This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d8ed41-71f6-4bb7-a3ee-a0bb140a596e/1/MNjnhXm-X8Hr0m1FHNhPNeqizN4.roa File: MNjnhXm-X8Hr0m1FHNhPNeqizN4.roa (raw, json) Hash identifier: raAdAgwgOSAOE32N6oyH/Cjh2N1jq2esG0G8eaE+sBg= Subject key identifier: 30:D8:E7:85:79:BE:5F:C1:EB:D2:6D:45:1C:D8:4F:35:EA:A2:CC:DE Certificate issuer: /CN=55d5dc9e220112a27c152bc32389038974ae4572 Certificate serial: 019B7A5A862BCEE6AD16F47B6E655FFD6543 Authority key identifier: 55:D5:DC:9E:22:01:12:A2:7C:15:2B:C3:23:89:03:89:74:AE:45:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VdXcniIBEqJ8FSvDI4kDiXSuRXI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d8ed41-71f6-4bb7-a3ee-a0bb140a596e/1/MNjnhXm-X8Hr0m1FHNhPNeqizN4.roa Signing time: Thu 01 Jan 2026 16:18:31 +0000 ROA not before: Thu 01 Jan 2026 16:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12586 IP address blocks: 94.100.130.0/24 maxlen: 32 2a01:6780:8::/48 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/d8ed41-71f6-4bb7-a3ee-a0bb140a596e/1/VdXcniIBEqJ8FSvDI4kDiXSuRXI.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/d8ed41-71f6-4bb7-a3ee-a0bb140a596e/1/VdXcniIBEqJ8FSvDI4kDiXSuRXI.mft rsync://rpki.ripe.net/repository/DEFAULT/VdXcniIBEqJ8FSvDI4kDiXSuRXI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:86:2b:ce:e6:ad:16:f4:7b:6e:65:5f:fd:65:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55d5dc9e220112a27c152bc32389038974ae4572 Validity Not Before: Jan 1 16:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=30d8e78579be5fc1ebd26d451cd84f35eaa2ccde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:fa:76:bb:74:c0:25:c8:0d:00:ae:c9:20:14: d0:cd:61:16:35:2d:b1:67:f9:55:c8:a0:5e:96:05: 6e:44:39:7f:d4:53:38:de:56:6d:21:ce:ad:a4:82: a0:fe:1f:cf:98:ca:56:2d:1a:b0:d4:57:88:c7:82: 3b:0e:65:31:0f:7b:7e:dd:30:01:84:39:3f:60:c8: 6a:f0:0b:e8:eb:43:e3:0f:2c:5c:b7:7b:d3:41:7d: 58:ca:8a:5c:35:b7:73:9a:b5:28:b6:a8:14:e9:99: 56:de:5c:55:42:08:d0:29:d9:ad:b2:7d:cd:24:63: 2f:e7:7e:c7:84:77:b5:ad:c6:66:b7:47:6b:48:3c: ff:c9:f8:d8:1b:1f:5f:ca:6a:b9:65:0d:41:85:6d: 9f:26:a3:08:03:73:bd:b6:ab:0b:2d:7b:35:e2:96: ac:8e:68:ae:1c:c2:5f:87:a0:fe:7b:e4:98:a1:51: 65:34:30:4e:76:b7:35:28:ad:da:d5:af:56:4c:c9: 47:14:c2:5b:84:9c:29:02:b8:fe:d8:ae:75:09:24: e6:f9:a6:9a:29:d8:57:b9:8a:27:63:0a:6e:2f:61: 10:51:e5:aa:b4:78:51:0b:af:1f:5a:4c:4c:c1:1c: 60:db:9d:ce:07:27:41:2f:b7:24:41:40:f5:d9:16: 13:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D8:E7:85:79:BE:5F:C1:EB:D2:6D:45:1C:D8:4F:35:EA:A2:CC:DE X509v3 Authority Key Identifier: keyid:55:D5:DC:9E:22:01:12:A2:7C:15:2B:C3:23:89:03:89:74:AE:45:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VdXcniIBEqJ8FSvDI4kDiXSuRXI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d8ed41-71f6-4bb7-a3ee-a0bb140a596e/1/MNjnhXm-X8Hr0m1FHNhPNeqizN4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d8ed41-71f6-4bb7-a3ee-a0bb140a596e/1/VdXcniIBEqJ8FSvDI4kDiXSuRXI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.100.130.0/24 