This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/mfvEjWb3rQFbj32_BBadoAv_Y0s.roa File: mfvEjWb3rQFbj32_BBadoAv_Y0s.roa (raw, json) Hash identifier: FGRbYmzgAXrFUwzG+mMOatKnvNqH9Ov9gtrQRgDuAmE= Subject key identifier: 99:FB:C4:8D:66:F7:AD:01:5B:8F:7D:BF:04:16:9D:A0:0B:FF:63:4B Certificate issuer: /CN=a0639adf1e0b84b9ff64e4f8ebe638ebbf5d27b9 Certificate serial: 019B79107DC5187A79A3C361B00703195CFC Authority key identifier: A0:63:9A:DF:1E:0B:84:B9:FF:64:E4:F8:EB:E6:38:EB:BF:5D:27:B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oGOa3x4LhLn_ZOT46-Y4679dJ7k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/mfvEjWb3rQFbj32_BBadoAv_Y0s.roa Signing time: Thu 01 Jan 2026 10:18:02 +0000 ROA not before: Thu 01 Jan 2026 10:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21263 IP address blocks: 45.155.112.0/22 maxlen: 24 77.81.52.0/22 maxlen: 24 81.27.112.0/20 maxlen: 24 146.255.112.0/22 maxlen: 24 161.51.240.0/21 maxlen: 24 185.124.224.0/22 maxlen: 24 185.162.220.0/22 maxlen: 24 185.198.140.0/22 maxlen: 24 185.231.72.0/22 maxlen: 24 188.137.184.0/21 maxlen: 24 212.62.192.0/19 maxlen: 24 217.11.144.0/20 maxlen: 24 217.24.192.0/20 maxlen: 24 217.31.208.0/20 maxlen: 24 2a02:590::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/oGOa3x4LhLn_ZOT46-Y4679dJ7k.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/oGOa3x4LhLn_ZOT46-Y4679dJ7k.mft rsync://rpki.ripe.net/repository/DEFAULT/oGOa3x4LhLn_ZOT46-Y4679dJ7k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:7d:c5:18:7a:79:a3:c3:61:b0:07:03:19:5c:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0639adf1e0b84b9ff64e4f8ebe638ebbf5d27b9 Validity Not Before: Jan 1 10:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=99fbc48d66f7ad015b8f7dbf04169da00bff634b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c3:80:42:2f:72:78:13:c0:e1:63:1c:14:73: 4d:1e:7d:47:d2:f0:64:63:fc:d1:5f:2b:a7:c7:a3: 07:68:9e:89:76:61:22:0e:a8:8a:6e:92:bb:0b:0f: 58:28:60:e9:17:9c:ab:11:77:ad:4c:34:68:a6:d3: 18:4e:03:bf:1a:d9:69:9f:73:fa:dc:eb:9b:23:5b: 17:05:30:5a:3a:41:24:38:b0:c7:6d:65:2a:73:11: fd:7d:f7:c3:67:5b:d7:81:8b:c6:ea:22:9a:3a:10: 39:55:17:0d:7a:72:e0:79:14:77:78:ea:17:5f:a0: 78:2e:fd:4d:51:93:98:ff:b5:19:bd:bd:27:6c:31: 6e:cf:3f:28:4d:9c:b3:6e:56:f6:80:52:84:bb:4b: 9e:0b:f6:a1:1a:7d:09:2d:d4:ad:be:18:53:d5:5d: 74:4a:c2:22:ae:48:50:f2:c9:a8:55:6d:93:a4:99: 72:1c:cf:a8:26:c9:bf:3f:ca:b3:b1:9c:87:69:cb: cc:04:ca:67:c4:3c:bf:aa:29:f7:26:b3:0b:e9:8e: 97:b2:2f:76:67:93:f3:bb:c1:e8:61:2b:a7:38:e7: 1e:e7:9f:f1:9b:b2:0e:ae:e0:79:b9:86:c1:cc:b7: 74:28:54:12:45:c7:6e:63:37:3b:66:39:fc:f6:53: ce:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:FB:C4:8D:66:F7:AD:01:5B:8F:7D:BF:04:16:9D:A0:0B:FF:63:4B X509v3 Authority Key Identifier: keyid:A0:63:9A:DF:1E:0B:84:B9:FF:64:E4:F8:EB:E6:38:EB:BF:5D:27:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oGOa3x4LhLn_ZOT46-Y4679dJ7k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/mfvEjWb3rQFbj32_BBadoAv_Y0s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/oGOa3x4LhLn_ZOT46-Y4679dJ7k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.155.112.0/22 