This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/miAb-8PhHCi43bUCI_hLnwDESQM.roa File: miAb-8PhHCi43bUCI_hLnwDESQM.roa (raw, json) Hash identifier: R+HHUuhd28D1d5kF4bYGuzan7r+ujmUekbJUkPeHQ9U= Subject key identifier: 9A:20:1B:FB:C3:E1:1C:28:B8:DD:B5:02:23:F8:4B:9F:00:C4:49:03 Certificate issuer: /CN=4568d0a7204560b6356d837bbf1510d9636df63a Certificate serial: 019B7CECEC52CF3E5F3314EA1FFB78CEDB1A Authority key identifier: 45:68:D0:A7:20:45:60:B6:35:6D:83:7B:BF:15:10:D9:63:6D:F6:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/miAb-8PhHCi43bUCI_hLnwDESQM.roa Signing time: Fri 02 Jan 2026 04:17:40 +0000 ROA not before: Fri 02 Jan 2026 04:17:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3356 IP address blocks: 37.114.72.0/21 maxlen: 32 78.110.16.0/20 maxlen: 32 80.245.208.0/20 maxlen: 32 95.131.232.0/21 maxlen: 32 185.56.252.0/22 maxlen: 32 195.38.30.0/24 maxlen: 32 217.168.160.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.mft rsync://rpki.ripe.net/repository/DEFAULT/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:ec:52:cf:3e:5f:33:14:ea:1f:fb:78:ce:db:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4568d0a7204560b6356d837bbf1510d9636df63a Validity Not Before: Jan 2 04:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9a201bfbc3e11c28b8ddb50223f84b9f00c44903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5a:5b:e6:97:12:65:5c:bc:a6:66:1f:b0:20: 26:b4:8a:be:67:0e:bd:9b:cf:07:73:c7:8e:25:35: 99:a0:a6:52:d0:06:32:e5:85:35:af:25:ff:f0:64: 79:a4:ef:e8:04:d0:8b:34:f0:c9:c8:04:d4:12:69: a7:79:c3:ac:7d:13:bf:20:1e:db:61:e6:39:0c:17: f4:71:61:5f:1b:4a:96:2b:4e:d8:05:15:a6:0e:d5: d5:02:e6:2b:9b:43:8e:c7:c9:3b:8e:c5:0e:3a:ea: 00:be:fa:9b:3a:89:8d:7c:80:8e:1e:f1:f0:72:4a: 90:a1:a9:12:25:8d:14:cc:b7:15:55:d2:fd:69:bb: 45:4d:99:3d:4f:4e:8d:32:f0:e9:5e:84:c9:97:20: 40:00:e1:89:ca:a8:01:41:47:6a:ea:da:8a:82:bf: 20:04:f4:be:3f:c2:22:b5:23:09:89:a9:83:7a:7c: 0b:b6:a1:c9:bc:02:d5:81:06:ea:56:fc:88:8f:06: 24:bf:4b:22:ac:f7:25:87:49:01:6e:56:e7:64:71: 1f:3f:5b:b7:bc:5c:bb:15:32:97:27:b5:b9:b3:38: 70:78:11:2a:9d:4e:66:95:72:06:2c:77:da:d6:7e: 7f:42:4f:a6:8d:82:e0:62:94:e4:0d:85:80:2d:de: 3d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:20:1B:FB:C3:E1:1C:28:B8:DD:B5:02:23:F8:4B:9F:00:C4:49:03 X509v3 Authority Key Identifier: keyid:45:68:D0:A7:20:45:60:B6:35:6D:83:7B:BF:15:10:D9:63:6D:F6:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/miAb-8PhHCi43bUCI_hLnwDESQM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.114.72.0/21 78.110.16.0/20 80.245.208.0/20 95.131.232.0/21 185.56.252.0/22 195.38.30.0/24 217.168.160.0/20 