This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/MhLZWTXS4S3zmEURdP_TdxvNgJY.roa File: MhLZWTXS4S3zmEURdP_TdxvNgJY.roa (raw, json) Hash identifier: 9rV4NDo4H6diAwu7rDUdqQOfSLYPartWt7sMtwpYVzY= Subject key identifier: 32:12:D9:59:35:D2:E1:2D:F3:98:45:11:74:FF:D3:77:1B:CD:80:96 Certificate issuer: /CN=13e281475b7bf8d0fa1f669d5ad2de1635e8c04f Certificate serial: 019B797F3C4D47B1A45952E8BF1FC571737A Authority key identifier: 13:E2:81:47:5B:7B:F8:D0:FA:1F:66:9D:5A:D2:DE:16:35:E8:C0:4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E-KBR1t7-ND6H2adWtLeFjXowE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/MhLZWTXS4S3zmEURdP_TdxvNgJY.roa Signing time: Thu 01 Jan 2026 12:19:00 +0000 ROA not before: Thu 01 Jan 2026 12:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206150 IP address blocks: 45.80.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/E-KBR1t7-ND6H2adWtLeFjXowE8.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/E-KBR1t7-ND6H2adWtLeFjXowE8.mft rsync://rpki.ripe.net/repository/DEFAULT/E-KBR1t7-ND6H2adWtLeFjXowE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:3c:4d:47:b1:a4:59:52:e8:bf:1f:c5:71:73:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13e281475b7bf8d0fa1f669d5ad2de1635e8c04f Validity Not Before: Jan 1 12:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3212d95935d2e12df398451174ffd3771bcd8096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f1:36:0c:6b:5e:f0:da:ec:94:2a:0f:b3:66: 77:3b:6c:6a:8e:84:28:ef:a8:2d:5b:e4:77:b8:f6: cc:b4:74:1c:ac:a7:1c:e2:c8:4b:d3:4e:e2:f4:b2: 93:d0:df:8e:51:a1:7b:0e:a4:e0:00:30:47:7b:33: 53:e7:a3:f1:d7:4d:0f:2d:57:a3:d3:c1:83:9d:be: 8d:2f:f3:cd:3c:f6:fb:48:d0:cd:5d:71:29:d6:ca: b3:c3:ce:fa:c9:15:2c:9a:16:61:e0:d5:a7:1a:e3: 3c:2a:32:9d:95:dc:69:43:73:a2:6c:5e:0e:69:ff: 60:f9:47:33:c8:ad:79:21:75:58:85:14:55:b2:0d: 7f:29:ac:61:a2:3d:d2:fa:e3:3f:ff:9e:67:04:6a: 19:90:19:91:4e:a4:29:5d:67:56:dd:cb:5f:51:d2: 35:a3:c3:90:64:16:d8:6f:fe:57:ff:2c:fa:ce:9f: 80:7c:ec:16:f6:7a:4d:66:ec:b5:78:1f:1b:ed:6e: f3:e2:6f:72:b5:5c:29:ae:24:13:db:17:6f:69:c1: 75:74:de:ae:ba:56:f4:8c:4d:1c:cd:eb:f2:fc:37: cc:6c:b0:30:52:b1:18:8a:81:37:ec:68:df:67:33: 25:dd:77:61:af:58:5f:9d:12:db:d1:69:fa:42:8e: 3c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:12:D9:59:35:D2:E1:2D:F3:98:45:11:74:FF:D3:77:1B:CD:80:96 X509v3 Authority Key Identifier: keyid:13:E2:81:47:5B:7B:F8:D0:FA:1F:66:9D:5A:D2:DE:16:35:E8:C0:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E-KBR1t7-ND6H2adWtLeFjXowE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/MhLZWTXS4S3zmEURdP_TdxvNgJY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/E-KBR1t7-ND6H2adWtLeFjXowE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.80.48.0/24 