This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/MDkr1mPINhLWlbE7zVQDBRRtERo.roa File: MDkr1mPINhLWlbE7zVQDBRRtERo.roa (raw, json) Hash identifier: rKzUC6Ga9NHbbH+PBR/UbbD9eWJNxuXrWwtzpzRiJgk= Subject key identifier: 30:39:2B:D6:63:C8:36:12:D6:95:B1:3B:CD:54:03:05:14:6D:11:1A Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664 Certificate serial: 019B7A5B36EEE3034211B6633E82B56193F2 Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/MDkr1mPINhLWlbE7zVQDBRRtERo.roa Signing time: Thu 01 Jan 2026 16:19:16 +0000 ROA not before: Thu 01 Jan 2026 16:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212477 IP address blocks: 37.77.151.0/24 maxlen: 24 45.90.12.0/22 maxlen: 24 45.90.116.0/22 maxlen: 24 62.3.53.0/24 maxlen: 24 77.87.126.0/24 maxlen: 24 89.248.65.0/24 maxlen: 24 94.154.115.0/24 maxlen: 24 109.205.63.0/24 maxlen: 24 146.19.119.0/24 maxlen: 24 146.19.231.0/24 maxlen: 24 178.212.79.0/24 maxlen: 24 185.138.165.0/24 maxlen: 24 185.149.150.0/24 maxlen: 24 193.221.208.0/24 maxlen: 24 2a0b:b680::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.mft rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 07:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:36:ee:e3:03:42:11:b6:63:3e:82:b5:61:93:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664 Validity Not Before: Jan 1 16:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=30392bd663c83612d695b13bcd540305146d111a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6e:a6:1d:60:97:05:05:5d:01:a0:50:1f:78: 7f:d2:fe:1a:77:ba:c9:4b:40:f2:39:a2:0b:8a:4b: df:51:05:cd:7d:48:a1:5a:68:f4:05:16:95:bc:e9: 30:5c:a7:e8:3a:42:38:2d:4d:e4:c5:b8:42:cd:f8: 7d:30:91:71:dd:96:44:55:40:8c:70:7e:b9:44:d3: fc:58:7c:32:09:17:07:39:02:56:01:ad:9b:c8:64: 62:71:48:6a:15:ef:2c:10:d3:01:06:72:5b:c0:d0: 1a:c0:4b:ac:cc:61:d9:02:9a:af:da:49:4e:e2:7a: a3:9d:47:99:f5:14:c7:eb:d1:21:74:24:18:bb:43: 7b:4e:20:cf:a8:6f:d1:1e:16:68:a2:49:a9:ab:76: a0:3c:38:71:87:a1:94:dc:4d:9d:15:04:3e:d6:79: e4:a4:a1:6f:79:d0:33:cf:10:30:1e:da:42:10:aa: e0:45:a4:27:18:72:b8:7a:9b:77:cf:ae:28:45:09: 90:62:03:55:01:5e:bb:15:4b:86:5b:a2:5a:5e:cd: 76:e0:b1:1b:67:e5:69:88:f3:85:ef:52:32:41:d9: 4a:b3:74:98:71:2a:27:a7:52:bf:9b:44:e4:42:25: 3a:a5:b6:ac:4c:eb:ed:b0:87:63:5c:c8:bd:56:6d: 2b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:39:2B:D6:63:C8:36:12:D6:95:B1:3B:CD:54:03:05:14:6D:11:1A X509v3 Authority Key Identifier: keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/MDkr1mPINhLWlbE7zVQDBRRtERo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.77.151.0/24 45.90.12.0/22 45.90.116.0/22 62.3.53.0/24 77.87.126.0/24 89.248.65.0/24 94.154.115.0/24 