This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/a352ba-c228-4a15-9168-303b8bc28bfa/1/MZaOI67AYigbpIsWpWqOKyUB95k.roa File: MZaOI67AYigbpIsWpWqOKyUB95k.roa (raw, json) Hash identifier: 28l2earsozG7gOJ16ktFFzzWVz+qyy71L+Rc+YVMUeI= Subject key identifier: 31:96:8E:23:AE:C0:62:28:1B:A4:8B:16:A5:6A:8E:2B:25:01:F7:99 Certificate issuer: /CN=893a58124ce9cc43783955255e7f583905cdb14e Certificate serial: 019B77C65FE0EDFE0A5C10B8094C0966DA38 Authority key identifier: 89:3A:58:12:4C:E9:CC:43:78:39:55:25:5E:7F:58:39:05:CD:B1:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTpYEkzpzEN4OVUlXn9YOQXNsU4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/a352ba-c228-4a15-9168-303b8bc28bfa/1/MZaOI67AYigbpIsWpWqOKyUB95k.roa Signing time: Thu 01 Jan 2026 04:17:27 +0000 ROA not before: Thu 01 Jan 2026 04:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209393 IP address blocks: 193.187.156.0/23 maxlen: 24 193.187.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/a352ba-c228-4a15-9168-303b8bc28bfa/1/iTpYEkzpzEN4OVUlXn9YOQXNsU4.crl rsync://rpki.ripe.net/repository/DEFAULT/05/a352ba-c228-4a15-9168-303b8bc28bfa/1/iTpYEkzpzEN4OVUlXn9YOQXNsU4.mft rsync://rpki.ripe.net/repository/DEFAULT/iTpYEkzpzEN4OVUlXn9YOQXNsU4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:5f:e0:ed:fe:0a:5c:10:b8:09:4c:09:66:da:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=893a58124ce9cc43783955255e7f583905cdb14e Validity Not Before: Jan 1 04:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31968e23aec062281ba48b16a56a8e2b2501f799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:58:d7:30:ad:40:4a:c9:63:31:ca:6f:45:4f: 63:d3:3c:3b:82:19:c0:13:8b:d4:d9:ce:92:a2:c6: 99:fd:46:84:a6:30:03:58:10:92:e5:69:38:42:b4: 6c:a1:c3:5c:ed:61:d4:e9:6b:fb:44:ef:c9:8e:ba: b7:7a:66:7a:6a:8d:b2:fd:1d:2d:4d:c1:a8:51:af: 12:f4:8d:2a:01:62:95:6e:5b:8d:2c:f9:a9:6c:bd: b7:c2:0a:bc:9a:38:59:5b:79:02:07:94:16:01:75: 71:91:1d:9c:75:8d:31:b7:87:da:5a:54:31:99:9a: 27:14:75:d8:01:da:15:f4:46:a8:77:7f:b6:2b:e8: 86:2a:3f:60:c6:ab:b6:5e:e3:f8:51:ad:3d:e4:0d: a3:dd:88:fe:19:dd:6f:0c:8b:90:0c:9a:54:41:26: 7b:35:b3:6a:e2:08:bf:f6:b2:13:00:f2:b0:a2:ad: 6f:4d:53:64:d6:fa:7f:58:01:e4:e4:9f:44:30:d9: e7:88:86:21:83:d8:65:3d:dd:35:b2:6b:38:4f:90: 0c:c8:e5:1b:fa:52:fc:75:3f:95:06:77:7b:a0:83: 9a:b1:da:e5:47:95:09:b0:85:77:b3:61:f6:13:92: d3:c5:a4:63:48:40:45:bb:24:d1:48:5c:2e:0a:f7: 7e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:96:8E:23:AE:C0:62:28:1B:A4:8B:16:A5:6A:8E:2B:25:01:F7:99 X509v3 Authority Key Identifier: keyid:89:3A:58:12:4C:E9:CC:43:78:39:55:25:5E:7F:58:39:05:CD:B1:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTpYEkzpzEN4OVUlXn9YOQXNsU4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/a352ba-c228-4a15-9168-303b8bc28bfa/1/MZaOI67AYigbpIsWpWqOKyUB95k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/a352ba-c228-4a15-9168-303b8bc28bfa/1/iTpYEkzpzEN4OVUlXn9YOQXNsU4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.187.156.0-193.187.158.255 