This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/M-2rME5iw6DM-f47-QFFb7VzGFU.roa File: M-2rME5iw6DM-f47-QFFb7VzGFU.roa (raw, json) Hash identifier: vtu0N2tgrIN8s3d7nrEfJQ8SnAhHAVxXwjju8rnYHgE= Subject key identifier: 33:ED:AB:30:4E:62:C3:A0:CC:F9:FE:3B:F9:01:45:6F:B5:73:18:55 Certificate issuer: /CN=0b4e3b3b84242258863142ed3a19792d97cbbc74 Certificate serial: 019BDB2742A527F6AA50DA05F50F0B75EF6E Authority key identifier: 0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/M-2rME5iw6DM-f47-QFFb7VzGFU.roa Signing time: Tue 20 Jan 2026 11:25:41 +0000 ROA not before: Tue 20 Jan 2026 11:25:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206134 IP address blocks: 2a0d:d940:1a::/48 maxlen: 48 2a0d:d940:1c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:db:27:42:a5:27:f6:aa:50:da:05:f5:0f:0b:75:ef:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b4e3b3b84242258863142ed3a19792d97cbbc74 Validity Not Before: Jan 20 11:25:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=33edab304e62c3a0ccf9fe3bf901456fb5731855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:87:ee:d2:d7:0b:7e:65:46:6e:4b:2e:fa:22: 60:19:ab:11:93:fa:1e:35:85:c0:8d:04:6d:05:39: af:04:7d:52:f7:23:64:f6:2f:04:e4:02:b8:ef:59: 04:b5:34:c2:59:47:a3:4a:70:75:84:93:02:d6:2e: 85:67:72:8b:aa:94:c4:27:8a:af:85:8c:5d:11:24: 6e:20:81:84:f9:39:b3:1e:12:22:b8:1a:ea:bd:f7: 89:99:41:6d:05:ff:70:c6:c1:22:b1:07:60:a4:b1: 54:ec:d2:51:6c:d7:1c:f7:72:64:a0:37:f4:95:bc: ee:42:f3:d4:83:b2:10:74:42:4c:2f:0b:ad:40:60: 1b:7b:75:b8:31:7d:d7:9c:31:94:75:f2:14:1c:bc: 44:a0:46:ec:08:ec:7e:ba:fa:b0:18:bf:13:7e:a5: 3c:ba:cf:47:bf:8c:71:6b:5e:4d:85:5c:2e:fb:4b: 57:5f:5d:04:56:e9:41:c8:df:9a:d7:10:5f:51:d4: 32:7e:c2:a4:70:ca:0a:51:f8:97:46:93:ef:b4:cc: 3d:c3:9d:ea:5a:98:50:9f:99:50:61:6e:c5:e9:dc: 2f:fb:60:ee:48:89:d5:1e:3b:6a:85:69:79:22:ed: 03:0d:b2:58:7d:de:9a:44:2b:7c:3e:a8:71:68:4c: 46:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:ED:AB:30:4E:62:C3:A0:CC:F9:FE:3B:F9:01:45:6F:B5:73:18:55 X509v3 Authority Key Identifier: keyid:0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/M-2rME5iw6DM-f47-QFFb7VzGFU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:d940:1a::/48 2a0d:d940:1c::/48 Signature Algorithm: sha256WithRSAEncryption 25:6f:9b:8d:ae:92:c2:ba:19:be:7a:0f:4d:42:f6:f7:fa:a4: 05:b6:e6:4f:6d:b8:65:ad:cd:06:1f:ca:9b:f2:6a:e7:74:18: