This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/20ff0f-618f-4cb6-bc7f-6541977f65f9/1/M7kRTQfsDWnSEjwGKRXyF_EVZWQ.roa File: M7kRTQfsDWnSEjwGKRXyF_EVZWQ.roa (raw, json) Hash identifier: pMXDkd3we761SJuv8DjmH0fcLi1BKQntR2fM0JVxzSc= Subject key identifier: 33:B9:11:4D:07:EC:0D:69:D2:12:3C:06:29:15:F2:17:F1:15:65:64 Certificate issuer: /CN=0962dc6940760b7fbc2ea4367cc53bc230a64f9b Certificate serial: 019B78A357606E2C8CC0C03ECB114565B236 Authority key identifier: 09:62:DC:69:40:76:0B:7F:BC:2E:A4:36:7C:C5:3B:C2:30:A6:4F:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWLcaUB2C3-8LqQ2fMU7wjCmT5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/20ff0f-618f-4cb6-bc7f-6541977f65f9/1/M7kRTQfsDWnSEjwGKRXyF_EVZWQ.roa Signing time: Thu 01 Jan 2026 08:18:49 +0000 ROA not before: Thu 01 Jan 2026 08:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205773 IP address blocks: 93.93.172.0/22 maxlen: 22 2a06:68c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/20ff0f-618f-4cb6-bc7f-6541977f65f9/1/CWLcaUB2C3-8LqQ2fMU7wjCmT5s.crl rsync://rpki.ripe.net/repository/DEFAULT/30/20ff0f-618f-4cb6-bc7f-6541977f65f9/1/CWLcaUB2C3-8LqQ2fMU7wjCmT5s.mft rsync://rpki.ripe.net/repository/DEFAULT/CWLcaUB2C3-8LqQ2fMU7wjCmT5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:57:60:6e:2c:8c:c0:c0:3e:cb:11:45:65:b2:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0962dc6940760b7fbc2ea4367cc53bc230a64f9b Validity Not Before: Jan 1 08:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=33b9114d07ec0d69d2123c062915f217f1156564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e9:f4:f7:db:82:35:aa:fb:fa:21:bb:5f:19: 97:40:df:e5:e5:79:4e:a4:02:37:04:28:68:0a:3b: 9d:86:1d:dc:05:f7:ec:a4:44:ea:29:04:b4:a9:d7: ed:7b:b7:49:d8:90:9b:23:c6:3d:49:dd:6f:9b:5a: 9e:61:ee:80:83:7c:3c:b8:3c:91:f2:64:0f:fd:ac: 2c:40:ab:81:50:07:ae:61:95:61:c4:2c:3c:a3:2b: d2:6f:64:9b:3c:84:e8:17:10:f4:a1:af:d9:2c:03: a6:4e:62:d6:b5:70:82:55:ff:64:80:80:b1:d0:24: 55:a0:eb:ff:c3:2d:0d:dc:41:42:5b:2a:8e:bc:14: 50:9f:89:36:38:cc:44:b2:b3:81:3c:a5:1a:63:73: 42:47:ce:b2:a0:34:11:af:a4:a2:ad:6e:bf:74:1f: bb:c0:d9:8d:56:8a:bf:f9:2d:e0:19:d1:38:e2:62: 8c:18:9c:d1:9f:29:df:1b:3d:2a:d9:d5:bb:be:de: f2:d4:05:b4:2d:3d:1c:30:64:4f:a7:7e:89:b3:ad: 7c:df:01:ff:96:10:70:96:5d:5b:c2:80:67:16:a8: 13:33:89:2a:d1:00:6b:75:b5:f8:d3:fe:d1:f2:6d: 61:03:a5:5f:0f:58:4d:d9:60:a0:5a:c9:a3:81:b2: 26:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B9:11:4D:07:EC:0D:69:D2:12:3C:06:29:15:F2:17:F1:15:65:64 X509v3 Authority Key Identifier: keyid:09:62:DC:69:40:76:0B:7F:BC:2E:A4:36:7C:C5:3B:C2:30:A6:4F:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWLcaUB2C3-8LqQ2fMU7wjCmT5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/20ff0f-618f-4cb6-bc7f-6541977f65f9/1/M7kRTQfsDWnSEjwGKRXyF_EVZWQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/20ff0f-618f-4cb6-bc7f-6541977f65f9/1/CWLcaUB2C3-8LqQ2fMU7wjCmT5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.93.172.0/22 