This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/MRCItQ1B9948OVdVK1kL96AGPQI.roa File: MRCItQ1B9948OVdVK1kL96AGPQI.roa (raw, json) Hash identifier: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg= Subject key identifier: 31:10:88:B5:0D:41:F7:DE:3C:39:57:55:2B:59:0B:F7:A0:06:3D:02 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019B7A59AE0815D661C8AC494934F1664D2A Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/MRCItQ1B9948OVdVK1kL96AGPQI.roa Signing time: Thu 01 Jan 2026 16:17:36 +0000 ROA not before: Thu 01 Jan 2026 16:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 11426 IP address blocks: 193.31.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 05 Jan 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:59:ae:08:15:d6:61:c8:ac:49:49:34:f1:66:4d:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jan 1 16:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=311088b50d41f7de3c3957552b590bf7a0063d02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9b:18:36:8e:81:d5:4e:a2:5e:fe:2d:ee:81: fb:35:dc:27:c3:a3:c6:ea:22:98:53:02:ef:03:52: 07:0d:ab:2d:55:70:fd:33:85:26:ea:73:16:2b:43: d1:e1:ed:dd:8a:8c:f4:72:25:72:e3:ac:63:0f:dd: 73:b8:5d:55:19:c2:7a:25:61:8c:c5:6c:8d:f6:ad: c1:a9:e8:5e:ca:8b:1f:c0:8a:96:fa:cd:d8:6e:6c: 7d:82:6f:32:53:fc:0a:a1:26:e0:da:61:75:1d:7c: ff:28:a5:41:83:ea:22:5d:55:a3:d7:e6:d6:53:e1: df:f8:13:3d:67:21:e7:19:7a:a3:82:8c:7c:dc:c6: 9d:0c:2b:a7:4a:4a:2d:70:b1:8a:03:b5:4d:1d:8f: fd:20:ab:e9:cd:dd:25:c7:8a:fd:b5:60:c7:f7:d1: c6:a3:72:db:b8:53:fc:9f:46:07:24:ff:53:a8:97: ac:2f:6c:21:1a:6f:35:06:55:6d:c2:5c:4c:e6:44: 28:66:7c:73:9f:c6:93:29:6d:13:31:45:86:00:8d: 6d:39:b8:52:c3:55:e0:f5:ee:c4:26:03:2a:2d:2d: e6:bb:cf:84:18:0d:87:84:70:80:82:47:e6:f8:ae: 5a:9f:dd:da:d5:47:67:ea:3f:6a:38:c8:e1:e3:cd: de:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:10:88:B5:0D:41:F7:DE:3C:39:57:55:2B:59:0B:F7:A0:06:3D:02 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/MRCItQ1B9948OVdVK1kL96AGPQI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.31.74.0/24 Signature Algorithm: sha256WithRSAEncryption 17:d1:62:76:00:b2:a2:31:b6:75:65:15:bb:90:bf:d2:4c:e8: f9:49:e3:51:a2:30:54:66:0c:49:a2:6e:26:e7:e1:78:b1:26: 80:b6:ba:0f:30:26:bc:3e:1b:e1:e9:bf:4b:fd:1a:31:59:ac: bd:51:b5:fe:a3:a4:c9:d9:87:85:df:ce:80:5f:1e:57:6c:2a: 27:20:ff:5f:c9:77:51:68:19:19:89:db:33:a2:32:21:90:58: 44:78:2c:81:6d:ff:cc:11:1c:f6:86:49:e9:04:3e:b0:c3:60: d0:39:1c:c4:32:a7:e8:a6:1a:29:33:d4:8b:d1:ba:0f:91:ee: ce:aa:49:f8:80:52:80:dc:c1:25:2a:25:19:e2:ce:a0:b7:ef: 1e:72:75:f8:3d:d5:99:f1:e2:5d:80:98:ff:a8:84:15:aa:02: 84:29:bd:b7:11:f9:f1:54:ff:e7:7a:46:2d:03:36:ff:d0:0c: 91:cd:3e:85:77:d0:a2:cf:e1:71:d7:35:7d:fb:2c:a7:bf:c5: fa:42:51:60:37:8c:e5:ab:d9:4e:be:dc:35:54:e0:49:b6:b6: c4:af:da:46:9c:7e:6c:eb:ba:fd:09:61:d9:bb:e9:7e:10:cd: 66:c4:1b:90:e2:f2:3d:56:75:1d:36:9d:22:af:6f:69:4e:48: 23:5f:ec:75 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6Wa4IFdZhyKxJSTTxZk0qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMTAxMTYxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMTEwODhiNTBkNDFmN2RlM2MzOTU3NTUyYjU5MGJmN2EwMDYzZDAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5sYNo6B1U6iXv4t7oH7Ndwnw6PG 6iKYUwLvA1IHDastVXD9M4Um6nMWK0PR4e3dioz0ciVy46xjD91zuF1VGcJ6JWGM xWyN9q3BqeheyosfwIqW+s3Ybmx9gm8yU/wKoSbg2mF1HXz/KKVBg+oiXVWj1+bW U+Hf+BM9ZyHnGXqjgox83MadDCunSkotcLGKA7VNHY/9IKvpzd0lx4r9tWDH99HG o3LbuFP8n0YHJP9TqJesL2whGm81BlVtwlxM5kQoZnxzn8aTKW0TMUWGAI1tObhS w1Xg9e7EJgMqLS3mu8+EGA2HhHCAgkfm+K5an93a1Udn6j9qOMjh483eBQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDEQiLUNQffePDlXVStZC/egBj0CMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvTVJDSXRRMUI5OTQ4T1ZkVksxa0w5NkFHUFFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwR9KMA0G CSqGSIb3DQEBCwUAA4IBAQAX0WJ2ALKiMbZ1ZRW7kL/STOj5SeNRojBUZgxJom4m 5+F4sSaAtroPMCa8Phvh6b9L/RoxWay9UbX+o6TJ2YeF386AXx5XbConIP9fyXdR aBkZidszojIhkFhEeCyBbf/MERz2hknpBD6ww2DQORzEMqfophopM9SL0boPke7O qkn4gFKA3MElKiUZ4s6gt+8ecnX4PdWZ8eJdgJj/qIQVqgKEKb23EfnxVP/nekYt Azb/0AyRzT6Fd9Ciz+Fx1zV9+yynv8X6QlFgN4zlq9lOvtw1VOBJtrbEr9pGnH5s 67r9CWHZu+l+EM1mxBuQ4vI9VnUdNp0ir29pTkgjX+x1 -----END CERTIFICATE-----Generated at Mon Jan 5 03:56:20 2026 by rpki-client