This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8dea72-6e11-471e-aae2-d8fc6147b504/1/MVjU4gy_hBbM35wNK4KUfvSGtL0.roa File: MVjU4gy_hBbM35wNK4KUfvSGtL0.roa (raw, json) Hash identifier: G8eoXQHfmyT8ey2XBjyQ/4arEt1c8Z8snoeJI0FyEH8= Subject key identifier: 31:58:D4:E2:0C:BF:84:16:CC:DF:9C:0D:2B:82:94:7E:F4:86:B4:BD Certificate issuer: /CN=cc1dc5fa0db6c267c0b9d96e4de7094b315662f8 Certificate serial: 019BA36660EBC446F9FE6085B0E9E85229FC Authority key identifier: CC:1D:C5:FA:0D:B6:C2:67:C0:B9:D9:6E:4D:E7:09:4B:31:56:62:F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zB3F-g22wmfAudluTecJSzFWYvg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8dea72-6e11-471e-aae2-d8fc6147b504/1/MVjU4gy_hBbM35wNK4KUfvSGtL0.roa Signing time: Fri 09 Jan 2026 15:35:54 +0000 ROA not before: Fri 09 Jan 2026 15:35:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57934 IP address blocks: 2a06:9c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/8dea72-6e11-471e-aae2-d8fc6147b504/1/zB3F-g22wmfAudluTecJSzFWYvg.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/8dea72-6e11-471e-aae2-d8fc6147b504/1/zB3F-g22wmfAudluTecJSzFWYvg.mft rsync://rpki.ripe.net/repository/DEFAULT/zB3F-g22wmfAudluTecJSzFWYvg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 03:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a3:66:60:eb:c4:46:f9:fe:60:85:b0:e9:e8:52:29:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cc1dc5fa0db6c267c0b9d96e4de7094b315662f8 Validity Not Before: Jan 9 15:35:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3158d4e20cbf8416ccdf9c0d2b82947ef486b4bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:15:b3:be:01:44:f6:4a:7d:5b:f6:53:65:3a: 45:5d:f0:40:0b:1a:9f:06:76:f4:63:94:ac:9f:1f: 33:af:f8:ca:9e:28:b6:98:8c:0e:33:dd:02:e1:9f: 52:c8:dc:fc:d9:e5:f1:37:4a:58:15:48:53:2b:27: 4c:83:7f:97:5c:04:a7:30:68:e9:0f:83:3a:4e:3d: 69:2c:2e:00:a9:2e:3c:9e:68:23:bb:39:57:c5:5f: 87:64:fb:3a:b4:06:d7:74:e7:a1:37:26:6a:4e:cb: 20:65:44:68:ab:64:35:a3:1a:5f:2a:79:68:6c:a9: 71:cb:95:35:00:11:33:54:31:64:24:b9:5d:8a:33: 30:b4:e0:f9:ab:4a:ee:27:ee:3b:4e:2f:f8:14:34: d7:f7:4c:b9:03:c8:a9:70:21:63:96:a3:ec:49:86: c1:2a:1e:fb:cf:2b:a3:b6:1f:1a:6b:e3:7e:6f:2d: f7:33:9a:56:73:e5:ab:15:1c:ef:c8:60:43:30:a8: 66:fa:74:1a:80:18:18:77:92:ad:f6:d4:2a:d3:30: 20:81:2b:2c:5f:ad:d5:6e:15:e1:1c:cc:6f:f7:ec: c0:20:2d:db:84:a7:bf:0f:49:19:f3:f6:d8:52:50: 77:bc:f8:82:d6:52:8f:4e:2f:51:0c:31:1f:21:71: 9d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:58:D4:E2:0C:BF:84:16:CC:DF:9C:0D:2B:82:94:7E:F4:86:B4:BD