This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Mb-ypA09RmDvJd_sA9rVuUfVhVw.roa File: Mb-ypA09RmDvJd_sA9rVuUfVhVw.roa (raw, json) Hash identifier: USb5saEEdAhQRsGUeSkY+XevASy9sBtZQx+MnxHgFwM= Subject key identifier: 31:BF:B2:A4:0D:3D:46:60:EF:25:DF:EC:03:DA:D5:B9:47:D5:85:5C Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84B4340276DBA273DB24867F3CB42C Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Mb-ypA09RmDvJd_sA9rVuUfVhVw.roa Signing time: Fri 02 Jan 2026 16:22:41 +0000 ROA not before: Fri 02 Jan 2026 16:22:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48511 IP address blocks: 95.46.196.0/24 maxlen: 24 146.120.223.0/24 maxlen: 24 2a02:128:22::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:b4:34:02:76:db:a2:73:db:24:86:7f:3c:b4:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31bfb2a40d3d4660ef25dfec03dad5b947d5855c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:11:bb:a3:64:da:ae:37:3c:af:5e:2d:de:20: 20:50:59:dd:e3:45:67:16:b6:7b:ab:ef:1e:40:1c: 57:b8:45:be:ec:f5:48:38:d3:51:3f:5f:ec:33:dd: 6e:9d:e0:ee:5b:b3:40:88:47:07:62:a2:51:e1:f1: 9c:b8:a1:12:28:ad:f7:7a:20:86:15:2e:c0:47:54: c0:a6:9f:05:67:e0:fa:21:fe:27:f9:02:fa:d6:95: 78:99:42:0d:b1:41:e2:ea:7c:0c:50:b7:2a:bd:94: a0:4c:34:04:b7:6f:a2:14:68:f8:e1:49:ad:2e:ca: e8:11:f6:8e:7c:a2:35:85:89:49:0b:ee:33:ed:e6: df:d2:ab:05:93:14:19:c5:94:40:66:2b:20:bf:81: a0:c2:2b:3c:06:cf:f4:27:11:ce:40:58:19:bd:27: 61:05:14:5f:9b:78:c1:82:18:04:74:a5:b8:5e:02: fb:14:d3:82:05:14:49:58:48:dc:a3:8a:97:9a:ea: a1:0a:34:c4:3c:a3:c4:f4:51:0a:73:d4:3d:9b:c1: 88:2c:b6:74:89:29:45:ed:77:5c:60:f9:b2:5c:b2: a6:87:3a:b0:33:09:44:e7:c1:db:6e:9f:4f:fe:fb: 16:aa:92:4b:c4:79:34:6a:0d:df:52:ef:69:d9:93: 7d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:BF:B2:A4:0D:3D:46:60:EF:25:DF:EC:03:DA:D5:B9:47:D5:85:5C X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Mb-ypA09RmDvJd_sA9rVuUfVhVw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.46.196.0/24 146.120.223.0/24 IPv6: 2a02:128:22::/48 Signature Algorithm: sha256WithRSAEncryption 48:eb:de:ad:6c:de:45:50:6a:92:3a:fa:eb:0f:e6:b9:e9:6e: 04:c8:ea:bc:f6:4d:cf:00:9d:61:34:9e:a3:5e:31:73:dd:b2: bf:06:18:8c:fa:90:fa:84:20:f0:ee:3b:90:5f:f3:cc:ee:2c: ef:d3:17:25:7b:fe:e3:d6:1b:5f:9c:03:9f:77:ec:d3:f5:ee: 51:f9:a2:55:5e:75:18:2d:e3:3c:78:15:f3:a3:7f:5c:fb:13: 24:e6:44:82:f0:3b:75:87:21:e3:60:20:dc:a5:77:72:58:3a: 3b:3b:d9:48:f9:c1:84:ae:59:f1:89:9a:1d:0f:e0:40:0e:f6: 6b:6c:f1:6b:b1:11:64:60:fb:82:14:ac:d0:60:26:8e:e6:b3: 9f:a2:28:3c:35:9b:32:80:75:a4:b3:c9:03:17:20:ae:4f:3b: 6f:3f:41:a6:68:58:27:d9:7f:93:14:88:9c:33:2f:bb:49:b4: 03:78:01:5c:2f:85:38:a6:f4:cc:c6:3f:16:07:81:55:68:ce: 66:9f:7e:31:b4:b0:73:21:04:b3:bc:44:ae:a7:4c:72:de:9e: 62:31:79:06:52:9e:dc:93:47:a4:09:31:09:f2:d5:fa:b5:d4: ab:41:1a:b8:f8:1f:50:fd:8a:fd:0b:bf:76:db:c0:c7:b6:b3: 21:44:fe:e2 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt/hLQ0AnbbonPbJIZ/PLQsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMWJmYjJhNDBkM2Q0NjYwZWYyNWRmZWMwM2RhZDViOTQ3ZDU4NTVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRG7o2Tarjc8r14t3iAgUFnd40Vn FrZ7q+8eQBxXuEW+7PVIONNRP1/sM91uneDuW7NAiEcHYqJR4fGcuKESKK33eiCG FS7AR1TApp8FZ+D6If4n+QL61pV4mUINsUHi6nwMULcqvZSgTDQEt2+iFGj44Umt LsroEfaOfKI1hYlJC+4z7ebf0qsFkxQZxZRAZisgv4Ggwis8Bs/0JxHOQFgZvSdh BRRfm3jBghgEdKW4XgL7FNOCBRRJWEjco4qXmuqhCjTEPKPE9FEKc9Q9m8GILLZ0 iSlF7XdcYPmyXLKmhzqwMwlE58Hbbp9P/vsWqpJLxHk0ag3fUu9p2ZN9RQIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFDG/sqQNPUZg7yXf7APa1blH1YVcMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvTWIteXBBMDlSbUR2SmRfc0E5clZ1VWZWaFZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAXy7EAwQA knjfMA8EAgACMAkDBwAqAgEoACIwDQYJKoZIhvcNAQELBQADggEBAEjr3q1s3kVQ apI6+usP5rnpbgTI6rz2Tc8AnWE0nqNeMXPdsr8GGIz6kPqEIPDuO5Bf88zuLO/T FyV7/uPWG1+cA5937NP17lH5olVedRgt4zx4FfOjf1z7EyTmRILwO3WHIeNgINyl d3JYOjs72Uj5wYSuWfGJmh0P4EAO9mts8WuxEWRg+4IUrNBgJo7ms5+iKDw1mzKA daSzyQMXIK5PO28/QaZoWCfZf5MUiJwzL7tJtAN4AVwvhTim9MzGPxYHgVVozmaf fjG0sHMhBLO8RK6nTHLenmIxeQZSntyTR6QJMQny1fq11KtBGrj4H1D9iv0Lv3bb wMe2syFE/uI= -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:18 2026 by rpki-client