This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/MmD4LpG9L1abWhzDe3zsHGjMcKk.roa File: MmD4LpG9L1abWhzDe3zsHGjMcKk.roa (raw, json) Hash identifier: BYA/AELd944eyEW5OY9zqZeNygCSSsS+zSrCK5eSS0g= Subject key identifier: 32:60:F8:2E:91:BD:2F:56:9B:5A:1C:C3:7B:7C:EC:1C:68:CC:70:A9 Certificate issuer: /CN=848d9800d69debae11b7f8161c3ce88181fde7b4 Certificate serial: 019B7C112295569B30A2EC09855DF6550D74 Authority key identifier: 84:8D:98:00:D6:9D:EB:AE:11:B7:F8:16:1C:3C:E8:81:81:FD:E7:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hI2YANad664Rt_gWHDzogYH957Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/MmD4LpG9L1abWhzDe3zsHGjMcKk.roa Signing time: Fri 02 Jan 2026 00:17:36 +0000 ROA not before: Fri 02 Jan 2026 00:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8245 IP address blocks: 185.237.169.0/24 maxlen: 24 185.237.170.0/24 maxlen: 24 185.237.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/hI2YANad664Rt_gWHDzogYH957Q.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/hI2YANad664Rt_gWHDzogYH957Q.mft rsync://rpki.ripe.net/repository/DEFAULT/hI2YANad664Rt_gWHDzogYH957Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:22:95:56:9b:30:a2:ec:09:85:5d:f6:55:0d:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=848d9800d69debae11b7f8161c3ce88181fde7b4 Validity Not Before: Jan 2 00:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3260f82e91bd2f569b5a1cc37b7cec1c68cc70a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:46:79:cf:39:f8:ed:98:01:22:71:f2:da:32: e4:95:ad:35:e8:aa:01:02:2d:e9:52:91:24:35:f3: 2e:33:09:4d:f9:8d:76:e8:c1:3e:ae:1e:96:46:84: b1:82:fb:64:dc:2f:b2:04:cd:40:71:f2:b5:18:fd: 32:80:9e:6a:c0:c0:0d:43:d4:5b:3e:4f:f4:92:35: ad:e8:9c:4f:4a:8e:5b:6d:d7:13:15:ca:01:28:13: 77:bb:67:f1:9c:38:25:4d:cf:68:e4:15:7f:4a:77: fa:02:7f:02:7c:98:f2:2e:f8:7b:a5:57:f6:dd:95: 72:31:31:ac:96:b6:7e:37:d1:f9:87:88:49:fc:26: 07:c6:9c:7f:34:f3:61:88:e9:06:72:78:53:84:cd: c3:ef:8e:8f:27:1c:38:09:97:0d:ef:bf:d1:a8:57: ea:25:71:7a:45:35:ec:45:a9:09:29:90:ea:bf:34: 1e:a4:55:49:69:00:89:f4:18:aa:73:b3:97:a8:34: 21:18:02:28:93:d1:cd:fa:2e:ca:b4:77:f3:7d:55: d9:f8:50:5b:4c:29:17:34:ad:a3:e4:59:70:59:e0: 35:b8:d9:be:c6:86:34:3b:87:5d:e2:2c:b5:58:5e: 87:7c:63:69:e2:1f:98:a1:63:6b:50:39:81:48:78: 6f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:60:F8:2E:91:BD:2F:56:9B:5A:1C:C3:7B:7C:EC:1C:68:CC:70:A9 X509v3 Authority Key Identifier: keyid:84:8D:98:00:D6:9D:EB:AE:11:B7:F8:16:1C:3C:E8:81:81:FD:E7:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hI2YANad664Rt_gWHDzogYH957Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/MmD4LpG9L1abWhzDe3zsHGjMcKk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/hI2YANad664Rt_gWHDzogYH957Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.237.169.0-185.237.171.255 