109.205.63.0/24 146.19.119.0/24 146.19.231.0/24 178.212.79.0/24 185.138.165.0/24 185.149.150.0/24 193.221.208.0/24 IPv6: 2a0b:b680::/29 Signature Algorithm: sha256WithRSAEncryption 5c:1e:79:fd:54:c9:77:bf:51:64:ac:16:44:d9:38:62:8c:ff: 8c:8e:f2:d3:17:71:5c:41:ca:2e:c3:e0:69:68:29:78:ed:46: f7:dc:95:87:bc:bd:81:98:c1:92:9b:78:88:16:c9:9e:41:e0: 95:5c:b3:1d:07:0e:9d:3e:2f:15:de:17:a0:4e:d0:6e:da:d8: 49:19:c2:c6:7f:95:e9:d1:f2:41:93:07:22:6a:c6:0f:98:8c: 7c:87:bd:d5:e5:38:fa:60:6b:7c:32:27:62:17:64:c9:70:13: e4:82:b1:44:ea:b1:fd:0b:87:ba:45:a3:b3:a3:07:43:5c:ae: 66:63:d3:9f:f4:e4:17:95:dc:ab:19:a5:90:82:6b:70:c1:c4: 08:2b:02:ae:91:ea:9c:3f:e4:8c:d2:18:06:21:b7:f9:8b:94: c7:01:f6:45:21:45:8e:a1:8d:fc:1d:27:5a:1d:eb:4d:f9:09: e9:98:4b:b8:4f:6f:a5:24:81:ad:41:70:f3:7b:92:7e:dc:11: 1f:d1:ad:ab:aa:74:03:c1:be:47:1f:f3:20:96:4d:2c:91:e6: 4a:2f:46:21:d6:09:2d:d7:a9:b4:f4:d0:3d:01:f8:17:43:06: 27:15:80:21:79:71:56:e6:7e:7d:c2:38:10:bf:24:3a:2a:59: 11:ae:d1:d3 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgISAZt6Wzbu4wNCEbZjPoK1YZPyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkMjk5OTA0MmM1ZTIwMDZiZDVhZWI3YTA1ZGUxZTk2YTVl NzM2NjQwHhcNMjYwMTAxMTYxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMDM5MmJkNjYzYzgzNjEyZDY5NWIxM2JjZDU0MDMwNTE0NmQxMTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtW6mHWCXBQVdAaBQH3h/0v4ad7rJ S0DyOaILikvfUQXNfUihWmj0BRaVvOkwXKfoOkI4LU3kxbhCzfh9MJFx3ZZEVUCM cH65RNP8WHwyCRcHOQJWAa2byGRicUhqFe8sENMBBnJbwNAawEuszGHZApqv2klO 4nqjnUeZ9RTH69EhdCQYu0N7TiDPqG/RHhZookmpq3agPDhxh6GU3E2dFQQ+1nnk pKFvedAzzxAwHtpCEKrgRaQnGHK4ept3z64oRQmQYgNVAV67FUuGW6JaXs124LEb Z+VpiPOF71IyQdlKs3SYcSonp1K/m0TkQiU6pbasTOvtsIdjXMi9Vm0rjwIDAQAB o4ICZjCCAmIwHQYDVR0OBBYEFDA5K9ZjyDYS1pWxO81UAwUUbREaMB8GA1UdIwQY MBaAFA0pmQQsXiAGvVrregXeHpal5zZkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUt OGMxNTM5NjViYWM5LzEvTURrcjFtUElOaExXbGJFN3pWUURCUlJ0RVJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUtOGMxNTM5NjViYWM5 LzEvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHwGCCsGAQUFBwEHAQH/BG0wazBaBAIAATBUAwQAJU2XAwQC LVoMAwQCLVp0AwQAPgM1AwQATVd+AwQAWfhBAwQAXppzAwQAbc0/AwQAkhN3AwQA khPnAwQAstRPAwQAuYqlAwQAuZWWAwQAwd3QMA0EAgACMAcDBQMqC7aAMA0GCSqG SIb3DQEBCwUAA4IBAQBcHnn9VMl3v1FkrBZE2ThijP+MjvLTF3FcQcouw+BpaCl4 7Ub33JWHvL2BmMGSm3iIFsmeQeCVXLMdBw6dPi8V3hegTtBu2thJGcLGf5Xp0fJB kwciasYPmIx8h73V5Tj6YGt8MidiF2TJcBPkgrFE6rH9C4e6RaOzowdDXK5mY9Of 9OQXldyrGaWQgmtwwcQIKwKukeqcP+SM0hgGIbf5i5THAfZFIUWOoY38HSdaHetN +QnpmEu4T2+lJIGtQXDze5J+3BEf0a2rqnQDwb5HH/Mglk0skeZKL0Yh1gkt16m0 9NA9AfgXQwYnFYAheXFW5n59wjgQvyQ6KlkRrtHT -----END CERTIFICATE-----Generated at Sun Jan 11 15:07:36 2026 by rpki-client