This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/MGJC7B1Ba42lx5xp2OR9KB_r3CM.roa File: MGJC7B1Ba42lx5xp2OR9KB_r3CM.roa (raw, json) Hash identifier: 3dEWz8p/HyJK1M8zb2CLGf2EvdGWCjzIW7fX7f0DY+A= Subject key identifier: 30:62:42:EC:1D:41:6B:8D:A5:C7:9C:69:D8:E4:7D:28:1F:EB:DC:23 Certificate issuer: /CN=53296ee33153ef6e6938d57a2a132c1e526dc430 Certificate serial: 019B7E3859CF36E4201677F9B5D3D520B7FC Authority key identifier: 53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/MGJC7B1Ba42lx5xp2OR9KB_r3CM.roa Signing time: Fri 02 Jan 2026 10:19:40 +0000 ROA not before: Fri 02 Jan 2026 10:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197202 IP address blocks: 91.223.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:59:cf:36:e4:20:16:77:f9:b5:d3:d5:20:b7:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53296ee33153ef6e6938d57a2a132c1e526dc430 Validity Not Before: Jan 2 10:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=306242ec1d416b8da5c79c69d8e47d281febdc23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:3f:9e:d5:7d:64:34:fd:9a:ba:05:7d:75:dc: d9:af:b2:bd:c6:14:6c:5e:84:61:a2:f8:ee:d4:6e: 83:04:9e:4d:4b:de:68:41:fc:88:c4:13:74:58:9e: 0b:39:16:7a:1f:36:9c:7e:e9:4b:44:f4:fc:b8:85: 16:2c:6b:dc:fa:03:00:5e:16:86:e2:39:9d:1e:01: 07:f7:af:37:f1:f1:5c:4a:d7:63:84:7c:97:38:e0: e7:c5:bb:37:2a:07:58:98:d9:a7:10:22:40:24:f0: 82:1c:4d:de:4b:df:f1:fa:64:ed:32:b9:57:b3:27: 23:ef:7e:7e:4f:b8:f9:1d:51:c0:fa:3e:d8:af:8f: 82:90:a0:a9:e7:9b:45:09:d6:73:88:a9:3e:9a:eb: 57:5c:c2:45:a7:f3:b7:70:72:2e:6b:07:4d:d2:0e: 74:a9:98:59:28:83:f1:ac:a2:a4:95:a2:57:d0:d9: 9e:70:e2:1b:42:de:01:c8:f6:c0:b9:f6:6d:bc:fb: bf:38:e3:36:9f:4d:8f:9e:39:7f:69:a5:3c:8e:7f: c7:96:bd:5d:f6:b4:ad:35:89:22:12:0b:52:6e:48: f2:ce:07:f2:bd:b7:49:d6:b6:92:f1:ba:3e:69:4a: de:e7:61:fc:1a:80:75:21:ca:58:7f:7e:f3:3c:8c: 77:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:62:42:EC:1D:41:6B:8D:A5:C7:9C:69:D8:E4:7D:28:1F:EB:DC:23 X509v3 Authority Key Identifier: keyid:53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/MGJC7B1Ba42lx5xp2OR9KB_r3CM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.79.0/24 Signature Algorithm: sha256WithRSAEncryption 07:ba:82:1b:86:96:80:bc:f9:12:db:6b:b5:3c:4e:69:74:1d: 7c:75:78:84:e8:f9:53:7d:9e:88:22:12:47:e4:41:c2:8d:04: bd:2b:f0:b1:2a:42:ce:04:bb:9f:b1:60:91:c6:1c:d1:6b:ee: