This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/mxRDtABpFcklfSsg3aqlEhdyVAo.roa File: mxRDtABpFcklfSsg3aqlEhdyVAo.roa (raw, json) Hash identifier: +8omy9Xwwaces0V4gWLaq7H+IkKX2MYQDc4o2Yp+Bmc= Subject key identifier: 9B:14:43:B4:00:69:15:C9:25:7D:2B:20:DD:AA:A5:12:17:72:54:0A Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4 Certificate serial: 019B7CEE330EF6139222FC83F08E600B6E4E Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/mxRDtABpFcklfSsg3aqlEhdyVAo.roa Signing time: Fri 02 Jan 2026 04:19:03 +0000 ROA not before: Fri 02 Jan 2026 04:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5650 IP address blocks: 46.20.216.0/21 maxlen: 24 86.104.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:33:0e:f6:13:92:22:fc:83:f0:8e:60:0b:6e:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4 Validity Not Before: Jan 2 04:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9b1443b4006915c9257d2b20ddaaa5121772540a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f5:81:59:ae:01:94:1a:3a:12:64:cd:c2:c9: a6:3d:6f:2a:8c:20:34:34:b7:c7:73:d9:c9:b7:06: ae:11:8c:6b:42:e1:f2:fa:96:d5:cc:6b:dc:de:1d: ab:27:67:3e:47:9e:ea:48:c5:ea:fc:d1:97:6f:4a: d9:5e:53:3e:ac:42:2c:93:90:c1:1c:20:24:80:12: d5:2f:66:49:7c:62:31:68:a6:13:56:24:e8:9b:9f: fb:19:98:21:c7:06:7d:ed:e4:9c:1e:b9:e0:0d:fa: 0b:96:fd:11:ee:48:96:16:21:bb:8d:97:d7:60:23: 18:3f:97:9d:33:e2:dd:c7:e1:6f:71:58:8e:10:a3: 9c:51:57:8f:a1:c3:4d:82:83:4c:72:d8:5a:e0:bc: f2:31:cd:67:34:f5:0e:da:ce:c1:b2:43:26:8b:ac: d1:f0:12:f2:3e:ca:1d:ed:fc:ed:5e:f1:ed:47:ac: 85:40:3a:8e:82:8d:4f:cf:6d:d0:ff:96:63:b8:f1: f2:b7:0f:10:4a:8e:40:39:5d:a8:37:9f:fb:12:1c: b0:d2:43:7e:48:0f:14:9a:a1:6c:4f:af:5a:0d:93: 0f:47:9e:69:0c:6c:56:18:b1:cd:93:da:b1:92:22: 61:3a:91:87:cf:87:d4:95:9f:f3:23:f0:75:31:61: f2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:14:43:B4:00:69:15:C9:25:7D:2B:20:DD:AA:A5:12:17:72:54:0A X509v3 Authority Key Identifier: keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/mxRDtABpFcklfSsg3aqlEhdyVAo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.20.216.0/21 86.104.164.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:d4:9d:9e:15:62:ca:ca:99:70:11:9d:ce:ba:cc:36:2c:a7: 12:c9:10:ae:24:c8:0b:20:b5:c6:ad:2b:75:1b:0d:6b:89:36: 08:2b:37:4b:47:0f:bd:61:f4:53:54:4a:c4:22:a4:c1:60:35: 22:88:97:b6:e9:23:6d:3d:64:bf:f4:72:2a:8d:e8:28:1e:00: 85:30:65:99:98:bc:7a:45:01:4e:4d:ed:e5:ed:e4:de:72:3f: ab:e1:f3:cd:b6:2e:a1:6f:03:20:cd:5f:e0:b9:9e:99:19:bd: 5e:fc:e2:e3:b0:20:d9:1e:cd:a5:59:2f:ab:c6:99:44:01:14: 32:1e:32:63:1a:1a:9d:09:f4:ab:5e:a7:2f:21:4f:2a:8b:71: ad:fb:75:c2:fb:b8:a1:33:c7:9c:d8:e6:11:e1:2c:77:1c:eb: 02:94:66:78:72:41:04:ca:1e:4d:b0:d5:0c:69:9b:ea:95:ca: cf:b1:61:fc:15:f5:98:0d:68:5c:14:77:a2:be:40:d9:6a:6c: dc:dc:01:20:c1:6c:0d:f2:d5:1b:e0:58:2b:9d:89:65:4c:dd: fc:cf:aa:67:4b:ad:00:48:00:13:aa:65:7f:e0:38:83:3e:84: 4a:64:32:cd:7a:72:73:68:c4:96:a5:fb:f6:5b:55:2d:0b:5b: 41:83:4d:87 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87jMO9hOSIvyD8I5gC25OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2 N2IxZTQwHhcNMjYwMTAyMDQxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YjE0NDNiNDAwNjkxNWM5MjU3ZDJiMjBkZGFhYTUxMjE3NzI1NDBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfWBWa4BlBo6EmTNwsmmPW8qjCA0 NLfHc9nJtwauEYxrQuHy+pbVzGvc3h2rJ2c+R57qSMXq/NGXb0rZXlM+rEIsk5DB HCAkgBLVL2ZJfGIxaKYTViTom5/7GZghxwZ97eScHrngDfoLlv0R7kiWFiG7jZfX YCMYP5edM+Ldx+FvcViOEKOcUVePocNNgoNMctha4LzyMc1nNPUO2s7BskMmi6zR 8BLyPsod7fztXvHtR6yFQDqOgo1Pz23Q/5ZjuPHytw8QSo5AOV2oN5/7Ehyw0kN+ SA8UmqFsT69aDZMPR55pDGxWGLHNk9qxkiJhOpGHz4fUlZ/zI/B1MWHymQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJsUQ7QAaRXJJX0rIN2qpRIXclQKMB8GA1UdIwQY MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut ODk3MTRhN2U4ZDU4LzEvbXhSRHRBQnBGY2tsZlNzZzNhcWxFaGR5VkFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4 LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDLhTYAwQC VmikMA0GCSqGSIb3DQEBCwUAA4IBAQAr1J2eFWLKyplwEZ3Ousw2LKcSyRCuJMgL ILXGrSt1Gw1riTYIKzdLRw+9YfRTVErEIqTBYDUiiJe26SNtPWS/9HIqjegoHgCF MGWZmLx6RQFOTe3l7eTecj+r4fPNti6hbwMgzV/guZ6ZGb1e/OLjsCDZHs2lWS+r xplEARQyHjJjGhqdCfSrXqcvIU8qi3Gt+3XC+7ihM8ec2OYR4Sx3HOsClGZ4ckEE yh5NsNUMaZvqlcrPsWH8FfWYDWhcFHeivkDZamzc3AEgwWwN8tUb4FgrnYllTN38 z6pnS60ASAATqmV/4DiDPoRKZDLNenJzaMSWpfv2W1UtC1tBg02H -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:12 2026 by rpki-client