This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/MbRan6OrTVgecR6FfgRRIDuxgPc.roa File: MbRan6OrTVgecR6FfgRRIDuxgPc.roa (raw, json) Hash identifier: SlpR7LyUtBASFkbDWJJxH3uK9Z/DaHWNWAtgRxEYHi4= Subject key identifier: 31:B4:5A:9F:A3:AB:4D:58:1E:71:1E:85:7E:04:51:20:3B:B1:80:F7 Certificate issuer: /CN=12be29c956894c49c6d4be0ed98882b90d1bc77f Certificate serial: 019B7E37E0F222CE606BAD44E42B3EC2DA3D Authority key identifier: 12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/MbRan6OrTVgecR6FfgRRIDuxgPc.roa Signing time: Fri 02 Jan 2026 10:19:09 +0000 ROA not before: Fri 02 Jan 2026 10:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60742 IP address blocks: 86.54.4.0/24 maxlen: 24 2a14:6780:d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.mft rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 03:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:e0:f2:22:ce:60:6b:ad:44:e4:2b:3e:c2:da:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=12be29c956894c49c6d4be0ed98882b90d1bc77f Validity Not Before: Jan 2 10:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31b45a9fa3ab4d581e711e857e0451203bb180f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:90:5f:cc:63:24:12:d6:42:aa:54:74:d3:62: 89:d3:86:dd:0c:44:aa:f8:5e:55:b5:e4:d9:68:24: 1d:3d:f8:15:39:b5:09:88:a8:48:df:27:72:02:85: aa:c2:ea:17:d2:6e:d0:86:4b:06:9d:33:27:80:74: 5d:be:62:7b:f3:73:c8:e2:23:f8:d4:93:d1:8d:78: a4:ca:c2:7a:47:c5:ff:5f:ba:0c:2a:e7:bd:cc:ad: 54:6e:2a:82:fc:8b:08:32:cb:8c:62:fd:2b:46:c9: 0c:69:9c:50:6b:cc:bc:f5:05:a0:fb:f2:4e:d1:b3: 4c:7a:02:e3:df:cd:48:94:75:ec:c8:28:8a:e7:03: fd:eb:24:6b:2d:71:b1:42:21:84:f2:e6:af:48:9b: 54:51:4a:8d:a4:9a:93:53:e2:9a:19:a1:d7:99:17: 66:62:12:b9:e4:71:2a:aa:ad:84:02:34:7e:12:76: 89:e7:20:23:a2:04:3e:44:d5:39:63:31:2c:ae:97: 75:a6:a4:e2:cc:a0:ca:a2:e4:69:5c:7d:d7:b2:b7: ce:82:69:c6:58:5f:13:60:53:e8:01:3c:8f:68:98: b8:3c:56:d1:3f:37:ac:49:fd:8e:e6:86:58:9d:34: ff:1c:f5:27:ad:3e:7b:c9:69:50:ae:c4:91:f1:6e: 45:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:B4:5A:9F:A3:AB:4D:58:1E:71:1E:85:7E:04:51:20:3B:B1:80:F7 X509v3 Authority Key Identifier: keyid:12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/MbRan6OrTVgecR6FfgRRIDuxgPc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.54.4.0/24 IPv6: 2a14:6780:d::/48 Signature Algorithm: sha256WithRSAEncryption 9b:ed:22:30:f9:aa:72:f1:64:08:71:32:fc:c2:b0:e3:67:18: 07:1f:63:9f:e8:60:fe:c9:85:1c:0b:46:7d:63:36:76:3e:2f: 