This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/MzPbvxkGVytyjVvJa-yqgfiMcIA.roa File: MzPbvxkGVytyjVvJa-yqgfiMcIA.roa (raw, json) Hash identifier: iRBcRBbjvYz5opuvRz+YjQjB1MOrbFdu6n8IkIPeZ/g= Subject key identifier: 33:33:DB:BF:19:06:57:2B:72:8D:5B:C9:6B:EC:AA:81:F8:8C:70:80 Certificate issuer: /CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4 Certificate serial: 019B7EA7462555424CF93195E8123998B205 Authority key identifier: C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/MzPbvxkGVytyjVvJa-yqgfiMcIA.roa Signing time: Fri 02 Jan 2026 12:20:50 +0000 ROA not before: Fri 02 Jan 2026 12:20:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207661 IP address blocks: 194.32.161.0/24 maxlen: 24 2a05:5100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.mft rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:46:25:55:42:4c:f9:31:95:e8:12:39:98:b2:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4 Validity Not Before: Jan 2 12:20:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3333dbbf1906572b728d5bc96becaa81f88c7080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:eb:77:51:71:36:a5:1b:cc:b0:33:c1:07:9c: 9a:a9:81:fc:92:0c:c0:b3:ac:f8:f0:02:f4:30:18: 2e:c1:46:38:63:91:3a:a2:2c:42:d5:38:31:90:dc: 92:d0:81:3e:8a:6d:19:b0:8c:15:a5:bc:6c:49:0d: 38:c8:4f:14:f1:fa:b9:e7:bc:ed:54:9d:b6:3a:54: a7:fe:75:44:e6:4a:cf:8c:78:d1:39:89:a2:91:98: 42:62:d1:23:14:89:e6:fa:ad:c1:07:2a:7c:77:86: 62:48:8c:ee:8b:c9:90:d1:1c:64:66:37:d2:3c:2b: 68:3d:d0:3f:c5:92:01:09:19:f0:6f:05:34:f9:27: 54:22:88:d7:dc:29:f6:89:03:0c:85:3b:ae:87:a5: 69:69:6a:c1:f8:57:2c:a4:5e:bd:9d:56:54:24:9a: 36:ce:16:62:76:c7:a6:0d:a6:84:fd:64:00:f4:29: 9b:22:7b:2b:84:69:93:ea:e9:0d:6d:77:e1:ea:e2: c5:06:8f:65:d1:4e:95:76:e2:60:38:ff:a3:26:6d: 8e:71:8e:5d:2b:1c:26:4f:e1:d5:c4:81:76:18:15: 0b:ef:53:76:dc:16:01:ff:60:b3:0d:d1:62:81:97: 2a:71:46:b7:e9:d5:f7:2f:ea:cb:79:c4:73:a1:64: 1e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:33:DB:BF:19:06:57:2B:72:8D:5B:C9:6B:EC:AA:81:F8:8C:70:80 X509v3 Authority Key Identifier: keyid:C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/MzPbvxkGVytyjVvJa-yqgfiMcIA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.32.161.0/24 IPv6: 2a05:5100::/48 Signature Algorithm: sha256WithRSAEncryption 09:57:25:51:5f:3b:d3:88:18:51:76:bb:5c:b3:7e:90:4a:51: d4:f0:f0:58:f3:c6:04:46:0f:99:24:9d:b3:8a:26:c9:b1:52: 