c8:87:3d:03:8f:20:e5:a5:f2:e4:35:03:31:ad:13:e9:44:fd: a4:14:f1:ca:23:01:2c:40:73:52:2f:7f:0a:c2:e3:d2:45:77: 5f:79:ee:0b:d6:b7:89:78:88:fd:02:9f:f7:d2:92:c3:f4:2a: d4:ef:2f:f9:5e:99:3b:d9:63:75:a8:7a:2e:c7:51:9f:78:35: 3b:be:c4:d0:8d:8a:13:ff:95:53:3c:35:05:52:4d:4b:63:4e: ef:4c:16:0d:13:9f:f2:3d:43:56:d8:93:56:49:e6:b5:31:b2: d8:c2:36:28:47:9a:64:50:4e:27:21:d0:d8:82:a0:71:7b:fe: c7:f1:af:ce:a5:8c:d4:b2:0e:39:d4:37:d2:54:6c:bf:62:b0: c1:4b:42:37:b1:b8:ea:48:69:2c:d1:46:cf:1b:29:a7:e2:5c: c7:20:3f:53:d9:2d:1a:31:f8:5c:61:4d:22:d1:28:4c:67:4a: 48:ba:98:84:47:4d:95:a1:96:45:4b:ff:45:a0:88:4a:d5:39: ca:43:c5:9e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OFnPNuQgFnf5tdPVILf8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzMjk2ZWUzMzE1M2VmNmU2OTM4ZDU3YTJhMTMyYzFlNTI2 ZGM0MzAwHhcNMjYwMTAyMTAxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMDYyNDJlYzFkNDE2YjhkYTVjNzljNjlkOGU0N2QyODFmZWJkYzIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjz+e1X1kNP2augV9ddzZr7K9xhRs XoRhovju1G6DBJ5NS95oQfyIxBN0WJ4LORZ6HzacfulLRPT8uIUWLGvc+gMAXhaG 4jmdHgEH96838fFcStdjhHyXOODnxbs3KgdYmNmnECJAJPCCHE3eS9/x+mTtMrlX sycj735+T7j5HVHA+j7Yr4+CkKCp55tFCdZziKk+mutXXMJFp/O3cHIuawdN0g50 qZhZKIPxrKKklaJX0NmecOIbQt4ByPbAufZtvPu/OOM2n02Pnjl/aaU8jn/Hlr1d 9rStNYkiEgtSbkjyzgfyvbdJ1raS8bo+aUre52H8GoB1IcpYf37zPIx3bwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDBiQuwdQWuNpcecadjkfSgf69wjMB8GA1UdIwQY MBaAFFMpbuMxU+9uaTjVeioTLB5SbcQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXlsdTR6RlQ3MjVwT05WNktoTXNIbEp0eERBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mOGIzODEtNjkyYS00ODMwLThkN2Qt MjFiZjcwOGYzY2FkLzEvTUdKQzdCMUJhNDJseDV4cDJPUjlLQl9yM0NNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9mOGIzODEtNjkyYS00ODMwLThkN2QtMjFiZjcwOGYzY2Fk LzEvVXlsdTR6RlQ3MjVwT05WNktoTXNIbEp0eERBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW99PMA0G CSqGSIb3DQEBCwUAA4IBAQAHuoIbhpaAvPkS22u1PE5pdB18dXiE6PlTfZ6IIhJH 5EHCjQS9K/CxKkLOBLufsWCRxhzRa+7Ihz0DjyDlpfLkNQMxrRPpRP2kFPHKIwEs QHNSL38KwuPSRXdfee4L1reJeIj9Ap/30pLD9CrU7y/5Xpk72WN1qHoux1GfeDU7 vsTQjYoT/5VTPDUFUk1LY07vTBYNE5/yPUNW2JNWSea1MbLYwjYoR5pkUE4nIdDY gqBxe/7H8a/OpYzUsg451DfSVGy/YrDBS0I3sbjqSGks0UbPGymn4lzHID9T2S0a MfhcYU0i0ShMZ0pIupiER02VoZZFS/9FoIhK1TnKQ8We -----END CERTIFICATE-----Generated at Mon Feb 9 23:41:35 2026 by rpki-client