This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/M-Vj0d4JhKHDjh9kXjcwNEIFBDE.roa File: M-Vj0d4JhKHDjh9kXjcwNEIFBDE.roa (raw, json) Hash identifier: GUBRMhJrDAF9FuzUxtfDHa0p7ghemjCtsqq6pt6rRuc= Subject key identifier: 33:E5:63:D1:DE:09:84:A1:C3:8E:1F:64:5E:37:30:34:42:05:04:31 Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5 Certificate serial: 019B7C80B9543C22D77D3164C97A71F60480 Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/M-Vj0d4JhKHDjh9kXjcwNEIFBDE.roa Signing time: Fri 02 Jan 2026 02:19:29 +0000 ROA not before: Fri 02 Jan 2026 02:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213941 IP address blocks: 84.32.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.mft rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:b9:54:3c:22:d7:7d:31:64:c9:7a:71:f6:04:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5 Validity Not Before: Jan 2 02:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=33e563d1de0984a1c38e1f645e37303442050431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:32:a5:ab:0e:c3:1a:5d:00:bc:dd:65:5e:83: 8a:ae:e9:23:83:57:f5:83:1d:b4:c7:54:39:d4:ed: 5e:89:9f:5e:48:74:9e:47:4e:e1:57:d8:e1:e6:8f: 15:6f:47:9d:e0:72:ee:77:ed:20:f4:91:da:14:1c: bd:5a:0c:3e:90:77:09:62:f2:03:5a:a0:d5:b1:34: 02:ce:53:70:bf:a2:16:ef:9e:d4:35:2b:17:cf:6b: ed:4f:6d:25:a1:a4:ac:af:81:44:e4:a7:4f:8d:ec: f7:34:95:5b:e7:4f:fd:73:2f:19:ec:e2:37:dd:a2: f3:d8:77:8f:53:f3:2a:0e:2f:9e:2d:ae:ff:93:4a: 02:1f:91:fb:c0:62:f7:29:1e:d8:18:38:ba:09:8a: 6c:62:12:1d:b7:15:f4:7f:2e:00:87:ff:b7:f0:2f: 49:95:15:09:e4:17:97:eb:4c:1e:c6:d8:89:58:f2: fc:f1:e4:9a:30:48:70:70:d7:bd:5e:af:6e:52:15: a0:86:c3:89:40:b2:be:e5:3e:bd:25:b4:62:18:e0: 4e:d8:6c:c9:69:f5:ba:39:8a:e3:fe:83:6c:ce:55: db:41:b0:70:37:2d:08:5b:19:6b:de:be:fe:bb:c6: 73:dd:d4:07:4f:18:1b:ac:89:00:c8:7e:c5:6a:ec: d2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E5:63:D1:DE:09:84:A1:C3:8E:1F:64:5E:37:30:34:42:05:04:31 X509v3 Authority Key Identifier: keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/M-Vj0d4JhKHDjh9kXjcwNEIFBDE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.32.26.0/24 Signature Algorithm: sha256WithRSAEncryption 64:06:3b:a2:96:13:be:3b:31:83:ae:43:b9:4e:2b:17:2c:fb: 63:cb:d0:64:c6:ea:26:f8:c8:6a:05:d7:75:3f:85:31:13:1a: c2:fe:cf:0a:9c:96:72:72:55:98:bb:41:cb:2f:5e:ba:86:3c: 2f:53:72:9b:78:41:8b:c9:1f:69:51:e7:75:e8:52:0a:45:ad: 18:4b:ec:65:37:1e:e8:61:ed:d3:a3:45:03:2c:07:44:c8:d1: 76:4d:20:57:f4:d1:18:fa:e5:08:da:73:e6:b2:8f:30:b8:ff: 99:6a:31:42:99:79:8d:59:ec:77:74:58:be:25:98:81:8a:8a: 46:eb:7e:4b:3c:66:31:95:9f:5b:89:d4:44:b7:52:87:b4:63: 73:49:c6:db:42:1d:0b:a6:6c:95:76:cf:34:5a:37:e3:fd:5e: b7:fd:33:c5:c7:81:18:f9:d5:f8:82:c3:4d:6d:8f:82:cf:3d: be:8b:34:e1:3e:1f:ec:b6:2d:26:e6:56:41:0c:78:53:80:77: 65:a6:eb:06:05:ef:ed:3b:27:dd:fa:f0:ca:4e:ba:98:0a:ac: 55:14:75:ef:1a:cc:9d:1e:7f:0c:db:0d:52:2d:4b:6b:77:21: e9:bc:fa:d8:d8:b9:59:9d:ce:1e:ce:1a:10:38:b2:72:16:9e: 03:fe:7f:46 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gLlUPCLXfTFkyXpx9gSAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi ZGEzYzUwHhcNMjYwMTAyMDIxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzM2U1NjNkMWRlMDk4NGExYzM4ZTFmNjQ1ZTM3MzAzNDQyMDUwNDMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4DKlqw7DGl0AvN1lXoOKrukjg1f1 gx20x1Q51O1eiZ9eSHSeR07hV9jh5o8Vb0ed4HLud+0g9JHaFBy9Wgw+kHcJYvID WqDVsTQCzlNwv6IW757UNSsXz2vtT20loaSsr4FE5KdPjez3NJVb50/9cy8Z7OI3 3aLz2HePU/MqDi+eLa7/k0oCH5H7wGL3KR7YGDi6CYpsYhIdtxX0fy4Ah/+38C9J lRUJ5BeX60wextiJWPL88eSaMEhwcNe9Xq9uUhWghsOJQLK+5T69JbRiGOBO2GzJ afW6OYrj/oNszlXbQbBwNy0IWxlr3r7+u8Zz3dQHTxgbrIkAyH7FauzSbQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDPlY9HeCYShw44fZF43MDRCBQQxMB8GA1UdIwQY MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt MjM0ODFiZjA5MWMzLzEvTS1WajBkNEpoS0hEamg5a1hqY3dORUlGQkRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCAaMA0G CSqGSIb3DQEBCwUAA4IBAQBkBjuilhO+OzGDrkO5TisXLPtjy9Bkxuom+MhqBdd1 P4UxExrC/s8KnJZyclWYu0HLL166hjwvU3KbeEGLyR9pUed16FIKRa0YS+xlNx7o Ye3To0UDLAdEyNF2TSBX9NEY+uUI2nPmso8wuP+ZajFCmXmNWex3dFi+JZiBiopG 635LPGYxlZ9bidREt1KHtGNzScbbQh0LpmyVds80Wjfj/V63/TPFx4EY+dX4gsNN bY+Czz2+izThPh/sti0m5lZBDHhTgHdlpusGBe/tOyfd+vDKTrqYCqxVFHXvGsyd Hn8M2w1SLUtrdyHpvPrY2LlZnc4ezhoQOLJyFp4D/n9G -----END CERTIFICATE-----Generated at Mon Jan 19 13:54:14 2026 by rpki-client