This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/MxVQkgZbV3qLa1zH5kFdanjvVC0.roa File: MxVQkgZbV3qLa1zH5kFdanjvVC0.roa (raw, json) Hash identifier: AfOYkgdUu1nsSkj3uF8UdVQP65gzvt7NMFWq893wdDQ= Subject key identifier: 33:15:50:92:06:5B:57:7A:8B:6B:5C:C7:E6:41:5D:6A:78:EF:54:2D Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB874841E558309750C2C42B11FA7E Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/MxVQkgZbV3qLa1zH5kFdanjvVC0.roa Signing time: Fri 02 Jan 2026 08:20:48 +0000 ROA not before: Fri 02 Jan 2026 08:20:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215346 IP address blocks: 193.42.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:87:48:41:e5:58:30:97:50:c2:c4:2b:11:fa:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=33155092065b577a8b6b5cc7e6415d6a78ef542d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4d:27:62:6a:95:a4:e2:2b:e6:33:08:29:d3: 94:b9:20:c7:04:f2:18:81:64:b2:b7:20:25:52:82: 3e:59:40:6f:30:72:fe:26:a8:2c:7c:a8:76:88:43: 67:16:b1:76:fa:32:62:bb:dc:29:9d:a6:b0:dd:ec: 8a:a1:31:ed:8b:d7:cc:2f:a9:0c:f6:aa:d3:1c:e7: 7e:0a:5d:c2:4c:a9:c2:34:f0:d5:ab:78:c2:64:7e: c4:04:55:e4:13:ef:6d:63:f8:e8:6c:18:a0:e6:5f: 6f:66:55:81:2d:70:a4:fe:20:79:ed:48:27:33:f9: b9:15:5b:c1:0e:91:28:b0:89:5e:c3:1b:23:d9:a4: 59:40:1a:6f:87:3f:09:5d:57:04:01:2f:c6:45:ca: 3f:98:49:95:2c:b3:3a:40:dc:b9:3d:4b:6d:00:a9: a6:a1:64:d8:59:82:9e:43:fc:5c:6e:40:9e:db:94: cf:a6:78:c7:de:a3:e0:96:26:80:49:ba:bc:d7:33: 9b:c0:cf:e6:8c:0f:f8:a3:e1:23:89:0a:0c:39:a2: 2a:4b:91:ef:f3:02:40:d7:b0:a4:4a:db:1d:d6:ea: d5:79:67:48:ca:23:12:bf:88:b5:40:4b:40:84:89: dd:15:19:bb:ae:a7:06:f1:fb:aa:a8:67:f5:31:5f: 21:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:15:50:92:06:5B:57:7A:8B:6B:5C:C7:E6:41:5D:6A:78:EF:54:2D X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/MxVQkgZbV3qLa1zH5kFdanjvVC0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.42.118.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:9e:db:be:7b:f9:a2:80:46:e2:78:2d:96:1c:b9:81:a9:30: 8d:d3:c6:61:3b:70:0c:b7:b1:63:1b:6c:bb:ac:57:ba:0e:62: 7a:49:61:7f:3a:24:12:41:a8:1b:03:61:ca:92:7a:42:e6:cb: 03:ae:fb:76:f3:3f:88:f1:63:fd:e3:c9:60:64:9a:db:7c:b1: 8c:ce:f1:76:11:b3:56:9b:89:a9:d1:43:9b:b0:da:dd:e8:7e: 7b:97:77:b6:9b:2b:07:83:2c:60:f7:a1:4a:25:ff:c6:06:45: 73:cb:cb:58:36:1e:ec:a1:b7:9b:61:6c:21:11:02:97:ad:f8: 0b:9b:5d:bf:92:fa:3e:ea:3d:cb:1e:63:3c:ac:25:b5:d6:05: fd:e7:6d:20:39:62:e2:7e:4f:fe:d7:0f:ed:98:e9:9d:1d:dd: 04:dd:0d:eb:a9:3d:5a:d7:5d:5b:9b:49:3c:5c:70:4d:e3:28: ed:21:6a:28:c5:90:8c:e5:15:c9:05:2f:9a:96:05:5d:ad:b4: b6:de:68:95:c7:33:3f:f5:05:6a:57:f4:63:5c:77:df:b9:b5: e4:12:9e:ee:ff:a5:fc:b0:67:77:04:2c:f2:52:9b:aa:44:7a: 0b:40:a9:59:cb:a8:81:47:13:55:79:5c:5f:df:92:bd:5b:3f: 49:5a:89:33 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y4dIQeVYMJdQwsQrEfp+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMzE1NTA5MjA2NWI1NzdhOGI2YjVjYzdlNjQxNWQ2YTc4ZWY1NDJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0E0nYmqVpOIr5jMIKdOUuSDHBPIY gWSytyAlUoI+WUBvMHL+JqgsfKh2iENnFrF2+jJiu9wpnaaw3eyKoTHti9fML6kM 9qrTHOd+Cl3CTKnCNPDVq3jCZH7EBFXkE+9tY/jobBig5l9vZlWBLXCk/iB57Ugn M/m5FVvBDpEosIlewxsj2aRZQBpvhz8JXVcEAS/GRco/mEmVLLM6QNy5PUttAKmm oWTYWYKeQ/xcbkCe25TPpnjH3qPgliaASbq81zObwM/mjA/4o+EjiQoMOaIqS5Hv 8wJA17CkStsd1urVeWdIyiMSv4i1QEtAhIndFRm7rqcG8fuqqGf1MV8hLQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDMVUJIGW1d6i2tcx+ZBXWp471QtMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvTXhWUWtnWmJWM3FMYTF6SDVrRmRhbmp2VkMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSp2MA0G CSqGSIb3DQEBCwUAA4IBAQBfntu+e/migEbieC2WHLmBqTCN08ZhO3AMt7FjG2y7 rFe6DmJ6SWF/OiQSQagbA2HKknpC5ssDrvt28z+I8WP948lgZJrbfLGMzvF2EbNW m4mp0UObsNrd6H57l3e2mysHgyxg96FKJf/GBkVzy8tYNh7sobebYWwhEQKXrfgL m12/kvo+6j3LHmM8rCW11gX9520gOWLifk/+1w/tmOmdHd0E3Q3rqT1a111bm0k8 XHBN4yjtIWooxZCM5RXJBS+algVdrbS23miVxzM/9QVqV/RjXHffubXkEp7u/6X8 sGd3BCzyUpuqRHoLQKlZy6iBRxNVeVxf35K9Wz9JWokz -----END CERTIFICATE-----Generated at Mon Jan 19 23:21:52 2026 by rpki-client