This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/8eb453-a3eb-4500-a7e0-32de5858ba6c/1/MYb8VAECnaCGoqYg036Ww2frkMM.roa File: MYb8VAECnaCGoqYg036Ww2frkMM.roa (raw, json) Hash identifier: JPX2kf+QL+uvDn6HBV8cAFTbeXUIBEUW2fYqImCC42M= Subject key identifier: 31:86:FC:54:01:02:9D:A0:86:A2:A6:20:D3:7E:96:C3:67:EB:90:C3 Certificate issuer: /CN=4531ad46e0b9c010cd2885e6002c1a5b93cd5112 Certificate serial: 019B7BA5168B0D7776C508F24B93335A270F Authority key identifier: 45:31:AD:46:E0:B9:C0:10:CD:28:85:E6:00:2C:1A:5B:93:CD:51:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RTGtRuC5wBDNKIXmACwaW5PNURI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/8eb453-a3eb-4500-a7e0-32de5858ba6c/1/MYb8VAECnaCGoqYg036Ww2frkMM.roa Signing time: Thu 01 Jan 2026 22:19:35 +0000 ROA not before: Thu 01 Jan 2026 22:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21232 IP address blocks: 185.193.224.0/22 maxlen: 22 2a14:5300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/8eb453-a3eb-4500-a7e0-32de5858ba6c/1/RTGtRuC5wBDNKIXmACwaW5PNURI.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/8eb453-a3eb-4500-a7e0-32de5858ba6c/1/RTGtRuC5wBDNKIXmACwaW5PNURI.mft rsync://rpki.ripe.net/repository/DEFAULT/RTGtRuC5wBDNKIXmACwaW5PNURI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:16:8b:0d:77:76:c5:08:f2:4b:93:33:5a:27:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4531ad46e0b9c010cd2885e6002c1a5b93cd5112 Validity Not Before: Jan 1 22:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3186fc5401029da086a2a620d37e96c367eb90c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e3:fc:5b:fa:af:c9:f8:37:1d:2d:87:c3:8b: f7:08:73:8a:b0:c5:57:0e:69:e0:40:12:e0:16:e8: 6e:d5:40:75:6d:fd:71:eb:d4:85:6a:f6:bc:11:f9: cf:a8:87:c6:94:53:3e:39:c9:d1:a0:9c:43:c6:fe: 13:99:28:12:d8:40:8a:c4:19:2b:15:f7:38:37:dd: 2a:d3:25:6b:22:dc:1f:c3:f0:8e:ac:c7:79:be:ae: a8:10:ef:6a:74:71:51:98:43:de:e9:07:3a:a4:fd: 76:8e:0f:5f:87:f3:da:67:b2:c6:8e:9c:5d:97:87: 00:c8:f8:bb:ac:87:68:86:45:d7:48:6f:a6:b0:59: 0e:86:41:90:6d:38:7c:21:9a:67:f5:59:a9:58:1d: 02:51:30:b8:19:7a:7f:f6:1f:20:04:2f:99:41:88: 8b:dd:9d:7f:df:96:f9:94:60:ec:2b:df:74:e0:05: 15:1a:d3:7b:36:fd:5b:65:2d:c6:39:ab:eb:ed:a8: 07:28:67:69:87:f6:27:0d:72:80:f4:19:1e:2b:57: 38:35:c8:e4:bb:9a:37:b6:0f:e8:4f:3a:54:23:8a: 63:39:29:89:d9:48:cf:05:5f:2c:cc:60:bc:c4:a6: e3:81:ed:87:0d:68:62:09:54:40:84:20:b0:30:d9: 84:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:86:FC:54:01:02:9D:A0:86:A2:A6:20:D3:7E:96:C3:67:EB:90:C3 X509v3 Authority Key Identifier: keyid:45:31:AD:46:E0:B9:C0:10:CD:28:85:E6:00:2C:1A:5B:93:CD:51:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RTGtRuC5wBDNKIXmACwaW5PNURI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/8eb453-a3eb-4500-a7e0-32de5858ba6c/1/MYb8VAECnaCGoqYg036Ww2frkMM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/8eb453-a3eb-4500-a7e0-32de5858ba6c/1/RTGtRuC5wBDNKIXmACwaW5PNURI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.193.224.0/22 