This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/MrlucRQmuMeatdRDzUI9ilZ-FcA.roa File: MrlucRQmuMeatdRDzUI9ilZ-FcA.roa (raw, json) Hash identifier: R8VJADOSh1SrtLXyTVSnuozofW81u++gjpayzReBpYU= Subject key identifier: 32:B9:6E:71:14:26:B8:C7:9A:B5:D4:43:CD:42:3D:8A:56:7E:15:C0 Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685 Certificate serial: 019B7E3901E2524F2F9D3883383EABF0742D Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/MrlucRQmuMeatdRDzUI9ilZ-FcA.roa Signing time: Fri 02 Jan 2026 10:20:23 +0000 ROA not before: Fri 02 Jan 2026 10:20:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8790 IP address blocks: 194.85.172.0/23 maxlen: 24 195.209.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.mft rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:01:e2:52:4f:2f:9d:38:83:38:3e:ab:f0:74:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685 Validity Not Before: Jan 2 10:20:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=32b96e711426b8c79ab5d443cd423d8a567e15c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b0:3b:07:67:7d:a3:ad:c6:61:bc:b5:b2:37: 71:b4:96:ed:84:20:da:d2:a8:58:f9:51:a5:f5:ee: d9:87:bf:99:00:c0:d2:e9:22:87:97:24:c7:b4:f9: 92:ad:3c:4d:5d:c5:0d:78:bf:98:48:02:3b:0a:11: 41:54:77:cd:1a:f3:98:b2:d9:f9:5d:bb:3b:8d:d5: d9:63:80:0d:c2:37:5b:fc:83:3e:78:bd:3a:98:c8: b7:0a:57:99:cc:a2:40:f2:71:8f:a4:56:e5:b2:44: f4:65:35:6f:e8:a3:a3:55:26:29:30:6e:57:9b:45: 8d:60:94:b7:dc:61:dc:8f:38:9a:84:c6:49:09:28: b7:e8:c8:c0:10:ec:52:da:8e:59:d6:3b:46:c6:3b: 94:0b:36:6e:d5:56:61:d6:3f:6b:fb:b1:60:88:5b: 10:50:53:09:70:cb:ed:86:7c:f2:c8:22:9f:ea:a7: 7f:c5:2b:67:1e:ac:94:64:e7:50:68:27:37:ef:0b: 5c:9b:07:12:90:9b:0a:d0:de:95:bd:0b:bd:53:f8: 02:e7:9a:36:a5:2b:dd:4e:a4:e5:60:af:cb:b8:73: b4:45:15:dc:26:a4:1c:db:c8:92:09:42:55:33:03: 45:3b:2d:81:ae:8b:56:6c:84:fc:f3:ad:c8:6d:69: e9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B9:6E:71:14:26:B8:C7:9A:B5:D4:43:CD:42:3D:8A:56:7E:15:C0 X509v3 Authority Key Identifier: keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/MrlucRQmuMeatdRDzUI9ilZ-FcA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.85.172.0/23 195.209.248.0/23 Signature Algorithm: sha256WithRSAEncryption 14:bb:63:0b:b2:aa:69:84:b4:10:44:36:bd:96:50:e9:03:98: 75:ef:51:47:c4:d2:3a:3d:0d:55:3c:b8:c4:cc:8d:45:9b:e5: c0:b3:20:43:0d:39:00:f6:12:31:bf:71:8f:68:bd:1b:f5:ca: cd:13:0e:76:c2:c8:3a:67:3b:bb:e6:eb:c6:3b:ef:41:5f:9e: 06:bd:82:a2:13:b9:68:99:5c:3b:8c:0b:dd:96:69:59:2b:b5: 86:dd:42:45:fe:af:33:3c:b0:82:3d:1e:f7:b8:5f:1c:eb:66: 85:f8:d8:4f:ee:4d:e3:05:b6:1d:fb:af:e2:9a:c7:3d:1e:a1: 3c:11:91:42:b7:63:01:8e:22:f4:e7:21:55:1e:a8:b2:14:d9: 6d:5e:ff:80:58:56:d8:b5:44:fa:13:f4:ff:35:49:7f:da:e0: eb:9c:c3:f1:60:1c:50:94:c3:c2:01:88:fe:2a:64:47:af:3d: 0c:a5:eb:5b:32:5e:9a:4a:05:64:8c:04:dc:e9:60:35:ff:09: d6:9d:ff:40:4b:81:37:e0:ab:46:5a:80:f4:fb:6c:55:8e:46: 5c:53:86:9e:53:3e:b9:43:f9:e9:be:df:8a:fc:3f:5e:7e:44: 70:b1:c6:d7:a0:4c:2a:1e:39:f8:ec:1f:9d:98:d6:f1:68:2b: 0c:d4:c5:50 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+OQHiUk8vnTiDOD6r8HQtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4YjIyMDIzYjZlYWQ0YzI5NjgzYTlmZWQ0NDkzZDAzZGVl MmM2ODUwHhcNMjYwMTAyMTAyMDIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMmI5NmU3MTE0MjZiOGM3OWFiNWQ0NDNjZDQyM2Q4YTU2N2UxNWMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbA7B2d9o63GYby1sjdxtJbthCDa 0qhY+VGl9e7Zh7+ZAMDS6SKHlyTHtPmSrTxNXcUNeL+YSAI7ChFBVHfNGvOYstn5 Xbs7jdXZY4ANwjdb/IM+eL06mMi3CleZzKJA8nGPpFblskT0ZTVv6KOjVSYpMG5X m0WNYJS33GHcjziahMZJCSi36MjAEOxS2o5Z1jtGxjuUCzZu1VZh1j9r+7FgiFsQ UFMJcMvthnzyyCKf6qd/xStnHqyUZOdQaCc37wtcmwcSkJsK0N6VvQu9U/gC55o2 pSvdTqTlYK/LuHO0RRXcJqQc28iSCUJVMwNFOy2BrotWbIT8863IbWnpwQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDK5bnEUJrjHmrXUQ81CPYpWfhXAMB8GA1UdIwQY MBaAFDiyICO26tTCloOp/tRJPQPe4saFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMt NDBkOTViZDMzZmNiLzEvTXJsdWNSUW11TWVhdGRSRHpVSTlpbFotRmNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMtNDBkOTViZDMzZmNi LzEvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBwlWsAwQB w9H4MA0GCSqGSIb3DQEBCwUAA4IBAQAUu2MLsqpphLQQRDa9llDpA5h171FHxNI6 PQ1VPLjEzI1Fm+XAsyBDDTkA9hIxv3GPaL0b9crNEw52wsg6Zzu75uvGO+9BX54G vYKiE7lomVw7jAvdlmlZK7WG3UJF/q8zPLCCPR73uF8c62aF+NhP7k3jBbYd+6/i msc9HqE8EZFCt2MBjiL05yFVHqiyFNltXv+AWFbYtUT6E/T/NUl/2uDrnMPxYBxQ lMPCAYj+KmRHrz0MpetbMl6aSgVkjATc6WA1/wnWnf9AS4E34KtGWoD0+2xVjkZc U4aeUz65Q/npvt+K/D9efkRwscbXoEwqHjn47B+dmNbxaCsM1MVQ -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:32 2026 by rpki-client