This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/MavdUwtL9hXRYTucFdVXRHkrrIo.roa File: MavdUwtL9hXRYTucFdVXRHkrrIo.roa (raw, json) Hash identifier: yraXNEacytf4HbmMAZg6e64667WxeEaDmWzKdMpCXxk= Subject key identifier: 31:AB:DD:53:0B:4B:F6:15:D1:61:3B:9C:15:D5:57:44:79:2B:AC:8A Certificate issuer: /CN=bf982def77a26d7cc19473b3a4064dcc5217e471 Certificate serial: 019B78A370C8A47E4F6123B13493750A880D Authority key identifier: BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/MavdUwtL9hXRYTucFdVXRHkrrIo.roa Signing time: Thu 01 Jan 2026 08:18:55 +0000 ROA not before: Thu 01 Jan 2026 08:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198710 IP address blocks: 91.217.174.0/24 maxlen: 24 2a05:e700::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 12:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:70:c8:a4:7e:4f:61:23:b1:34:93:75:0a:88:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf982def77a26d7cc19473b3a4064dcc5217e471 Validity Not Before: Jan 1 08:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31abdd530b4bf615d1613b9c15d55744792bac8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:38:ca:0b:91:37:08:fb:6a:35:ef:07:28:38: a5:74:29:c3:ed:d3:45:c0:1d:a9:f3:78:51:fb:d4: 45:d2:73:4b:bd:95:50:47:f2:6e:25:8f:3e:0f:fa: 64:02:bd:04:ef:19:26:41:2d:c4:ba:e5:5a:0d:83: 49:03:5f:05:d5:1b:08:e5:27:ff:b2:c0:3e:e8:91: 32:c6:55:61:00:c1:c8:a0:2b:24:0e:aa:3a:d5:0b: 12:d3:64:b6:3e:40:fc:52:a0:85:d3:d8:eb:e1:d3: b3:f2:8c:3c:f3:ad:dd:6d:08:2b:34:58:b2:0c:e9: bc:7e:c3:ad:f0:6f:e9:8d:09:3d:36:14:31:b4:c6: 61:a9:8b:53:6f:bc:ae:51:e2:c1:13:a1:18:b0:31: 02:2e:85:d0:7e:64:6a:7a:5a:f3:30:b4:32:fc:8b: 19:25:2b:91:ad:1b:45:d6:f8:f0:8b:c8:c1:46:67: 24:0d:8e:c5:6f:ee:ca:73:92:65:5d:42:fe:3c:68: b1:f4:e2:04:e6:32:6f:92:44:d7:da:8a:ae:2b:fa: ff:6c:37:a6:92:38:e3:1f:8e:d6:b7:6e:50:4c:75: 20:06:d6:f3:15:7f:e0:a4:97:04:95:2a:38:5e:7d: 7f:03:19:b4:00:87:f7:3e:ab:84:15:1f:0a:00:74: ce:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AB:DD:53:0B:4B:F6:15:D1:61:3B:9C:15:D5:57:44:79:2B:AC:8A X509v3 Authority Key Identifier: keyid:BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/MavdUwtL9hXRYTucFdVXRHkrrIo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.217.174.0/24 IPv6: 2a05:e700::/29 Signature Algorithm: sha256WithRSAEncryption 52:ad:e5:09:a9:67:1f:dd:85:37:3e:86:8c:cb:9d:6f:0c:91: 43:ce:a0:60:d6:e5:fd:0d:f3:ae:8c:6e:e0:f4:ec:d3:49:9a: