This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/MzCZNjdBmMG-S9j61yIRLE51zQU.roa File: MzCZNjdBmMG-S9j61yIRLE51zQU.roa (raw, json) Hash identifier: /f1l2aBevU/UCCB1M8fW5aBOaUCeB8ylNLs+oJQ9huU= Subject key identifier: 33:30:99:36:37:41:98:C1:BE:4B:D8:FA:D7:22:11:2C:4E:75:CD:05 Certificate issuer: /CN=049d4f66598668079353721c21935a00319f6759 Certificate serial: 019B7C121DB15FBB27B1F0730C7CD5C30DAC Authority key identifier: 04:9D:4F:66:59:86:68:07:93:53:72:1C:21:93:5A:00:31:9F:67:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/MzCZNjdBmMG-S9j61yIRLE51zQU.roa Signing time: Fri 02 Jan 2026 00:18:40 +0000 ROA not before: Fri 02 Jan 2026 00:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50518 IP address blocks: 45.94.248.0/22 maxlen: 24 2a11:7400::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.mft rsync://rpki.ripe.net/repository/DEFAULT/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 21:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:1d:b1:5f:bb:27:b1:f0:73:0c:7c:d5:c3:0d:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=049d4f66598668079353721c21935a00319f6759 Validity Not Before: Jan 2 00:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=33309936374198c1be4bd8fad722112c4e75cd05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f6:f4:75:51:ea:e8:fc:b3:ce:3b:da:dc:b7: 71:54:0f:83:27:a6:32:19:ae:6b:98:0a:b6:41:fb: 3e:29:f9:62:c9:cb:5c:71:65:38:67:ee:37:c5:36: 45:7b:62:16:61:4b:ad:d4:31:ea:8d:a2:fe:4e:f6: f8:df:44:58:4b:ee:65:5d:52:65:af:e5:7d:cc:85: a7:f9:25:96:b5:fc:c4:18:3c:a4:98:eb:a4:d2:5c: 49:2d:7e:57:c4:6c:6d:22:0d:71:f9:da:0f:b3:e3: d4:98:24:f2:47:1e:e0:62:ad:6c:43:b0:97:90:12: 4b:1b:d2:8b:b4:0b:ed:9a:b9:1e:6d:c4:f7:bc:60: 1c:13:04:99:78:c2:e0:86:40:8f:06:dc:bf:fd:ab: 98:7f:5e:c5:9e:8d:0e:12:9a:19:57:90:2c:76:8e: 75:39:a1:1a:44:e3:24:d9:a4:1a:e0:88:af:7a:01: 21:19:5c:98:0d:59:87:e7:44:be:3c:86:a9:36:0e: 5b:e9:2d:3b:4f:8b:89:8f:f1:50:d1:90:a8:1a:71: 61:3e:00:cb:cf:ec:6c:75:a5:e6:63:35:54:2a:48: b2:1b:15:f9:47:6c:13:d1:39:b8:aa:bc:fa:0d:21: 1f:0e:4c:f2:7f:84:1a:b2:a2:48:3b:c7:20:9c:fe: 81:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:30:99:36:37:41:98:C1:BE:4B:D8:FA:D7:22:11:2C:4E:75:CD:05 X509v3 Authority Key Identifier: keyid:04:9D:4F:66:59:86:68:07:93:53:72:1C:21:93:5A:00:31:9F:67:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/MzCZNjdBmMG-S9j61yIRLE51zQU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/f23fb6-3229-4e8b-936a-9279547eca55/1/BJ1PZlmGaAeTU3IcIZNaADGfZ1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.94.248.0/22 IPv6: 