This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/5e6116-56e6-4c1d-9683-4b22fc5184a2/1/MPvO2dZ_kOKibteAR_Ns5oUPsXU.roa File: MPvO2dZ_kOKibteAR_Ns5oUPsXU.roa (raw, json) Hash identifier: yceqp9tOGnASlhlPEstVO0Slz4m1QkPIFdIyEBIsurA= Subject key identifier: 30:FB:CE:D9:D6:7F:90:E2:A2:6E:D7:80:47:F3:6C:E6:85:0F:B1:75 Certificate issuer: /CN=45b9854b044594e6cf0846fb41de7b0908fb5f72 Certificate serial: 019B77588FF6394D1282F30FBC5C4A0B9815 Authority key identifier: 45:B9:85:4B:04:45:94:E6:CF:08:46:FB:41:DE:7B:09:08:FB:5F:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RbmFSwRFlObPCEb7Qd57CQj7X3I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/5e6116-56e6-4c1d-9683-4b22fc5184a2/1/MPvO2dZ_kOKibteAR_Ns5oUPsXU.roa Signing time: Thu 01 Jan 2026 02:17:31 +0000 ROA not before: Thu 01 Jan 2026 02:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24679 IP address blocks: 81.3.0.0/18 maxlen: 24 83.246.0.0/17 maxlen: 24 185.148.168.0/22 maxlen: 24 193.201.52.0/22 maxlen: 24 193.238.228.0/22 maxlen: 24 195.47.229.0/24 maxlen: 24 195.158.238.0/23 maxlen: 24 195.158.238.0/24 maxlen: 24 195.158.239.0/24 maxlen: 24 217.175.224.0/19 maxlen: 24 217.195.32.0/20 maxlen: 24 2a02:790::/32 maxlen: 48 2a07:60c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/5e6116-56e6-4c1d-9683-4b22fc5184a2/1/RbmFSwRFlObPCEb7Qd57CQj7X3I.crl rsync://rpki.ripe.net/repository/DEFAULT/12/5e6116-56e6-4c1d-9683-4b22fc5184a2/1/RbmFSwRFlObPCEb7Qd57CQj7X3I.mft rsync://rpki.ripe.net/repository/DEFAULT/RbmFSwRFlObPCEb7Qd57CQj7X3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:8f:f6:39:4d:12:82:f3:0f:bc:5c:4a:0b:98:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45b9854b044594e6cf0846fb41de7b0908fb5f72 Validity Not Before: Jan 1 02:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=30fbced9d67f90e2a26ed78047f36ce6850fb175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fa:04:ae:7c:74:28:25:ff:7e:80:d8:77:fe: 1c:e5:08:2b:bf:52:a1:1a:42:eb:d8:9f:f5:90:e9: b9:5a:32:ef:9e:24:4c:32:1b:d3:43:f2:53:73:a9: 7f:5b:45:cd:c8:57:bc:a7:3d:9a:3e:df:46:1e:1e: 35:5b:31:48:91:87:25:05:29:f5:6d:bf:8d:d6:83: 66:0d:96:14:9e:41:34:a4:48:6a:bd:9b:ff:14:3b: 41:5c:0b:7f:6b:60:ca:a3:bf:4e:66:a8:9a:b8:51: d6:d7:87:18:f1:1e:a6:2c:ec:32:2b:d9:f4:41:e4: 54:8f:2a:c8:fe:ed:12:86:4e:80:ad:f6:a2:67:89: 83:61:3d:5c:f5:60:89:e7:53:b5:29:91:ab:15:f6: b9:0a:e9:13:8c:9e:6c:34:98:67:0d:d6:1a:46:18: 96:db:24:df:8d:67:1a:c9:a2:fd:74:07:b3:2d:69: 99:c4:85:24:6f:3c:13:c8:d2:b5:be:8b:be:ae:75: c0:8d:1e:ff:a3:e0:38:52:f1:34:41:ba:0d:ac:81: 50:e2:f9:2e:86:90:c7:69:16:44:1d:8c:b6:56:ab: ea:17:28:4f:0e:6f:d6:8e:ed:1e:e5:80:ef:20:32: fa:93:54:a0:92:53:7e:28:97:e7:80:67:d7:34:be: a1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:FB:CE:D9:D6:7F:90:E2:A2:6E:D7:80:47:F3:6C:E6:85:0F:B1:75 X509v3 Authority Key Identifier: keyid:45:B9:85:4B:04:45:94:E6:CF:08:46:FB:41:DE:7B:09:08:FB:5F:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RbmFSwRFlObPCEb7Qd57CQj7X3I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/5e6116-56e6-4c1d-9683-4b22fc5184a2/1/MPvO2dZ_kOKibteAR_Ns5oUPsXU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/5e6116-56e6-4c1d-9683-4b22fc5184a2/1/RbmFSwRFlObPCEb7Qd57CQj7X3I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.3.0.0/18 