This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/McYjjC5KqcvB_nVezfbVebYSEGE.roa File: McYjjC5KqcvB_nVezfbVebYSEGE.roa (raw, json) Hash identifier: RfRO6ieaH0AVTevS9LKIVFeYDX2W75T2UkbyiNhzcEQ= Subject key identifier: 31:C6:23:8C:2E:4A:A9:CB:C1:FE:75:5E:CD:F6:D5:79:B6:12:10:61 Certificate issuer: /CN=f973209625e2a03ddeecf91bb480548e5729d479 Certificate serial: 019B7AC7AB9922D14E20E4179B5361208ADC Authority key identifier: F9:73:20:96:25:E2:A0:3D:DE:EC:F9:1B:B4:80:54:8E:57:29:D4:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/McYjjC5KqcvB_nVezfbVebYSEGE.roa Signing time: Thu 01 Jan 2026 18:17:44 +0000 ROA not before: Thu 01 Jan 2026 18:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209323 IP address blocks: 147.78.144.0/22 maxlen: 22 2a09:24c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:ab:99:22:d1:4e:20:e4:17:9b:53:61:20:8a:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f973209625e2a03ddeecf91bb480548e5729d479 Validity Not Before: Jan 1 18:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31c6238c2e4aa9cbc1fe755ecdf6d579b6121061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:20:2a:d4:1f:42:da:bf:26:b1:e0:71:eb:ff: 23:07:63:29:e7:8e:31:ea:af:dc:82:3f:48:7b:25: 0e:03:c2:f4:ec:6f:16:6b:91:3b:1a:8d:a6:0c:68: bb:48:0d:0b:13:b0:01:48:5c:2a:c7:ab:80:15:37: 7a:67:d7:a5:f4:b5:a3:b3:10:34:f9:f6:9c:6e:e8: 66:78:c0:da:9d:62:21:72:d5:39:f0:6e:f1:2f:7d: 98:7b:44:d0:ba:be:d3:b0:7f:d7:2d:ef:4e:ab:cf: 28:04:6c:76:ed:46:43:cd:24:a2:df:f4:41:9f:09: c5:0e:51:84:1f:6a:97:dc:21:bf:12:3e:6a:e2:ce: 8a:8c:ca:9a:91:ad:ae:79:49:7d:b1:72:2c:79:50: 38:d9:b8:60:b0:0e:44:ba:21:0c:da:a4:59:d7:ec: 61:20:d6:84:18:8d:72:67:f2:83:ad:18:45:9a:fc: 01:91:66:7e:8a:40:72:64:db:a2:b6:3a:0e:6e:6c: 9e:41:37:a8:e5:b0:ae:83:97:a8:c3:0e:76:a6:be: 43:22:b2:9f:3d:36:7a:9b:8b:b5:7b:e3:87:82:8f: e4:22:dd:43:ea:9e:20:9d:01:1b:90:4a:8d:03:0c: 98:57:a2:4f:23:85:bd:e4:95:cf:71:b9:53:f8:19: b8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C6:23:8C:2E:4A:A9:CB:C1:FE:75:5E:CD:F6:D5:79:B6:12:10:61 X509v3 Authority Key Identifier: keyid:F9:73:20:96:25:E2:A0:3D:DE:EC:F9:1B:B4:80:54:8E:57:29:D4:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/McYjjC5KqcvB_nVezfbVebYSEGE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.78.144.0/22 IPv6: 2a09:24c0::/32 Signature Algorithm: sha256WithRSAEncryption 3f:7e:cb:7c:50:64:ef:28:68:39:ac:38:9b:fd:7e:65:8f:10: df:af:1c:65:37:e3:15:a9:bf:2c:be:ec:ee:20:cb:c7:a7:a1: 