IPv6: 2a06:68c0::/29 Signature Algorithm: sha256WithRSAEncryption 0b:18:53:23:89:4d:d4:c1:c3:1e:86:c1:5c:d3:03:89:0c:81: 3f:0d:a1:d0:c8:43:74:bb:f4:3e:39:d3:2a:39:6f:d5:9b:2e: 7e:5e:97:1b:df:1e:72:6e:f3:0e:6c:5e:f8:d4:95:6b:3c:30: 63:83:34:c1:d4:4c:56:42:9a:76:98:f2:2d:77:8f:cd:ce:ab: e0:a5:7a:76:91:18:12:d0:13:db:f2:c1:35:19:2b:a4:5a:e7: fa:e6:1e:ca:2e:a3:1c:27:b4:c4:5a:f2:eb:2f:0d:04:99:b6: f6:18:26:c9:49:f8:7f:98:47:e2:79:a0:87:fa:88:eb:42:2a: 27:69:2c:1c:2d:64:2c:fe:73:fc:fa:c2:9b:ad:3b:dd:cb:46: d6:a2:cd:e8:70:50:38:d3:17:ca:17:e1:42:96:54:a5:82:d2: ec:da:e0:c4:d3:a6:1c:1f:4e:7c:45:e0:be:0a:14:9d:92:63: 09:54:4f:14:8a:00:43:12:b0:d5:8b:98:6d:fa:9f:36:bd:ba: e2:15:c2:10:e4:f1:58:7d:7d:3c:0a:d6:d9:02:b1:6c:a7:72: 2b:ee:64:32:40:8d:69:40:13:d7:ba:73:f0:3b:fc:a9:b5:3c: f8:8e:4b:c5:8a:ff:df:ce:20:b5:4c:fa:fd:cd:e5:c2:72:10: a4:b4:ec:02 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4o1dgbiyMwMA+yxFFZbI2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NjJkYzY5NDA3NjBiN2ZiYzJlYTQzNjdjYzUzYmMyMzBh NjRmOWIwHhcNMjYwMTAxMDgxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzM2I5MTE0ZDA3ZWMwZDY5ZDIxMjNjMDYyOTE1ZjIxN2YxMTU2NTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOn099uCNar7+iG7XxmXQN/l5XlO pAI3BChoCjudhh3cBffspETqKQS0qdfte7dJ2JCbI8Y9Sd1vm1qeYe6Ag3w8uDyR 8mQP/awsQKuBUAeuYZVhxCw8oyvSb2SbPIToFxD0oa/ZLAOmTmLWtXCCVf9kgICx 0CRVoOv/wy0N3EFCWyqOvBRQn4k2OMxEsrOBPKUaY3NCR86yoDQRr6SirW6/dB+7 wNmNVoq/+S3gGdE44mKMGJzRnynfGz0q2dW7vt7y1AW0LT0cMGRPp36Js6183wH/ lhBwll1bwoBnFqgTM4kq0QBrdbX40/7R8m1hA6VfD1hN2WCgWsmjgbImfwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDO5EU0H7A1p0hI8BikV8hfxFWVkMB8GA1UdIwQY MBaAFAli3GlAdgt/vC6kNnzFO8Iwpk+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1dMY2FVQjJDMy04THFRMmZNVTd3akNtVDVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yMGZmMGYtNjE4Zi00Y2I2LWJjN2Yt NjU0MTk3N2Y2NWY5LzEvTTdrUlRRZnNEV25TRWp3R0tSWHlGX0VWWldRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8yMGZmMGYtNjE4Zi00Y2I2LWJjN2YtNjU0MTk3N2Y2NWY5 LzEvQ1dMY2FVQjJDMy04THFRMmZNVTd3akNtVDVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCXV2sMA0E AgACMAcDBQMqBmjAMA0GCSqGSIb3DQEBCwUAA4IBAQALGFMjiU3UwcMehsFc0wOJ DIE/DaHQyEN0u/Q+OdMqOW/Vmy5+Xpcb3x5ybvMObF741JVrPDBjgzTB1ExWQpp2 mPItd4/NzqvgpXp2kRgS0BPb8sE1GSukWuf65h7KLqMcJ7TEWvLrLw0Embb2GCbJ Sfh/mEfieaCH+ojrQionaSwcLWQs/nP8+sKbrTvdy0bWos3ocFA40xfKF+FCllSl gtLs2uDE06YcH058ReC+ChSdkmMJVE8UigBDErDVi5ht+p82vbriFcIQ5PFYfX08 CtbZArFsp3Ir7mQyQI1pQBPXunPwO/yptTz4jkvFiv/fziC1TPr9zeXCchCktOwC -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:23 2026 by rpki-client