This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/MABfGZvu5yxQ_wJ1RlDg86TKjgY.roa File: MABfGZvu5yxQ_wJ1RlDg86TKjgY.roa (raw, json) Hash identifier: qWZk/mFwgaPsmjZ21Hc+7Pwe1MdlY5G50+jgp2VGle4= Subject key identifier: 30:00:5F:19:9B:EE:E7:2C:50:FF:02:75:46:50:E0:F3:A4:CA:8E:06 Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Certificate serial: 019B76EB01DFAB60DC440CAC39566E375730 Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/MABfGZvu5yxQ_wJ1RlDg86TKjgY.roa Signing time: Thu 01 Jan 2026 00:17:51 +0000 ROA not before: Thu 01 Jan 2026 00:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214669 IP address blocks: 82.115.2.0/24 maxlen: 24 82.115.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.mft rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:01:df:ab:60:dc:44:0c:ac:39:56:6e:37:57:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Validity Not Before: Jan 1 00:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=30005f199beee72c50ff02754650e0f3a4ca8e06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:48:0c:c8:4d:41:f8:cd:7c:e0:9f:44:6f:9b: 62:64:1b:9e:07:c4:b3:c3:7c:0b:a2:a0:0f:62:34: 51:7a:96:bc:6c:a5:4b:e4:5f:0e:2c:33:5c:10:41: 3b:82:f0:52:9e:67:d0:6b:3e:44:12:0b:81:f2:86: 34:32:4a:73:00:c4:e7:8a:ac:5e:76:70:78:f3:c2: c1:b4:75:46:eb:a7:d7:53:15:a1:d4:dc:68:e4:89: 9a:04:a7:5c:8d:f4:6c:97:a8:87:75:c3:bb:6f:36: fb:c2:f5:0e:35:0e:9a:b2:e0:88:02:39:18:b0:8d: 73:f0:6d:4c:29:9b:3e:6e:f0:af:16:5c:ea:82:38: 6e:9a:de:1d:52:6f:ba:c1:c1:3b:29:d3:88:96:7b: 7d:75:46:f6:1d:2a:ad:ab:ca:98:ea:95:9b:1f:9d: 79:45:0d:aa:73:22:a8:0a:ff:aa:ba:15:05:7e:d1: 9c:77:8f:8b:94:5c:c6:e7:71:81:d9:ae:0f:74:32: 66:db:2c:30:3b:03:3f:87:ba:40:32:f2:0e:be:76: c2:0f:6c:f7:01:1e:59:d5:eb:b8:d1:83:67:2e:62: 6f:f5:80:fd:a9:28:9c:5f:2a:0a:01:85:a9:de:f7: 2e:85:9e:67:d5:0d:5d:97:94:7f:11:f4:ee:c2:fc: 22:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:00:5F:19:9B:EE:E7:2C:50:FF:02:75:46:50:E0:F3:A4:CA:8E:06 X509v3 Authority Key Identifier: keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/MABfGZvu5yxQ_wJ1RlDg86TKjgY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.115.2.0/24 82.115.10.0/23 Signature Algorithm: sha256WithRSAEncryption b3:fd:d2:8b:3f:6b:04:20:a7:b1:7e:ab:d8:3c:c1:54:50:7f: 7c:ca:71:57:51:99:d9:bf:69:12:b5:48:a9:d4:79:94:da:c4: 8e:2d:2d:5f:b6:a0:3e:28:1d:ea:3c:8f:5a:73:c5:fc:f4:56: 02:cf:4b:a1:52:ac:1b:f4:c6:13:3d:65:14:cd:6a:f6:32:64: db:28:6e:f0:5c:fd:fc:c0:fc:78:27:d2:4a:07:2a:c9:db:bd: 2a:35:de:1c:d3:25:7b:39:4f:e8:fd:c0:ae:51:75:e0:54:35: a1:87:50:6d:01:8c:42:ea:fc:0d:77:c0:34:9d:f2:95:fc:33: 04:0b:ed:f4:b1:98:ac:d3:6b:3e:0f:d4:ea:2d:2a:70:21:68: 4f:52:9b:85:0f:2e:08:b4:2b:5d:5a:27:88:c5:f6:ca:21:17: cd:5f:51:5b:86:a9:1d:8c:a8:61:2b:41:50:02:7d:13:99:7f: 27:4f:11:96:8a:87:bc:e9:a3:a6:c9:1a:97:6b:d9:1e:3d:2f: e5:bb:d1:28:36:41:be:1f:fa:a4:f5:13:26:6f:98:fa:94:8b: f7:c1:1f:fc:a7:b5:22:97:7b:ff:f6:30:4c:17:92:26:66:5e: 44:32:b9:fb:0a:05:c2:d2:ba:ca:f9:46:91:69:79:d8:72:b1: cd:52:c5:42 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26wHfq2DcRAysOVZuN1cwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2 NWE0NzgwHhcNMjYwMTAxMDAxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMDAwNWYxOTliZWVlNzJjNTBmZjAyNzU0NjUwZTBmM2E0Y2E4ZTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8kgMyE1B+M184J9Eb5tiZBueB8Sz w3wLoqAPYjRRepa8bKVL5F8OLDNcEEE7gvBSnmfQaz5EEguB8oY0MkpzAMTniqxe dnB488LBtHVG66fXUxWh1Nxo5ImaBKdcjfRsl6iHdcO7bzb7wvUONQ6asuCIAjkY sI1z8G1MKZs+bvCvFlzqgjhumt4dUm+6wcE7KdOIlnt9dUb2HSqtq8qY6pWbH515 RQ2qcyKoCv+quhUFftGcd4+LlFzG53GB2a4PdDJm2ywwOwM/h7pAMvIOvnbCD2z3 AR5Z1eu40YNnLmJv9YD9qSicXyoKAYWp3vcuhZ5n1Q1dl5R/EfTuwvwiZwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDAAXxmb7ucsUP8CdUZQ4POkyo4GMB8GA1UdIwQY MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt ZmUwNjU5MTc2YTU2LzEvTUFCZkdadnU1eXhRX3dKMVJsRGc4NlRLamdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2 LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUnMCAwQB UnMKMA0GCSqGSIb3DQEBCwUAA4IBAQCz/dKLP2sEIKexfqvYPMFUUH98ynFXUZnZ v2kStUip1HmU2sSOLS1ftqA+KB3qPI9ac8X89FYCz0uhUqwb9MYTPWUUzWr2MmTb KG7wXP38wPx4J9JKByrJ270qNd4c0yV7OU/o/cCuUXXgVDWhh1BtAYxC6vwNd8A0 nfKV/DMEC+30sZis02s+D9TqLSpwIWhPUpuFDy4ItCtdWieIxfbKIRfNX1Fbhqkd jKhhK0FQAn0TmX8nTxGWioe86aOmyRqXa9kePS/lu9EoNkG+H/qk9RMmb5j6lIv3 wR/8p7Uil3v/9jBMF5ImZl5EMrn7CgXC0rrK+UaRaXnYcrHNUsVC -----END CERTIFICATE-----Generated at Sun Jan 25 15:07:55 2026 by rpki-client