This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/8648bf-804e-4e42-a212-b5a4c22432ef/1/Mtbpc8IAHFgMQsyAgfqJUFJrUrA.roa File: Mtbpc8IAHFgMQsyAgfqJUFJrUrA.roa (raw, json) Hash identifier: V1h3AXSZTLzIGDiJuS9+hhy8lWgG1T0e2v4+3MPHxvM= Subject key identifier: 32:D6:E9:73:C2:00:1C:58:0C:42:CC:80:81:FA:89:50:52:6B:52:B0 Certificate issuer: /CN=6d88c66485bb603441745746f9f886a2a6a15a36 Certificate serial: 019B7AC7FA49589CCDCD0A44CABC21A51189 Authority key identifier: 6D:88:C6:64:85:BB:60:34:41:74:57:46:F9:F8:86:A2:A6:A1:5A:36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bYjGZIW7YDRBdFdG-fiGoqahWjY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/8648bf-804e-4e42-a212-b5a4c22432ef/1/Mtbpc8IAHFgMQsyAgfqJUFJrUrA.roa Signing time: Thu 01 Jan 2026 18:18:04 +0000 ROA not before: Thu 01 Jan 2026 18:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197742 IP address blocks: 31.171.144.0/21 maxlen: 21 2a03:5100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/8648bf-804e-4e42-a212-b5a4c22432ef/1/bYjGZIW7YDRBdFdG-fiGoqahWjY.crl rsync://rpki.ripe.net/repository/DEFAULT/68/8648bf-804e-4e42-a212-b5a4c22432ef/1/bYjGZIW7YDRBdFdG-fiGoqahWjY.mft rsync://rpki.ripe.net/repository/DEFAULT/bYjGZIW7YDRBdFdG-fiGoqahWjY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:fa:49:58:9c:cd:cd:0a:44:ca:bc:21:a5:11:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d88c66485bb603441745746f9f886a2a6a15a36 Validity Not Before: Jan 1 18:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=32d6e973c2001c580c42cc8081fa8950526b52b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7c:6b:71:62:a9:45:77:ea:41:23:89:11:63: 3c:ee:36:76:e5:f7:bf:63:eb:8b:53:f9:52:01:81: a8:f5:98:94:16:2e:b1:61:e2:39:6f:92:22:6b:df: f5:22:51:5b:a4:05:fe:8e:8b:17:35:6a:60:d6:15: f7:38:15:05:c2:4a:c8:93:35:d9:47:6d:da:6f:40: 6f:06:17:90:2e:b9:fb:41:a9:70:72:2b:38:bb:f3: b7:a6:5b:eb:7c:c2:e7:d9:48:b1:57:cf:b0:71:7c: f2:7c:9a:c5:ee:15:c3:7e:08:9d:db:78:74:6f:66: d0:25:94:26:0a:85:8f:e6:af:49:ee:40:cb:37:fa: 3e:15:da:d9:ab:8e:cd:4f:1f:c4:75:0a:52:37:11: 62:18:22:b2:7a:95:a1:97:76:77:f9:2e:1d:e4:e6: 6c:c1:33:e4:b8:46:33:45:d8:2b:43:02:8d:cd:6a: f6:31:c9:19:20:f9:3a:34:c4:72:ec:cc:c0:c4:d8: f1:77:69:41:1a:ea:44:a2:ab:51:50:90:85:f1:af: 7f:07:f6:33:5c:f6:c4:bb:81:03:bc:6d:78:ea:45: 4a:c6:f6:91:eb:33:9e:12:03:ce:25:c3:23:11:a3: 3d:35:3b:d6:92:51:d7:8d:f6:82:a2:7c:97:46:9d: 43:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D6:E9:73:C2:00:1C:58:0C:42:CC:80:81:FA:89:50:52:6B:52:B0 X509v3 Authority Key Identifier: keyid:6D:88:C6:64:85:BB:60:34:41:74:57:46:F9:F8:86:A2:A6:A1:5A:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bYjGZIW7YDRBdFdG-fiGoqahWjY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8648bf-804e-4e42-a212-b5a4c22432ef/1/Mtbpc8IAHFgMQsyAgfqJUFJrUrA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8648bf-804e-4e42-a212-b5a4c22432ef/1/bYjGZIW7YDRBdFdG-fiGoqahWjY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.171.144.0/21 