30:c9:92:e9:d6:1a:57:c3:23:f2:c8:eb:9d:36:50:fc:55:d1: d1:24:91:3f:3c:3b:88:a2:e0:3f:1c:5f:d0:54:14:0d:42:05: 12:be:07:2d:9c:b1:cc:51:d0:9a:5a:45:c3:f3:8e:f5:0b:a1: 2d:b0:3c:5e:47:9e:b5:43:49:cc:df:cf:76:19:ea:6f:af:f9: f9:98:f2:e8:c1:8d:10:d5:de:a7:05:5f:8a:f7:dd:8b:31:2c: 27:48:7b:ad:2a:2e:59:c7:07:34:3f:66:46:89:8d:a1:89:2f: 35:28:2a:a0:ba:2a:76:13:f7:cf:6e:69:ac:a5:55:3d:a3:4c: 23:b2:24:2a:a5:61:2c:e7:5c:2d:47:94:cd:55:d0:eb:c2:9c: 7c:f5:7a:a6:b1:75:fe:27:b8:4d:e3:6d:44:71:61:55:3e:66: 90:3e:bc:65:98:69:e9:a4:1d:3c:f0:76:32:49:3d:4a:0a:06: 52:12:f7:db:e4:cd:f5:94:e7:3b:0a:61:8f:74:a3:b6:4c:a0: 50:c3:24:33:d3:2f:86:8e:27:85:21:6c:90:b7:2d:66:52:63: 12:da:0e:38 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt6x6uZItFOIOQXm1NhIIrcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5NzMyMDk2MjVlMmEwM2RkZWVjZjkxYmI0ODA1NDhlNTcy OWQ0NzkwHhcNMjYwMTAxMTgxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMWM2MjM4YzJlNGFhOWNiYzFmZTc1NWVjZGY2ZDU3OWI2MTIxMDYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1CAq1B9C2r8mseBx6/8jB2Mp544x 6q/cgj9IeyUOA8L07G8Wa5E7Go2mDGi7SA0LE7ABSFwqx6uAFTd6Z9el9LWjsxA0 +facbuhmeMDanWIhctU58G7xL32Ye0TQur7TsH/XLe9Oq88oBGx27UZDzSSi3/RB nwnFDlGEH2qX3CG/Ej5q4s6KjMqaka2ueUl9sXIseVA42bhgsA5EuiEM2qRZ1+xh INaEGI1yZ/KDrRhFmvwBkWZ+ikByZNuitjoObmyeQTeo5bCug5eoww52pr5DIrKf PTZ6m4u1e+OHgo/kIt1D6p4gnQEbkEqNAwyYV6JPI4W95JXPcblT+Bm4vwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFDHGI4wuSqnLwf51Xs321Xm2EhBhMB8GA1UdIwQY MBaAFPlzIJYl4qA93uz5G7SAVI5XKdR5MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1YTWdsaVhpb0QzZTdQa2J0SUJVamxjcDFIay5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQvYWY1NGU4LWJkNjMtNDI3ZC04Y2M4 LWY0ZWNlYmJiMWVjMi8xL01jWWpqQzVLcWN2Ql9uVmV6ZmJWZWJZU0VHRS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNWQvYWY1NGU4LWJkNjMtNDI3ZC04Y2M4LWY0ZWNlYmJiMWVj Mi8xLzEtWE1nbGlYaW9EM2U3UGtidElCVWpsY3AxSGsuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAKTTpAw DQQCAAIwBwMFACoJJMAwDQYJKoZIhvcNAQELBQADggEBAD9+y3xQZO8oaDmsOJv9 fmWPEN+vHGU34xWpvyy+7O4gy8enoTDJkunWGlfDI/LI6502UPxV0dEkkT88O4ii 4D8cX9BUFA1CBRK+By2cscxR0JpaRcPzjvULoS2wPF5HnrVDSczfz3YZ6m+v+fmY 8ujBjRDV3qcFX4r33YsxLCdIe60qLlnHBzQ/ZkaJjaGJLzUoKqC6KnYT989uaayl VT2jTCOyJCqlYSznXC1HlM1V0OvCnHz1eqaxdf4nuE3jbURxYVU+ZpA+vGWYaemk HTzwdjJJPUoKBlIS99vkzfWU5zsKYY90o7ZMoFDDJDPTL4aOJ4UhbJC3LWZSYxLa Djg= -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:12 2026 by rpki-client