This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/mEMBpqCiAZX-66IM2v28OLBYmaU.roa File: mEMBpqCiAZX-66IM2v28OLBYmaU.roa (raw, json) Hash identifier: D0q/tQQJTMQWefAkqZBJ1Tlw8AdCPKqxL86ZtoZ1fgo= Subject key identifier: 98:43:01:A6:A0:A2:01:95:FE:EB:A2:0C:DA:FD:BC:38:B0:58:99:A5 Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498 Certificate serial: 019B7D5CEC299FABBAF4A9C3C9CAEE170687 Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/mEMBpqCiAZX-66IM2v28OLBYmaU.roa Signing time: Fri 02 Jan 2026 06:20:00 +0000 ROA not before: Fri 02 Jan 2026 06:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212217 IP address blocks: 81.30.104.0/24 maxlen: 24 2a13:e280:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:ec:29:9f:ab:ba:f4:a9:c3:c9:ca:ee:17:06:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498 Validity Not Before: Jan 2 06:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=984301a6a0a20195feeba20cdafdbc38b05899a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:55:ae:22:6b:96:2f:dc:4d:73:f4:67:af:25: 40:18:f2:81:3d:c6:98:57:0a:ed:a4:ff:2a:4c:0a: f9:6c:01:9d:67:e6:cb:e8:f0:c1:ea:2b:77:83:4b: 62:c6:16:89:e7:11:0d:7d:7f:f3:26:8f:d0:21:da: 94:ff:50:76:0f:c0:12:d2:fa:35:37:b8:f8:fd:ad: b8:c2:20:cc:87:89:db:d5:e2:99:f6:55:9c:76:e9: 96:a5:4b:63:f9:87:71:e3:d7:bb:58:76:ad:15:e1: c9:f5:00:a2:83:b2:cd:67:85:ed:24:c1:64:64:f5: 45:7e:83:88:44:2d:0e:d5:52:dd:43:77:58:b7:07: bf:86:30:38:90:47:7c:5b:ad:76:c9:2d:77:ab:97: f2:41:8c:d9:70:04:28:22:62:f3:d6:4b:53:cb:8d: 33:a6:d1:62:50:ee:86:3e:3a:a7:e2:99:81:f0:7a: ac:73:1d:9d:dc:3d:46:ed:5b:2c:19:05:f8:95:6a: c6:80:7e:e0:63:f6:22:fd:b5:1f:58:13:38:f8:d9: cd:43:b0:7a:a2:a7:75:9b:6e:55:3a:18:d0:d1:67: c0:10:5c:ec:3d:7c:eb:d4:6a:4f:5a:44:38:ac:e5: 94:0f:5e:a1:e4:4d:4c:23:24:52:b2:26:98:3a:74: 29:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:43:01:A6:A0:A2:01:95:FE:EB:A2:0C:DA:FD:BC:38:B0:58:99:A5 X509v3 Authority Key Identifier: keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/mEMBpqCiAZX-66IM2v28OLBYmaU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.30.104.0/24 IPv6: 2a13:e280:1::/48 Signature Algorithm: sha256WithRSAEncryption 23:c0:7e:44:ef:78:e0:70:98:c2:db:68:d5:4c:ab:50:5d:cd: 25:31:4e:e5:e8:40:b0:6d:bb:be:68:c6:ce:0a:55:6e:75:bd: 35:55:06:6d:6f:63:a9:4a:0d:cf:99:9c:9d:81:5a:d6:f7:be: e9:6e:e6:cf:4e:5c:2a:18:c4:43:6c:76:6f:db:e3:09:dc:fc: e0:19:da:47:47:2a:d1:48:7f:7e:04:b5:55:ca:6a:aa:00:80: 05:23:1b:3a:d0:eb:90:d1:fb:70:ed:09:70:9c:90:ff:dd:f9: 95:e6:d1:f3:6a:fa:9a:ec:52:01:1f:a6:23:1a:ba:e9:63:b6: 4c:8b:6e:1e:42:5a:b0:40:71:c8:05:69:bc:c8:c1:22:99:88: bc:ef:ac:d8:fc:3d:36:85:4c:af:e2:b7:1f:6e:0a:ad:d3:8f: 5f:16:b2:cb:13:10:6c:45:70:c9:81:6d:82:0e:44:c7:2b:dd: f3:d8:75:8e:5f:5f:be:6b:f2:61:9b:a3:19:7e:ef:67:47:6d: 75:2a:f4:2c:c2:f6:16:c1:00:6d:d2:84:24:28:b4:82:0a:84: 82:10:fb:42:10:09:89:cc:fe:71:b4:62:7b:d2:5c:4a:b1:aa: c2:39:3c:63:3e:07:92:12:c8:2b:32:a3:bb:fc:6e:94:dc:2d: 5c:9d:ac:d0 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9XOwpn6u69KnDycruFwaHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMWExMzBhOTBjYjAzN2UzODAzZmVhMGJmNDY1YWEwODJm ZTM0OTgwHhcNMjYwMTAyMDYyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODQzMDFhNmEwYTIwMTk1ZmVlYmEyMGNkYWZkYmMzOGIwNTg5OWE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVWuImuWL9xNc/RnryVAGPKBPcaY VwrtpP8qTAr5bAGdZ+bL6PDB6it3g0tixhaJ5xENfX/zJo/QIdqU/1B2D8AS0vo1 N7j4/a24wiDMh4nb1eKZ9lWcdumWpUtj+Ydx49e7WHatFeHJ9QCig7LNZ4XtJMFk ZPVFfoOIRC0O1VLdQ3dYtwe/hjA4kEd8W612yS13q5fyQYzZcAQoImLz1ktTy40z ptFiUO6GPjqn4pmB8Hqscx2d3D1G7VssGQX4lWrGgH7gY/Yi/bUfWBM4+NnNQ7B6 oqd1m25VOhjQ0WfAEFzsPXzr1GpPWkQ4rOWUD16h5E1MIyRSsiaYOnQplQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFJhDAaagogGV/uuiDNr9vDiwWJmlMB8GA1UdIwQY MBaAFGIaEwqQywN+OAP+oL9GWqCC/jSYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8yMTQ5MmYtMTY2My00MDlkLWJmYjIt NmEwNDUxYzQ5ZDRkLzEvbUVNQnBxQ2lBWlgtNjZJTTJ2MjhPTEJZbWFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC8yMTQ5MmYtMTY2My00MDlkLWJmYjItNmEwNDUxYzQ5ZDRk LzEvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAUR5oMA8E AgACMAkDBwAqE+KAAAEwDQYJKoZIhvcNAQELBQADggEBACPAfkTveOBwmMLbaNVM q1BdzSUxTuXoQLBtu75oxs4KVW51vTVVBm1vY6lKDc+ZnJ2BWtb3vulu5s9OXCoY xENsdm/b4wnc/OAZ2kdHKtFIf34EtVXKaqoAgAUjGzrQ65DR+3DtCXCckP/d+ZXm 0fNq+prsUgEfpiMauuljtkyLbh5CWrBAccgFabzIwSKZiLzvrNj8PTaFTK/itx9u Cq3Tj18WsssTEGxFcMmBbYIORMcr3fPYdY5fX75r8mGboxl+72dHbXUq9CzC9hbB AG3ShCQotIIKhIIQ+0IQCYnM/nG0YnvSXEqxqsI5PGM+B5ISyCsyo7v8bpTcLVyd rNA= -----END CERTIFICATE-----Generated at Mon Jan 26 00:14:27 2026 by rpki-client