This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/Mxi-zz1gMlSZWEHRcoBRTiwLx6E.roa File: Mxi-zz1gMlSZWEHRcoBRTiwLx6E.roa (raw, json) Hash identifier: brsLl7ak4I1B8XePqYismhm8WfW/1upbLyEwnygTRow= Subject key identifier: 33:18:BE:CF:3D:60:32:54:99:58:41:D1:72:80:51:4E:2C:0B:C7:A1 Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16 Certificate serial: 019B7EA6EE1A2600BA15811CF2ED1B9399E7 Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/Mxi-zz1gMlSZWEHRcoBRTiwLx6E.roa Signing time: Fri 02 Jan 2026 12:20:27 +0000 ROA not before: Fri 02 Jan 2026 12:20:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52116 IP address blocks: 178.254.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.mft rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:ee:1a:26:00:ba:15:81:1c:f2:ed:1b:93:99:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16 Validity Not Before: Jan 2 12:20:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3318becf3d603254995841d17280514e2c0bc7a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f7:e6:10:d4:e9:ef:e9:87:3f:73:c8:62:a7: d9:0c:ee:77:77:12:f9:8d:ea:c0:1a:82:35:1e:3d: e5:04:84:91:09:3c:b4:ac:8b:d9:13:74:72:8d:d4: 2e:85:63:23:82:b4:83:78:d1:75:5b:8e:a0:7b:92: 4d:89:4c:b2:c1:f5:b5:bd:90:7b:4b:8e:4a:b9:69: 03:11:8c:45:c6:42:1c:7c:01:fc:09:4d:9b:3d:5b: e1:09:6f:5c:44:60:97:10:1c:d1:36:1b:23:74:19: a2:2b:93:df:6a:38:10:68:a0:48:d3:24:75:ac:75: 76:36:33:2c:99:42:8c:87:74:2d:14:d0:1e:6e:20: 18:06:ea:e3:ca:11:d9:dd:bc:dd:48:ea:b9:62:1f: 1c:d5:2c:18:31:ba:bc:99:0c:ff:ac:a3:d4:f3:3c: 03:da:f7:64:a8:3f:1d:86:8d:79:ff:b4:81:d7:ed: 8d:55:c3:85:a5:06:14:bf:18:70:a0:7b:3c:37:7a: 2b:35:43:37:cd:60:1c:12:89:a1:40:47:ce:69:56: 28:e3:fd:89:96:69:64:29:48:c4:7b:2e:cc:d4:fa: 9d:3c:d5:3f:d2:91:9f:e1:9b:9a:db:fd:a4:63:36: 4c:73:c0:9c:3e:a8:f5:40:39:4b:31:4f:20:0b:89: 5c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:18:BE:CF:3D:60:32:54:99:58:41:D1:72:80:51:4E:2C:0B:C7:A1 X509v3 Authority Key Identifier: keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/Mxi-zz1gMlSZWEHRcoBRTiwLx6E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.254.170.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:74:12:35:47:66:0a:99:80:f2:30:2e:4f:01:6c:72:87:c1: 5d:a9:46:f5:cd:ac:7d:3e:af:31:c7:24:54:da:51:7a:02:dd: a1:4f:4e:c0:3a:d1:47:16:89:d7:de:e7:66:67:42:0e:27:b1: f1:a7:a9:aa:2b:3f:52:9a:93:36:9f:57:67:cf:c9:9d:d7:66: 07:6d:95:28:d5:ca:8f:34:82:7a:d3:54:7c:a9:9c:5b:a6:18: 82:1c:e6:8f:fd:a4:0c:b8:47:2b:5a:45:44:d3:7d:71:cf:40: 7c:3b:49:d3:82:6a:7c:6d:2f:12:da:17:4e:f1:35:fa:0c:b6: 8b:2f:16:7e:78:85:9b:0c:5a:e9:b7:2d:e5:cb:6f:ce:8e:de: d2:f5:c0:0f:1e:6c:f8:42:8b:f6:11:3d:df:70:c6:09:55:52: 79:d1:26:19:73:a8:3a:70:03:df:a3:67:a2:ed:4c:bd:75:a2: 24:08:7e:26:c1:54:b8:5e:14:e8:cf:81:85:cc:9e:4c:27:80: 5d:34:19:78:cf:b1:cd:4d:af:b1:8f:9d:2a:c7:87:b9:fe:83: 35:12:60:4d:db:c1:b1:60:3f:4d:40:eb:bd:8b:6d:56:49:5b: 96:c2:f8:18:f6:9f:ee:27:f4:1b:37:8f:e9:87:ee:3b:de:b2: 7d:c6:40:df -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pu4aJgC6FYEc8u0bk5nnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5NzEzZWYyNTI3N2UxM2RkNzNmNDQxOTZmZGE1Y2VjMGZk OWNlMTYwHhcNMjYwMTAyMTIyMDI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMzE4YmVjZjNkNjAzMjU0OTk1ODQxZDE3MjgwNTE0ZTJjMGJjN2ExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/fmENTp7+mHP3PIYqfZDO53dxL5 jerAGoI1Hj3lBISRCTy0rIvZE3RyjdQuhWMjgrSDeNF1W46ge5JNiUyywfW1vZB7 S45KuWkDEYxFxkIcfAH8CU2bPVvhCW9cRGCXEBzRNhsjdBmiK5PfajgQaKBI0yR1 rHV2NjMsmUKMh3QtFNAebiAYBurjyhHZ3bzdSOq5Yh8c1SwYMbq8mQz/rKPU8zwD 2vdkqD8dho15/7SB1+2NVcOFpQYUvxhwoHs8N3orNUM3zWAcEomhQEfOaVYo4/2J lmlkKUjEey7M1PqdPNU/0pGf4Zua2/2kYzZMc8CcPqj1QDlLMU8gC4lcMQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDMYvs89YDJUmVhB0XKAUU4sC8ehMB8GA1UdIwQY MBaAFOlxPvJSd+E91z9EGW/aXOwP2c4WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEt MGY2NmMxODg3OTE2LzEvTXhpLXp6MWdNbFNaV0VIUmNvQlJUaXdMeDZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEtMGY2NmMxODg3OTE2 LzEvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsv6qMA0G CSqGSIb3DQEBCwUAA4IBAQBddBI1R2YKmYDyMC5PAWxyh8FdqUb1zax9Pq8xxyRU 2lF6At2hT07AOtFHFonX3udmZ0IOJ7Hxp6mqKz9SmpM2n1dnz8md12YHbZUo1cqP NIJ601R8qZxbphiCHOaP/aQMuEcrWkVE031xz0B8O0nTgmp8bS8S2hdO8TX6DLaL LxZ+eIWbDFrpty3ly2/Ojt7S9cAPHmz4Qov2ET3fcMYJVVJ50SYZc6g6cAPfo2ei 7Uy9daIkCH4mwVS4XhToz4GFzJ5MJ4BdNBl4z7HNTa+xj50qx4e5/oM1EmBN28Gx YD9NQOu9i21WSVuWwvgY9p/uJ/QbN4/ph+473rJ9xkDf -----END CERTIFICATE-----Generated at Sun Jan 25 10:52:07 2026 by rpki-client