This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/mhTVQr4r3DZ7VGITyIG_xnJTKZ0.roa File: mhTVQr4r3DZ7VGITyIG_xnJTKZ0.roa (raw, json) Hash identifier: wCR6DC8Pqa4qxwOFxGkFj4Y4ZzJ+te0bBqmlHbBzVjQ= Subject key identifier: 9A:14:D5:42:BE:2B:DC:36:7B:54:62:13:C8:81:BF:C6:72:53:29:9D Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9 Certificate serial: 019B7F83AA871230E7BE46EDC7E1A014A7CE Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/mhTVQr4r3DZ7VGITyIG_xnJTKZ0.roa Signing time: Fri 02 Jan 2026 16:21:33 +0000 ROA not before: Fri 02 Jan 2026 16:21:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199218 IP address blocks: 83.229.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.mft rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:aa:87:12:30:e7:be:46:ed:c7:e1:a0:14:a7:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9 Validity Not Before: Jan 2 16:21:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9a14d542be2bdc367b546213c881bfc67253299d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:79:85:b2:2d:44:86:57:e5:26:a1:ac:c5:ae: 0e:33:6e:94:bc:7f:a5:bf:02:79:92:bc:45:99:35: 0a:69:d4:52:31:18:5b:6f:8d:b8:34:97:8c:de:b6: 10:c8:f1:e1:9e:90:6d:b2:27:99:4b:d4:88:ba:53: 05:9d:25:1d:d1:c8:2f:c3:49:5b:f6:14:1a:de:1d: e6:37:f9:8d:39:81:57:36:87:67:9a:37:d0:c5:a5: d6:1d:b3:a0:d3:2a:a8:ba:b6:a4:e2:1e:05:50:f9: 0e:e7:93:7d:e5:45:8c:56:07:b5:e7:b6:14:34:52: 4c:8b:d3:8e:20:88:a4:20:b5:84:94:37:26:f3:8a: fd:e8:8f:d1:6f:8d:23:af:8e:fa:a5:2f:f8:d4:ca: 64:d0:bc:7b:80:f8:3c:ea:3a:b7:2f:92:35:0e:ed: d7:75:ee:0f:b2:07:2c:fa:66:69:36:95:1c:b5:51: 07:06:b6:aa:17:e1:dc:30:2d:37:61:7f:b0:8b:4a: 0c:4d:71:17:0b:6a:73:ec:c2:61:dd:fc:9d:2d:21: d6:73:d8:34:a3:8d:3d:15:25:f3:b3:16:7b:9b:70: 17:c4:52:76:95:de:74:49:b6:60:8e:6c:ed:1f:90: a4:be:e9:d4:fe:b9:c0:f1:a8:2e:26:0d:ea:ac:94: 98:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:14:D5:42:BE:2B:DC:36:7B:54:62:13:C8:81:BF:C6:72:53:29:9D X509v3 Authority Key Identifier: keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/mhTVQr4r3DZ7VGITyIG_xnJTKZ0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.229.23.0/24 Signature Algorithm: sha256WithRSAEncryption 63:5a:cd:91:39:7a:37:2a:eb:a7:52:48:40:52:2b:12:e3:ae: d9:13:78:f9:ef:37:99:e4:ba:f8:72:ad:58:17:f2:0e:f4:8c: 12:10:93:25:09:81:55:34:c9:1f:87:9b:19:3c:d4:10:0a:6c: 1d:a5:3e:64:8f:d1:9b:a2:10:a7:6e:f8:f8:38:34:55:d7:de: 93:38:4f:e6:71:f2:89:c0:e7:99:9c:42:8c:4c:db:f7:d9:1d: 1a:93:d5:14:c0:77:74:89:83:ef:32:b7:56:75:4e:6e:e3:80: 2f:f0:e9:f5:f0:f1:7c:58:2e:44:f3:96:08:30:56:d2:e4:94: ed:c9:e3:8c:e5:a5:ed:84:4a:7d:92:5e:0e:c8:46:28:85:d5: 77:be:00:1e:44:ab:1c:72:a0:ac:89:8f:04:34:68:fb:3d:f9: 48:0d:99:f9:7a:c4:6e:89:8d:93:09:57:1e:48:76:17:f2:18: 20:95:94:fb:01:f8:fe:78:89:3a:bb:17:8c:2d:ba:a7:8c:5a: 4b:85:da:2e:15:c2:c7:11:44:22:09:35:0a:ab:b5:2d:95:57: e2:4d:73:a1:2f:8b:7a:1b:b6:e7:58:da:69:4e:a3:27:53:8a: c2:a6:82:c7:fe:d9:2c:85:57:cc:7f:d5:a0:6c:6b:ce:4f:20: 82:0e:5f:91 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g6qHEjDnvkbtx+GgFKfOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczZjIxMGYxMjk5YTFlMGFlZTcxZGMxZDc5ZTVmYjEyMDky ZDMwYTkwHhcNMjYwMTAyMTYyMTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YTE0ZDU0MmJlMmJkYzM2N2I1NDYyMTNjODgxYmZjNjcyNTMyOTlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+HmFsi1EhlflJqGsxa4OM26UvH+l vwJ5krxFmTUKadRSMRhbb424NJeM3rYQyPHhnpBtsieZS9SIulMFnSUd0cgvw0lb 9hQa3h3mN/mNOYFXNodnmjfQxaXWHbOg0yqourak4h4FUPkO55N95UWMVge157YU NFJMi9OOIIikILWElDcm84r96I/Rb40jr476pS/41Mpk0Lx7gPg86jq3L5I1Du3X de4Psgcs+mZpNpUctVEHBraqF+HcMC03YX+wi0oMTXEXC2pz7MJh3fydLSHWc9g0 o409FSXzsxZ7m3AXxFJ2ld50SbZgjmztH5CkvunU/rnA8aguJg3qrJSYbQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJoU1UK+K9w2e1RiE8iBv8ZyUymdMB8GA1UdIwQY MBaAFHPyEPEpmh4K7nHcHXnl+xIJLTCpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDkt Yjk0NjQ3MThiYTM3LzEvbWhUVlFyNHIzRFo3VkdJVHlJR194bkpUS1owLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDktYjk0NjQ3MThiYTM3 LzEvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU+UXMA0G CSqGSIb3DQEBCwUAA4IBAQBjWs2ROXo3KuunUkhAUisS467ZE3j57zeZ5Lr4cq1Y F/IO9IwSEJMlCYFVNMkfh5sZPNQQCmwdpT5kj9GbohCnbvj4ODRV196TOE/mcfKJ wOeZnEKMTNv32R0ak9UUwHd0iYPvMrdWdU5u44Av8On18PF8WC5E85YIMFbS5JTt yeOM5aXthEp9kl4OyEYohdV3vgAeRKsccqCsiY8ENGj7PflIDZn5esRuiY2TCVce SHYX8hgglZT7Afj+eIk6uxeMLbqnjFpLhdouFcLHEUQiCTUKq7UtlVfiTXOhL4t6 G7bnWNppTqMnU4rCpoLH/tkshVfMf9WgbGvOTyCCDl+R -----END CERTIFICATE-----Generated at Mon Jan 19 23:23:19 2026 by rpki-client