5:d9:2d:6e:d1: 0b:a6:c1:fa:ba:7d:34:49:25:2c:9b:c3:97:5b:13:56:f1:25: ce:5e:36:a0:bf:73:a8:d8:a6:1d:35:da:3d:68:06:cc:30:3a: 79:a5:50:94:24:51:12:53:71:04:de:da:6a:de:b9:99:84:ff: 1a:6b:74:38:c7:84:86:9a:53:94:74:a4:7b:93:f8:7c:07:55: f9:13:c0:89:ea:04:3e:dd:0e:34:db:af:1e:3c:3e:5c:74:ff: 42:33:62:61:fb:de:7f:46:0a:05:f1:c6:5c:b4:dd:44:f9:31: 00:d6:ca:4d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZpyyq7xKFX/mmQ2dWcFTFSuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhNWYyNWU4OTUwZjY5ZTJkNzViOTNiOTJmNTQwNDE5OWUw NDQ3NjIwHhcNMjUxMTExMTIwMTE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMDYxOWU2YTZlZTU5NjEwZWFkODUyYzllYjNiZWYwM2NkMDIxYTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/oCknH+OyCRiCruSyXlEXuM4Gp7 X+xGEbamrtwn63PoPOhSxYpNKk9A9Nq5jUZd6HdF4J/ppQdJSV+3OS9ynY7pli0x NsCULqGWmE6u8ygCXD5J+Le0Oqb5f961K71yx4ygqsSK14Gs0/3QpJuHmaakBVI5 Bc0Q5Q9+zvY03OpfQwR3hdlXeZ+CdgotqMx0TnHHffK1nvrrIy+aoucgkGudd1cl iwWr3Nukogp8qbTnydscWxn4DTopMu45urGPKbbV1nqpu9iEtOaqTkE5m5Szvm6J rgK82p2Do8qMz+5ieUtWk66QDPqL6AnO9RAjJZlFJED3Y7U3rVNgcUIGUwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDBhnmpu5ZYQ6thSyes77wPNAhpKMB8GA1UdIwQY MBaAFNpfJeiVD2ni11uTuS9UBBmeBEdiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmw4bDZKVVBhZUxYVzVPNUwxUUVHWjRFUjJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9iNGRmNGQtOGE4NC00YmUzLThlNzkt ZTJhYmM2MzEwMGJiLzEvTUdHZWFtN2xsaERxMkZMSjZ6dnZBODBDR2tvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy9iNGRmNGQtOGE4NC00YmUzLThlNzktZTJhYmM2MzEwMGJi LzEvMmw4bDZKVVBhZUxYVzVPNUwxUUVHWjRFUjJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA5g MA0GCSqGSIb3DQEBCwUAA4IBAQCWgxTdefYtx5ouc5fS854utq60m9/MhvRP4IsJ d6SUlNBjIlm6sNYKNrqfV6tMmG4/u46GDD3AQudO7RiwNrxp5xuQocAJTSkTm50G 1/rlO2Cs6HgVmCv6BtzgmeriQZQzd3J40wmh2OyBwVNMW/Z0KoNgAEY3ozRxC5BY XKc6wUoqW3M5Q9bOp5qe9dktbtELpsH6un00SSUsm8OXWxNW8SXOXjagv3Oo2KYd Ndo9aAbMMDp5pVCUJFESU3EE3tpq3rmZhP8aa3Q4x4SGmlOUdKR7k/h8B1X5E8CJ 6gQ+3Q40268ePD5cdP9CM2Jh+95/RgoF8cZctN1E+TEA1spN -----END CERTIFICATE-----Generated at Sat Dec 6 10:50:03 2025 by rpki-client