This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/muf1o8olsU8BpUy1Ss-ye78uW-s.roa File: muf1o8olsU8BpUy1Ss-ye78uW-s.roa (raw, json) Hash identifier: QgRb4jfYwp6/aNNsfX1wwZ37AVq0LKioTTxMPAiv9fA= Subject key identifier: 9A:E7:F5:A3:CA:25:B1:4F:01:A5:4C:B5:4A:CF:B2:7B:BF:2E:5B:EB Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff Certificate serial: 019B7F833408566EBC0FF63FA6FF3349A6B8 Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/muf1o8olsU8BpUy1Ss-ye78uW-s.roa Signing time: Fri 02 Jan 2026 16:21:03 +0000 ROA not before: Fri 02 Jan 2026 16:21:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20960 IP address blocks: 78.131.128.0/17 maxlen: 17 82.160.0.0/16 maxlen: 16 88.199.0.0/16 maxlen: 16 94.40.0.0/16 maxlen: 17 94.40.0.0/18 maxlen: 18 94.40.64.0/18 maxlen: 18 94.40.192.0/19 maxlen: 19 213.199.192.0/18 maxlen: 18 2a02:f40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.mft rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:34:08:56:6e:bc:0f:f6:3f:a6:ff:33:49:a6:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff Validity Not Before: Jan 2 16:21:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9ae7f5a3ca25b14f01a54cb54acfb27bbf2e5beb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d1:aa:de:ef:31:ac:2b:d8:59:85:9b:3c:09: 3a:71:46:4d:b7:bd:1b:45:69:f2:70:68:4a:99:f7: 38:89:ed:05:53:49:88:ee:55:ef:02:d8:44:d4:13: e5:51:1f:40:f0:40:58:1f:09:44:04:40:62:35:79: 8b:d7:42:74:e5:36:71:3b:a3:2e:6c:dc:d3:a2:fd: 93:1c:3d:33:7e:b5:e7:a8:78:cc:17:89:08:b8:5a: f5:3c:8e:bf:4d:26:bb:96:69:67:a4:6d:e5:6a:78: f6:d7:82:73:e9:bd:62:e3:77:68:dd:e9:90:f6:30: 5b:59:5a:20:e5:10:0e:d8:68:8e:05:11:73:72:c2: 7e:57:aa:ee:d8:92:91:75:9a:3e:11:65:f1:13:74: b8:84:11:fd:29:64:3b:74:6e:bb:eb:2b:3a:47:f8: 80:a0:ec:87:a3:19:2e:3d:33:98:8b:ee:5a:f4:63: c6:9c:20:24:14:a1:ff:a7:65:bd:3e:eb:97:11:90: 0e:56:47:2e:cf:76:38:3f:8b:ca:47:c9:fa:34:a5: dc:42:62:eb:78:ed:6c:c9:4b:fb:a4:fd:96:3b:42: d6:c1:59:e9:7c:b6:7a:83:3d:fe:20:f2:63:95:7b: dc:7e:bb:f6:74:50:04:27:1e:1d:26:21:98:70:2c: 38:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E7:F5:A3:CA:25:B1:4F:01:A5:4C:B5:4A:CF:B2:7B:BF:2E:5B:EB X509v3 Authority Key Identifier: keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/muf1o8olsU8BpUy1Ss-ye78uW-s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.131.128.0/17 82.160.0.0/16 88.199.0.0/16 94.40.0.0/16 213.199.192.0/18 IPv6: 2a02:f40::/32 Signature Algorithm: sha256WithRSAEncryption 4f:15:b6:43:78:bb:04:1b:9c:f3:bc:13:e3:ff:65:8a:81:68: 