This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/MdU1TDg6gPzzC5Jls0YI4g9dlJY.roa File: MdU1TDg6gPzzC5Jls0YI4g9dlJY.roa (raw, json) Hash identifier: j2NCQtDtoHkREqMeNzVs0PKFMT/ogTJaPYMRxR3JZtM= Subject key identifier: 31:D5:35:4C:38:3A:80:FC:F3:0B:92:65:B3:46:08:E2:0F:5D:94:96 Certificate issuer: /CN=e1ef9694aa48d81279e8ede430795f2768d2dd52 Certificate serial: 019B7FF17BC571B06C2F8265B2F8B412A21C Authority key identifier: E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/MdU1TDg6gPzzC5Jls0YI4g9dlJY.roa Signing time: Fri 02 Jan 2026 18:21:30 +0000 ROA not before: Fri 02 Jan 2026 18:21:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203859 IP address blocks: 194.76.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.mft rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:7b:c5:71:b0:6c:2f:82:65:b2:f8:b4:12:a2:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1ef9694aa48d81279e8ede430795f2768d2dd52 Validity Not Before: Jan 2 18:21:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31d5354c383a80fcf30b9265b34608e20f5d9496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6e:29:9a:4d:cf:0a:1f:fe:3d:c8:67:b5:64: 3d:4b:02:7c:9e:e5:87:01:69:c1:34:ac:73:43:13: 9f:d4:58:c2:ee:e4:3a:b6:a7:d3:e2:af:9c:94:bb: 55:68:c7:87:92:22:11:df:92:b0:77:63:34:db:50: 4c:ef:9e:f2:c3:40:d1:c4:d8:a6:ef:94:43:cd:4e: 26:a5:9e:0c:6f:51:88:99:a8:96:14:97:67:b5:16: cb:57:53:76:66:ff:5b:67:a0:57:f1:5e:68:99:fa: 16:ce:cd:c4:6b:85:2a:86:75:e1:14:6b:ed:04:dd: 4b:30:9e:59:74:a0:ed:b2:98:d9:7f:89:8f:28:fb: 92:01:76:18:72:b4:ae:c4:81:de:05:8f:92:36:be: f2:b7:09:12:32:72:dd:51:5d:c9:0b:af:ca:87:68: c4:b7:49:7c:fc:58:47:33:a2:1a:7b:e7:1e:24:77: 3d:6e:de:04:83:e2:0d:e8:23:27:e2:2c:5a:a4:50: fb:aa:c6:f4:7a:05:66:81:35:c0:10:e7:b1:35:f3: 10:19:54:62:2f:47:3d:f8:19:d8:99:2c:fe:e0:72: e8:57:19:17:da:90:43:dd:58:61:3e:e8:7a:ca:bc: ee:0f:fe:6b:18:15:35:ca:ff:fc:69:8f:20:63:de: c9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:D5:35:4C:38:3A:80:FC:F3:0B:92:65:B3:46:08:E2:0F:5D:94:96 X509v3 Authority Key Identifier: keyid:E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/MdU1TDg6gPzzC5Jls0YI4g9dlJY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.76.115.