This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/mV9MWpcQWw7tz8nlpuIIL7oc2lc.roa File: mV9MWpcQWw7tz8nlpuIIL7oc2lc.roa (raw, json) Hash identifier: +lEUUbEYnK/7Zucwaic58QysHSy4TqrPimG1kc7IW2c= Subject key identifier: 99:5F:4C:5A:97:10:5B:0E:ED:CF:C9:E5:A6:E2:08:2F:BA:1C:DA:57 Certificate issuer: /CN=66d8a84f0e8cf755137a9680ebcc4fccd20a34b2 Certificate serial: 019B7910CD400E6A2C197BB2C74FFE3A7256 Authority key identifier: 66:D8:A8:4F:0E:8C:F7:55:13:7A:96:80:EB:CC:4F:CC:D2:0A:34:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtioTw6M91UTepaA68xPzNIKNLI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/mV9MWpcQWw7tz8nlpuIIL7oc2lc.roa Signing time: Thu 01 Jan 2026 10:18:22 +0000 ROA not before: Thu 01 Jan 2026 10:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31463 IP address blocks: 195.246.200.0/22 maxlen: 24 2a0d:12c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/ZtioTw6M91UTepaA68xPzNIKNLI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/ZtioTw6M91UTepaA68xPzNIKNLI.mft rsync://rpki.ripe.net/repository/DEFAULT/ZtioTw6M91UTepaA68xPzNIKNLI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:cd:40:0e:6a:2c:19:7b:b2:c7:4f:fe:3a:72:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66d8a84f0e8cf755137a9680ebcc4fccd20a34b2 Validity Not Before: Jan 1 10:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=995f4c5a97105b0eedcfc9e5a6e2082fba1cda57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:02:78:b5:1b:18:29:09:97:4d:de:54:07:ef: e8:a9:48:30:70:ea:83:9f:24:99:5d:b4:6d:0b:68: b3:b0:4b:0e:b6:59:2f:e0:73:c3:9c:fc:90:30:af: 31:1f:03:76:23:e4:d4:b4:86:11:90:1d:cb:bc:71: 05:e5:19:15:06:f5:9f:62:22:b1:89:a4:47:aa:c5: fb:df:d9:f7:10:8b:6a:b3:cb:91:a5:23:fd:6e:7d: 0c:0f:39:f8:c2:87:dd:40:6f:5d:40:28:e6:93:e1: d3:cd:57:ee:2e:ec:24:5f:5d:61:3f:68:92:52:c5: 7a:fe:84:e8:f1:c0:3a:17:d7:28:b3:da:e9:50:21: fa:51:93:b1:e1:f0:e1:9e:7c:26:d0:5d:37:77:1d: 2f:9f:ca:30:95:93:79:25:2e:77:7c:8a:1e:14:45: 3c:99:36:af:07:4d:7a:bf:68:2d:3f:3d:25:8e:8f: 34:78:3c:9d:d6:3b:5d:74:60:e4:35:90:06:4c:0c: 16:fa:df:91:33:29:25:e5:59:99:51:13:b6:d7:a7: 59:4b:97:48:93:b4:fa:4e:07:1d:f7:a0:54:e4:fe: 9f:af:e5:12:4e:84:27:3c:f8:92:de:8a:9e:08:8d: 7a:40:ff:64:5b:3f:da:f7:a6:8c:6d:b9:50:ac:b6: bc:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:5F:4C:5A:97:10:5B:0E:ED:CF:C9:E5:A6:E2:08:2F:BA:1C:DA:57 X509v3 Authority Key Identifier: keyid:66:D8:A8:4F:0E:8C:F7:55:13:7A:96:80:EB:CC:4F:CC:D2:0A:34:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtioTw6M91UTepaA68xPzNIKNLI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/mV9MWpcQWw7tz8nlpuIIL7oc2lc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/ZtioTw6M91UTepaA68xPzNIKNLI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.246.200.0/22 