This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/MQdJhE7DJVvNK-iEKOuroe7Wk6U.roa File: MQdJhE7DJVvNK-iEKOuroe7Wk6U.roa (raw, json) Hash identifier: IDeLEFXV5ONQ6stNDvzS0ZYYqNXXaca6TX0gy7MtJtY= Subject key identifier: 31:07:49:84:4E:C3:25:5B:CD:2B:E8:84:28:EB:AB:A1:EE:D6:93:A5 Certificate issuer: /CN=1f810cc3fd228338d9b969725d95bb33c4e65a48 Certificate serial: 019B76EAB77E59E97122C53150E6F410EF58 Authority key identifier: 1F:81:0C:C3:FD:22:83:38:D9:B9:69:72:5D:95:BB:33:C4:E6:5A:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H4EMw_0igzjZuWlyXZW7M8TmWkg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/MQdJhE7DJVvNK-iEKOuroe7Wk6U.roa Signing time: Thu 01 Jan 2026 00:17:32 +0000 ROA not before: Thu 01 Jan 2026 00:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200814 IP address blocks: 176.120.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/H4EMw_0igzjZuWlyXZW7M8TmWkg.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/H4EMw_0igzjZuWlyXZW7M8TmWkg.mft rsync://rpki.ripe.net/repository/DEFAULT/H4EMw_0igzjZuWlyXZW7M8TmWkg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:b7:7e:59:e9:71:22:c5:31:50:e6:f4:10:ef:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f810cc3fd228338d9b969725d95bb33c4e65a48 Validity Not Before: Jan 1 00:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=310749844ec3255bcd2be88428ebaba1eed693a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:93:61:82:b0:a2:d5:1b:dd:65:93:2f:cc:44: b7:f8:58:43:4a:e8:86:1b:80:7f:26:77:bd:62:84: 76:49:89:ff:82:96:ca:18:89:d3:c1:96:8a:1c:0f: 05:04:43:26:28:2b:e1:80:f9:33:24:65:59:e8:12: 21:b4:82:26:66:93:83:a8:b4:98:56:3e:93:16:ee: ea:bf:30:5f:77:92:84:d6:0f:de:69:cb:79:6e:30: 3f:b3:d3:43:b8:e4:2a:71:5b:7a:d8:34:e1:1f:0f: 89:cf:76:73:5a:bf:a8:9e:64:7e:ad:d0:12:8a:87: 7e:84:b7:f4:41:77:30:ba:22:0b:ac:f9:c7:13:91: 64:fd:11:8e:85:91:09:9e:b0:21:42:1f:d1:bd:41: 25:07:ec:a0:bc:ae:e6:79:fd:e9:c9:43:e4:78:66: 63:49:41:19:1d:92:a9:33:0d:b6:57:29:8b:d5:d7: 4c:43:b1:b7:12:99:25:06:a2:02:6e:6f:50:7b:90: 95:ab:a3:c0:fb:88:d0:53:75:1f:66:34:a2:05:72: 5c:8e:04:03:90:89:71:90:83:ba:cf:e1:34:ac:45: 3b:90:18:d8:d7:47:a7:78:40:bb:1e:1e:21:d0:92: 81:b1:82:2a:07:81:ef:fc:98:c7:b4:c7:2e:be:92: 94:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:07:49:84:4E:C3:25:5B:CD:2B:E8:84:28:EB:AB:A1:EE:D6:93:A5 X509v3 Authority Key Identifier: keyid:1F:81:0C:C3:FD:22:83:38:D9:B9:69:72:5D:95:BB:33:C4:E6:5A:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H4EMw_0igzjZuWlyXZW7M8TmWkg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/MQdJhE7DJVvNK-iEKOuroe7Wk6U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/H4EMw_0igzjZuWlyXZW7M8TmWkg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.120.100.0/24 