This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/MaIYiMv9oMH3UrGRpQxs3PmnAkM.roa File: MaIYiMv9oMH3UrGRpQxs3PmnAkM.roa (raw, json) Hash identifier: t9r1ASd9rgul0//4WLxQCfdWKzz9owsa0TXBcSfyu0w= Subject key identifier: 31:A2:18:88:CB:FD:A0:C1:F7:52:B1:91:A5:0C:6C:DC:F9:A7:02:43 Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b Certificate serial: 019B7D5D2366D48F1927638CC32C75856260 Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/MaIYiMv9oMH3UrGRpQxs3PmnAkM.roa Signing time: Fri 02 Jan 2026 06:20:14 +0000 ROA not before: Fri 02 Jan 2026 06:20:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204494 IP address blocks: 84.2.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.mft rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:23:66:d4:8f:19:27:63:8c:c3:2c:75:85:62:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b Validity Not Before: Jan 2 06:20:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31a21888cbfda0c1f752b191a50c6cdcf9a70243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e1:15:58:98:17:10:e2:bd:fd:64:42:1c:b1: 8e:49:ef:70:75:85:3c:9d:d2:e8:62:fa:2f:76:3b: ce:d5:a2:30:b1:ad:19:fe:e2:bd:a1:f1:3a:c8:44: d9:aa:fe:21:84:46:9c:4f:49:31:7f:c0:41:63:54: c7:ba:04:83:ba:70:4f:68:83:43:81:2f:95:68:08: 4e:e9:d1:ad:4f:ae:71:b6:6a:b2:31:5f:de:c0:4d: fb:c2:4c:62:3e:1b:68:84:e6:1d:c8:4c:f9:d8:cf: 9c:49:e2:35:5b:a1:64:15:c5:27:d6:6d:da:21:f3: fa:73:8e:be:7f:15:82:97:76:9b:81:81:9c:e6:47: 7d:18:22:01:32:5b:55:fa:dc:e5:b0:8b:cb:cb:b4: 30:73:b5:ec:b5:5d:e4:65:06:0b:31:dc:54:91:f2: e8:80:9c:89:19:d0:1b:f4:34:42:16:75:ed:9f:1c: 44:6f:4f:bf:60:15:fd:d7:e4:7c:75:8c:c3:92:46: d1:a0:63:ab:1e:b7:f1:03:f8:87:ed:95:6b:a0:0a: 34:42:52:88:c9:a1:65:34:95:e0:bc:0a:6f:6d:12: 66:a0:7b:8c:73:59:4a:80:9e:83:2a:fc:50:c6:b0: 26:40:cb:f5:1e:c0:20:82:a6:32:01:67:41:8f:36: b4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:A2:18:88:CB:FD:A0:C1:F7:52:B1:91:A5:0C:6C:DC:F9:A7:02:43 X509v3 Authority Key Identifier: keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/MaIYiMv9oMH3UrGRpQxs3PmnAkM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.2.55.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:09:c3:2f:53:39:88:2f:06:0b:b7:2e:1f:c4:73:84:39:e3: 0c:f8:17:63:6b:ea:ca:27:52:f5:a4:c4:f0:22:5c:cc:11:2b: cd:49:31:db:bb:c5:aa:de:28:50:bb:9c:8a:e8:6b:a4:5e:f4: a0:44:95:c4:fc:a9:1f:e4:3b:63:c5:13:55:00:8f:39:bc:1e: 43:bf:f9:c2:13:b5:49:13:3a:16:52:f1:b9:16:1c:54:de:c4: 95:49:78:f7:2b:fb:13:d0:21:1b:9b:be:e4:ba:16:36:5b:4d: 8d:46:00:43:b7:f3:9b:cc:5c:80:aa:1a:79:32:83:ba:19:36: 92:d8:c5:bb:e1:f8:a9:0b:3f:80:ae:0f:2f:42:80:82:b1:15: 38:8c:dc:96:31:1c:96:56:b5:e7:ec:c6:7b:fc:54:7d:fd:3b: 0a:25:82:b4:b6:e0:40:54:13:d0:7c:63:95:90:b0:59:07:61: bf:19:f0:e7:e1:db:65:f9:95:7a:aa:dc:85:0e:da:b9:74:91: d6:45:fc:ce:01:a8:af:50:09:19:86:86:38:c1:4a:5d:c0:5b: 0c:0e:64:29:c5:d2:46:4a:19:99:2c:55:3b:06:b1:47:93:a6: 6e:34:4b:82:ed:00:7c:36:34:e6:4c:b7:ce:aa:9c:75:6c:2f: fb:7e:18:52 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XSNm1I8ZJ2OMwyx1hWJgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwMmRhYzYwNWY0NjU5NzE4YzBhMTVlMWY3MzJjYmQ0ZjQ4 YWFlN2IwHhcNMjYwMTAyMDYyMDE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMWEyMTg4OGNiZmRhMGMxZjc1MmIxOTFhNTBjNmNkY2Y5YTcwMjQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzeEVWJgXEOK9/WRCHLGOSe9wdYU8 ndLoYvovdjvO1aIwsa0Z/uK9ofE6yETZqv4hhEacT0kxf8BBY1THugSDunBPaIND gS+VaAhO6dGtT65xtmqyMV/ewE37wkxiPhtohOYdyEz52M+cSeI1W6FkFcUn1m3a IfP6c46+fxWCl3abgYGc5kd9GCIBMltV+tzlsIvLy7Qwc7XstV3kZQYLMdxUkfLo gJyJGdAb9DRCFnXtnxxEb0+/YBX91+R8dYzDkkbRoGOrHrfxA/iH7ZVroAo0QlKI yaFlNJXgvApvbRJmoHuMc1lKgJ6DKvxQxrAmQMv1HsAggqYyAWdBjza0IQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDGiGIjL/aDB91KxkaUMbNz5pwJDMB8GA1UdIwQY MBaAFPAtrGBfRllxjAoV4fcyy9T0iq57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYt MjkyYWU0NmU2MzAyLzEvTWFJWWlNdjlvTUgzVXJHUnBReHMzUG1uQWtNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYtMjkyYWU0NmU2MzAy LzEvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVAI3MA0G CSqGSIb3DQEBCwUAA4IBAQBMCcMvUzmILwYLty4fxHOEOeMM+Bdja+rKJ1L1pMTw IlzMESvNSTHbu8Wq3ihQu5yK6GukXvSgRJXE/Kkf5DtjxRNVAI85vB5Dv/nCE7VJ EzoWUvG5FhxU3sSVSXj3K/sT0CEbm77kuhY2W02NRgBDt/ObzFyAqhp5MoO6GTaS 2MW74fipCz+Arg8vQoCCsRU4jNyWMRyWVrXn7MZ7/FR9/TsKJYK0tuBAVBPQfGOV kLBZB2G/GfDn4dtl+ZV6qtyFDtq5dJHWRfzOAaivUAkZhoY4wUpdwFsMDmQpxdJG ShmZLFU7BrFHk6ZuNEuC7QB8NjTmTLfOqpx1bC/7fhhS -----END CERTIFICATE-----Generated at Sun Jan 25 16:54:17 2026 by rpki-client