This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/MuKPEjpSeKLvjqZfVopVa-G44-Y.roa File: MuKPEjpSeKLvjqZfVopVa-G44-Y.roa (raw, json) Hash identifier: gXY94gXYWU1Pqibv85vvI+18JY770F42380MRYt28Gc= Subject key identifier: 32:E2:8F:12:3A:52:78:A2:EF:8E:A6:5F:56:8A:55:6B:E1:B8:E3:E6 Certificate issuer: /CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79 Certificate serial: 019B7BA3453187E95396941C102F9710759D Authority key identifier: C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/MuKPEjpSeKLvjqZfVopVa-G44-Y.roa Signing time: Thu 01 Jan 2026 22:17:36 +0000 ROA not before: Thu 01 Jan 2026 22:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62425 IP address blocks: 2a05:600::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:45:31:87:e9:53:96:94:1c:10:2f:97:10:75:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79 Validity Not Before: Jan 1 22:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=32e28f123a5278a2ef8ea65f568a556be1b8e3e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:de:fd:0d:05:06:bd:82:d1:96:0b:84:9f:31: ea:aa:a4:59:18:a4:d3:ca:3f:1a:99:b4:4c:a5:6d: 13:c6:80:fe:1c:41:75:ab:08:68:15:8a:8e:9f:1c: 55:e6:9d:00:35:2e:d6:8f:d8:2e:49:6d:8f:a0:1a: 70:f9:0e:4f:3a:d1:c1:50:0a:35:62:79:26:d2:e1: 56:f8:ca:fb:40:b1:16:e7:c8:6a:10:7b:db:a7:03: 49:b5:52:25:48:b9:56:83:eb:b8:39:c4:74:81:9d: ab:be:d6:3a:d0:cd:65:e0:4e:e3:65:22:38:00:e2: ce:39:96:83:07:21:b4:dd:7b:44:a9:33:e7:dc:2d: 78:df:a8:09:1e:2e:91:02:9b:e0:1b:9a:5e:f4:a4: 24:43:90:6d:e2:11:8f:46:ef:d1:6f:f8:23:6b:e8: 6b:d5:ef:dd:ae:cc:5b:e0:16:a8:4c:0b:8a:d2:2e: e2:5f:6a:66:59:4c:5f:73:5d:cb:4e:fe:2a:8a:92: 2d:0d:60:5e:0a:84:f9:ba:00:da:82:fb:06:3d:ef: 8e:0b:4f:6a:32:52:83:04:47:32:35:07:15:1f:92: 3a:b9:de:2b:51:43:95:08:5c:c5:a0:bd:67:48:08: 72:29:fa:8e:c3:cb:75:cf:11:e6:04:90:d7:95:0d: ac:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E2:8F:12:3A:52:78:A2:EF:8E:A6:5F:56:8A:55:6B:E1:B8:E3:E6 X509v3 Authority Key Identifier: keyid:C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/MuKPEjpSeKLvjqZfVopVa-G44-Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:600::/29 Signature Algorithm: sha256WithRSAEncryption 03:12:d8:db:53:e1:cb:0a:f6:11:82:fe:63:e8:8a:9f:fb:b5: 17:d2:b9:f6:16:44:dd:50:e0:56:35:5b:d7:5d:c1:73:da:6d: 36:65:df:9c:51:ea:93:45:96:03:66:27:b6:97:32:e4:bd:55: bc:d3:0d:09:44:75:7e:15:75:b3:77:a6:7a:63:d2:55:75:36: fd:8c:b2:15:6d:f5:ac:24:de:79:bd:c5:6d:62:43:a9:6b:34: 50:87:3b:4e:f0:9a:90:3b:4b:4b:dd:ac:93:38:58:ef:04:f6: d6:b4:b8:f5:6a:c8:4e:c6:4e:5a:19:bd:c2:b3:cc:b7:0d:8c: f9:41:3b:13:7f:29:c1:86:d7:44:d9:ba:b2:fd:b0:7b:f4:f7: 10:86:3d:88:38:bf:59:76:4a:70:00:81:ec:3e:25:68:5c:68: 11:98:ef:e3:30:33:cc:c6:cb:f4:18:c6:df:42:09:bc:ad:b2: b9:bd:d5:57:0f:b4:a0:43:96:b6:a1:a0:f7:e9:60:5e:13:d3: c5:d4:14:08:58:9d:c6:70:36:cf:2e:33:b3:e8:2d:53:f5:8e: 5b:6a:38:90:3d:1c:d7:28:19:ba:05:63:3c:22:2d:8e:f7:28: f2:b4:25:a1:3a:e8:e5:14:86:f8:88:72:59:de:60:dd:d9:f6: 8a:78:1a:ed -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7o0Uxh+lTlpQcEC+XEHWdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5YTk0ODRjYTcwOGFiNzcxZWIxZGI5MGJhZmM4YTExNGMy YzNkNzkwHhcNMjYwMTAxMjIxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMmUyOGYxMjNhNTI3OGEyZWY4ZWE2NWY1NjhhNTU2YmUxYjhlM2U2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgt79DQUGvYLRlguEnzHqqqRZGKTT yj8ambRMpW0TxoD+HEF1qwhoFYqOnxxV5p0ANS7Wj9guSW2PoBpw+Q5POtHBUAo1 Ynkm0uFW+Mr7QLEW58hqEHvbpwNJtVIlSLlWg+u4OcR0gZ2rvtY60M1l4E7jZSI4 AOLOOZaDByG03XtEqTPn3C1436gJHi6RApvgG5pe9KQkQ5Bt4hGPRu/Rb/gja+hr 1e/drsxb4BaoTAuK0i7iX2pmWUxfc13LTv4qipItDWBeCoT5ugDagvsGPe+OC09q MlKDBEcyNQcVH5I6ud4rUUOVCFzFoL1nSAhyKfqOw8t1zxHmBJDXlQ2sTQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFDLijxI6Unii746mX1aKVWvhuOPmMB8GA1UdIwQY MBaAFMmpSEynCKt3HrHbkLr8ihFMLD15MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWFsSVRLY0lxM2Nlc2R1UXV2eUtFVXdzUFhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8yNWU2NjAtNDA1Ni00MmNjLWE4YjAt ZDA1MTdkYjI2ZGFkLzEvTXVLUEVqcFNlS0x2anFaZlZvcFZhLUc0NC1ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi8yNWU2NjAtNDA1Ni00MmNjLWE4YjAtZDA1MTdkYjI2ZGFk LzEveWFsSVRLY0lxM2Nlc2R1UXV2eUtFVXdzUFhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgUGADAN BgkqhkiG9w0BAQsFAAOCAQEAAxLY21Phywr2EYL+Y+iKn/u1F9K59hZE3VDgVjVb 113Bc9ptNmXfnFHqk0WWA2Yntpcy5L1VvNMNCUR1fhV1s3ememPSVXU2/YyyFW31 rCTeeb3FbWJDqWs0UIc7TvCakDtLS92skzhY7wT21rS49WrITsZOWhm9wrPMtw2M +UE7E38pwYbXRNm6sv2we/T3EIY9iDi/WXZKcACB7D4laFxoEZjv4zAzzMbL9BjG 30IJvK2yub3VVw+0oEOWtqGg9+lgXhPTxdQUCFidxnA2zy4zs+gtU/WOW2o4kD0c 1ygZugVjPCItjvco8rQloTro5RSG+IhyWd5g3dn2inga7Q== -----END CERTIFICATE-----Generated at Wed Jan 21 10:48:43 2026 by rpki-client