Signature Algorithm: sha256WithRSAEncryption a7:d1:ed:40:aa:22:7e:01:4d:86:b3:42:20:b4:48:23:09:b7: ac:fd:1d:0d:55:16:22:00:91:fa:1d:39:4e:1e:cd:ef:bf:2a: 46:b7:a4:4d:93:a3:f7:fe:64:b4:4a:2b:fe:ea:d9:ef:f4:ac: 2b:85:38:10:2f:b8:ef:30:45:ea:f0:9f:51:37:a3:56:71:07: 9d:42:12:f6:ce:54:e8:9a:cc:a1:bd:fd:78:85:e9:2e:ee:1a: e7:2b:52:84:3f:17:f6:a8:24:f4:a5:90:1d:3b:9b:82:e9:7c: d8:0b:0f:05:60:b6:a9:86:55:08:19:45:ac:89:f1:42:e2:80: 94:0a:f9:73:a6:ac:ba:af:ad:19:3c:02:ce:e2:8e:ed:19:88: fd:62:c2:f2:6b:4e:4a:7e:da:3e:4e:49:52:98:0f:c6:b9:24: 17:16:28:3e:0e:be:67:06:05:a5:5e:f8:e2:61:23:1f:61:e9: b8:3f:8b:ef:49:5c:c1:4f:3a:fb:e1:ac:49:f0:f1:57:65:59: a2:37:dd:b4:b9:a3:ca:ab:74:ad:de:90:3c:7c:e4:b8:20:3b: 93:6e:98:04:a8:bc:34:af:5f:be:9f:f0:7a:ad:b7:3a:ad:7b: 02:c2:56:44:a2:2b:07:d4:4e:8a:41:5a:46:a2:88:2d:71:0b: 84:7d:70:8c -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt87OxSzz5fMxTqH/t4ztsaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1NjhkMGE3MjA0NTYwYjYzNTZkODM3YmJmMTUxMGQ5NjM2 ZGY2M2EwHhcNMjYwMTAyMDQxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YTIwMWJmYmMzZTExYzI4YjhkZGI1MDIyM2Y4NGI5ZjAwYzQ0OTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFpb5pcSZVy8pmYfsCAmtIq+Zw69 m88Hc8eOJTWZoKZS0AYy5YU1ryX/8GR5pO/oBNCLNPDJyATUEmmnecOsfRO/IB7b YeY5DBf0cWFfG0qWK07YBRWmDtXVAuYrm0OOx8k7jsUOOuoAvvqbOomNfICOHvHw ckqQoakSJY0UzLcVVdL9abtFTZk9T06NMvDpXoTJlyBAAOGJyqgBQUdq6tqKgr8g BPS+P8IitSMJiamDenwLtqHJvALVgQbqVvyIjwYkv0sirPclh0kBblbnZHEfP1u3 vFy7FTKXJ7W5szhweBEqnU5mlXIGLHfa1n5/Qk+mjYLgYpTkDYWALd49cwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFJogG/vD4RwouN21AiP4S58AxEkDMB8GA1UdIwQY MBaAFEVo0KcgRWC2NW2De78VENljbfY6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUldqUXB5QkZZTFkxYllON3Z4VVEyV050OWpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9iMGZiMGItYjk2YS00MzkwLTg2YTgt NmZlMzVhZTU0YTViLzEvbWlBYi04UGhIQ2k0M2JVQ0lfaExud0RFU1FNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS9iMGZiMGItYjk2YS00MzkwLTg2YTgtNmZlMzVhZTU0YTVi LzEvUldqUXB5QkZZTFkxYllON3Z4VVEyV050OWpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQDJXJIAwQE Tm4QAwQEUPXQAwQDX4PoAwQCuTj8AwQAwyYeAwQE2aigMA0GCSqGSIb3DQEBCwUA A4IBAQCn0e1AqiJ+AU2Gs0IgtEgjCbes/R0NVRYiAJH6HTlOHs3vvypGt6RNk6P3 /mS0Siv+6tnv9KwrhTgQL7jvMEXq8J9RN6NWcQedQhL2zlTomsyhvf14heku7hrn K1KEPxf2qCT0pZAdO5uC6XzYCw8FYLaphlUIGUWsifFC4oCUCvlzpqy6r60ZPALO 4o7tGYj9YsLya05Kfto+TklSmA/GuSQXFig+Dr5nBgWlXvjiYSMfYem4P4vvSVzB Tzr74axJ8PFXZVmiN920uaPKq3St3pA8fOS4IDuTbpgEqLw0r1++n/B6rbc6rXsC wlZEoisH1E6KQVpGoogtcQuEfXCM -----END CERTIFICATE-----Generated at Fri Jan 23 16:03:17 2026 by rpki-client