90:b3:de:77:51:3b:ba:a4:cf:9b:6d:5d:1b:4e:2d:7b:18:4b: 33:c1:b1:19:8e:9e:b1:b4:28:dd:bf:47:00:ee:14:86:5c:55: 7e:fa:ce:f3:b5:a1:d6:3c:c8:b0:f7:b9:8e:dd:31:b7:db:19: 79:62:94:b2:02:24:e8:72:f9:62:54:25:5f:53:69:44:e0:43: a8:8c:7b:7a:a0:dc:5c:18:7e:a6:be:e1:06:ba:ef:fa:9f:90: 96:27:55:92:b7:51:f9:67:24:47:e1:76:13:a8:14:80:f5:c6: 9c:d2:90:27:0b:58:c7:3f:e1:f9:2a:64:db:d2:94:12:3e:d5: 19:d1:e5:0c:cb:16:25:79:ca:0c:98:6d:be:8e:aa:17:49:bb: 09:ee:36:c7:b6:d6:38:4f:be:46:be:8b:a4:e2:ca:23:c6:ec: 1f:fd:de:82:b2:ce:7d:1b:01:8c:21:00:a3:13:70:d6:9c:8d: 70:8c:44:45:a4:12:b5:b7:bb:ed:d4:a6:7a:6c:d1:ee:a1:da: fc:cd:b9:58:df:68:da:0b:fd:38:6b:83:b2:7d:4c:ad:0c:08: 5b:8f:7e:cd -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+p0YlVUJM+TGV6BI5mLIFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2MTg1MDE3M2M4ZDI4ZDVhZmJmOTEwOTFjYTYzZTVkYTNj NzVlZDQwHhcNMjYwMTAyMTIyMDUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMzMzZGJiZjE5MDY1NzJiNzI4ZDViYzk2YmVjYWE4MWY4OGM3MDgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuet3UXE2pRvMsDPBB5yaqYH8kgzA s6z48AL0MBguwUY4Y5E6oixC1TgxkNyS0IE+im0ZsIwVpbxsSQ04yE8U8fq557zt VJ22OlSn/nVE5krPjHjROYmikZhCYtEjFInm+q3BByp8d4ZiSIzui8mQ0RxkZjfS PCtoPdA/xZIBCRnwbwU0+SdUIojX3Cn2iQMMhTuuh6VpaWrB+FcspF69nVZUJJo2 zhZidsemDaaE/WQA9CmbInsrhGmT6ukNbXfh6uLFBo9l0U6VduJgOP+jJm2OcY5d KxwmT+HVxIF2GBUL71N23BYB/2CzDdFigZcqcUa36dX3L+rLecRzoWQeNQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFDMz278ZBlcrco1byWvsqoH4jHCAMB8GA1UdIwQY MBaAFMYYUBc8jSjVr7+RCRymPl2jx17UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGhoUUZ6eU5LTld2djVFSkhLWS1YYVBIWHRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9lZTA5ZjEtN2QwYi00MzFmLWFhZWUt YmI4ZGViYzAwMzg4LzEvTXpQYnZ4a0dWeXR5alZ2SmEteXFnZmlNY0lBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC9lZTA5ZjEtN2QwYi00MzFmLWFhZWUtYmI4ZGViYzAwMzg4 LzEveGhoUUZ6eU5LTld2djVFSkhLWS1YYVBIWHRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwiChMA8E AgACMAkDBwAqBVEAAAAwDQYJKoZIhvcNAQELBQADggEBAAlXJVFfO9OIGFF2u1yz fpBKUdTw8FjzxgRGD5kknbOKJsmxUpCz3ndRO7qkz5ttXRtOLXsYSzPBsRmOnrG0 KN2/RwDuFIZcVX76zvO1odY8yLD3uY7dMbfbGXlilLICJOhy+WJUJV9TaUTgQ6iM e3qg3FwYfqa+4Qa67/qfkJYnVZK3UflnJEfhdhOoFID1xpzSkCcLWMc/4fkqZNvS lBI+1RnR5QzLFiV5ygyYbb6OqhdJuwnuNse21jhPvka+i6TiyiPG7B/93oKyzn0b AYwhAKMTcNacjXCMREWkErW3u+3Upnps0e6h2vzNuVjfaNoL/Thrg7J9TK0MCFuP fs0= -----END CERTIFICATE-----Generated at Mon Jan 26 01:01:43 2026 by rpki-client