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:89:13:d5:18:1e:bf:9d:30:59:a1:8e:9d:3f:d9:91:3b:ac: ab:4b:5f:26:69:99:7e:f5:78:2a:28:e9:d7:7a:97:48:b2:f4: 01:63:7a:57:2f:0b:3f:2a:be:53:ed:be:24:d2:fd:79:56:09: 83:2b:09:e0:ea:8b:8c:e8:7d:a8:04:72:0d:b4:f0:44:c7:5e: ab:9c:36:77:e3:e0:2e:c1:db:c0:a5:bd:53:82:e7:56:51:e8: 2f:c3:2e:12:05:4e:62:19:f8:aa:20:a4:83:ba:3a:14:30:f4: 6c:a7:e0:72:8b:68:0e:21:2d:06:99:44:79:b3:55:7f:f6:34: da:7a:27:f6:14:33:82:e5:2e:f9:9d:21:6d:aa:7e:d9:5d:bb: c9:d7:51:a9:49:7b:40:a1:54:38:d0:e4:79:48:0c:ec:46:64: f9:fd:c7:2b:04:87:9a:c5:0e:34:c8:23:1b:fa:fe:e0:b6:9e: 5c:9e:85:34:d1:1e:a8:2c:df:88:2c:e5:7c:2e:cf:c7:0e:92: 9a:ba:f7:11:a5:89:47:e7:03:4a:83:06:76:63:dc:77:61:ac: e3:5a:f1:05:e2:88:1b:e9:b0:c3:f0:3c:8a:b8:93:7f:8d:db: bb:cd:98:ce:f1:eb:f7:ea:36:6a:cc:07:ea:d4:d8:5d:e4:ea: 78:15:ae:f8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8XvFcbBsL4Jlsvi0EqIcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxZWY5Njk0YWE0OGQ4MTI3OWU4ZWRlNDMwNzk1ZjI3Njhk MmRkNTIwHhcNMjYwMTAyMTgyMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMWQ1MzU0YzM4M2E4MGZjZjMwYjkyNjViMzQ2MDhlMjBmNWQ5NDk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxW4pmk3PCh/+PchntWQ9SwJ8nuWH AWnBNKxzQxOf1FjC7uQ6tqfT4q+clLtVaMeHkiIR35Kwd2M021BM757yw0DRxNim 75RDzU4mpZ4Mb1GImaiWFJdntRbLV1N2Zv9bZ6BX8V5omfoWzs3Ea4UqhnXhFGvt BN1LMJ5ZdKDtspjZf4mPKPuSAXYYcrSuxIHeBY+SNr7ytwkSMnLdUV3JC6/Kh2jE t0l8/FhHM6Iae+ceJHc9bt4Eg+IN6CMn4ixapFD7qsb0egVmgTXAEOexNfMQGVRi L0c9+BnYmSz+4HLoVxkX2pBD3VhhPuh6yrzuD/5rGBU1yv/8aY8gY97JfQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDHVNUw4OoD88wuSZbNGCOIPXZSWMB8GA1UdIwQY MBaAFOHvlpSqSNgSeejt5DB5Xydo0t1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGUtV2xLcEkyQko1Nk8za01IbGZKMmpTM1ZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iMDU2NjctZTg1MC00YzQ1LWFlZTMt YWRlZDFjNDY5ZWFmLzEvTWRVMVREZzZnUHp6QzVKbHMwWUk0ZzlkbEpZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9iMDU2NjctZTg1MC00YzQ1LWFlZTMtYWRlZDFjNDY5ZWFm LzEvNGUtV2xLcEkyQko1Nk8za01IbGZKMmpTM1ZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwkxzMA0G CSqGSIb3DQEBCwUAA4IBAQBuiRPVGB6/nTBZoY6dP9mRO6yrS18maZl+9XgqKOnX epdIsvQBY3pXLws/Kr5T7b4k0v15VgmDKwng6ouM6H2oBHINtPBEx16rnDZ34+Au wdvApb1TgudWUegvwy4SBU5iGfiqIKSDujoUMPRsp+Byi2gOIS0GmUR5s1V/9jTa eif2FDOC5S75nSFtqn7ZXbvJ11GpSXtAoVQ40OR5SAzsRmT5/ccrBIeaxQ40yCMb +v7gtp5cnoU00R6oLN+ILOV8Ls/HDpKauvcRpYlH5wNKgwZ2Y9x3YazjWvEF4ogb 6bDD8DyKuJN/jdu7zZjO8ev36jZqzAfq1Nhd5Op4Fa74 -----END CERTIFICATE-----Generated at Tue Jan 20 07:31:46 2026 by rpki-client