d5:e3:a7:f7:61:40:44:3a:37:17:2e:d3:1f:b9:ad:9c:8b:2e: c1:0c:2a:c9:bf:9a:4b:4d:23:f0:e6:49:e4:b7:31:cd:6d:f1: 97:da:df:ac:f8:96:e9:97:c1:26:22:44:c4:dd:51:62:34:0a: eb:99:41:38:03:73:3f:dc:30:8f:06:c3:ec:1e:85:1c:4e:1c: 0e:66:55:1d:b3:c3:6c:a4:89:b8:26:de:33:a9:df:ea:7e:cb: 1e:e7:f7:14:f4:b9:a6:42:5e:4e:d0:05:24:d8:09:90:c8:e2: 58:1a:7a:b0:86:8c:86:b9:17:69:a1:e6:46:49:fc:d5:44:f9: 2d:de:a7:dd:5d:e8:50:84:28:b0:c3:f4:47:cb:7b:5a:1c:15: a4:61:41:65:35:3e:23:a4:b0:2c:9c:8a:af:af:1f:9c:7c:19: f1:61:b7:40:d3:d6:18:d2:73:1c:9a:af:e5:98:aa:98:bb:a9: 63:94:43:9c:3f:94:bf:a8:6c:b4:90:59:0b:a1:bf:dd:42:1d: 4e:19:f8:40:e6:9e:69:08:21:91:55:dd:1b:b4:2f:db:3f:b6: fb:1f:5a:2c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4o3DIpH5PYSOxNJN1CogNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmOTgyZGVmNzdhMjZkN2NjMTk0NzNiM2E0MDY0ZGNjNTIx N2U0NzEwHhcNMjYwMTAxMDgxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMWFiZGQ1MzBiNGJmNjE1ZDE2MTNiOWMxNWQ1NTc0NDc5MmJhYzhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjjKC5E3CPtqNe8HKDildCnD7dNF wB2p83hR+9RF0nNLvZVQR/JuJY8+D/pkAr0E7xkmQS3EuuVaDYNJA18F1RsI5Sf/ ssA+6JEyxlVhAMHIoCskDqo61QsS02S2PkD8UqCF09jr4dOz8ow8863dbQgrNFiy DOm8fsOt8G/pjQk9NhQxtMZhqYtTb7yuUeLBE6EYsDECLoXQfmRqelrzMLQy/IsZ JSuRrRtF1vjwi8jBRmckDY7Fb+7Kc5JlXUL+PGix9OIE5jJvkkTX2oquK/r/bDem kjjjH47Wt25QTHUgBtbzFX/gpJcElSo4Xn1/Axm0AIf3PquEFR8KAHTO6wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDGr3VMLS/YV0WE7nBXVV0R5K6yKMB8GA1UdIwQY MBaAFL+YLe93om18wZRzs6QGTcxSF+RxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjVndDczZWliWHpCbEhPenBBWk56RklYNUhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9hZmEwOTEtYjE2Zi00NTI3LThiMDAt MWRkYWMyYjA4NDA0LzEvTWF2ZFV3dEw5aFhSWVR1Y0ZkVlhSSGtycklvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi9hZmEwOTEtYjE2Zi00NTI3LThiMDAtMWRkYWMyYjA4NDA0 LzEvdjVndDczZWliWHpCbEhPenBBWk56RklYNUhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAW9muMA0E AgACMAcDBQMqBecAMA0GCSqGSIb3DQEBCwUAA4IBAQBSreUJqWcf3YU3PoaMy51v DJFDzqBg1uX9DfOujG7g9OzTSZrV46f3YUBEOjcXLtMfua2ciy7BDCrJv5pLTSPw 5knktzHNbfGX2t+s+Jbpl8EmIkTE3VFiNArrmUE4A3M/3DCPBsPsHoUcThwOZlUd s8NspIm4Jt4zqd/qfsse5/cU9LmmQl5O0AUk2AmQyOJYGnqwhoyGuRdpoeZGSfzV RPkt3qfdXehQhCiww/RHy3taHBWkYUFlNT4jpLAsnIqvrx+cfBnxYbdA09YY0nMc mq/lmKqYu6ljlEOcP5S/qGy0kFkLob/dQh1OGfhA5p5pCCGRVd0btC/bP7b7H1os -----END CERTIFICATE-----Generated at Thu Feb 5 18:25:18 2026 by rpki-client