This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/mcS4SdpuWVbabfdpCB_tOwct_TA.roa File: mcS4SdpuWVbabfdpCB_tOwct_TA.roa (raw, json) Hash identifier: hcfOoUJHvls1DL90VCIcUIUdeQTL2YjVgbYPY6TdJAA= Subject key identifier: 99:C4:B8:49:DA:6E:59:56:DA:6D:F7:69:08:1F:ED:3B:07:2D:FD:30 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 019B7D5C3323507A8BA66A3E1B37DA60E0F3 Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/mcS4SdpuWVbabfdpCB_tOwct_TA.roa Signing time: Fri 02 Jan 2026 06:19:12 +0000 ROA not before: Fri 02 Jan 2026 06:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60594 IP address blocks: 155.133.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:33:23:50:7a:8b:a6:6a:3e:1b:37:da:60:e0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Jan 2 06:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=99c4b849da6e5956da6df769081fed3b072dfd30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:59:29:21:bd:40:4a:8e:8f:29:0e:f2:d2:5d: 34:b8:a6:23:b8:ec:af:f5:2c:91:6e:28:b6:41:a2: 57:ad:fc:62:8f:59:f6:1b:c3:28:f4:88:8f:5a:64: 14:c1:21:95:70:20:da:ad:7c:b3:83:0f:43:0b:d6: 01:b0:75:c3:5e:52:83:e7:ef:19:33:31:00:18:bc: dc:9b:8c:f6:79:81:fd:95:26:ce:b4:ed:2d:21:2a: b8:32:f6:e7:44:82:00:50:88:63:f4:40:f7:68:4c: de:7e:18:b5:2b:40:f5:f5:20:e1:b3:02:c4:b6:e0: 0a:11:d1:0e:4b:1a:b1:60:36:45:b4:2b:7e:5b:36: af:bc:85:d7:53:eb:ce:f9:6b:04:fe:ff:af:fa:9e: 42:63:eb:1f:16:4e:39:76:91:f5:b9:00:8e:c3:33: 6b:87:60:20:ae:f0:77:f0:e1:1b:f8:3a:b6:99:f7: 32:53:b9:db:31:a8:95:82:be:ce:f1:5c:4e:a0:e4: 19:b6:13:14:b1:56:b9:de:95:52:46:48:ee:af:cb: 31:29:8a:ff:98:23:91:2e:2e:55:58:b7:5e:9f:b1: fb:2e:5f:3c:2e:2a:9b:f1:04:bf:a6:6d:3e:82:e0: 88:78:a7:8f:50:01:64:bc:5a:54:81:4f:e1:e4:79: cf:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:C4:B8:49:DA:6E:59:56:DA:6D:F7:69:08:1F:ED:3B:07:2D:FD:30 X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/mcS4SdpuWVbabfdpCB_tOwct_TA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.133.32.0/24 Signature Algorithm: sha256WithRSAEncryption 80:c5:84:aa:58:a5:94:06:66:44:be:3f:21:fe:96:1d:58:67: ee:9e:79:d1:41:a9:05:11:5c:92:73:d0:38:bb:73:1a:e4:66: e9:fc:34:40:ff:9a:3a:4e:2c:2d:15:d8:9a:2b:b6:13:58:30: db:92:d7:ce:84:f4:e9:a4:1e:ca:28:f3:95:21:ac:4e:17:32: 1a:a9:0a:ea:ce:df:6d:80:46:00:73:5b:22:c9:16:5d:06:1b: 91:53:59:b8:f4:e2:6f:43:e5:c0:dc:7c:40:8a:85:56:57:9a: 97:29:2d:2b:b4:3e:f0:aa:22:54:61:78:5d:4f:e2:4d:2c:4f: 4b:a8:a2:09:5b:22:d6:34:16:b6:09:59:56:a5:88:d6:36:ba: 50:a2:b2:1f:fd:4f:f0:ae:ee:06:b0:b0:55:dd:84:8c:b0:19: dd:10:e6:82:37:6a:cd:13:08:f4:b1:66:6f:3d:28:9a:ac:d5: 18:e2:2c:12:03:0b:87:6f:cf:5e:5f:4e:d6:25:7c:b5:71:23: fa:bd:70:c6:57:0e:9a:8b:24:78:f7:7e:5b:b7:8e:c0:ce:22: be:92:c3:2f:b4:e4:96:b1:a0:71:f2:5d:2a:e1:3f:cb:5d:ef: be:6c:2e:a0:83:9b:26:42:37:4e:dc:87:8d:60:85:e4:5e:96: a3:ca:6c:47 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XDMjUHqLpmo+GzfaYODzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjYwMTAyMDYxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OWM0Yjg0OWRhNmU1OTU2ZGE2ZGY3NjkwODFmZWQzYjA3MmRmZDMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlkpIb1ASo6PKQ7y0l00uKYjuOyv 9SyRbii2QaJXrfxij1n2G8Mo9IiPWmQUwSGVcCDarXyzgw9DC9YBsHXDXlKD5+8Z MzEAGLzcm4z2eYH9lSbOtO0tISq4MvbnRIIAUIhj9ED3aEzefhi1K0D19SDhswLE tuAKEdEOSxqxYDZFtCt+WzavvIXXU+vO+WsE/v+v+p5CY+sfFk45dpH1uQCOwzNr h2AgrvB38OEb+Dq2mfcyU7nbMaiVgr7O8VxOoOQZthMUsVa53pVSRkjur8sxKYr/ mCORLi5VWLden7H7Ll88Liqb8QS/pm0+guCIeKePUAFkvFpUgU/h5HnP3wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJnEuEnabllW2m33aQgf7TsHLf0wMB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvbWNTNFNkcHVXVmJhYmZkcENCX3RPd2N0X1RBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAm4UgMA0G CSqGSIb3DQEBCwUAA4IBAQCAxYSqWKWUBmZEvj8h/pYdWGfunnnRQakFEVySc9A4 u3Ma5Gbp/DRA/5o6TiwtFdiaK7YTWDDbktfOhPTppB7KKPOVIaxOFzIaqQrqzt9t gEYAc1siyRZdBhuRU1m49OJvQ+XA3HxAioVWV5qXKS0rtD7wqiJUYXhdT+JNLE9L qKIJWyLWNBa2CVlWpYjWNrpQorIf/U/wru4GsLBV3YSMsBndEOaCN2rNEwj0sWZv PSiarNUY4iwSAwuHb89eX07WJXy1cSP6vXDGVw6aiyR4935bt47AziK+ksMvtOSW saBx8l0q4T/LXe++bC6gg5smQjdO3IeNYIXkXpajymxH -----END CERTIFICATE-----Generated at Sun Jan 25 17:32:42 2026 by rpki-client