Signature Algorithm: sha256WithRSAEncryption 8a:e4:6f:72:11:7a:d3:2a:b9:ba:a1:35:1c:10:c3:21:bb:9b: 22:d1:f5:83:d2:fa:5e:fd:bc:16:66:b3:3b:ca:ba:71:36:e0: d7:d4:03:74:fc:8f:90:05:16:68:df:4d:22:42:84:35:9c:1c: c0:25:13:12:b6:dd:9f:a8:64:01:a3:17:15:f3:48:10:12:10: 84:b1:cf:de:20:15:d9:ce:49:72:f0:e8:57:cd:92:f7:1d:2b: 8b:ec:35:88:47:5a:cd:36:9c:30:61:2d:71:60:62:ac:65:a2: a1:49:2f:e6:fc:f1:4f:96:3d:99:c7:cc:d5:f5:c3:ca:2a:3f: c8:ff:6f:3d:0c:c3:9b:91:1c:9d:62:89:d1:66:ee:31:7c:2d: 52:3a:e9:2d:70:89:85:2f:fa:d9:6e:27:69:b4:05:fc:a4:76: 07:b7:ce:f9:02:90:fb:11:ca:0c:f7:0d:6d:a2:74:f6:3f:a5: ad:0e:68:0e:55:fc:ad:41:57:47:fe:9c:28:a9:dd:61:5d:ce: dc:51:dd:c4:1e:bd:5c:9c:4c:7d:94:62:3d:b9:8e:35:49:44: 0b:da:30:a3:59:87:e3:c9:65:d9:c0:00:d5:8d:b9:da:eb:e4: 1d:d0:69:30:2a:a5:38:33:b0:d7:bb:fc:a1:f4:f0:e5:91:35: 73:21:30:16 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt3xl/g7f4KXBC4CUwJZto4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5M2E1ODEyNGNlOWNjNDM3ODM5NTUyNTVlN2Y1ODM5MDVj ZGIxNGUwHhcNMjYwMTAxMDQxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMTk2OGUyM2FlYzA2MjI4MWJhNDhiMTZhNTZhOGUyYjI1MDFmNzk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVjXMK1ASsljMcpvRU9j0zw7ghnA E4vU2c6SosaZ/UaEpjADWBCS5Wk4QrRsocNc7WHU6Wv7RO/Jjrq3emZ6ao2y/R0t TcGoUa8S9I0qAWKVbluNLPmpbL23wgq8mjhZW3kCB5QWAXVxkR2cdY0xt4faWlQx mZonFHXYAdoV9Eaod3+2K+iGKj9gxqu2XuP4Ua095A2j3Yj+Gd1vDIuQDJpUQSZ7 NbNq4gi/9rITAPKwoq1vTVNk1vp/WAHk5J9EMNnniIYhg9hlPd01sms4T5AMyOUb +lL8dT+VBnd7oIOasdrlR5UJsIV3s2H2E5LTxaRjSEBFuyTRSFwuCvd+sQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFDGWjiOuwGIoG6SLFqVqjislAfeZMB8GA1UdIwQY MBaAFIk6WBJM6cxDeDlVJV5/WDkFzbFOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVRwWUVrenB6RU40T1ZVbFhuOVlPUVhOc1U0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9hMzUyYmEtYzIyOC00YTE1LTkxNjgt MzAzYjhiYzI4YmZhLzEvTVphT0k2N0FZaWdicElzV3BXcU9LeVVCOTVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS9hMzUyYmEtYzIyOC00YTE1LTkxNjgtMzAzYjhiYzI4YmZh LzEvaVRwWUVrenB6RU40T1ZVbFhuOVlPUVhOc1U0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBALBu5wD BADBu54wDQYJKoZIhvcNAQELBQADggEBAIrkb3IRetMqubqhNRwQwyG7myLR9YPS +l79vBZmszvKunE24NfUA3T8j5AFFmjfTSJChDWcHMAlExK23Z+oZAGjFxXzSBAS EISxz94gFdnOSXLw6FfNkvcdK4vsNYhHWs02nDBhLXFgYqxloqFJL+b88U+WPZnH zNX1w8oqP8j/bz0Mw5uRHJ1iidFm7jF8LVI66S1wiYUv+tluJ2m0Bfykdge3zvkC kPsRygz3DW2idPY/pa0OaA5V/K1BV0f+nCip3WFdztxR3cQevVycTH2UYj25jjVJ RAvaMKNZh+PJZdnAANWNudrr5B3QaTAqpTgzsNe7/KH08OWRNXMhMBY= -----END CERTIFICATE-----Generated at Mon Feb 9 20:10:21 2026 by rpki-client