This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/3e60ad-d6bb-45a3-aef3-2b932e6823ad/1/Ma8H1fgQEZiykkTlF-Y0HcwTumQ.roa File: Ma8H1fgQEZiykkTlF-Y0HcwTumQ.roa (raw, json) Hash identifier: V4dnLv6J0q+xgKJjM9hxw2pa2vp40VWjdBqsBD1NqDU= Subject key identifier: 31:AF:07:D5:F8:10:11:98:B2:92:44:E5:17:E6:34:1D:CC:13:BA:64 Certificate issuer: /CN=1f7b7c0d6f7b34608eb24cfa1a888bf33b1b6153 Certificate serial: 019B7834DC2BD37DF42B8C759CD6654FE740 Authority key identifier: 1F:7B:7C:0D:6F:7B:34:60:8E:B2:4C:FA:1A:88:8B:F3:3B:1B:61:53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H3t8DW97NGCOskz6GoiL8zsbYVM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/3e60ad-d6bb-45a3-aef3-2b932e6823ad/1/Ma8H1fgQEZiykkTlF-Y0HcwTumQ.roa Signing time: Thu 01 Jan 2026 06:18:08 +0000 ROA not before: Thu 01 Jan 2026 06:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3209 IP address blocks: 80.68.144.0/24 maxlen: 24 2a06:780::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/3e60ad-d6bb-45a3-aef3-2b932e6823ad/1/H3t8DW97NGCOskz6GoiL8zsbYVM.crl rsync://rpki.ripe.net/repository/DEFAULT/82/3e60ad-d6bb-45a3-aef3-2b932e6823ad/1/H3t8DW97NGCOskz6GoiL8zsbYVM.mft rsync://rpki.ripe.net/repository/DEFAULT/H3t8DW97NGCOskz6GoiL8zsbYVM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:dc:2b:d3:7d:f4:2b:8c:75:9c:d6:65:4f:e7:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f7b7c0d6f7b34608eb24cfa1a888bf33b1b6153 Validity Not Before: Jan 1 06:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31af07d5f8101198b29244e517e6341dcc13ba64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:a9:b5:69:d2:06:6d:76:da:2f:d3:5d:9d:ea: 22:c9:1e:44:9d:19:be:ad:d1:0e:71:ee:9f:1e:8d: e6:42:cd:2e:83:1d:14:9c:72:32:6d:8a:73:2c:7d: 64:a1:6a:1b:64:ef:25:b5:d6:b6:6c:6d:27:0d:ce: 52:92:82:aa:de:4b:6a:fc:d9:a5:fb:0b:6a:8a:9a: 1b:df:dd:11:e6:29:37:ae:57:49:7a:00:08:73:15: 18:70:2b:6e:fa:76:95:28:d7:3d:af:8d:52:00:38: 8c:36:5e:25:6e:99:35:ec:61:dc:ce:a3:72:17:ca: e7:57:2a:11:0b:43:c2:3b:d7:98:ac:ac:1f:34:4e: c3:8f:4a:3e:b8:33:f8:5c:f2:f1:fc:6c:b0:46:05: cb:c4:35:8b:1c:0d:a8:45:f5:b4:5b:11:88:a1:da: 53:e2:35:23:01:f0:2a:35:35:85:8b:64:48:f3:2c: c7:53:ca:ac:0a:ce:de:5c:d9:02:67:4f:29:f2:5f: ad:e8:ce:aa:ee:ee:de:13:b2:d2:d4:9d:41:a6:17: 3e:02:5c:5c:c1:91:e8:65:91:b4:55:8f:a3:43:ab: 7b:d7:98:d1:94:ce:f1:f9:2e:e1:87:b8:3a:37:ff: b0:99:21:59:1e:f5:5d:02:67:01:eb:e1:5c:7d:7c: 79:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AF:07:D5:F8:10:11:98:B2:92:44:E5:17:E6:34:1D:CC:13:BA:64 X509v3 Authority Key Identifier: keyid:1F:7B:7C:0D:6F:7B:34:60:8E:B2:4C:FA:1A:88:8B:F3:3B:1B:61:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H3t8DW97NGCOskz6GoiL8zsbYVM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3e60ad-d6bb-45a3-aef3-2b932e6823ad/1/Ma8H1fgQEZiykkTlF-Y0HcwTumQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3e60ad-d6bb-45a3-aef3-2b932e6823ad/1/H3t8DW97NGCOskz6GoiL8zsbYVM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.68.144.0/24 