This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/ca34eb-8e20-4bf1-b1b2-5872109b67a8/1/mO6Fb7S41xAj_RDQIm69ljJKwSs.roa File: mO6Fb7S41xAj_RDQIm69ljJKwSs.roa (raw, json) Hash identifier: mzwHry2L+FiTcVlvwHZhbyETQYyjQEIEkkpwQQwfOpM= Subject key identifier: 98:EE:85:6F:B4:B8:D7:10:23:FD:10:D0:22:6E:BD:96:32:4A:C1:2B Certificate issuer: /CN=e5a6794b91b81406412a137870bfde3b170de094 Certificate serial: 019B7EA73036FDFC4C05B1A5ED512B8DBCD3 Authority key identifier: E5:A6:79:4B:91:B8:14:06:41:2A:13:78:70:BF:DE:3B:17:0D:E0:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aZ5S5G4FAZBKhN4cL_eOxcN4JQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/ca34eb-8e20-4bf1-b1b2-5872109b67a8/1/mO6Fb7S41xAj_RDQIm69ljJKwSs.roa Signing time: Fri 02 Jan 2026 12:20:44 +0000 ROA not before: Fri 02 Jan 2026 12:20:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216104 IP address blocks: 185.43.31.0/24 maxlen: 24 2a10:48c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/ca34eb-8e20-4bf1-b1b2-5872109b67a8/1/5aZ5S5G4FAZBKhN4cL_eOxcN4JQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/ca34eb-8e20-4bf1-b1b2-5872109b67a8/1/5aZ5S5G4FAZBKhN4cL_eOxcN4JQ.mft rsync://rpki.ripe.net/repository/DEFAULT/5aZ5S5G4FAZBKhN4cL_eOxcN4JQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:30:36:fd:fc:4c:05:b1:a5:ed:51:2b:8d:bc:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5a6794b91b81406412a137870bfde3b170de094 Validity Not Before: Jan 2 12:20:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=98ee856fb4b8d71023fd10d0226ebd96324ac12b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f2:e5:14:a6:88:4a:9e:53:85:f0:79:87:d6: 0c:f0:ed:59:51:a0:1e:70:e7:f0:d8:01:e5:63:be: ba:9e:21:70:18:89:84:4c:b6:a4:d5:04:62:05:1a: e5:91:e1:c5:6f:5a:ba:b0:44:6d:55:18:18:1c:f7: b6:02:f6:82:0c:4f:a1:17:db:14:35:0c:b3:f5:10: 8a:69:e1:b2:07:8d:c2:9c:8c:7d:ce:f8:7e:5d:b8: 9e:d1:6e:1d:16:67:e4:ed:37:ec:5a:6b:97:dd:3f: 7b:fd:14:cb:51:77:10:77:ae:2f:86:83:39:5b:36: 79:b4:c7:53:1a:85:ee:eb:f9:37:e8:ce:49:79:10: 0d:4e:0d:f4:d5:fc:7e:19:37:b0:32:bd:f5:c0:e9: 13:28:6b:77:f3:8c:c3:18:ac:54:ef:8e:f7:e7:66: 48:6f:c4:75:4a:04:92:45:5c:9b:82:95:7f:ec:a2: fd:6d:d9:a2:24:c4:90:02:d9:6b:af:88:10:25:2c: 3b:0b:25:0e:a9:e6:e6:ed:0c:45:a4:23:ba:d1:91: 1a:8b:8f:9e:71:1b:88:9e:9f:a1:ec:2a:d0:53:82: 85:50:91:49:0c:55:e2:81:f0:e7:bd:6c:f1:2b:0b: b9:ac:bb:20:cc:8b:89:bc:ff:49:1b:d7:d6:52:39: 82:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:EE:85:6F:B4:B8:D7:10:23:FD:10:D0:22:6E:BD:96:32:4A:C1:2B X509v3 Authority Key Identifier: keyid:E5:A6:79:4B:91:B8:14:06:41:2A:13:78:70:BF:DE:3B:17:0D:E0:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aZ5S5G4FAZBKhN4cL_eOxcN4JQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/ca34eb-8e20-4bf1-b1b2-5872109b67a8/1/mO6Fb7S41xAj_RDQIm69ljJKwSs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/ca34eb-8e20-4bf1-b1b2-5872109b67a8/1/5aZ5S5G4FAZBKhN4cL_eOxcN4JQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.43.31.0/24 