This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/MrHoXdzqN9_tibJPwD7quAQdyYg.roa File: MrHoXdzqN9_tibJPwD7quAQdyYg.roa (raw, json) Hash identifier: Ct10S7D4hifXB2Hs/rTN2CH0S9ASPmSGfvNPI4nLfIQ= Subject key identifier: 32:B1:E8:5D:DC:EA:37:DF:ED:89:B2:4F:C0:3E:EA:B8:04:1D:C9:88 Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Certificate serial: 019B7CEE54FDDACF9E0C49616227449251AD Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/MrHoXdzqN9_tibJPwD7quAQdyYg.roa Signing time: Fri 02 Jan 2026 04:19:12 +0000 ROA not before: Fri 02 Jan 2026 04:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42371 IP address blocks: 213.181.199.0/24 maxlen: 24 2a02:730:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:54:fd:da:cf:9e:0c:49:61:62:27:44:92:51:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Validity Not Before: Jan 2 04:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=32b1e85ddcea37dfed89b24fc03eeab8041dc988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:da:12:68:27:7c:9b:2f:c5:d4:9d:bc:d9:bb: eb:b4:c4:7e:8d:0d:a2:c7:6b:3b:4a:c8:be:d1:88: 13:79:d6:37:d2:e1:30:18:40:a8:a1:40:f2:54:36: c8:5b:9a:c0:a7:11:fd:5d:74:7d:8c:94:a9:70:35: c1:cf:1b:39:6c:d6:79:d3:93:cb:6d:2c:ca:1d:58: bc:b9:96:e9:b0:53:5d:03:e4:15:65:59:b4:c0:a9: 03:b7:f7:a7:5d:3b:55:6d:19:dd:ae:4d:87:af:f8: 33:74:b3:ba:e1:73:6e:85:fa:8f:02:62:0f:89:e5: a6:47:ee:44:da:8a:13:f3:0f:ac:25:fa:5b:b2:99: 56:97:a6:d2:b4:74:68:99:8b:4a:c8:df:e2:f0:6a: ef:31:de:18:34:1a:22:12:e7:16:36:b6:ab:7f:20: b5:28:d7:1d:c9:1e:c7:91:51:c0:e8:cf:6c:78:9e: 1d:d6:7a:ad:5a:b8:6b:bd:6d:01:95:23:88:5a:dc: 5e:a7:69:f5:e8:78:12:b1:f1:1e:74:97:2f:6d:8f: fb:b8:eb:0f:a1:e8:70:d5:e3:f4:aa:49:37:36:71: c0:ba:25:1f:22:e3:a5:65:1c:3e:bc:b8:4f:5c:3c: d5:55:f4:ea:6b:0b:b0:c0:80:a0:f2:ce:64:61:a4: f6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B1:E8:5D:DC:EA:37:DF:ED:89:B2:4F:C0:3E:EA:B8:04:1D:C9:88 X509v3 Authority Key Identifier: keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/MrHoXdzqN9_tibJPwD7quAQdyYg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.181.199.0/24 IPv6: 2a02:730:4000::/48 Signature Algorithm: sha256WithRSAEncryption 04:e3:ef:17:38:d4:69:26:0a:ae:79:c6:af:f7:2f:dc:f2:34: dd:83:fc:ef:66:0c:3d:7b:79:a7:48:61:5a:ca:df:38:6a:8c: ed:1b:d7:54:9e:fc:b5:60:20:f0:cc:e8:22:96:e8:ac:1f:75: 6b:cd:48:0f:4b:b2:ec:44:70:73:2e:26:8e:66:58:14:9d:01: af:e6:7f:8f:49:37:19:ca:fc:38:7f:bd:a2:fa:d5:a5:a6:0b: 1f:21:35:4a:67:4f:88:06:6e:3b:86:40:40:1a:86:49:65:5b: ef:41:f7:2f:0e:a7:fd:a6:cc:81:f6:c1:36:1e:2b:34:f7:4d: 33:04:96:7e:77:22:92:bf:40:39:7a:17:c1:9a:30:39:b1:07: 36:a2:66:b6:80:10:59:e2:97:26:48:5b:4d:c3:ab:cc:86:8f: 90:8f:13:ae:79:5b:6e:65:01:77:ec:f4:53:7e:a6:e4:e2:5d: 86:e2:3d:cc:7d:ce:4c:01:f6:95:58:9d:25:10:80:71:4e:eb: bb:3f:b9:90:11:53:47:18:fb:4f:a6:08:cd:d0:b8:a0:9c:46: a9:4c:66:f4:ed:88:3d:10:e8:3f:8a:c6:67:70:87:3d:19:de: 5c:16:e5:12:79:3e:45:75:cf:73:b5:64:9c:11:99:55:89:6c: df:21:98:08 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt87lT92s+eDElhYidEklGtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2 NDI0OTcwHhcNMjYwMTAyMDQxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMmIxZTg1ZGRjZWEzN2RmZWQ4OWIyNGZjMDNlZWFiODA0MWRjOTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstoSaCd8my/F1J282bvrtMR+jQ2i x2s7Ssi+0YgTedY30uEwGECooUDyVDbIW5rApxH9XXR9jJSpcDXBzxs5bNZ505PL bSzKHVi8uZbpsFNdA+QVZVm0wKkDt/enXTtVbRndrk2Hr/gzdLO64XNuhfqPAmIP ieWmR+5E2ooT8w+sJfpbsplWl6bStHRomYtKyN/i8GrvMd4YNBoiEucWNrarfyC1 KNcdyR7HkVHA6M9seJ4d1nqtWrhrvW0BlSOIWtxep2n16HgSsfEedJcvbY/7uOsP oehw1eP0qkk3NnHAuiUfIuOlZRw+vLhPXDzVVfTqawuwwICg8s5kYaT2qwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFDKx6F3c6jff7YmyT8A+6rgEHcmIMB8GA1UdIwQY MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt OTU5M2E0ODhhZmNjLzEvTXJIb1hkenFOOV90aWJKUHdEN3F1QVFkeVlnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQA1bXHMA8E AgACMAkDBwAqAgcwQAAwDQYJKoZIhvcNAQELBQADggEBAATj7xc41GkmCq55xq/3 L9zyNN2D/O9mDD17eadIYVrK3zhqjO0b11Se/LVgIPDM6CKW6KwfdWvNSA9LsuxE cHMuJo5mWBSdAa/mf49JNxnK/Dh/vaL61aWmCx8hNUpnT4gGbjuGQEAahkllW+9B 9y8Op/2mzIH2wTYeKzT3TTMEln53IpK/QDl6F8GaMDmxBzaiZraAEFnilyZIW03D q8yGj5CPE655W25lAXfs9FN+puTiXYbiPcx9zkwB9pVYnSUQgHFO67s/uZARU0cY +0+mCM3QuKCcRqlMZvTtiD0Q6D+Kxmdwhz0Z3lwW5RJ5PkV1z3O1ZJwRmVWJbN8h mAg= -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:21 2026 by rpki-client