This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8Mpk7KdbcBgpepAJCVeUJuh1l4M.roa File: 8Mpk7KdbcBgpepAJCVeUJuh1l4M.roa (raw, json) Hash identifier: 1xbmiTv8SWm7yOkGJjUXEHoUoZc0GHJYK9Lurb7hgkI= Subject key identifier: F0:CA:64:EC:A7:5B:70:18:29:7A:90:09:09:57:94:26:E8:75:97:83 Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E39413112C77130F15B6B22138C7D63 Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8Mpk7KdbcBgpepAJCVeUJuh1l4M.roa Signing time: Fri 02 Jan 2026 10:20:39 +0000 ROA not before: Fri 02 Jan 2026 10:20:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215663 IP address blocks: 163.5.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:41:31:12:c7:71:30:f1:5b:6b:22:13:8c:7d:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f0ca64eca75b7018297a900909579426e8759783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6f:9b:a9:09:92:55:d0:00:11:84:3c:77:eb: 26:e2:c5:5d:5b:1a:1f:32:5c:4b:b4:2c:b7:62:a1: 3f:32:d3:4f:e3:79:c5:06:44:02:bc:e7:cd:5e:75: 84:d7:d4:47:ac:cc:2d:16:ee:b8:bf:08:0f:aa:61: 7f:33:40:b3:5d:32:0e:5d:c2:9c:d0:e2:9d:34:3d: ce:fa:38:17:12:3a:e3:75:68:c3:22:40:38:1b:23: ef:c4:75:fe:e8:4a:5b:4f:b5:a9:77:32:62:c0:f2: c9:7f:ed:29:35:bc:ec:43:7e:05:c7:65:e6:b5:81: 4a:de:7d:f0:2e:68:34:a9:7b:16:04:78:9c:15:11: 61:96:80:c9:26:e4:e0:d2:0e:e1:4e:84:1b:83:70: eb:a6:6c:2d:33:af:b2:52:11:0a:94:1e:97:00:45: 3d:c4:85:bd:a9:87:4b:8c:45:be:0d:cd:36:44:93: a1:1b:40:3e:be:c6:6d:0c:79:22:dc:40:4f:34:d5: 3f:58:c1:f4:55:de:ef:ad:78:a5:2c:4a:cd:16:95: a0:37:63:84:70:e6:f1:8d:a0:c6:77:02:80:3d:45: 1f:ba:c4:fe:01:19:e8:1f:0c:b5:ed:f1:8d:5f:a5: 35:96:0f:07:c5:9b:d3:bb:8d:f5:c7:8d:dd:f6:ca: d7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:CA:64:EC:A7:5B:70:18:29:7A:90:09:09:57:94:26:E8:75:97:83 X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8Mpk7KdbcBgpepAJCVeUJuh1l4M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.27.0/24 Signature Algorithm: sha256WithRSAEncryption a3:1c:cb:97:c4:d8:c2:6b:17:4f:34:ba:96:69:5c:5f:a3:81: 32:a0:fb:8a:33:16:dc:a2:5c:e2:69:56:b4:84:0b:6f:4b:c0: 62:b1:d0:dc:9b:09:98:50:0d:36:3a:1b:3f:83:b3:21:fa:eb: 7c:0d:68:c5:51:fb:9f:a3:ed:b9:07:2c:3d:8e:82:ba:3d:07: 0a:30:bb:ec:be:96:61:57:c9:e4:fa:43:81:22:b9:57:ef:29: 19:00:62:62:4e:cd:3d:7c:26:c6:5b:9a:be:b9:6b:db:60:c6: e5:9d:b4:10:80:05:60:09:39:bc:22:9b:4d:95:b0:f2:0b:80: b9:08:b2:3d:c6:cf:05:18:7a:b6:e5:0d:ca:21:4b:cd:1a:c0: 62:f8:47:5d:12:48:89:5f:b1:b8:57:de:a6:dc:75:bf:62:b7: 1e:6d:3a:4a:fb:e6:0a:df:d6:3c:6f:c0:7e:94:d8:15:7a:d7: 24:60:ac:8e:ff:6e:e9:0d:97:e8:76:87:b9:01:35:01:e5:c1: b9:cb:c9:8b:27:7f:d3:c7:77:dc:27:e7:e4:ca:88:9f:84:ec: b3:5c:9d:e2:9d:4c:fb:d1:5e:ce:e9:9f:d8:bf:f2:dc:a3:68: 5a:13:c7:43:ca:aa:67:82:a7:c5:1b:d5:b0:ba:bd:34:6d:77: 54:55:da:9e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OUExEsdxMPFbayITjH1jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMGNhNjRlY2E3NWI3MDE4Mjk3YTkwMDkwOTU3OTQyNmU4NzU5NzgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwm+bqQmSVdAAEYQ8d+sm4sVdWxof MlxLtCy3YqE/MtNP43nFBkQCvOfNXnWE19RHrMwtFu64vwgPqmF/M0CzXTIOXcKc 0OKdND3O+jgXEjrjdWjDIkA4GyPvxHX+6EpbT7WpdzJiwPLJf+0pNbzsQ34Fx2Xm tYFK3n3wLmg0qXsWBHicFRFhloDJJuTg0g7hToQbg3DrpmwtM6+yUhEKlB6XAEU9 xIW9qYdLjEW+Dc02RJOhG0A+vsZtDHki3EBPNNU/WMH0Vd7vrXilLErNFpWgN2OE cObxjaDGdwKAPUUfusT+ARnoHwy17fGNX6U1lg8HxZvTu431x43d9srXuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPDKZOynW3AYKXqQCQlXlCbodZeDMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvOE1wazdLZGJjQmdwZXBBSkNWZVVKdWgxbDRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowUbMA0G CSqGSIb3DQEBCwUAA4IBAQCjHMuXxNjCaxdPNLqWaVxfo4EyoPuKMxbcolziaVa0 hAtvS8BisdDcmwmYUA02Ohs/g7Mh+ut8DWjFUfufo+25Byw9joK6PQcKMLvsvpZh V8nk+kOBIrlX7ykZAGJiTs09fCbGW5q+uWvbYMblnbQQgAVgCTm8IptNlbDyC4C5 CLI9xs8FGHq25Q3KIUvNGsBi+EddEkiJX7G4V96m3HW/YrcebTpK++YK39Y8b8B+ lNgVetckYKyO/27pDZfodoe5ATUB5cG5y8mLJ3/Tx3fcJ+fkyoifhOyzXJ3inUz7 0V7O6Z/Yv/Lco2haE8dDyqpngqfFG9Wwur00bXdUVdqe -----END CERTIFICATE-----Generated at Mon Jan 19 19:59:18 2026 by rpki-client