IPv6: 2a10:48c0::/29 Signature Algorithm: sha256WithRSAEncryption 1d:f3:40:95:b7:85:c8:af:31:2c:f5:18:50:ba:d6:40:b6:0d: 72:b1:ad:19:c1:81:f6:50:10:2e:0e:75:62:ae:67:40:ed:dd: 3e:e4:dc:5e:8c:cd:eb:f5:56:0a:af:0d:8f:08:a0:cc:0e:b4: a2:94:ff:8d:e4:b6:1b:d5:7f:a7:75:f1:c1:9e:c1:1b:ff:20: 91:c9:9e:46:f8:a2:54:e8:7f:21:db:70:e4:a5:72:c8:3a:1a: 3a:3b:4a:28:f5:d0:0c:1b:77:e5:95:0f:c7:67:51:0f:a9:3d: b6:ad:6f:35:44:49:8a:39:8d:2e:e1:bd:33:3c:c5:a6:aa:07: 14:bf:0c:65:b9:26:12:86:cd:41:9c:fd:85:00:b5:96:22:a8: de:66:a6:72:44:73:29:b4:37:c3:1c:16:5e:c5:95:85:fc:37: 97:b7:de:13:a8:2e:1f:8b:a2:ad:68:63:ea:99:b2:66:71:7c: c6:bb:53:19:94:aa:e1:cc:e0:66:c8:f6:99:cc:17:84:91:da: ca:7a:90:d9:4c:91:05:9c:ed:6e:c2:18:e0:92:cc:c6:7b:e5: 38:24:b1:04:53:94:4e:ac:f6:61:29:f9:ea:98:5d:d8:ce:ed: 89:37:49:98:17:7d:39:af:94:05:5b:88:f4:12:26:17:96:e0: 5b:8c:c1:d9 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pzA2/fxMBbGl7VErjbzTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1YTY3OTRiOTFiODE0MDY0MTJhMTM3ODcwYmZkZTNiMTcw ZGUwOTQwHhcNMjYwMTAyMTIyMDQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OGVlODU2ZmI0YjhkNzEwMjNmZDEwZDAyMjZlYmQ5NjMyNGFjMTJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufLlFKaISp5ThfB5h9YM8O1ZUaAe cOfw2AHlY766niFwGImETLak1QRiBRrlkeHFb1q6sERtVRgYHPe2AvaCDE+hF9sU NQyz9RCKaeGyB43CnIx9zvh+Xbie0W4dFmfk7TfsWmuX3T97/RTLUXcQd64vhoM5 WzZ5tMdTGoXu6/k36M5JeRANTg301fx+GTewMr31wOkTKGt384zDGKxU747352ZI b8R1SgSSRVybgpV/7KL9bdmiJMSQAtlrr4gQJSw7CyUOqebm7QxFpCO60ZEai4+e cRuInp+h7CrQU4KFUJFJDFXigfDnvWzxKwu5rLsgzIuJvP9JG9fWUjmCMQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJjuhW+0uNcQI/0Q0CJuvZYySsErMB8GA1UdIwQY MBaAFOWmeUuRuBQGQSoTeHC/3jsXDeCUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWFaNVM1RzRGQVpCS2hONGNMX2VPeGNONEpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9jYTM0ZWItOGUyMC00YmYxLWIxYjIt NTg3MjEwOWI2N2E4LzEvbU82RmI3UzQxeEFqX1JEUUltNjlsakpLd1NzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS9jYTM0ZWItOGUyMC00YmYxLWIxYjItNTg3MjEwOWI2N2E4 LzEvNWFaNVM1RzRGQVpCS2hONGNMX2VPeGNONEpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuSsfMA0E AgACMAcDBQMqEEjAMA0GCSqGSIb3DQEBCwUAA4IBAQAd80CVt4XIrzEs9RhQutZA tg1ysa0ZwYH2UBAuDnVirmdA7d0+5NxejM3r9VYKrw2PCKDMDrSilP+N5LYb1X+n dfHBnsEb/yCRyZ5G+KJU6H8h23DkpXLIOho6O0oo9dAMG3fllQ/HZ1EPqT22rW81 REmKOY0u4b0zPMWmqgcUvwxluSYShs1BnP2FALWWIqjeZqZyRHMptDfDHBZexZWF /DeXt94TqC4fi6KtaGPqmbJmcXzGu1MZlKrhzOBmyPaZzBeEkdrKepDZTJEFnO1u whjgkszGe+U4JLEEU5ROrPZhKfnqmF3Yzu2JN0mYF305r5QFW4j0EiYXluBbjMHZ -----END CERTIFICATE-----Generated at Sun Jan 25 13:46:33 2026 by rpki-client