This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/0faf70-4c38-406f-8ccd-b67f40b4ec14/1/mlmeKHgzR0zXxFAiFzl73dHZ8ZU.roa File: mlmeKHgzR0zXxFAiFzl73dHZ8ZU.roa (raw, json) Hash identifier: nKwteWJRWAw3fLsVxJDKYd9pER+Zuv6YOSfrbq4WvTI= Subject key identifier: 9A:59:9E:28:78:33:47:4C:D7:C4:50:22:17:39:7B:DD:D1:D9:F1:95 Certificate issuer: /CN=282eadb8d8c29f2e70355043e26786229734f0b2 Certificate serial: 019B7EA74FEB4D001F1AA85E452CA6F760FD Authority key identifier: 28:2E:AD:B8:D8:C2:9F:2E:70:35:50:43:E2:67:86:22:97:34:F0:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KC6tuNjCny5wNVBD4meGIpc08LI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/0faf70-4c38-406f-8ccd-b67f40b4ec14/1/mlmeKHgzR0zXxFAiFzl73dHZ8ZU.roa Signing time: Fri 02 Jan 2026 12:20:52 +0000 ROA not before: Fri 02 Jan 2026 12:20:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48344 IP address blocks: 91.207.16.0/23 maxlen: 24 91.207.16.0/24 maxlen: 24 91.207.17.0/24 maxlen: 24 91.228.170.0/23 maxlen: 24 91.228.171.0/24 maxlen: 24 195.210.26.0/23 maxlen: 23 195.210.26.0/24 maxlen: 24 195.210.27.0/24 maxlen: 24 2001:67c:140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/0faf70-4c38-406f-8ccd-b67f40b4ec14/1/KC6tuNjCny5wNVBD4meGIpc08LI.crl rsync://rpki.ripe.net/repository/DEFAULT/84/0faf70-4c38-406f-8ccd-b67f40b4ec14/1/KC6tuNjCny5wNVBD4meGIpc08LI.mft rsync://rpki.ripe.net/repository/DEFAULT/KC6tuNjCny5wNVBD4meGIpc08LI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 15:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:4f:eb:4d:00:1f:1a:a8:5e:45:2c:a6:f7:60:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=282eadb8d8c29f2e70355043e26786229734f0b2 Validity Not Before: Jan 2 12:20:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9a599e287833474cd7c4502217397bddd1d9f195 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5c:5b:42:f5:4b:f0:03:29:a9:d4:91:e5:63: eb:26:7b:c2:f6:81:f9:0c:16:c3:89:dd:f2:60:b8: 12:d7:a1:41:24:67:3a:b7:b7:94:73:be:44:cc:bd: 31:2e:b2:95:8e:76:3f:d8:9c:7c:b3:6b:7d:29:30: 7e:97:ab:54:1b:3d:2d:92:1c:d7:88:6f:9c:2e:b6: e0:eb:c4:eb:e3:1c:c2:21:8a:22:df:a4:bb:e9:6e: 3b:7f:bd:f2:ff:7c:f6:f5:05:ad:34:54:2c:ff:cd: ff:d1:53:de:61:d9:54:ca:88:2a:6a:2d:1c:74:d3: b4:35:2a:72:d6:ef:b3:ab:db:4a:35:ad:ad:26:ee: 81:c9:9a:0e:99:bf:a7:ac:69:4a:0b:bb:10:35:29: 4b:5b:16:b3:99:aa:b7:01:00:43:17:7b:6f:6d:e4: d3:83:e9:72:f8:17:98:70:18:d1:64:33:47:34:45: 79:c8:de:8e:33:95:65:b5:35:aa:3d:15:b4:2a:0c: cf:a8:a1:d6:1b:0d:66:fd:78:08:d1:c7:99:5a:fe: da:e0:9d:88:68:0c:6a:b1:26:6f:ad:2a:ef:a8:87: 82:37:6c:e3:37:22:97:4e:d2:62:2f:97:6a:82:e2: e1:c7:45:9a:24:c2:2d:01:6f:19:66:cb:17:43:43: 3d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:59:9E:28:78:33:47:4C:D7:C4:50:22:17:39:7B:DD:D1:D9:F1:95 X509v3 Authority Key Identifier: