This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/mdiaixFAtKVAle_yc71OzgrqZsU.roa File: mdiaixFAtKVAle_yc71OzgrqZsU.roa (raw, json) Hash identifier: 0nHaPy4PrdxcDSuC6ptpYXCuhhdlY8U2HfrfuEFTI+o= Subject key identifier: 99:D8:9A:8B:11:40:B4:A5:40:95:EF:F2:73:BD:4E:CE:0A:EA:66:C5 Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc Certificate serial: 019B7B3610E932955B4892EBFDF95EE40E62 Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/mdiaixFAtKVAle_yc71OzgrqZsU.roa Signing time: Thu 01 Jan 2026 20:18:19 +0000 ROA not before: Thu 01 Jan 2026 20:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212836 IP address blocks: 45.158.253.0/24 maxlen: 24 185.233.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.mft rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:10:e9:32:95:5b:48:92:eb:fd:f9:5e:e4:0e:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc Validity Not Before: Jan 1 20:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=99d89a8b1140b4a54095eff273bd4ece0aea66c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:27:0a:cf:9c:ee:64:82:63:cf:5e:58:e3:f2: 4b:4a:40:c6:e7:89:2c:8d:7e:b2:11:86:43:8e:43: 74:af:5a:ac:6a:2c:9e:bc:6e:8e:47:89:b9:34:80: 06:30:27:98:95:48:22:80:04:06:36:6e:37:65:d9: 16:98:32:3a:4d:f2:e5:47:3f:f4:6e:1d:6f:81:31: 33:df:b9:02:21:f3:64:28:90:89:1a:7c:11:7d:8b: b0:30:15:ee:04:07:7a:89:16:f6:fa:c5:1b:a9:9d: bb:2d:92:03:9c:67:86:78:d9:29:20:22:da:d6:b4: 0e:44:fc:85:cd:da:29:49:1d:b9:8b:54:e6:3e:3d: d4:c6:b3:55:2f:3b:f6:e4:af:39:2d:fe:d9:ac:af: 80:6e:ab:34:c6:ba:cd:51:58:a4:38:5a:1c:52:82: b9:fd:3d:59:7c:5e:5d:85:8a:2d:2c:fb:1d:0e:e3: fa:5f:ca:a4:1c:4d:7c:9b:30:cf:cd:e3:36:4e:d8: c4:09:8c:c8:07:32:9f:60:59:b0:a5:d9:b7:6d:e3: a5:e6:b4:79:ec:85:6b:56:2b:c6:7d:49:d5:38:c8: 37:58:be:b9:dd:51:73:20:3c:7c:dc:c4:47:26:12: 7b:57:f6:ae:67:4b:56:a2:d4:81:fb:eb:c6:2a:35: 08:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D8:9A:8B:11:40:B4:A5:40:95:EF:F2:73:BD:4E:CE:0A:EA:66:C5 X509v3 Authority Key Identifier: keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/mdiaixFAtKVAle_yc71OzgrqZsU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.158.253.0/24 185.233.16.0/24 Signature Algorithm: sha256WithRSAEncryption 35:cf:1a:ce:77:f3:e8:30:9b:5a:70:38:3d:3f:b5:2d:82:d4: df:3d:da:6a:81:e4:c3:df:d4:1d:f1:0a:f2:98:3e:71:e0:b3: 2b:ab:dc:51:35:ce:5b:72:c2:03:2c:08:8d:51:0c:10:c7:ac: e7:1f:76:c6:2a:ef:3a:97:4f:58:8e:29:52:b8:52:c2:01:6e: 34:63:3f:1e:48:03:bb:11:6d:28:23:61:d1:d8:38:02:83:2a: 28:21:a8:0f:4e:6f:24:13:43:ad:7e:6f:7d:1c:b2:eb:f9:be: 1b:73:0f:ed:c7:83:16:17:3b:e0:ab:b9:09:3e:ea:ca:53:52: 34:aa:c7:10:7d:c0:7a:05:e2:3a:cd:a7:12:cb:32:ea:76:02: c8:f5:78:cc:d5:8a:af:00:1d:29:40:47:81:4b:04:a3:71:e5: f0:00:a6:9b:f1:5a:86:cb:74:d5:fe:16:a7:9d:27:c4:94:de: 40:1c:c7:a3:6a:12:29:c1:96:47:bb:0b:54:dc:79:64:de:eb: ec:2e:f1:5c:ca:bc:ef:b8:5b:4a:0a:7b:83:37:6c:44:54:d3: e7:d3:73:a8:30:5b:21:db:e3:10:cb:b6:bf:f8:df:d3:0d:86: 11:de:8d:39:4c:47:b6:53:7c:0c:04:82:3c:fd:3c:2a:c4:65: b0:7b:68:ac -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NhDpMpVbSJLr/fle5A5iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2 YzhkY2MwHhcNMjYwMTAxMjAxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OWQ4OWE4YjExNDBiNGE1NDA5NWVmZjI3M2JkNGVjZTBhZWE2NmM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmycKz5zuZIJjz15Y4/JLSkDG54ks jX6yEYZDjkN0r1qsaiyevG6OR4m5NIAGMCeYlUgigAQGNm43ZdkWmDI6TfLlRz/0 bh1vgTEz37kCIfNkKJCJGnwRfYuwMBXuBAd6iRb2+sUbqZ27LZIDnGeGeNkpICLa 1rQORPyFzdopSR25i1TmPj3UxrNVLzv25K85Lf7ZrK+Abqs0xrrNUVikOFocUoK5 /T1ZfF5dhYotLPsdDuP6X8qkHE18mzDPzeM2TtjECYzIBzKfYFmwpdm3beOl5rR5 7IVrVivGfUnVOMg3WL653VFzIDx83MRHJhJ7V/auZ0tWotSB++vGKjUIsQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJnYmosRQLSlQJXv8nO9Ts4K6mbFMB8GA1UdIwQY MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt OTE4YWM2NDYyNjc5LzEvbWRpYWl4RkF0S1ZBbGVfeWM3MU96Z3JxWnNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5 LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALZ79AwQA uekQMA0GCSqGSIb3DQEBCwUAA4IBAQA1zxrOd/PoMJtacDg9P7UtgtTfPdpqgeTD 39Qd8QrymD5x4LMrq9xRNc5bcsIDLAiNUQwQx6znH3bGKu86l09YjilSuFLCAW40 Yz8eSAO7EW0oI2HR2DgCgyooIagPTm8kE0Otfm99HLLr+b4bcw/tx4MWFzvgq7kJ PurKU1I0qscQfcB6BeI6zacSyzLqdgLI9XjM1YqvAB0pQEeBSwSjceXwAKab8VqG y3TV/hannSfElN5AHMejahIpwZZHuwtU3Hlk3uvsLvFcyrzvuFtKCnuDN2xEVNPn 03OoMFsh2+MQy7a/+N/TDYYR3o05TEe2U3wMBII8/TwqxGWwe2is -----END CERTIFICATE-----Generated at Wed Jan 21 09:22:18 2026 by rpki-client