46:e7:24:11:73:72:cb:1e:9f:65:f2:f5:26:1f:33:55:09:1a: 7c:03:4e:d4:c6:63:db:f8:2e:f8:4c:35:8a:b2:3e:e3:41:2d: 74:46:ec:d5:9a:01:18:e9:a2:25:b9:bf:74:77:13:82:96:f8: 04:00:79:62:ad:f5:89:94:64:ea:31:42:35:6e:50:7f:ab:e0: c9:2a:3a:20:27:0d:3d:5d:19:89:55:1f:37:69:ec:05:7a:21: 3a:58:3a:dc:fa:d6:ea:f1:9c:5e:ab:8d:6e:b8:4e:4a:87:dd: 07:23:5c:42:0e:47:41:74:f2:ac:a8:2c:a5:c8:ba:4c:4b:dd: 58:65:e1:b5:d6:bc:5d:de:7d:b8:04:72:a4:e5:be:d8:22:d6: 07:84:43:d0:f2:74:96:0c:40:41:c5:fc:e1:bb:b4:7e:bd:51: e9:94:5c:74:78:d1:f5:69:f6:93:09:dd:e9:fe:5b:3f:6e:04: 53:49:88:9a:69:74:95:f5:de:71:b6:0d:0f:d1:70:09:c8:ae: 4a:09:2a:43:da:a4:5b:3e:77:62:3f:ec:bd:cc:e8:90:d2:84: be:62:33:76:dc:f6:8c:7c:44:d8:4d:3d:46:8d:61:11:6a:de: c6:ae:cc:b5 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt/gzQIVm68D/Y/pv8zSaa4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3OTMwMWRjYzdmYWU0ZjdjZTAxZTQ5ODdhNzdjYjgyYTMz NmFiZmYwHhcNMjYwMTAyMTYyMTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YWU3ZjVhM2NhMjViMTRmMDFhNTRjYjU0YWNmYjI3YmJmMmU1YmViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdGq3u8xrCvYWYWbPAk6cUZNt70b RWnycGhKmfc4ie0FU0mI7lXvAthE1BPlUR9A8EBYHwlEBEBiNXmL10J05TZxO6Mu bNzTov2THD0zfrXnqHjMF4kIuFr1PI6/TSa7lmlnpG3lanj214Jz6b1i43do3emQ 9jBbWVog5RAO2GiOBRFzcsJ+V6ru2JKRdZo+EWXxE3S4hBH9KWQ7dG676ys6R/iA oOyHoxkuPTOYi+5a9GPGnCAkFKH/p2W9PuuXEZAOVkcuz3Y4P4vKR8n6NKXcQmLr eO1syUv7pP2WO0LWwVnpfLZ6gz3+IPJjlXvcfrv2dFAEJx4dJiGYcCw4RwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFJrn9aPKJbFPAaVMtUrPsnu/LlvrMB8GA1UdIwQY MBaAFBeTAdzH+uT3zgHkmHp3y4KjNqv/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjVNQjNNZjY1UGZPQWVTWWVuZkxncU0ycV84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9lZDc5NjMtNzJlYS00YzFkLWFkZGQt YWZmOTJjMTZkOGUzLzEvbXVmMW84b2xzVThCcFV5MVNzLXllNzh1Vy1zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9lZDc5NjMtNzJlYS00YzFkLWFkZGQtYWZmOTJjMTZkOGUz LzEvRjVNQjNNZjY1UGZPQWVTWWVuZkxncU0ycV84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAhBAIAATAbAwQHToOAAwMA UqADAwBYxwMDAF4oAwQG1cfAMA0EAgACMAcDBQAqAg9AMA0GCSqGSIb3DQEBCwUA A4IBAQBPFbZDeLsEG5zzvBPj/2WKgWhG5yQRc3LLHp9l8vUmHzNVCRp8A07UxmPb +C74TDWKsj7jQS10RuzVmgEY6aIlub90dxOClvgEAHlirfWJlGTqMUI1blB/q+DJ KjogJw09XRmJVR83aewFeiE6WDrc+tbq8Zxeq41uuE5Kh90HI1xCDkdBdPKsqCyl yLpMS91YZeG11rxd3n24BHKk5b7YItYHhEPQ8nSWDEBBxfzhu7R+vVHplFx0eNH1 afaTCd3p/ls/bgRTSYiaaXSV9d5xtg0P0XAJyK5KCSpD2qRbPndiP+y9zOiQ0oS+ YjN23PaMfETYTT1GjWERat7Grsy1 -----END CERTIFICATE-----Generated at Mon Jan 26 05:06:47 2026 by rpki-client