c7:51:0d:aa:55:f2:5b:a8:86:bc:ad:73:aa:b8:8e:d9:66:77: 3e:1c:1a:bd:7b:dd:e4:68:2e:a5:8c:7a:f7:49:f8:7e:c6:76: c8:04:b3:e5:a7:22:52:2e:04:08:56:0e:bc:51:d3:7b:9b:5d: 19:13:93:6c:c7:df:12:47:8d:64:b7:33:62:30:8a:a3:b3:20: 3a:0c:5e:49:5f:2e:06:d4:4a:2f:25:32:66:19:31:f3:29:48: 8e:e7:99:e3:d7:da:48:2a:18:93:63:37:a7:ea:ad:68:41:54: 0e:bf:6f:4c:6b:d8:2f:e0:4b:83:b9:b8:a8:b5:4e:7b:73:ee: 4e:99:50:8f:b0:d9:d7:34:83:e8:de:9a:ac:a6:25:11:4e:46: b8:04:3e:9d:29:8d:f1:06:33:2f:47:d0:6e:1d:ad:4a:e6:18: a3:c4:c7:5a:5b:b4:ee:0e:96:57:12:b9:c9:a4:78:4b:6b:d0: ae:8b:de:7b:4d:73:2f:3c:4d:f3:c6:f9:f5:23:5f:96:c8:99: 84:95:07:e0:1e:54:0b:10:60:06:00:f8:e4:34:ae:ad:fe:8d: 65:87:20:c6 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZvbJ0KlJ/aqUNoF9Q8Lde9uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiNGUzYjNiODQyNDIyNTg4NjMxNDJlZDNhMTk3OTJkOTdj YmJjNzQwHhcNMjYwMTIwMTEyNTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzM2VkYWIzMDRlNjJjM2EwY2NmOWZlM2JmOTAxNDU2ZmI1NzMxODU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYfu0tcLfmVGbksu+iJgGasRk/oe NYXAjQRtBTmvBH1S9yNk9i8E5AK471kEtTTCWUejSnB1hJMC1i6FZ3KLqpTEJ4qv hYxdESRuIIGE+TmzHhIiuBrqvfeJmUFtBf9wxsEisQdgpLFU7NJRbNcc93JkoDf0 lbzuQvPUg7IQdEJMLwutQGAbe3W4MX3XnDGUdfIUHLxEoEbsCOx+uvqwGL8TfqU8 us9Hv4xxa15NhVwu+0tXX10EVulByN+a1xBfUdQyfsKkcMoKUfiXRpPvtMw9w53q WphQn5lQYW7F6dwv+2DuSInVHjtqhWl5Iu0DDbJYfd6aRCt8PqhxaExGrQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFDPtqzBOYsOgzPn+O/kBRW+1cxhVMB8GA1UdIwQY MBaAFAtOOzuEJCJYhjFC7ToZeS2Xy7x0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQzA0N080UWtJbGlHTVVMdE9obDVMWmZMdkhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83YmExYjEtNTU2Mi00YTMyLTlmNWQt MTRkMjM4NTI3ODM1LzEvTS0yck1FNWl3NkRNLWY0Ny1RRkZiN1Z6R0ZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS83YmExYjEtNTU2Mi00YTMyLTlmNWQtMTRkMjM4NTI3ODM1 LzEvQzA0N080UWtJbGlHTVVMdE9obDVMWmZMdkhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKg3ZQAAa AwcAKg3ZQAAcMA0GCSqGSIb3DQEBCwUAA4IBAQAlb5uNrpLCuhm+eg9NQvb3+qQF tuZPbbhlrc0GH8qb8mrndBjHUQ2qVfJbqIa8rXOquI7ZZnc+HBq9e93kaC6ljHr3 Sfh+xnbIBLPlpyJSLgQIVg68UdN7m10ZE5Nsx98SR41ktzNiMIqjsyA6DF5JXy4G 1EovJTJmGTHzKUiO55nj19pIKhiTYzen6q1oQVQOv29Ma9gv4EuDubiotU57c+5O mVCPsNnXNIPo3pqspiURTka4BD6dKY3xBjMvR9BuHa1K5hijxMdaW7TuDpZXErnJ pHhLa9Cui957TXMvPE3zxvn1I1+WyJmElQfgHlQLEGAGAPjkNK6t/o1lhyDG -----END CERTIFICATE-----Generated at Wed Jan 21 16:58:58 2026 by rpki-client