This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/c48a2d-097d-498b-bc62-b513a0c2f353/1/227z2aOLPlAknNxk68MS3pWKhbo.roa File: 227z2aOLPlAknNxk68MS3pWKhbo.roa (raw, json) Hash identifier: U5iU1mkuF+PWdB8f3ar9HZL/t0Ub/ZynGvuAWau5cxs= Subject key identifier: DB:6E:F3:D9:A3:8B:3E:50:24:9C:DC:64:EB:C3:12:DE:95:8A:85:BA Certificate issuer: /CN=9a2ae8d4b01687021b77b874f110c1b6dbfec651 Certificate serial: 019B78A360C7C0746323281FE0EC5B13B131 Authority key identifier: 9A:2A:E8:D4:B0:16:87:02:1B:77:B8:74:F1:10:C1:B6:DB:FE:C6:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/miro1LAWhwIbd7h08RDBttv-xlE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/c48a2d-097d-498b-bc62-b513a0c2f353/1/227z2aOLPlAknNxk68MS3pWKhbo.roa Signing time: Thu 01 Jan 2026 08:18:51 +0000 ROA not before: Thu 01 Jan 2026 08:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20879 IP address blocks: 217.28.143.0/24 maxlen: 24 2a12:26c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/c48a2d-097d-498b-bc62-b513a0c2f353/1/miro1LAWhwIbd7h08RDBttv-xlE.crl rsync://rpki.ripe.net/repository/DEFAULT/50/c48a2d-097d-498b-bc62-b513a0c2f353/1/miro1LAWhwIbd7h08RDBttv-xlE.mft rsync://rpki.ripe.net/repository/DEFAULT/miro1LAWhwIbd7h08RDBttv-xlE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:60:c7:c0:74:63:23:28:1f:e0:ec:5b:13:b1:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a2ae8d4b01687021b77b874f110c1b6dbfec651 Validity Not Before: Jan 1 08:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db6ef3d9a38b3e50249cdc64ebc312de958a85ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:83:b0:1d:ae:42:f1:88:42:ce:f6:02:4f:77: 01:a6:71:94:5d:2a:38:c5:53:a6:80:cd:21:7b:05: c3:aa:91:55:ad:08:98:b9:5d:f7:d8:ef:00:9d:21: 7a:21:27:05:d3:60:24:40:da:73:99:d3:43:2b:81: 72:cd:5d:04:48:47:47:53:14:46:22:17:ce:ba:c9: 96:12:b5:52:24:7a:65:cd:f0:ea:83:4a:e9:ec:0d: 14:e7:40:90:8b:81:1d:29:96:9d:df:7a:bd:44:81: b6:ff:f7:ca:bd:0b:8d:11:1a:0a:3e:a3:90:38:89: 4f:6e:1a:e9:e2:5a:f4:19:8f:9c:eb:15:cb:f5:71: d7:66:78:d5:da:b6:c3:76:17:8e:4f:86:c7:dc:9e: ef:ec:37:e5:e7:4d:c3:33:df:b2:5c:10:5e:8d:e2: a5:de:89:38:44:53:bd:24:99:d9:7a:2e:45:5a:6e: 66:9d:95:eb:de:00:41:e4:50:65:b8:51:da:6c:b7: 6d:0e:ec:00:cb:d4:f8:58:37:fe:73:e0:16:1c:ed: c2:c7:43:11:df:3d:5a:bc:81:2b:81:2a:27:21:42: 43:f3:4c:ea:75:df:46:4c:44:1c:01:ac:f5:8d:2b: f2:95:9a:2c:a0:2a:62:e4:02:a5:3c:70:6e:00:04: 8b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:6E:F3:D9:A3:8B:3E:50:24:9C:DC:64:EB:C3:12:DE:95:8A:85:BA X509v3 Authority Key Identifier: keyid:9A:2A:E8:D4:B0:16:87:02:1B:77:B8:74:F1:10:C1:B6:DB:FE:C6:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/miro1LAWhwIbd7h08RDBttv-xlE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c48a2d-097d-498b-bc62-b513a0c2f353/1/227z2aOLPlAknNxk68MS3pWKhbo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c48a2d-097d-498b-bc62-b513a0c2f353/1/miro1LAWhwIbd7h08RDBttv-xlE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.28.143.0/24 