Signature Algorithm: sha256WithRSAEncryption 35:15:71:b2:d6:e2:1c:e6:1e:be:ea:7a:87:4d:4c:40:d1:7a: 54:7b:a6:97:1d:75:c4:21:a0:73:1d:d2:de:a4:d1:d0:55:6a: 2c:8b:c3:d7:7a:74:42:10:57:13:c3:bc:62:4f:f5:bb:c9:5c: 6c:d3:be:d7:99:7c:7a:4f:12:4f:7d:0f:3c:e1:2d:a8:c0:5e: cc:45:b4:0e:8e:36:ed:b1:fc:d4:58:16:91:fb:81:e3:35:9e: e7:6a:da:90:8d:2a:46:87:ff:d4:f4:ff:0f:74:14:24:b0:5c: a1:fa:5e:bf:ae:9f:fd:33:db:44:7b:12:d0:3e:18:a5:94:5d: b2:1c:24:3e:57:b8:33:8f:95:b0:0e:78:08:e6:d9:68:10:28: 7e:0a:77:25:1d:88:4d:19:9e:ea:fd:53:08:0d:d7:88:da:14: 91:e1:c1:65:46:20:a9:cb:1d:af:6a:6d:bc:79:b3:c8:85:b0: 9e:d4:87:9c:b6:c0:b5:8b:ca:16:66:3a:41:40:69:26:ae:38: 9a:ea:0a:18:41:23:fd:fe:a5:ea:cf:0a:51:71:02:01:ed:6d: 5f:08:7a:e2:2d:ff:e0:7d:7e:51:2a:64:10:1a:5c:2c:2e:0d: 40:e3:22:e5:44:2c:f9:34:ab:d3:2d:ed:0d:37:7f:5a:75:be: 9a:2b:2b:fa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fzxNR7GkWVLovx/FcXN6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzZTI4MTQ3NWI3YmY4ZDBmYTFmNjY5ZDVhZDJkZTE2MzVl OGMwNGYwHhcNMjYwMTAxMTIxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMjEyZDk1OTM1ZDJlMTJkZjM5ODQ1MTE3NGZmZDM3NzFiY2Q4MDk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfE2DGte8NrslCoPs2Z3O2xqjoQo 76gtW+R3uPbMtHQcrKcc4shL007i9LKT0N+OUaF7DqTgADBHezNT56Px100PLVej 08GDnb6NL/PNPPb7SNDNXXEp1sqzw876yRUsmhZh4NWnGuM8KjKdldxpQ3OibF4O af9g+UczyK15IXVYhRRVsg1/Kaxhoj3S+uM//55nBGoZkBmRTqQpXWdW3ctfUdI1 o8OQZBbYb/5X/yz6zp+AfOwW9npNZuy1eB8b7W7z4m9ytVwpriQT2xdvacF1dN6u ulb0jE0czevy/DfMbLAwUrEYioE37GjfZzMl3Xdhr1hfnRLb0Wn6Qo48YQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDIS2Vk10uEt85hFEXT/03cbzYCWMB8GA1UdIwQY MBaAFBPigUdbe/jQ+h9mnVrS3hY16MBPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRS1LQlIxdDctTkQ2SDJhZFd0TGVGalhvd0U4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS8wNWI1ZDgtNDU0MS00OGE5LThjMGEt NDRmZDA0MzkzZTJiLzEvTWhMWldUWFM0UzN6bUVVUmRQX1RkeHZOZ0pZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS8wNWI1ZDgtNDU0MS00OGE5LThjMGEtNDRmZDA0MzkzZTJi LzEvRS1LQlIxdDctTkQ2SDJhZFd0TGVGalhvd0U4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVAwMA0G CSqGSIb3DQEBCwUAA4IBAQA1FXGy1uIc5h6+6nqHTUxA0XpUe6aXHXXEIaBzHdLe pNHQVWosi8PXenRCEFcTw7xiT/W7yVxs077XmXx6TxJPfQ884S2owF7MRbQOjjbt sfzUWBaR+4HjNZ7natqQjSpGh//U9P8PdBQksFyh+l6/rp/9M9tEexLQPhillF2y HCQ+V7gzj5WwDngI5tloECh+CnclHYhNGZ7q/VMIDdeI2hSR4cFlRiCpyx2vam28 ebPIhbCe1IectsC1i8oWZjpBQGkmrjia6goYQSP9/qXqzwpRcQIB7W1fCHriLf/g fX5RKmQQGlwsLg1A4yLlRCz5NKvTLe0NN39adb6aKyv6 -----END CERTIFICATE-----Generated at Sun Jan 25 17:43:21 2026 by rpki-client