Signature Algorithm: sha256WithRSAEncryption 13:2c:66:ab:95:e8:77:38:33:a1:d9:d6:b7:a0:9c:31:6a:5c: 84:1d:bc:77:05:bd:ad:06:7a:6e:48:11:79:55:9e:0a:08:0d: 0d:8c:69:b9:b2:f6:1a:42:1f:fa:77:5a:d4:0f:f4:89:b6:1a: 23:37:ba:53:ac:ba:b0:d7:14:d6:26:0b:85:e7:a9:03:89:92: dc:d7:d6:02:cc:95:c6:ba:7f:cf:7d:9a:60:35:ed:e9:e3:82: 35:c4:59:d3:98:8e:e2:2b:6c:10:45:d3:b0:52:e7:00:1f:ab: 76:77:c7:23:12:41:72:d6:36:66:b1:84:cb:b2:0a:27:69:cc: b0:98:72:a2:3b:4d:38:f5:0e:ef:61:2a:dc:14:52:aa:da:d9: 80:85:5c:be:40:b9:b0:ef:0a:92:12:14:28:80:df:e7:9a:80: dc:9a:d3:a3:0d:54:9d:d3:4e:cc:1d:62:f5:2c:c9:1a:9b:94: 6d:cf:1f:29:ca:95:22:cc:81:a3:11:1f:f2:54:b3:05:b7:e9: 3a:4c:13:48:0c:2f:5b:fe:67:a3:d5:01:04:2e:ba:63:91:d4: f0:4d:14:29:9f:71:ee:04:0b:d9:84:e7:d5:54:f0:e1:58:25: 8f:27:a9:d1:84:11:90:84:2d:c0:94:79:52:1a:c9:e1:9e:d8: 00:1c:32:d1 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt8ESKVVpswouwJhV32VQ10MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0OGQ5ODAwZDY5ZGViYWUxMWI3ZjgxNjFjM2NlODgxODFm ZGU3YjQwHhcNMjYwMTAyMDAxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMjYwZjgyZTkxYmQyZjU2OWI1YTFjYzM3YjdjZWMxYzY4Y2M3MGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkZ5zzn47ZgBInHy2jLkla016KoB Ai3pUpEkNfMuMwlN+Y126ME+rh6WRoSxgvtk3C+yBM1AcfK1GP0ygJ5qwMANQ9Rb Pk/0kjWt6JxPSo5bbdcTFcoBKBN3u2fxnDglTc9o5BV/Snf6An8CfJjyLvh7pVf2 3ZVyMTGslrZ+N9H5h4hJ/CYHxpx/NPNhiOkGcnhThM3D746PJxw4CZcN77/RqFfq JXF6RTXsRakJKZDqvzQepFVJaQCJ9Biqc7OXqDQhGAIok9HN+i7KtHfzfVXZ+FBb TCkXNK2j5FlwWeA1uNm+xoY0O4dd4iy1WF6HfGNp4h+YoWNrUDmBSHhvKQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFDJg+C6RvS9Wm1ocw3t87BxozHCpMB8GA1UdIwQY MBaAFISNmADWneuuEbf4Fhw86IGB/ee0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEkyWUFOYWQ2NjRSdF9nV0hEem9nWUg5NTdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zODcxMzYtM2M3MC00NjE5LTgzMjEt M2Q5M2ZlNmQyMGFhLzEvTW1ENExwRzlMMWFiV2h6RGUzenNIR2pNY0trLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8zODcxMzYtM2M3MC00NjE5LTgzMjEtM2Q5M2ZlNmQyMGFh LzEvaEkyWUFOYWQ2NjRSdF9nV0hEem9nWUg5NTdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC57akD BAK57agwDQYJKoZIhvcNAQELBQADggEBABMsZquV6Hc4M6HZ1regnDFqXIQdvHcF va0Gem5IEXlVngoIDQ2Mabmy9hpCH/p3WtQP9Im2GiM3ulOsurDXFNYmC4XnqQOJ ktzX1gLMlca6f899mmA17enjgjXEWdOYjuIrbBBF07BS5wAfq3Z3xyMSQXLWNmax hMuyCidpzLCYcqI7TTj1Du9hKtwUUqra2YCFXL5AubDvCpISFCiA3+eagNya06MN VJ3TTswdYvUsyRqblG3PHynKlSLMgaMRH/JUswW36TpME0gML1v+Z6PVAQQuumOR 1PBNFCmfce4EC9mE59VU8OFYJY8nqdGEEZCELcCUeVIayeGe2AAcMtE= -----END CERTIFICATE-----Generated at Mon Jan 26 16:23:57 2026 by rpki-client