IPv6: 2a06:780::/29 Signature Algorithm: sha256WithRSAEncryption 5c:43:bb:ee:e0:03:5d:6a:c7:8e:d9:fa:3f:3e:8b:b5:14:57: 2f:2d:ad:55:a0:d2:ba:43:c4:c1:ac:e3:63:71:99:b6:cc:97: f9:ca:64:ce:15:4f:00:02:87:4f:15:43:72:76:9d:4f:8a:4d: 3d:8e:aa:8a:d8:7a:b4:dc:5c:7f:3e:ec:2e:d9:ba:b7:8a:89: 5b:bf:2c:1c:b1:87:9b:41:b8:b6:a4:f1:99:8c:76:e8:87:2a: 37:fc:75:fe:4c:66:d7:45:0f:ed:ac:b3:0a:23:ea:11:16:36: d0:f5:af:ba:96:9b:37:ba:94:be:a6:1e:74:24:14:a6:f0:ae: cc:9b:ad:27:aa:62:a4:23:e8:40:47:d4:ef:ce:69:7b:12:74: c2:fa:01:f6:e4:fa:c3:39:00:21:7b:9f:45:9e:af:d9:77:9b: 6f:81:61:a7:36:f8:72:0b:86:9f:6a:da:f3:52:a5:01:cc:bb: eb:dc:95:2c:75:b5:4e:f5:5a:94:44:c5:55:c3:d4:0e:f6:4d: a4:2e:df:a5:17:67:00:77:c0:a6:12:c0:1b:86:29:83:a6:e5: 8e:b5:25:f9:bd:81:a0:d6:bb:65:f3:8f:9d:45:46:4d:83:38: bc:e3:f3:4b:2b:4e:ca:3a:1e:af:c2:eb:23:24:fc:ad:71:55: e9:c9:e8:47 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NNwr0330K4x1nNZlT+dAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmN2I3YzBkNmY3YjM0NjA4ZWIyNGNmYTFhODg4YmYzM2Ix YjYxNTMwHhcNMjYwMTAxMDYxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMWFmMDdkNWY4MTAxMTk4YjI5MjQ0ZTUxN2U2MzQxZGNjMTNiYTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+Km1adIGbXbaL9NdneoiyR5EnRm+ rdEOce6fHo3mQs0ugx0UnHIybYpzLH1koWobZO8ltda2bG0nDc5SkoKq3ktq/Nml +wtqipob390R5ik3rldJegAIcxUYcCtu+naVKNc9r41SADiMNl4lbpk17GHczqNy F8rnVyoRC0PCO9eYrKwfNE7Dj0o+uDP4XPLx/GywRgXLxDWLHA2oRfW0WxGIodpT 4jUjAfAqNTWFi2RI8yzHU8qsCs7eXNkCZ08p8l+t6M6q7u7eE7LS1J1Bphc+Alxc wZHoZZG0VY+jQ6t715jRlM7x+S7hh7g6N/+wmSFZHvVdAmcB6+FcfXx55wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDGvB9X4EBGYspJE5RfmNB3ME7pkMB8GA1UdIwQY MBaAFB97fA1vezRgjrJM+hqIi/M7G2FTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDN0OERXOTdOR0NPc2t6NkdvaUw4enNiWVZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8zZTYwYWQtZDZiYi00NWEzLWFlZjMt MmI5MzJlNjgyM2FkLzEvTWE4SDFmZ1FFWml5a2tUbEYtWTBIY3dUdW1RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8zZTYwYWQtZDZiYi00NWEzLWFlZjMtMmI5MzJlNjgyM2Fk LzEvSDN0OERXOTdOR0NPc2t6NkdvaUw4enNiWVZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAUESQMA0E AgACMAcDBQMqBgeAMA0GCSqGSIb3DQEBCwUAA4IBAQBcQ7vu4ANdaseO2fo/Pou1 FFcvLa1VoNK6Q8TBrONjcZm2zJf5ymTOFU8AAodPFUNydp1Pik09jqqK2Hq03Fx/ Puwu2bq3iolbvywcsYebQbi2pPGZjHbohyo3/HX+TGbXRQ/trLMKI+oRFjbQ9a+6 lps3upS+ph50JBSm8K7Mm60nqmKkI+hAR9Tvzml7EnTC+gH25PrDOQAhe59Fnq/Z d5tvgWGnNvhyC4afatrzUqUBzLvr3JUsdbVO9VqURMVVw9QO9k2kLt+lF2cAd8Cm EsAbhimDpuWOtSX5vYGg1rtl84+dRUZNgzi84/NLK07KOh6vwusjJPytcVXpyehH -----END CERTIFICATE-----Generated at Sun Jan 25 16:39:14 2026 by rpki-client