This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/MwGfkhoVY9yczHNnMmopKOkQDQ8.roa File: MwGfkhoVY9yczHNnMmopKOkQDQ8.roa (raw, json) Hash identifier: bMcTFE62Bn8JSiStl6gdzWQDI2iODh7ZXTG2oU+wKww= Subject key identifier: 33:01:9F:92:1A:15:63:DC:9C:CC:73:67:32:6A:29:28:E9:10:0D:0F Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13FBEDCF1A0733204EB89B4A66B547 Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/MwGfkhoVY9yczHNnMmopKOkQDQ8.roa Signing time: Fri 02 Jan 2026 14:19:34 +0000 ROA not before: Fri 02 Jan 2026 14:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57026 IP address blocks: 2a02:2698:8c00::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:fb:ed:cf:1a:07:33:20:4e:b8:9b:4a:66:b5:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=33019f921a1563dc9ccc7367326a2928e9100d0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:07:af:95:56:cf:8a:05:0c:e9:09:01:d9:a8: 2e:75:fc:49:01:c9:b5:37:1c:58:ca:e3:d7:7e:5e: 68:4f:3f:d4:b6:55:f9:e8:30:2a:81:bb:12:89:18: f8:08:1f:f8:d5:70:61:ff:15:71:5a:20:af:f8:9a: e3:90:97:c6:af:55:d5:08:3c:f2:13:7c:28:1a:e3: 20:c9:f8:3e:12:68:af:b6:bb:80:b6:77:ff:4a:b4: ab:0d:2a:d0:3f:7c:54:f9:5c:9a:3f:ef:27:ce:fe: 4c:9b:d4:dc:7e:6a:42:a6:1b:33:bf:a5:94:a8:20: c6:5c:64:30:d5:b3:55:cb:96:a5:2f:86:6c:40:3d: bb:f5:a5:d4:3a:44:c8:46:e2:f0:97:eb:9f:d6:84: ae:57:f6:16:57:a6:ac:68:e5:24:17:c6:c5:f5:5d: ac:ed:18:05:b7:c5:65:cb:ba:65:3d:02:3d:34:5f: 56:d7:34:de:22:2e:10:90:cb:2f:ac:70:7e:39:eb: ad:2f:ca:81:bf:c9:0d:ae:dd:c8:fa:25:68:b3:51: 1f:ff:60:8c:e9:ea:0f:5e:2b:ac:1f:b8:30:ed:68: 46:78:ae:1a:ed:73:e1:d4:6d:32:41:4c:c0:c8:e9: db:36:e3:ca:84:ab:f5:a1:ff:82:9f:ba:5a:c2:d5: 68:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:01:9F:92:1A:15:63:DC:9C:CC:73:67:32:6A:29:28:E9:10:0D:0F X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/MwGfkhoVY9yczHNnMmopKOkQDQ8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:2698:8c00::/38 Signature Algorithm: sha256WithRSAEncryption a3:8a:62:09:9d:c1:e8:b9:ba:20:f3:56:00:6d:ac:e0:2d:e8: 31:af:56:88:f7:ba:94:c2:b6:71:30:b8:3f:f8:7f:ba:5b:24: 2e:da:3d:ba:55:83:5b:a0:4f:fb:f8:9e:b1:8c:b9:f5:0a:a2: d0:45:ea:6c:48:b0:77:7b:56:e9:11:96:9c:ec:bc:02:48:af: 1f:94:d3:41:21:42:b7:88:4c:f6:55:8c:0e:74:26:84:f4:36: 60:14:81:3d:b4:8f:fa:d7:36:4d:56:df:2f:6b:af:a2:a0:dc: b0:d8:9a:1a:24:4d:a4:52:db:c4:fc:d5:83:6a:67:87:d8:ff: 84:3d:a7:54:cf:dd:29:c0:a6:89:62:31:ee:c4:ce:6a:26:16: 56:a6:b6:63:a3:f0:1d:c0:f8:a0:38:cc:e4:d0:0a:b4:0f:9f: da:38:04:59:21:8f:a0:63:0c:1f:61:2b:2f:88:bc:61:db:87: 5c:29:da:f8:3d:cf:26:fd:a8:59:7d:87:40:ab:3a:22:bc:fb: ae:66:3c:3a:88:f3:82:e1:04:39:aa:96:3e:06:91:a5:03:7c: 88:4f:e6:74:ea:50:b2:8f:94:e4:0b:d5:13:ff:12:73:22:cf: 8c:92:8f:bb:89:5b:0b:21:7c:22:24:ab:6f:f5:8a:4e:41:79: 36:45:09:a4 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/E/vtzxoHMyBOuJtKZrVHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMzAxOWY5MjFhMTU2M2RjOWNjYzczNjczMjZhMjkyOGU5MTAwZDBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQevlVbPigUM6QkB2agudfxJAcm1 NxxYyuPXfl5oTz/UtlX56DAqgbsSiRj4CB/41XBh/xVxWiCv+JrjkJfGr1XVCDzy E3woGuMgyfg+EmivtruAtnf/SrSrDSrQP3xU+VyaP+8nzv5Mm9TcfmpCphszv6WU qCDGXGQw1bNVy5alL4ZsQD279aXUOkTIRuLwl+uf1oSuV/YWV6asaOUkF8bF9V2s 7RgFt8Vly7plPQI9NF9W1zTeIi4QkMsvrHB+OeutL8qBv8kNrt3I+iVos1Ef/2CM 6eoPXiusH7gw7WhGeK4a7XPh1G0yQUzAyOnbNuPKhKv1of+Cn7pawtVoBQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFDMBn5IaFWPcnMxzZzJqKSjpEA0PMB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEvTXdHZmtob1ZZOXljekhObk1tb3BLT2tRRFE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKgImmIww DQYJKoZIhvcNAQELBQADggEBAKOKYgmdwei5uiDzVgBtrOAt6DGvVoj3upTCtnEw uD/4f7pbJC7aPbpVg1ugT/v4nrGMufUKotBF6mxIsHd7VukRlpzsvAJIrx+U00Eh QreITPZVjA50JoT0NmAUgT20j/rXNk1W3y9rr6Kg3LDYmhokTaRS28T81YNqZ4fY /4Q9p1TP3SnApoliMe7EzmomFlamtmOj8B3A+KA4zOTQCrQPn9o4BFkhj6BjDB9h Ky+IvGHbh1wp2vg9zyb9qFl9h0CrOiK8+65mPDqI84LhBDmqlj4GkaUDfIhP5nTq ULKPlOQL1RP/EnMiz4ySj7uJWwshfCIkq2/1ik5BeTZFCaQ= -----END CERTIFICATE-----Generated at Thu Feb 5 05:57:36 2026 by rpki-client