This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/rMdXeptRpu0Pt2xvscICCvTvL1w.roa File: rMdXeptRpu0Pt2xvscICCvTvL1w.roa (raw, json) Hash identifier: /3qPf2GIjkHB+ECKNRa9eV5BXy6n4Np+NAUC/iSaKqg= Subject key identifier: AC:C7:57:7A:9B:51:A6:ED:0F:B7:6C:6F:B1:C2:02:0A:F4:EF:2F:5C Certificate issuer: /CN=c3c0591e2eb49d0559e6fce7ee2aa81f0f59ba6f Certificate serial: 019B7C111AD0EAB4FF03825FDE756A3D7221 Authority key identifier: C3:C0:59:1E:2E:B4:9D:05:59:E6:FC:E7:EE:2A:A8:1F:0F:59:BA:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8BZHi60nQVZ5vzn7iqoHw9Zum8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/rMdXeptRpu0Pt2xvscICCvTvL1w.roa Signing time: Fri 02 Jan 2026 00:17:34 +0000 ROA not before: Fri 02 Jan 2026 00:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39347 IP address blocks: 89.33.88.0/21 maxlen: 21 89.33.89.0/24 maxlen: 24 89.33.90.0/23 maxlen: 23 89.33.94.0/23 maxlen: 23 89.35.57.0/24 maxlen: 24 89.42.31.0/24 maxlen: 24 93.119.176.0/21 maxlen: 21 93.119.176.0/24 maxlen: 24 93.119.177.0/24 maxlen: 24 93.119.182.0/23 maxlen: 23 185.122.220.0/22 maxlen: 22 185.122.221.0/24 maxlen: 24 185.122.222.0/24 maxlen: 24 2a06:a880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/w8BZHi60nQVZ5vzn7iqoHw9Zum8.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/w8BZHi60nQVZ5vzn7iqoHw9Zum8.mft rsync://rpki.ripe.net/repository/DEFAULT/w8BZHi60nQVZ5vzn7iqoHw9Zum8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:1a:d0:ea:b4:ff:03:82:5f:de:75:6a:3d:72:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c3c0591e2eb49d0559e6fce7ee2aa81f0f59ba6f Validity Not Before: Jan 2 00:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=acc7577a9b51a6ed0fb76c6fb1c2020af4ef2f5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:83:39:d8:57:6b:7f:7e:ae:73:86:94:65:8c: 74:58:64:4c:e9:1f:14:f2:f8:86:70:4d:ab:56:22: 4d:ff:c2:76:a0:18:72:de:41:f6:c7:cd:c8:b1:29: 46:ef:64:ec:ee:82:79:6b:58:74:db:b4:5c:2c:7b: 49:66:50:3d:0a:83:25:de:5c:5a:10:3c:21:07:53: 12:d1:0f:a0:c3:a5:d2:8b:7f:41:63:f0:8c:b3:e8: ec:6c:f9:fe:d9:fe:d9:c6:a1:ed:33:34:22:a6:63: 0b:f0:d8:d3:84:ab:32:c9:d3:5b:60:bf:10:b0:73: 94:07:30:00:25:fa:be:ae:92:83:20:2a:a5:64:c0: 53:eb:b5:40:62:a6:b0:41:f0:dc:55:7b:92:f1:9c: 61:a5:51:d9:70:24:46:3a:b6:04:02:84:b4:4f:e8: bb:27:a8:1b:28:68:06:47:da:98:45:0a:54:bb:04: 06:72:33:27:7b:19:6b:a5:e7:a7:1c:e3:d8:fa:8e: 93:2f:57:95:a9:92:67:33:3b:70:64:4f:5a:82:56: 79:34:41:14:9c:a6:be:9c:2a:fb:ef:a9:0a:a9:08: be:7c:07:dc:45:c5:7c:3c:5c:1e:4d:59:b7:cc:95: 30:eb:06:99:38:92:e4:6a:e6:b6:e5:cf:10:f1:a1: 49:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:C7:57:7A:9B:51:A6:ED:0F:B7:6C:6F:B1:C2:02:0A:F4:EF:2F:5C X509v3 Authority Key Identifier: keyid:C3:C0:59:1E:2E:B4:9D:05:59:E6:FC:E7:EE:2A:A8:1F:0F:59:BA:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8BZHi60nQVZ5vzn7iqoHw9Zum8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/rMdXeptRpu0Pt2xvscICCvTvL1w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/w8BZHi60nQVZ5vzn7iqoHw9Zum8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.33.88.0/21 89.35.57.0/24 89.42.31.0/24 93.119.176.0/21 185.122.220.0/22 IPv6: 2a06:a880::/48 Signature Algorithm: sha256WithRSAEncryption 4d:97:b4:82:07:e9:70:48:1c:09:e0:6b:10:23:c3:84:49:4e: f2:a0:3f:21:75:fd:9b:59:a3:ce:96:f6:9a:fb:0a:53:46:bf: 90:64:a3:a0:bb:bb:d3:36:17:3c:42:7f:e2:6a:a4:a5:18:7a: de:cf:0f:55:14:c5:e5:26:f9:eb:52:3d:07:ad:e8:f2:36:7d: 36:0d:de:2c:0b:6e:f7:2b:8b:bb:b7:e5:23:40:2e:6a:74:25: 82:74:f2:fa:6e:26:28:63:82:d5:59:cd:01:e1:ca:3d:a8:67: 64:f0:36:95:a7:a1:ee:a9:85:cf:77:73:38:de:66:cd:ed:80: e2:df:c2:3c:f7:08:6e:cc:dd:d6:14:6d:50:5e:38:64:85:5c: 1f:d5:82:8b:1a:b6:ba:c6:e6:7f:46:e4:d7:0a:06:cb:49:46: 99:f2:49:12:35:15:7f:3b:43:0e:82:fd:f2:60:a0:8e:c6:79: 29:4e:ab:63:13:e8:3e:22:9d:55:2f:0b:61:ef:df:8a:dd:c5: 7c:57:05:bd:a1:42:df:1e:d8:ec:77:ec:37:23:27:13:cf:80: 41:ac:4c:6b:77:1b:8c:dc:b4:c5:ed:94:95:da:59:54:49:56: f9:91:02:3a:1f:72:6c:58:9a:93:58:b2:50:d0:da:4a:68:46: 9e:6c:6e:7b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt8ERrQ6rT/A4Jf3nVqPXIhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzYzA1OTFlMmViNDlkMDU1OWU2ZmNlN2VlMmFhODFmMGY1 OWJhNmYwHhcNMjYwMTAyMDAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2M3NTc3YTliNTFhNmVkMGZiNzZjNmZiMWMyMDIwYWY0ZWYyZjVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoM52Fdrf36uc4aUZYx0WGRM6R8U 8viGcE2rViJN/8J2oBhy3kH2x83IsSlG72Ts7oJ5a1h027RcLHtJZlA9CoMl3lxa EDwhB1MS0Q+gw6XSi39BY/CMs+jsbPn+2f7ZxqHtMzQipmML8NjThKsyydNbYL8Q sHOUBzAAJfq+rpKDICqlZMBT67VAYqawQfDcVXuS8ZxhpVHZcCRGOrYEAoS0T+i7 J6gbKGgGR9qYRQpUuwQGcjMnexlrpeenHOPY+o6TL1eVqZJnMztwZE9aglZ5NEEU nKa+nCr776kKqQi+fAfcRcV8PFweTVm3zJUw6waZOJLkaua25c8Q8aFJuQIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFKzHV3qbUabtD7dsb7HCAgr07y9cMB8GA1UdIwQY MBaAFMPAWR4utJ0FWeb85+4qqB8PWbpvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzhCWkhpNjBuUVZaNXZ6bjdpcW9IdzladW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy80YjhhYWItMjA5OS00M2FmLWI0MWQt ZTM0MDcxNzQ2NjNiLzEvck1kWGVwdFJwdTBQdDJ4dnNjSUNDdlR2TDF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy80YjhhYWItMjA5OS00M2FmLWI0MWQtZTM0MDcxNzQ2NjNi LzEvdzhCWkhpNjBuUVZaNXZ6bjdpcW9IdzladW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAkBAIAATAeAwQDWSFYAwQA WSM5AwQAWSofAwQDXXewAwQCuXrcMA8EAgACMAkDBwAqBqiAAAAwDQYJKoZIhvcN AQELBQADggEBAE2XtIIH6XBIHAngaxAjw4RJTvKgPyF1/ZtZo86W9pr7ClNGv5Bk o6C7u9M2FzxCf+JqpKUYet7PD1UUxeUm+etSPQet6PI2fTYN3iwLbvcri7u35SNA Lmp0JYJ08vpuJihjgtVZzQHhyj2oZ2TwNpWnoe6phc93czjeZs3tgOLfwjz3CG7M 3dYUbVBeOGSFXB/VgosatrrG5n9G5NcKBstJRpnySRI1FX87Qw6C/fJgoI7GeSlO q2MT6D4inVUvC2Hv34rdxXxXBb2hQt8e2Ox37DcjJxPPgEGsTGt3G4zctMXtlJXa WVRJVvmRAjofcmxYmpNYslDQ2kpoRp5sbns= -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:26 2026 by rpki-client