This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/MKYrJvGzvZyRvU-YTMKw33sMjbA.roa File: MKYrJvGzvZyRvU-YTMKw33sMjbA.roa (raw, json) Hash identifier: zitB1QIdSvuwxE4jXL1s8PUZB8yK6i+xpiMCf2djBrI= Subject key identifier: 30:A6:2B:26:F1:B3:BD:9C:91:BD:4F:98:4C:C2:B0:DF:7B:0C:8D:B0 Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40 Certificate serial: 019B7F13BA2BDC25D3FB6A62104896682BE2 Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/MKYrJvGzvZyRvU-YTMKw33sMjbA.roa Signing time: Fri 02 Jan 2026 14:19:17 +0000 ROA not before: Fri 02 Jan 2026 14:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 135330 IP address blocks: 74.119.193.0/24 maxlen: 24 2a09:7c45::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.mft rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:ba:2b:dc:25:d3:fb:6a:62:10:48:96:68:2b:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40 Validity Not Before: Jan 2 14:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=30a62b26f1b3bd9c91bd4f984cc2b0df7b0c8db0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cc:3b:34:6f:f7:66:86:d8:31:16:f7:53:a1: 22:54:2d:1b:17:71:3e:ef:15:4c:36:f5:98:a0:27: f3:af:96:49:7e:15:21:c5:e7:7e:8a:a1:ec:bc:2d: eb:a6:ba:6f:46:be:33:2d:38:07:28:17:ec:36:13: 7e:03:75:c8:df:a5:25:f5:83:76:b8:41:06:89:f9: 8d:8d:31:7e:6e:53:e8:23:75:83:d6:7c:72:fb:21: 03:21:9e:26:fe:54:13:7c:3e:ed:1a:ca:2b:29:08: a1:b9:28:87:7d:25:4d:21:12:97:41:c0:31:9f:af: 5f:60:ac:7c:ab:87:a0:8e:89:0b:e0:6e:93:0a:cd: 11:4e:ae:da:af:05:37:ea:42:51:f1:71:06:07:14: 11:13:5e:d0:9b:22:a2:8a:3f:07:26:75:7c:5d:2d: a5:97:0c:2b:57:2b:4e:91:46:ea:0c:af:1c:11:f0: 95:8a:80:35:75:f4:23:87:87:8e:e6:a0:59:32:eb: a4:2b:21:00:11:95:4c:a4:25:36:d7:52:f8:08:a1: b4:c1:fd:dc:4f:0a:3e:3c:75:0e:a0:f8:b8:ab:10: c4:3b:b3:57:14:19:bf:0a:5c:2a:9b:9f:80:3c:8b: 0c:b4:80:80:fd:19:4d:34:cf:d5:c6:d2:91:d7:7b: 3e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A6:2B:26:F1:B3:BD:9C:91:BD:4F:98:4C:C2:B0:DF:7B:0C:8D:B0 X509v3 Authority Key Identifier: keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/MKYrJvGzvZyRvU-YTMKw33sMjbA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.119.193.0/24 IPv6: 2a09:7c45::/32 Signature Algorithm: sha256WithRSAEncryption 0d:f4:67:cc:19:eb:c2:92:09:95:c7:52:91:cd:1a:05:f1:73: bf:ec:e5:dd:25:60:71:f9:c4:c2:66:38:8d:d0:60:23:0f:37: 1f:9c:99:91:27:ac:0e:7e:af:b0:1c:5a:77:a4:16:2a:0b:e8: 19:c8:80:92:53:cf:52:5e:6f:7d:c7:62:51:e8:57:2d:49:da: 90:57:b1:ca:e9:7e:92:74:71:c0:01:21:39:63:8a:ce:c4:12: dd:d9:97:98:02:80:37:88:3b:4e:0a:7c:91:b4:bd:b1:ee:8e: 26:0e:1a:b3:53:8f:94:fa:50:3d:8a:f0:44:b0:f5:5a:e8:81: 64:21:ce:a1:af:b7:ff:55:35:9c:47:a0:ec:af:ee:20:07:a8: d9:b2:79:ed:f3:2b:25:67:55:da:a2:98:e5:fa:5f:d8:50:79: 7b:d5:50:cd:97:2d:70:fa:d8:b0:27:3c:a7:8c:bf:d6:a9:7d: b3:88:3d:93:12:bc:9e:fc:66:0e:bf:7d:5a:4e:e8:f8:9f:98: 90:c7:aa:d0:25:7b:f7:82:e7:2d:2f:e8:b4:c2:fc:ea:7b:7b: 0e:0f:9d:0a:65:09:aa:81:59:2a:db:a4:48:be:4c:28:18:22: c4:1e:32:5a:9c:b6:31:49:51:52:23:0e:fa:42:dd:54:fa:8a: 03:72:4b:e3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/E7or3CXT+2piEEiWaCviMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiODMwNjMwZjIzYjA3MGEyYjdiZGY1MjlmNzM5NDhjOTdl YWNkNDAwHhcNMjYwMTAyMTQxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMGE2MmIyNmYxYjNiZDljOTFiZDRmOTg0Y2MyYjBkZjdiMGM4ZGIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcw7NG/3ZobYMRb3U6EiVC0bF3E+ 7xVMNvWYoCfzr5ZJfhUhxed+iqHsvC3rprpvRr4zLTgHKBfsNhN+A3XI36Ul9YN2 uEEGifmNjTF+blPoI3WD1nxy+yEDIZ4m/lQTfD7tGsorKQihuSiHfSVNIRKXQcAx n69fYKx8q4egjokL4G6TCs0RTq7arwU36kJR8XEGBxQRE17QmyKiij8HJnV8XS2l lwwrVytOkUbqDK8cEfCVioA1dfQjh4eO5qBZMuukKyEAEZVMpCU211L4CKG0wf3c Two+PHUOoPi4qxDEO7NXFBm/Clwqm5+APIsMtICA/RlNNM/VxtKR13s+KQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDCmKybxs72ckb1PmEzCsN97DI2wMB8GA1UdIwQY MBaAFLuDBjDyOwcKK3vfUp9zlIyX6s1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMt MTE5ZWZjYmIyMDIzLzEvTUtZckp2R3p2WnlSdlUtWVRNS3czM3NNamJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMtMTE5ZWZjYmIyMDIz LzEvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQASnfBMA0E AgACMAcDBQAqCXxFMA0GCSqGSIb3DQEBCwUAA4IBAQAN9GfMGevCkgmVx1KRzRoF 8XO/7OXdJWBx+cTCZjiN0GAjDzcfnJmRJ6wOfq+wHFp3pBYqC+gZyICSU89SXm99 x2JR6FctSdqQV7HK6X6SdHHAASE5Y4rOxBLd2ZeYAoA3iDtOCnyRtL2x7o4mDhqz U4+U+lA9ivBEsPVa6IFkIc6hr7f/VTWcR6Dsr+4gB6jZsnnt8yslZ1Xaopjl+l/Y UHl71VDNly1w+tiwJzynjL/WqX2ziD2TErye/GYOv31aTuj4n5iQx6rQJXv3guct L+i0wvzqe3sOD50KZQmqgVkq26RIvkwoGCLEHjJanLYxSVFSIw76Qt1U+ooDckvj -----END CERTIFICATE-----Generated at Sun Jan 25 14:21:16 2026 by rpki-client