keyid:28:2E:AD:B8:D8:C2:9F:2E:70:35:50:43:E2:67:86:22:97:34:F0:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KC6tuNjCny5wNVBD4meGIpc08LI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/0faf70-4c38-406f-8ccd-b67f40b4ec14/1/mlmeKHgzR0zXxFAiFzl73dHZ8ZU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/0faf70-4c38-406f-8ccd-b67f40b4ec14/1/KC6tuNjCny5wNVBD4meGIpc08LI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.207.16.0/23 91.228.170.0/23 195.210.26.0/23 IPv6: 2001:67c:140::/48 Signature Algorithm: sha256WithRSAEncryption 24:c7:53:2d:c0:dd:e2:b9:b5:0c:2d:90:d6:94:56:b1:1f:0c: c7:bb:bf:7e:8c:34:43:f3:5b:f5:24:9c:bf:8a:0c:47:28:80: f8:91:ae:85:e4:b2:20:39:be:f1:f5:e4:6a:c1:17:2d:1a:29: e3:01:91:33:d2:eb:0c:e9:3b:b9:00:4c:5f:fb:f5:9c:69:a7: 5a:86:0a:3a:0d:e7:0d:fc:19:8f:4a:17:59:6a:2c:93:18:b8: a4:7a:ec:0a:e9:61:65:ca:54:ad:e1:a5:73:b7:c2:ae:20:b9: 49:fb:89:4b:6f:2a:17:74:e7:f3:c6:41:a3:55:a4:c3:91:f9: 88:2b:92:1b:55:43:53:79:3f:40:13:be:76:5a:49:fa:b9:f3: 35:98:a0:87:19:ea:af:2f:64:53:de:53:5a:6b:ae:ea:49:7a: 02:b5:37:f2:86:d6:6b:f4:0f:f1:a3:eb:e1:99:c5:d1:ce:34: 6c:35:67:cc:10:0b:e8:bd:b6:da:15:97:ae:4b:bf:61:4f:95: 3a:81:a3:a8:9c:b6:15:03:74:c2:9f:d5:75:71:36:2c:cd:bd: 2c:c5:4e:cc:55:80:be:4b:61:ac:dc:a8:a5:22:62:8d:06:f5: e4:da:ef:68:38:9b:76:4c:46:2a:e8:e4:ff:62:59:c6:b9:a4: 2c:e4:8d:38 -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISAZt+p0/rTQAfGqheRSym92D9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4MmVhZGI4ZDhjMjlmMmU3MDM1NTA0M2UyNjc4NjIyOTcz NGYwYjIwHhcNMjYwMTAyMTIyMDUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YTU5OWUyODc4MzM0NzRjZDdjNDUwMjIxNzM5N2JkZGQxZDlmMTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVxbQvVL8AMpqdSR5WPrJnvC9oH5 DBbDid3yYLgS16FBJGc6t7eUc75EzL0xLrKVjnY/2Jx8s2t9KTB+l6tUGz0tkhzX iG+cLrbg68Tr4xzCIYoi36S76W47f73y/3z29QWtNFQs/83/0VPeYdlUyogqai0c dNO0NSpy1u+zq9tKNa2tJu6ByZoOmb+nrGlKC7sQNSlLWxazmaq3AQBDF3tvbeTT g+ly+BeYcBjRZDNHNEV5yN6OM5VltTWqPRW0KgzPqKHWGw1m/XgI0ceZWv7a4J2I aAxqsSZvrSrvqIeCN2zjNyKXTtJiL5dqguLhx0WaJMItAW8ZZssXQ0M9hwIDAQAB o4ICJjCCAiIwHQYDVR0OBBYEFJpZnih4M0dM18RQIhc5e93R2fGVMB8GA1UdIwQY MBaAFCgurbjYwp8ucDVQQ+JnhiKXNPCyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0M2dHVOakNueTV3TlZCRDRtZUdJcGMwOExJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC8wZmFmNzAtNGMzOC00MDZmLThjY2Qt YjY3ZjQwYjRlYzE0LzEvbWxtZUtIZ3pSMHpYeEZBaUZ6bDczZEhaOFpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC8wZmFmNzAtNGMzOC00MDZmLThjY2QtYjY3ZjQwYjRlYzE0 LzEvS0M2dHVOakNueTV3TlZCRDRtZUdJcGMwOExJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIAATASAwQBW88QAwQB W+SqAwQBw9IaMA8EAgACMAkDBwAgAQZ8AUAwDQYJKoZIhvcNAQELBQADggEBACTH Uy3A3eK5tQwtkNaUVrEfDMe7v36MNEPzW/UknL+KDEcogPiRroXksiA5vvH15GrB Fy0aKeMBkTPS6wzpO7kATF/79Zxpp1qGCjoN5w38GY9KF1lqLJMYuKR67ArpYWXK VK3hpXO3wq4guUn7iUtvKhd05/PGQaNVpMOR+YgrkhtVQ1N5P0ATvnZaSfq58zWY oIcZ6q8vZFPeU1prrupJegK1N/KG1mv0D/Gj6+GZxdHONGw1Z8wQC+i9ttoVl65L v2FPlTqBo6icthUDdMKf1XVxNizNvSzFTsxVgL5LYazcqKUiYo0G9eTa72g4m3ZM Riro5P9iWca5pCzkjTg= -----END CERTIFICATE-----Generated at Tue Feb 3 00:07:57 2026 by rpki-client