This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f0006f-5670-42a6-85a9-31b2c666b2dc/1/MPWn9lYh7Ig78eg1IuFu_hQVgcY.roa File: MPWn9lYh7Ig78eg1IuFu_hQVgcY.roa (raw, json) Hash identifier: iyM+MzYg4hUTkqmFv32rNevlyEv/xOwD98IypdwiHXI= Subject key identifier: 30:F5:A7:F6:56:21:EC:88:3B:F1:E8:35:22:E1:6E:FE:14:15:81:C6 Certificate issuer: /CN=e06c8ad28538ede0b4c7e1a71e9ca989a9f03f10 Certificate serial: 019B76EB736083F282D14DB5A4EB893451BD Authority key identifier: E0:6C:8A:D2:85:38:ED:E0:B4:C7:E1:A7:1E:9C:A9:89:A9:F0:3F:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4GyK0oU47eC0x-GnHpypianwPxA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f0006f-5670-42a6-85a9-31b2c666b2dc/1/MPWn9lYh7Ig78eg1IuFu_hQVgcY.roa Signing time: Thu 01 Jan 2026 00:18:20 +0000 ROA not before: Thu 01 Jan 2026 00:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8492 IP address blocks: 194.50.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/f0006f-5670-42a6-85a9-31b2c666b2dc/1/4GyK0oU47eC0x-GnHpypianwPxA.crl rsync://rpki.ripe.net/repository/DEFAULT/21/f0006f-5670-42a6-85a9-31b2c666b2dc/1/4GyK0oU47eC0x-GnHpypianwPxA.mft rsync://rpki.ripe.net/repository/DEFAULT/4GyK0oU47eC0x-GnHpypianwPxA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:73:60:83:f2:82:d1:4d:b5:a4:eb:89:34:51:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e06c8ad28538ede0b4c7e1a71e9ca989a9f03f10 Validity Not Before: Jan 1 00:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=30f5a7f65621ec883bf1e83522e16efe141581c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fd:e2:5c:4a:c8:b0:84:f3:7a:6b:a1:dd:05: 82:d2:19:87:dc:cb:e2:ee:58:70:d2:5f:fd:8c:5b: e1:3d:99:04:da:f6:4a:38:bc:5f:0d:b8:00:73:ff: 8a:dd:2e:44:b8:79:83:c4:33:89:4d:5e:a0:df:3a: 62:d3:7d:07:04:ca:73:c3:ee:20:33:3b:7e:d9:73: b5:c4:a8:6c:36:b7:17:d2:f5:50:38:da:5b:ef:e8: 56:d0:5b:65:a4:82:72:21:d8:75:46:0d:b4:e2:be: 80:a2:68:6e:0a:4b:45:33:5d:fd:0a:c3:0f:05:a1: 7c:c0:c3:81:b2:b2:9d:af:27:0b:c1:c0:04:b7:7e: 2a:c0:04:e1:6c:7b:f3:f9:b9:70:c4:6e:50:b5:fe: e5:9d:5e:c0:e5:dc:3a:51:0e:a0:25:7f:34:39:b4: 56:78:fc:49:dd:06:be:62:86:60:8c:27:f2:ac:a8: c1:b2:03:b1:4d:b5:4a:9b:a2:c4:de:6e:7a:d2:67: 65:4d:f5:96:49:c9:8f:aa:25:35:20:ca:e9:fb:5e: 78:b9:4e:b8:20:22:d7:f9:a9:bc:29:94:4d:5c:b7: 12:9f:09:d3:5a:85:61:fa:62:bb:f3:36:56:1a:6e: a8:32:8a:0d:3c:1b:30:14:35:3f:1a:0e:81:67:a2: 73:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F5:A7:F6:56:21:EC:88:3B:F1:E8:35:22:E1:6E:FE:14:15:81:C6 X509v3 Authority Key Identifier: keyid:E0:6C:8A:D2:85:38:ED:E0:B4:C7:E1:A7:1E:9C:A9:89:A9:F0:3F:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4GyK0oU47eC0x-GnHpypianwPxA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f0006f-5670-42a6-85a9-31b2c666b2dc/1/MPWn9lYh7Ig78eg1IuFu_hQVgcY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f0006f-5670-42a6-85a9-31b2c666b2dc/1/4GyK0oU47eC0x-GnHpypianwPxA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.50.152.0/24 