83.246.0.0/17 185.148.168.0/22 193.201.52.0/22 193.238.228.0/22 195.47.229.0/24 195.158.238.0/23 217.175.224.0/19 217.195.32.0/20 IPv6: 2a02:790::/32 2a07:60c0::/29 Signature Algorithm: sha256WithRSAEncryption b5:58:34:86:38:b3:3e:a7:29:35:cb:6d:af:46:0e:b2:7f:85: 4b:b1:5a:ac:07:df:e6:bb:e7:b1:d5:b4:c1:8c:5c:07:1e:c1: 88:9c:70:53:98:6e:da:c7:85:8f:6e:5b:77:66:dd:55:8c:f4: 65:1f:29:5e:c1:3d:39:0f:1f:3a:70:9c:f7:45:48:96:63:92: 4a:e5:b9:a5:a9:55:03:24:03:5f:6d:a8:77:64:ef:16:1e:8b: 73:8c:5c:cf:ba:a3:35:82:6e:be:b5:b9:94:c9:b9:86:66:83: be:ec:2a:16:6b:ad:6b:ad:6b:a6:55:4d:66:0b:4b:18:9b:2c: a0:04:de:c9:8a:3c:c4:fe:a0:49:dc:e6:d3:ca:b0:b0:62:cf: aa:79:27:c1:1f:2a:4e:fd:e2:24:fd:83:1c:a1:ff:c9:ef:0e: 01:aa:8d:36:59:16:57:c3:b0:34:cd:b7:2a:70:e1:00:b1:61: 2e:ea:d5:fe:23:cf:2f:16:33:06:bf:cc:f3:f2:b0:e2:d5:62: aa:69:44:a9:5b:ad:16:da:c7:34:00:9c:40:12:2f:8b:d7:53: 3a:7d:b5:d3:23:21:74:b0:8c:e0:1a:ce:e9:c6:1a:12:63:8a: a2:56:e4:27:8c:ac:7c:d6:0b:3b:bd:95:59:74:5f:c4:47:0c: f3:e9:25:4c -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgISAZt3WI/2OU0SgvMPvFxKC5gVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1Yjk4NTRiMDQ0NTk0ZTZjZjA4NDZmYjQxZGU3YjA5MDhm YjVmNzIwHhcNMjYwMTAxMDIxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMGZiY2VkOWQ2N2Y5MGUyYTI2ZWQ3ODA0N2YzNmNlNjg1MGZiMTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/oErnx0KCX/foDYd/4c5Qgrv1Kh GkLr2J/1kOm5WjLvniRMMhvTQ/JTc6l/W0XNyFe8pz2aPt9GHh41WzFIkYclBSn1 bb+N1oNmDZYUnkE0pEhqvZv/FDtBXAt/a2DKo79OZqiauFHW14cY8R6mLOwyK9n0 QeRUjyrI/u0Shk6ArfaiZ4mDYT1c9WCJ51O1KZGrFfa5CukTjJ5sNJhnDdYaRhiW 2yTfjWcayaL9dAezLWmZxIUkbzwTyNK1vou+rnXAjR7/o+A4UvE0QboNrIFQ4vku hpDHaRZEHYy2VqvqFyhPDm/Wju0e5YDvIDL6k1SgklN+KJfngGfXNL6haQIDAQAB o4ICTzCCAkswHQYDVR0OBBYEFDD7ztnWf5Diom7XgEfzbOaFD7F1MB8GA1UdIwQY MBaAFEW5hUsERZTmzwhG+0HeewkI+19yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmJtRlN3UkZsT2JQQ0ViN1FkNTdDUWo3WDNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi81ZTYxMTYtNTZlNi00YzFkLTk2ODMt NGIyMmZjNTE4NGEyLzEvTVB2TzJkWl9rT0tpYnRlQVJfTnM1b1VQc1hVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi81ZTYxMTYtNTZlNi00YzFkLTk2ODMtNGIyMmZjNTE4NGEy LzEvUmJtRlN3UkZsT2JQQ0ViN1FkNTdDUWo3WDNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGUGCCsGAQUFBwEHAQH/BFYwVDA8BAIAATA2AwQGUQMAAwQH U/YAAwQCuZSoAwQCwck0AwQCwe7kAwQAwy/lAwQBw57uAwQF2a/gAwQE2cMgMBQE AgACMA4DBQAqAgeQAwUDKgdgwDANBgkqhkiG9w0BAQsFAAOCAQEAtVg0hjizPqcp Ncttr0YOsn+FS7FarAff5rvnsdW0wYxcBx7BiJxwU5hu2seFj25bd2bdVYz0ZR8p XsE9OQ8fOnCc90VIlmOSSuW5palVAyQDX22od2TvFh6Lc4xcz7qjNYJuvrW5lMm5 hmaDvuwqFmuta61rplVNZgtLGJssoATeyYo8xP6gSdzm08qwsGLPqnknwR8qTv3i JP2DHKH/ye8OAaqNNlkWV8OwNM23KnDhALFhLurV/iPPLxYzBr/M8/Kw4tViqmlE qVutFtrHNACcQBIvi9dTOn210yMhdLCM4BrO6cYaEmOKolbkJ4ysfNYLO72VWXRf xEcM8+klTA== -----END CERTIFICATE-----Generated at Wed Jan 21 03:04:03 2026 by rpki-client