77.81.52.0/22 81.27.112.0/20 146.255.112.0/22 161.51.240.0/21 185.124.224.0/22 185.162.220.0/22 185.198.140.0/22 185.231.72.0/22 188.137.184.0/21 212.62.192.0/19 217.11.144.0/20 217.24.192.0/20 217.31.208.0/20 IPv6: 2a02:590::/29 Signature Algorithm: sha256WithRSAEncryption 4d:c2:24:43:96:56:14:9c:a2:7f:e6:b5:a6:91:b0:4f:62:a1: 26:1c:b6:3d:19:10:95:57:bf:a3:3d:17:0b:9b:ec:1d:d1:8f: 68:6e:09:e2:e6:0d:fb:4e:75:22:cb:80:4f:bf:e4:b5:7f:a6: d8:17:41:91:fe:64:ac:11:0c:48:09:bb:8d:82:ac:b0:dc:52: 1d:a4:41:dd:1b:fa:51:bb:28:c4:06:ba:1e:c3:d4:54:96:6a: c8:7e:60:ca:7f:df:5f:d3:0e:e6:61:3e:ba:84:ce:c3:8a:04: 18:73:a1:a6:41:d9:77:30:39:2f:05:83:b5:87:b5:b1:ec:7d: 5b:13:4c:92:40:f6:9b:30:db:c8:05:fa:18:46:8c:b5:65:ef: ce:57:45:84:ec:6f:73:bb:96:64:85:f6:45:f3:eb:15:8d:3a: 2d:94:f0:57:0b:a8:b3:bd:cb:e5:9d:70:73:35:91:3d:4c:e3: 1d:69:53:7b:1a:72:30:5a:3e:05:8c:a6:e1:47:e9:b7:97:59: 67:a2:41:67:24:dd:fd:37:21:6f:d9:26:4f:b9:2e:7c:0f:0d: 5e:f7:a8:99:5e:03:9a:e1:59:64:66:de:6b:ba:94:07:e2:74: ea:cb:5c:89:84:98:f6:13:41:3e:d8:8f:1e:0c:20:fe:29:f3: 48:b3:55:84 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgISAZt5EH3FGHp5o8NhsAcDGVz8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwNjM5YWRmMWUwYjg0YjlmZjY0ZTRmOGViZTYzOGViYmY1 ZDI3YjkwHhcNMjYwMTAxMTAxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OWZiYzQ4ZDY2ZjdhZDAxNWI4ZjdkYmYwNDE2OWRhMDBiZmY2MzRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MOAQi9yeBPA4WMcFHNNHn1H0vBk Y/zRXyunx6MHaJ6JdmEiDqiKbpK7Cw9YKGDpF5yrEXetTDRoptMYTgO/Gtlpn3P6 3OubI1sXBTBaOkEkOLDHbWUqcxH9fffDZ1vXgYvG6iKaOhA5VRcNenLgeRR3eOoX X6B4Lv1NUZOY/7UZvb0nbDFuzz8oTZyzblb2gFKEu0ueC/ahGn0JLdStvhhT1V10 SsIirkhQ8smoVW2TpJlyHM+oJsm/P8qzsZyHacvMBMpnxDy/qin3JrML6Y6Xsi92 Z5Pzu8HoYSunOOce55/xm7IOruB5uYbBzLd0KFQSRcduYzc7Zjn89lPOFwIDAQAB o4ICZjCCAmIwHQYDVR0OBBYEFJn7xI1m960BW499vwQWnaAL/2NLMB8GA1UdIwQY MBaAFKBjmt8eC4S5/2Tk+OvmOOu/XSe5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0dPYTN4NExoTG5fWk9UNDYtWTQ2NzlkSjdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8wYzM2M2MtMmQwZS00YmNhLWE5ZjIt ODEzYzVhYWI3ODNlLzEvbWZ2RWpXYjNyUUZiajMyX0JCYWRvQXZfWTBzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC8wYzM2M2MtMmQwZS00YmNhLWE5ZjItODEzYzVhYWI3ODNl LzEvb0dPYTN4NExoTG5fWk9UNDYtWTQ2NzlkSjdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHwGCCsGAQUFBwEHAQH/BG0wazBaBAIAATBUAwQCLZtwAwQC TVE0AwQEURtwAwQCkv9wAwQDoTPwAwQCuXzgAwQCuaLcAwQCucaMAwQCuedIAwQD vIm4AwQF1D7AAwQE2QuQAwQE2RjAAwQE2R/QMA0EAgACMAcDBQMqAgWQMA0GCSqG SIb3DQEBCwUAA4IBAQBNwiRDllYUnKJ/5rWmkbBPYqEmHLY9GRCVV7+jPRcLm+wd 0Y9obgni5g37TnUiy4BPv+S1f6bYF0GR/mSsEQxICbuNgqyw3FIdpEHdG/pRuyjE Broew9RUlmrIfmDKf99f0w7mYT66hM7DigQYc6GmQdl3MDkvBYO1h7Wx7H1bE0yS QPabMNvIBfoYRoy1Ze/OV0WE7G9zu5ZkhfZF8+sVjTotlPBXC6izvcvlnXBzNZE9 TOMdaVN7GnIwWj4FjKbhR+m3l1lnokFnJN39NyFv2SZPuS58Dw1e96iZXgOa4Vlk Zt5rupQH4nTqy1yJhJj2E0E+2I8eDCD+KfNIs1WE -----END CERTIFICATE-----Generated at Sun Jan 25 19:36:19 2026 by rpki-client