IPv6: 2a12:26c0::/29 Signature Algorithm: sha256WithRSAEncryption 8c:e1:04:be:4e:5a:71:38:75:91:90:ee:18:e3:ec:75:38:04: 76:b4:b4:3d:f4:2d:9d:f6:d7:0e:66:71:b2:f8:48:4b:b8:21: f1:b0:ff:8b:07:a6:d8:4f:bb:21:4f:ad:5e:8e:74:8e:10:43: c9:d6:88:b8:e1:a0:f8:78:9c:d9:f6:64:f8:d2:f6:31:30:49: 4a:04:32:eb:e0:fe:f9:37:f6:80:4d:47:47:99:4d:1b:16:4b: e5:f3:1c:e1:31:f8:10:3b:a6:7d:a0:05:72:8a:12:db:ed:43: 07:ee:da:73:d9:cf:db:b6:c2:86:7d:e1:d5:7e:63:48:67:a9: f3:96:ad:ee:61:c7:3d:01:49:81:0f:8e:7b:f1:b5:81:a8:9f: 69:a2:20:41:78:bb:9b:f2:5a:f6:37:fb:7d:47:40:1a:ca:58: 52:9c:3c:f6:f9:b4:66:a4:05:64:43:58:b4:d9:89:ec:49:9b: 60:ac:5f:fb:ee:2c:c2:f0:0a:3c:9f:bf:2a:bd:eb:00:62:9f: 65:3c:84:6b:e5:f7:98:9d:25:1a:91:fa:41:06:b4:68:b6:e1: cf:72:1d:77:9b:1c:c2:3b:56:4b:9f:bc:17:ee:7a:6a:b8:5c: 9f:e0:70:59:77:da:bf:f9:0f:1b:f3:6e:e5:8d:d0:31:03:94: c6:3d:35:6a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4o2DHwHRjIygf4OxbE7ExMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhMmFlOGQ0YjAxNjg3MDIxYjc3Yjg3NGYxMTBjMWI2ZGJm ZWM2NTEwHhcNMjYwMTAxMDgxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjZlZjNkOWEzOGIzZTUwMjQ5Y2RjNjRlYmMzMTJkZTk1OGE4NWJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIOwHa5C8YhCzvYCT3cBpnGUXSo4 xVOmgM0hewXDqpFVrQiYuV332O8AnSF6IScF02AkQNpzmdNDK4FyzV0ESEdHUxRG IhfOusmWErVSJHplzfDqg0rp7A0U50CQi4EdKZad33q9RIG2//fKvQuNERoKPqOQ OIlPbhrp4lr0GY+c6xXL9XHXZnjV2rbDdheOT4bH3J7v7Dfl503DM9+yXBBejeKl 3ok4RFO9JJnZei5FWm5mnZXr3gBB5FBluFHabLdtDuwAy9T4WDf+c+AWHO3Cx0MR 3z1avIErgSonIUJD80zqdd9GTEQcAaz1jSvylZosoCpi5AKlPHBuAASLRwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNtu89mjiz5QJJzcZOvDEt6VioW6MB8GA1UdIwQY MBaAFJoq6NSwFocCG3e4dPEQwbbb/sZRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWlybzFMQVdod0liZDdoMDhSREJ0dHYteGxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9jNDhhMmQtMDk3ZC00OThiLWJjNjIt YjUxM2EwYzJmMzUzLzEvMjI3ejJhT0xQbEFrbk54azY4TVMzcFdLaGJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC9jNDhhMmQtMDk3ZC00OThiLWJjNjItYjUxM2EwYzJmMzUz LzEvbWlybzFMQVdod0liZDdoMDhSREJ0dHYteGxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQA2RyPMA0E AgACMAcDBQMqEibAMA0GCSqGSIb3DQEBCwUAA4IBAQCM4QS+TlpxOHWRkO4Y4+x1 OAR2tLQ99C2d9tcOZnGy+EhLuCHxsP+LB6bYT7shT61ejnSOEEPJ1oi44aD4eJzZ 9mT40vYxMElKBDLr4P75N/aATUdHmU0bFkvl8xzhMfgQO6Z9oAVyihLb7UMH7tpz 2c/btsKGfeHVfmNIZ6nzlq3uYcc9AUmBD4578bWBqJ9poiBBeLub8lr2N/t9R0Aa ylhSnDz2+bRmpAVkQ1i02YnsSZtgrF/77izC8Ao8n78qvesAYp9lPIRr5feYnSUa kfpBBrRotuHPch13mxzCO1ZLn7wX7npquFyf4HBZd9q/+Q8b827ljdAxA5TGPTVq -----END CERTIFICATE-----Generated at Mon Jan 26 05:31:30 2026 by rpki-client