2a11:7400::/29 Signature Algorithm: sha256WithRSAEncryption 36:9c:db:6c:c1:00:47:23:59:19:9b:90:7c:f9:89:e1:77:1d: 57:7c:d5:1d:d7:81:74:0a:d0:83:b5:bf:10:21:26:f6:58:ce: 66:96:a8:09:19:dd:d5:29:62:d8:db:c4:2f:1b:49:a2:94:c0: 27:76:bd:7a:5d:04:e5:c1:0d:b1:bd:5c:a1:f6:72:f9:59:45: b8:3a:1d:a9:e5:84:81:73:06:d9:5a:42:ca:6c:d6:ce:7c:aa: 6d:bc:93:34:28:53:16:35:63:9e:9e:3e:60:32:dd:28:c8:ca: c1:21:20:c5:80:57:bb:be:3a:c8:90:79:33:59:3c:62:98:f8: 1f:cb:79:2e:4c:18:63:34:51:54:bd:ed:c7:c0:6d:c1:6e:3f: e8:d6:e2:de:43:23:c0:dc:fc:4c:6a:23:93:8f:fd:6d:62:a5: 05:1b:fc:c4:5b:41:b3:d1:11:d5:c7:05:91:34:99:ea:9d:53: c3:2e:71:c2:28:31:f7:17:70:07:75:9a:94:a0:9e:72:26:b4: 83:d4:b1:00:f8:34:ec:48:cd:20:d5:3b:98:0b:db:32:10:98: 14:40:7a:93:8d:6b:4a:49:0a:a3:bb:e9:5b:85:72:9d:f7:ef: 64:57:7f:77:33:fc:02:8b:04:c5:19:fd:98:70:e0:7b:98:89: c8:69:9a:b5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8Eh2xX7snsfBzDHzVww2sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0OWQ0ZjY2NTk4NjY4MDc5MzUzNzIxYzIxOTM1YTAwMzE5 ZjY3NTkwHhcNMjYwMTAyMDAxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMzMwOTkzNjM3NDE5OGMxYmU0YmQ4ZmFkNzIyMTEyYzRlNzVjZDA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfb0dVHq6Pyzzjva3LdxVA+DJ6Yy Ga5rmAq2Qfs+KfliyctccWU4Z+43xTZFe2IWYUut1DHqjaL+Tvb430RYS+5lXVJl r+V9zIWn+SWWtfzEGDykmOuk0lxJLX5XxGxtIg1x+doPs+PUmCTyRx7gYq1sQ7CX kBJLG9KLtAvtmrkebcT3vGAcEwSZeMLghkCPBty//auYf17Fno0OEpoZV5Asdo51 OaEaROMk2aQa4IivegEhGVyYDVmH50S+PIapNg5b6S07T4uJj/FQ0ZCoGnFhPgDL z+xsdaXmYzVUKkiyGxX5R2wT0Tm4qrz6DSEfDkzyf4QasqJIO8cgnP6B9wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDMwmTY3QZjBvkvY+tciESxOdc0FMB8GA1UdIwQY MBaAFASdT2ZZhmgHk1NyHCGTWgAxn2dZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkoxUFpsbUdhQWVUVTNJY0laTmFBREdmWjFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9mMjNmYjYtMzIyOS00ZThiLTkzNmEt OTI3OTU0N2VjYTU1LzEvTXpDWk5qZEJtTUctUzlqNjF5SVJMRTUxelFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9mMjNmYjYtMzIyOS00ZThiLTkzNmEtOTI3OTU0N2VjYTU1 LzEvQkoxUFpsbUdhQWVUVTNJY0laTmFBREdmWjFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLV74MA0E AgACMAcDBQMqEXQAMA0GCSqGSIb3DQEBCwUAA4IBAQA2nNtswQBHI1kZm5B8+Ynh dx1XfNUd14F0CtCDtb8QISb2WM5mlqgJGd3VKWLY28QvG0milMAndr16XQTlwQ2x vVyh9nL5WUW4Oh2p5YSBcwbZWkLKbNbOfKptvJM0KFMWNWOenj5gMt0oyMrBISDF gFe7vjrIkHkzWTximPgfy3kuTBhjNFFUve3HwG3Bbj/o1uLeQyPA3PxMaiOTj/1t YqUFG/zEW0Gz0RHVxwWRNJnqnVPDLnHCKDH3F3AHdZqUoJ5yJrSD1LEA+DTsSM0g 1TuYC9syEJgUQHqTjWtKSQqju+lbhXKd9+9kV393M/wCiwTFGf2YcOB7mInIaZq1 -----END CERTIFICATE-----Generated at Sun Jan 25 03:58:57 2026 by rpki-client