Signature Algorithm: sha256WithRSAEncryption 11:c9:82:ea:46:1a:39:3f:d3:4c:61:a6:0e:9c:c2:0d:f1:5b: 57:66:5e:fa:37:e2:35:29:72:05:53:06:51:01:be:d2:16:4a: 2c:dd:5a:11:f4:5d:63:13:44:9d:73:88:4f:ef:0f:7a:01:e3: cd:c2:e1:2e:4a:a9:99:83:48:b4:6f:71:c6:04:48:b9:05:61: e4:53:ea:3f:89:2a:3c:03:4d:12:8d:a1:61:dc:50:29:4b:24: 4c:b3:ad:96:53:98:d1:b7:c4:fb:09:f2:b6:31:56:0b:cc:b1: c3:8b:68:ab:2f:77:5e:d9:49:a8:2d:b8:ed:bc:67:ae:e2:08: 46:9d:d6:f2:f2:87:e8:98:61:f6:c4:f3:6d:61:49:5a:c3:5a: 60:9f:66:78:a4:6b:51:93:4b:b4:64:2a:26:33:ec:b5:93:7c: e3:f2:f3:ed:e8:0c:16:0f:46:25:76:02:86:71:d0:35:b9:95: 5c:bd:a9:ab:a8:0f:98:6f:81:17:3b:d5:5b:30:dd:20:b9:5a: b4:89:93:e1:84:fe:6c:c2:dd:d8:53:74:2f:a3:1a:bd:2c:5a: 56:03:14:b0:8d:95:58:29:4e:16:00:33:42:54:f4:d2:62:4f: 41:2e:da:0d:b5:70:da:0a:a6:69:e7:d0:9a:cc:10:47:24:eb: 30:1a:17:68 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26rd+WelxIsUxUOb0EO9YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmODEwY2MzZmQyMjgzMzhkOWI5Njk3MjVkOTViYjMzYzRl NjVhNDgwHhcNMjYwMTAxMDAxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMTA3NDk4NDRlYzMyNTViY2QyYmU4ODQyOGViYWJhMWVlZDY5M2E1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhpNhgrCi1RvdZZMvzES3+FhDSuiG G4B/Jne9YoR2SYn/gpbKGInTwZaKHA8FBEMmKCvhgPkzJGVZ6BIhtIImZpODqLSY Vj6TFu7qvzBfd5KE1g/eact5bjA/s9NDuOQqcVt62DThHw+Jz3ZzWr+onmR+rdAS iod+hLf0QXcwuiILrPnHE5Fk/RGOhZEJnrAhQh/RvUElB+ygvK7mef3pyUPkeGZj SUEZHZKpMw22VymL1ddMQ7G3EpklBqICbm9Qe5CVq6PA+4jQU3UfZjSiBXJcjgQD kIlxkIO6z+E0rEU7kBjY10eneEC7Hh4h0JKBsYIqB4Hv/JjHtMcuvpKUZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDEHSYROwyVbzSvohCjrq6Hu1pOlMB8GA1UdIwQY MBaAFB+BDMP9IoM42blpcl2VuzPE5lpIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDRFTXdfMGlnempadVdseVhaVzdNOFRtV2tnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8wZjA5MjctYzI5Yi00Njk4LTg1OWUt ZjljMTgwYmE0ODAxLzEvTVFkSmhFN0RKVnZOSy1pRUtPdXJvZTdXazZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS8wZjA5MjctYzI5Yi00Njk4LTg1OWUtZjljMTgwYmE0ODAx LzEvSDRFTXdfMGlnempadVdseVhaVzdNOFRtV2tnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHhkMA0G CSqGSIb3DQEBCwUAA4IBAQARyYLqRho5P9NMYaYOnMIN8VtXZl76N+I1KXIFUwZR Ab7SFkos3VoR9F1jE0Sdc4hP7w96AePNwuEuSqmZg0i0b3HGBEi5BWHkU+o/iSo8 A00SjaFh3FApSyRMs62WU5jRt8T7CfK2MVYLzLHDi2irL3de2UmoLbjtvGeu4ghG ndby8ofomGH2xPNtYUlaw1pgn2Z4pGtRk0u0ZComM+y1k3zj8vPt6AwWD0YldgKG cdA1uZVcvamrqA+Yb4EXO9VbMN0guVq0iZPhhP5swt3YU3Qvoxq9LFpWAxSwjZVY KU4WADNCVPTSYk9BLtoNtXDaCqZp59CazBBHJOswGhdo -----END CERTIFICATE-----Generated at Sun Jan 25 23:33:15 2026 by rpki-client