Signature Algorithm: sha256WithRSAEncryption cf:4d:18:56:27:0b:0b:9e:fc:bd:2f:9b:71:6f:3b:ad:4e:39: b6:95:75:6e:6f:07:d6:02:eb:e3:e1:72:08:7f:aa:2a:c4:c4: 79:99:ab:bd:13:9d:2c:55:9d:25:b7:f4:aa:59:5d:b2:de:c4: 82:66:92:e8:0a:e7:da:b1:35:59:33:1b:ca:10:66:2f:8e:2e: 84:37:b7:bf:51:4d:15:88:e3:f5:ca:16:47:d7:1a:e1:6b:40: ac:76:11:07:c4:f8:42:56:1d:b7:9b:73:10:87:87:17:f6:5c: fe:cf:cf:12:fc:d9:06:30:77:66:46:5e:a8:74:35:eb:fd:58: 33:59:ab:47:f6:5c:fe:f5:8d:c9:34:09:62:43:3e:b0:21:e1: be:08:a6:65:59:2b:53:52:d1:38:61:9a:a0:36:c2:87:70:00: 39:5c:ab:1e:a1:53:50:ec:03:86:c6:cc:06:84:a3:59:43:a7: fc:ab:7f:8d:a4:af:97:dc:39:ce:92:f0:63:24:5c:ef:d3:a4: 0d:93:87:64:ef:26:73:af:60:26:b2:61:8d:d5:ed:eb:76:b1: 20:b0:56:3c:82:20:47:8f:68:dd:89:d8:c7:23:35:bc:3f:6b: 99:fc:4d:22:7c:ee:a8:48:57:52:81:7c:f7:b0:5d:1d:86:bb: 7c:e5:e4:78 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt263Ngg/KC0U21pOuJNFG9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwNmM4YWQyODUzOGVkZTBiNGM3ZTFhNzFlOWNhOTg5YTlm MDNmMTAwHhcNMjYwMTAxMDAxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMGY1YTdmNjU2MjFlYzg4M2JmMWU4MzUyMmUxNmVmZTE0MTU4MWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/3iXErIsITzemuh3QWC0hmH3Mvi 7lhw0l/9jFvhPZkE2vZKOLxfDbgAc/+K3S5EuHmDxDOJTV6g3zpi030HBMpzw+4g Mzt+2XO1xKhsNrcX0vVQONpb7+hW0FtlpIJyIdh1Rg204r6AomhuCktFM139CsMP BaF8wMOBsrKdrycLwcAEt34qwAThbHvz+blwxG5Qtf7lnV7A5dw6UQ6gJX80ObRW ePxJ3Qa+YoZgjCfyrKjBsgOxTbVKm6LE3m560mdlTfWWScmPqiU1IMrp+154uU64 ICLX+am8KZRNXLcSnwnTWoVh+mK78zZWGm6oMooNPBswFDU/Gg6BZ6JzFwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDD1p/ZWIeyIO/HoNSLhbv4UFYHGMB8GA1UdIwQY MBaAFOBsitKFOO3gtMfhpx6cqYmp8D8QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEd5SzBvVTQ3ZUMweC1HbkhweXBpYW53UHhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9mMDAwNmYtNTY3MC00MmE2LTg1YTkt MzFiMmM2NjZiMmRjLzEvTVBXbjlsWWg3SWc3OGVnMUl1RnVfaFFWZ2NZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9mMDAwNmYtNTY3MC00MmE2LTg1YTktMzFiMmM2NjZiMmRj LzEvNEd5SzBvVTQ3ZUMweC1HbkhweXBpYW53UHhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjKYMA0G CSqGSIb3DQEBCwUAA4IBAQDPTRhWJwsLnvy9L5txbzutTjm2lXVubwfWAuvj4XII f6oqxMR5mau9E50sVZ0lt/SqWV2y3sSCZpLoCufasTVZMxvKEGYvji6EN7e/UU0V iOP1yhZH1xrha0CsdhEHxPhCVh23m3MQh4cX9lz+z88S/NkGMHdmRl6odDXr/Vgz WatH9lz+9Y3JNAliQz6wIeG+CKZlWStTUtE4YZqgNsKHcAA5XKseoVNQ7AOGxswG hKNZQ6f8q3+NpK+X3DnOkvBjJFzv06QNk4dk7yZzr2AmsmGN1e3rdrEgsFY8giBH j2jdidjHIzW8P2uZ/E0ifO6oSFdSgXz3sF0dhrt85eR4 -----END CERTIFICATE-----Generated at Sun Jan 25 18:07:47 2026 by rpki-client