IPv6: 2a14:5300::/32 Signature Algorithm: sha256WithRSAEncryption 80:0c:2f:22:a0:02:bd:22:b5:e7:ae:93:79:90:85:87:79:cc: ec:b2:45:0d:92:46:b1:70:99:e7:61:56:c5:6b:13:63:12:91: b5:c8:4f:1a:23:f9:bb:35:7c:c7:b7:9e:af:50:13:d9:46:ba: c6:9c:5d:b7:8c:63:c7:cc:e3:b5:cf:ea:6e:47:6e:f1:7c:0b: 37:65:6d:8e:6a:05:af:44:0d:60:7c:eb:0a:37:9a:c6:70:04: 42:aa:d0:33:0a:aa:de:22:99:31:dd:62:fc:59:0b:91:f9:aa: ae:a4:b4:78:22:11:fa:fb:95:1a:52:d7:0c:3a:62:4f:43:15: e4:d0:f6:bd:14:b7:6a:18:b3:9a:88:c0:5f:65:a7:66:8b:4f: 7e:7e:24:b3:98:5e:62:42:74:29:18:55:42:fd:ba:97:8c:75: 95:48:7d:bb:75:45:f5:a9:72:12:31:70:24:7a:dd:d5:a0:08: 78:a0:d2:7a:ff:76:eb:23:3e:42:55:cc:e9:fa:c0:5f:a7:4b: 7b:2d:9c:60:8f:34:ae:c8:61:75:eb:32:cd:06:d0:f5:3e:09: 1f:14:1b:77:d4:63:13:a7:05:f3:f5:7c:b9:ec:1c:51:a6:51: 7e:2c:24:8a:f8:ba:32:0e:6a:52:6d:7f:01:38:78:53:c4:f3: 19:21:4a:1e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pRaLDXd2xQjyS5MzWicPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1MzFhZDQ2ZTBiOWMwMTBjZDI4ODVlNjAwMmMxYTViOTNj ZDUxMTIwHhcNMjYwMTAxMjIxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMTg2ZmM1NDAxMDI5ZGEwODZhMmE2MjBkMzdlOTZjMzY3ZWI5MGMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1eP8W/qvyfg3HS2Hw4v3CHOKsMVX DmngQBLgFuhu1UB1bf1x69SFava8EfnPqIfGlFM+OcnRoJxDxv4TmSgS2ECKxBkr Ffc4N90q0yVrItwfw/COrMd5vq6oEO9qdHFRmEPe6Qc6pP12jg9fh/PaZ7LGjpxd l4cAyPi7rIdohkXXSG+msFkOhkGQbTh8IZpn9VmpWB0CUTC4GXp/9h8gBC+ZQYiL 3Z1/35b5lGDsK9904AUVGtN7Nv1bZS3GOavr7agHKGdph/YnDXKA9BkeK1c4Ncjk u5o3tg/oTzpUI4pjOSmJ2UjPBV8szGC8xKbjge2HDWhiCVRAhCCwMNmEKwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDGG/FQBAp2ghqKmINN+lsNn65DDMB8GA1UdIwQY MBaAFEUxrUbgucAQzSiF5gAsGluTzVESMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlRHdFJ1QzV3QkROS0lYbUFDd2FXNVBOVVJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy84ZWI0NTMtYTNlYi00NTAwLWE3ZTAt MzJkZTU4NThiYTZjLzEvTVliOFZBRUNuYUNHb3FZZzAzNld3MmZya01NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy84ZWI0NTMtYTNlYi00NTAwLWE3ZTAtMzJkZTU4NThiYTZj LzEvUlRHdFJ1QzV3QkROS0lYbUFDd2FXNVBOVVJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCucHgMA0E AgACMAcDBQAqFFMAMA0GCSqGSIb3DQEBCwUAA4IBAQCADC8ioAK9IrXnrpN5kIWH eczsskUNkkaxcJnnYVbFaxNjEpG1yE8aI/m7NXzHt56vUBPZRrrGnF23jGPHzOO1 z+puR27xfAs3ZW2OagWvRA1gfOsKN5rGcARCqtAzCqreIpkx3WL8WQuR+aqupLR4 IhH6+5UaUtcMOmJPQxXk0Pa9FLdqGLOaiMBfZadmi09+fiSzmF5iQnQpGFVC/bqX jHWVSH27dUX1qXISMXAket3VoAh4oNJ6/3brIz5CVczp+sBfp0t7LZxgjzSuyGF1 6zLNBtD1PgkfFBt31GMTpwXz9Xy57BxRplF+LCSK+LoyDmpSbX8BOHhTxPMZIUoe -----END CERTIFICATE-----Generated at Mon Jan 26 09:55:07 2026 by rpki-client