IPv6: 2a03:5100::/32 Signature Algorithm: sha256WithRSAEncryption b4:0c:2d:14:4c:7f:25:15:ef:22:e6:ca:e2:1c:d2:69:a4:6c: 5f:53:9f:00:0b:58:cd:55:41:7a:eb:33:c7:3a:7e:f6:26:25: a0:ee:1d:4f:3b:4d:0d:4e:fe:36:df:f4:9b:cf:50:4f:9b:0a: fb:9e:01:ac:12:36:a2:b5:fa:5d:13:cf:98:54:96:ed:61:46: 38:e7:e3:27:d6:d7:0f:9e:b8:5d:7d:4d:c7:05:53:e2:a2:ae: 8d:98:be:f8:a6:b7:7a:0f:31:f1:26:59:bd:e7:37:2c:d7:25: 9c:7c:26:bd:9a:de:66:d6:f6:5a:78:c9:28:05:f7:02:37:05: 86:91:4c:52:fa:78:5e:45:9e:ef:04:8c:99:af:fe:7b:83:ce: 65:ad:2d:4a:08:de:e8:79:70:f6:c5:1b:1c:57:e8:19:96:fe: c0:6f:f6:99:d7:03:e6:f0:4e:2f:ea:23:58:ad:16:0a:9f:48: 1d:12:2d:e1:1d:4b:74:99:fc:f4:c0:db:28:09:f9:c8:c7:89: ec:b2:8f:8d:51:92:cc:61:8f:b4:2f:d6:72:fc:05:a9:54:8b: 27:4a:31:1b:38:6d:53:bf:b4:91:90:0c:60:d6:1c:40:a7:af: bf:06:0b:9f:8f:c0:83:b6:b7:d1:51:8f:c8:34:ce:12:8a:89: d0:37:11:00 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6x/pJWJzNzQpEyrwhpRGJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkODhjNjY0ODViYjYwMzQ0MTc0NTc0NmY5Zjg4NmEyYTZh MTVhMzYwHhcNMjYwMTAxMTgxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMmQ2ZTk3M2MyMDAxYzU4MGM0MmNjODA4MWZhODk1MDUyNmI1MmIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5XxrcWKpRXfqQSOJEWM87jZ25fe/ Y+uLU/lSAYGo9ZiUFi6xYeI5b5Iia9/1IlFbpAX+josXNWpg1hX3OBUFwkrIkzXZ R23ab0BvBheQLrn7Qalwcis4u/O3plvrfMLn2UixV8+wcXzyfJrF7hXDfgid23h0 b2bQJZQmCoWP5q9J7kDLN/o+FdrZq47NTx/EdQpSNxFiGCKyepWhl3Z3+S4d5OZs wTPkuEYzRdgrQwKNzWr2MckZIPk6NMRy7MzAxNjxd2lBGupEoqtRUJCF8a9/B/Yz XPbEu4EDvG146kVKxvaR6zOeEgPOJcMjEaM9NTvWklHXjfaConyXRp1DywIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDLW6XPCABxYDELMgIH6iVBSa1KwMB8GA1UdIwQY MBaAFG2IxmSFu2A0QXRXRvn4hqKmoVo2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYllqR1pJVzdZRFJCZEZkRy1maUdvcWFoV2pZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC84NjQ4YmYtODA0ZS00ZTQyLWEyMTIt YjVhNGMyMjQzMmVmLzEvTXRicGM4SUFIRmdNUXN5QWdmcUpVRkpyVXJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC84NjQ4YmYtODA0ZS00ZTQyLWEyMTItYjVhNGMyMjQzMmVm LzEvYllqR1pJVzdZRFJCZEZkRy1maUdvcWFoV2pZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDH6uQMA0E AgACMAcDBQAqA1EAMA0GCSqGSIb3DQEBCwUAA4IBAQC0DC0UTH8lFe8i5sriHNJp pGxfU58AC1jNVUF66zPHOn72JiWg7h1PO00NTv423/Sbz1BPmwr7ngGsEjaitfpd E8+YVJbtYUY45+Mn1tcPnrhdfU3HBVPioq6NmL74prd6DzHxJlm95zcs1yWcfCa9 mt5m1vZaeMkoBfcCNwWGkUxS+nheRZ7vBIyZr/57g85lrS1KCN7oeXD2xRscV+gZ lv7Ab/aZ1wPm8E4v6iNYrRYKn0gdEi3hHUt0mfz0wNsoCfnIx4nsso+NUZLMYY+0 L9Zy/AWpVIsnSjEbOG1Tv7SRkAxg1hxAp6+/Bgufj8CDtrfRUY/INM4SionQNxEA -----END CERTIFICATE-----Generated at Mon Feb 9 23:56:24 2026 by rpki-client