IPv6: 2a0d:12c0::/32 Signature Algorithm: sha256WithRSAEncryption 01:9e:21:89:e4:23:45:0d:f4:50:46:66:a3:cc:bf:7e:aa:12: a9:74:0c:df:ba:c2:2d:86:fe:d0:c2:fd:f2:e4:49:9f:68:de: 99:ad:0b:bf:a0:4e:36:3f:88:42:d5:2d:04:66:08:fe:8a:db: a1:71:5c:8a:a4:c1:39:ff:4f:c3:c2:3c:cb:ee:67:ff:86:ce: 4c:b6:21:63:95:d7:8f:19:0f:d8:08:b7:87:5f:60:df:48:bb: e8:43:94:ac:06:e4:75:fd:c2:e8:aa:52:87:c5:11:7c:2e:4f: 00:03:a3:95:36:e5:19:41:8b:3f:e3:77:4f:63:f9:e0:4e:e0: f0:8f:fc:a6:70:1b:49:99:a4:02:77:aa:65:e7:fe:96:f5:27: d5:e4:d1:e5:22:a2:9a:7f:51:98:df:40:60:a7:c9:b0:ec:26: ab:8e:62:df:14:8d:6f:4b:c0:de:2d:f5:4e:21:7a:98:3a:83: 69:ca:f7:39:b3:a3:c9:d7:bc:a3:7d:90:8b:a7:68:9b:96:8e: b3:c1:57:3f:87:aa:70:58:f0:d0:19:df:57:a7:cd:58:d0:9e: 60:2c:1a:53:b7:46:c5:f5:f1:5c:83:44:ab:e4:0f:e3:15:1b: ae:6a:d9:79:61:bd:6e:b9:46:70:62:78:44:2d:35:da:49:c1: 4f:ee:33:d3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EM1ADmosGXuyx0/+OnJWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZDhhODRmMGU4Y2Y3NTUxMzdhOTY4MGViY2M0ZmNjZDIw YTM0YjIwHhcNMjYwMTAxMTAxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTVmNGM1YTk3MTA1YjBlZWRjZmM5ZTVhNmUyMDgyZmJhMWNkYTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwJ4tRsYKQmXTd5UB+/oqUgwcOqD nySZXbRtC2izsEsOtlkv4HPDnPyQMK8xHwN2I+TUtIYRkB3LvHEF5RkVBvWfYiKx iaRHqsX739n3EItqs8uRpSP9bn0MDzn4wofdQG9dQCjmk+HTzVfuLuwkX11hP2iS UsV6/oTo8cA6F9cos9rpUCH6UZOx4fDhnnwm0F03dx0vn8owlZN5JS53fIoeFEU8 mTavB016v2gtPz0ljo80eDyd1jtddGDkNZAGTAwW+t+RMykl5VmZURO216dZS5dI k7T6Tgcd96BU5P6fr+USToQnPPiS3oqeCI16QP9kWz/a96aMbblQrLa8JQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJlfTFqXEFsO7c/J5abiCC+6HNpXMB8GA1UdIwQY MBaAFGbYqE8OjPdVE3qWgOvMT8zSCjSyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnRpb1R3Nk05MVVUZXBhQTY4eFB6TklLTkxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81ZDVjYzUtOWQ5OC00MTVhLWFiMGUt YWExNDgxZjBjMTNhLzEvbVY5TVdwY1FXdzd0ejhubHB1SUlMN29jMmxjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC81ZDVjYzUtOWQ5OC00MTVhLWFiMGUtYWExNDgxZjBjMTNh LzEvWnRpb1R3Nk05MVVUZXBhQTY4eFB6TklLTkxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCw/bIMA0E AgACMAcDBQAqDRLAMA0GCSqGSIb3DQEBCwUAA4IBAQABniGJ5CNFDfRQRmajzL9+ qhKpdAzfusIthv7Qwv3y5EmfaN6ZrQu/oE42P4hC1S0EZgj+ituhcVyKpME5/0/D wjzL7mf/hs5MtiFjldePGQ/YCLeHX2DfSLvoQ5SsBuR1/cLoqlKHxRF8Lk8AA6OV NuUZQYs/43dPY/ngTuDwj/ymcBtJmaQCd6pl5/6W9SfV5NHlIqKaf1GY30Bgp8mw 7CarjmLfFI1vS8DeLfVOIXqYOoNpyvc5s6PJ17yjfZCLp2iblo6zwVc/h6pwWPDQ Gd9Xp81Y0J5gLBpTt0bF9fFcg0Sr5A/jFRuuatl5Yb1uuUZwYnhELTXaScFP7jPT -----END CERTIFICATE-----Generated at Mon Jan 26 09:22:53 2026 by rpki-client