0d:62:50:c9:49:ad:95:21:db:60:ea:68:f3:84:03:c5:65:9a: b0:7a:1d:6a:a0:a1:21:eb:9d:76:be:4f:95:17:a3:06:2c:fa: 21:41:b6:2e:23:58:87:47:d4:a8:96:97:9f:3a:4a:31:a9:fb: 44:75:0f:40:d0:96:14:20:47:4b:21:d3:db:90:da:63:39:25: 24:70:02:26:05:50:c3:c3:1d:0a:7f:7c:c3:e7:3c:25:8a:90: f2:ff:7d:f4:37:4b:d6:9a:86:3d:0d:50:d4:71:7e:d9:f1:2d: ea:f0:7d:8b:f8:95:87:74:a7:59:6a:ed:4e:7e:3c:8d:61:33: 82:7b:c7:df:bd:06:fe:06:fb:bb:b9:ae:4d:45:87:dc:26:1f: 62:cf:c5:4a:d1:47:03:2a:d1:08:c2:33:33:e8:8d:fb:96:cd: 1e:5a:30:3c:d4:39:a7:87:26:3d:5a:40:f5:2c:5d:65:69:69: 8d:9d:38:02:56:fc:4a:16:12:a4:17:77:12:21:54:88:70:ee: 33:f0:b7:1c:e9:cd:ef:a3:d1:68:38:1a:39:5f:3a:11:92:31: 70:cb:ea:fe -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+N+DyIs5ga61E5Cs+wto9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyYmUyOWM5NTY4OTRjNDljNmQ0YmUwZWQ5ODg4MmI5MGQx YmM3N2YwHhcNMjYwMTAyMTAxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMWI0NWE5ZmEzYWI0ZDU4MWU3MTFlODU3ZTA0NTEyMDNiYjE4MGY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlpBfzGMkEtZCqlR002KJ04bdDESq +F5VteTZaCQdPfgVObUJiKhI3ydyAoWqwuoX0m7QhksGnTMngHRdvmJ783PI4iP4 1JPRjXikysJ6R8X/X7oMKue9zK1UbiqC/IsIMsuMYv0rRskMaZxQa8y89QWg+/JO 0bNMegLj381IlHXsyCiK5wP96yRrLXGxQiGE8uavSJtUUUqNpJqTU+KaGaHXmRdm YhK55HEqqq2EAjR+EnaJ5yAjogQ+RNU5YzEsrpd1pqTizKDKouRpXH3XsrfOgmnG WF8TYFPoATyPaJi4PFbRPzesSf2O5oZYnTT/HPUnrT57yWlQrsSR8W5FwQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFDG0Wp+jq01YHnEehX4EUSA7sYD3MB8GA1UdIwQY MBaAFBK+KclWiUxJxtS+DtmIgrkNG8d/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRXI0cHlWYUpURW5HMUw0TzJZaUN1UTBieDM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9jMjc4OGYtOGM4Yy00N2JiLWI5MjIt YWE2ZWQ0ZGFmYjNiLzEvTWJSYW42T3JUVmdlY1I2RmZnUlJJRHV4Z1BjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS9jMjc4OGYtOGM4Yy00N2JiLWI5MjItYWE2ZWQ0ZGFmYjNi LzEvRXI0cHlWYUpURW5HMUw0TzJZaUN1UTBieDM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAVjYEMA8E AgACMAkDBwAqFGeAAA0wDQYJKoZIhvcNAQELBQADggEBAJvtIjD5qnLxZAhxMvzC sONnGAcfY5/oYP7JhRwLRn1jNnY+Lw1iUMlJrZUh22DqaPOEA8VlmrB6HWqgoSHr nXa+T5UXowYs+iFBti4jWIdH1KiWl586SjGp+0R1D0DQlhQgR0sh09uQ2mM5JSRw AiYFUMPDHQp/fMPnPCWKkPL/ffQ3S9aahj0NUNRxftnxLerwfYv4lYd0p1lq7U5+ PI1hM4J7x9+9Bv4G+7u5rk1Fh9wmH2LPxUrRRwMq0QjCMzPojfuWzR5aMDzUOaeH Jj1aQPUsXWVpaY2dOAJW/EoWEqQXdxIhVIhw7jPwtxzpze+j0Wg4GjlfOhGSMXDL 6v4= -----END CERTIFICATE-----Generated at Wed Jan 21 11:09:04 2026 by rpki-client