IPv6: 2a01:6780:8::/48 Signature Algorithm: sha256WithRSAEncryption 91:0f:78:c0:4a:7d:29:1e:4d:cc:3e:df:cc:cf:b7:15:9d:a3: 3b:8d:a2:dc:d8:9f:0c:66:f5:dc:7d:bb:3c:f1:ed:12:93:c6: 16:ea:1f:e6:9b:a5:d2:d0:ee:d6:74:bb:11:f2:32:08:9b:ed: 1f:d9:9b:39:e0:c8:37:4a:d6:df:36:1f:24:bc:f7:76:81:60: 0b:fc:db:74:bb:1e:1e:47:e9:41:97:57:86:6f:83:d2:f8:cb: 68:c8:63:e1:69:1a:63:ed:78:6f:f6:11:be:d0:27:40:f1:9c: ec:00:15:d8:16:44:1b:49:53:a3:06:f0:e2:5c:09:fd:03:9e: 91:09:53:f2:fc:f5:7d:bd:c4:87:ec:bb:44:2f:43:df:0b:7e: 0b:88:f8:bd:79:2b:bb:e3:8b:d3:31:2d:54:39:1c:80:fb:85: 0c:40:ea:7b:8a:fd:7d:b0:99:68:b7:61:c5:13:6c:0d:bf:6b: 34:cf:35:b5:3e:1d:9c:0b:2c:12:5e:7d:80:a9:f5:da:f0:44: 22:a7:6c:17:fe:fb:35:c3:c6:7b:0a:15:d7:2c:db:7f:94:ee: 32:87:46:f3:b2:e2:17:53:6b:fc:f8:2b:4f:7a:85:d2:80:50: af:db:ef:71:0e:b8:e1:8c:24:e2:7a:e4:75:cb:54:51:31:a6: bb:f5:93:72 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt6WoYrzuatFvR7bmVf/WVDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1ZDVkYzllMjIwMTEyYTI3YzE1MmJjMzIzODkwMzg5NzRh ZTQ1NzIwHhcNMjYwMTAxMTYxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMGQ4ZTc4NTc5YmU1ZmMxZWJkMjZkNDUxY2Q4NGYzNWVhYTJjY2RlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4/p2u3TAJcgNAK7JIBTQzWEWNS2x Z/lVyKBelgVuRDl/1FM43lZtIc6tpIKg/h/PmMpWLRqw1FeIx4I7DmUxD3t+3TAB hDk/YMhq8Avo60PjDyxct3vTQX1YyopcNbdzmrUotqgU6ZlW3lxVQgjQKdmtsn3N JGMv537HhHe1rcZmt0drSDz/yfjYGx9fymq5ZQ1BhW2fJqMIA3O9tqsLLXs14pas jmiuHMJfh6D+e+SYoVFlNDBOdrc1KK3a1a9WTMlHFMJbhJwpArj+2K51CSTm+aaa KdhXuYonYwpuL2EQUeWqtHhRC68fWkxMwRxg253OBydBL7ckQUD12RYTZwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFDDY54V5vl/B69JtRRzYTzXqoszeMB8GA1UdIwQY MBaAFFXV3J4iARKifBUrwyOJA4l0rkVyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVmRYY25pSUJFcUo4RlN2REk0a0RpWFN1UlhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9kOGVkNDEtNzFmNi00YmI3LWEzZWUt YTBiYjE0MGE1OTZlLzEvTU5qbmhYbS1YOEhyMG0xRkhOaFBOZXFpek40LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS9kOGVkNDEtNzFmNi00YmI3LWEzZWUtYTBiYjE0MGE1OTZl LzEvVmRYY25pSUJFcUo4RlN2REk0a0RpWFN1UlhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAXmSCMA8E AgACMAkDBwAqAWeAAAgwDQYJKoZIhvcNAQELBQADggEBAJEPeMBKfSkeTcw+38zP txWdozuNotzYnwxm9dx9uzzx7RKTxhbqH+abpdLQ7tZ0uxHyMgib7R/ZmzngyDdK 1t82HyS893aBYAv823S7Hh5H6UGXV4Zvg9L4y2jIY+FpGmPteG/2Eb7QJ0DxnOwA FdgWRBtJU6MG8OJcCf0DnpEJU/L89X29xIfsu0QvQ98LfguI+L15K7vji9MxLVQ5 HID7hQxA6nuK/X2wmWi3YcUTbA2/azTPNbU+HZwLLBJefYCp9drwRCKnbBf++zXD xnsKFdcs23+U7jKHRvOy4hdTa/z4K096hdKAUK/b73EOuOGMJOJ65HXLVFExprv1 k3I= -----END CERTIFICATE-----Generated at Mon Jan 19 23:20:57 2026 by rpki-client