X509v3 Authority Key Identifier: keyid:CC:1D:C5:FA:0D:B6:C2:67:C0:B9:D9:6E:4D:E7:09:4B:31:56:62:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zB3F-g22wmfAudluTecJSzFWYvg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8dea72-6e11-471e-aae2-d8fc6147b504/1/MVjU4gy_hBbM35wNK4KUfvSGtL0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8dea72-6e11-471e-aae2-d8fc6147b504/1/zB3F-g22wmfAudluTecJSzFWYvg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9c0::/29 Signature Algorithm: sha256WithRSAEncryption 09:67:18:1f:39:33:b0:4e:0e:19:76:88:c3:3e:5c:c2:5e:98: b8:bd:e3:3a:42:82:55:3d:cb:23:c9:f8:59:b2:40:c2:79:df: 80:46:a5:b7:6c:c3:d9:cf:47:d0:52:14:70:db:84:dd:0f:ea: db:7e:17:9c:a8:b9:6e:c0:ba:7a:1f:8b:8d:9c:03:82:c5:f6: cc:41:3f:7d:48:f2:3c:95:e7:d5:67:3a:eb:43:f6:fc:a8:82: 5e:c4:14:fa:e4:16:0a:56:cb:b4:c4:26:ed:43:c8:47:e0:bc: 17:41:65:8f:78:2e:e9:0d:65:b2:0a:63:d0:98:53:25:dc:a9: f1:c2:96:14:4a:f9:8d:52:07:49:77:2f:5f:ec:f2:04:79:06: 1f:ea:96:ac:59:fe:9e:4b:9f:b6:3c:20:a2:19:2d:90:bf:22: 3b:40:ab:4a:e9:f2:ae:34:03:1b:de:71:15:db:df:00:f3:60: dc:ef:cb:dd:b0:17:33:40:c3:52:c6:35:a3:16:65:c0:22:08: 9c:35:ff:2f:cb:dd:e3:34:d8:f1:f8:e3:fe:1b:dd:e7:df:b3: de:09:33:ec:0b:32:01:71:0c:b8:5a:0d:85:ea:33:9e:9d:b6: 23:f5:01:6c:bb:b1:54:ff:42:05:14:55:80:d7:b0:7a:ff:76: 5b:ae:94:0d -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZujZmDrxEb5/mCFsOnoUin8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNjMWRjNWZhMGRiNmMyNjdjMGI5ZDk2ZTRkZTcwOTRiMzE1 NjYyZjgwHhcNMjYwMTA5MTUzNTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMTU4ZDRlMjBjYmY4NDE2Y2NkZjljMGQyYjgyOTQ3ZWY0ODZiNGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBWzvgFE9kp9W/ZTZTpFXfBACxqf Bnb0Y5Ssnx8zr/jKnii2mIwOM90C4Z9SyNz82eXxN0pYFUhTKydMg3+XXASnMGjp D4M6Tj1pLC4AqS48nmgjuzlXxV+HZPs6tAbXdOehNyZqTssgZURoq2Q1oxpfKnlo bKlxy5U1ABEzVDFkJLldijMwtOD5q0ruJ+47Ti/4FDTX90y5A8ipcCFjlqPsSYbB Kh77zyujth8aa+N+by33M5pWc+WrFRzvyGBDMKhm+nQagBgYd5Kt9tQq0zAggSss X63VbhXhHMxv9+zAIC3bhKe/D0kZ8/bYUlB3vPiC1lKPTi9RDDEfIXGd1wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFDFY1OIMv4QWzN+cDSuClH70hrS9MB8GA1UdIwQY MBaAFMwdxfoNtsJnwLnZbk3nCUsxVmL4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvekIzRi1nMjJ3bWZBdWRsdVRlY0pTekZXWXZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ZGVhNzItNmUxMS00NzFlLWFhZTIt ZDhmYzYxNDdiNTA0LzEvTVZqVTRneV9oQmJNMzV3Tks0S1VmdlNHdEwwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy84ZGVhNzItNmUxMS00NzFlLWFhZTItZDhmYzYxNDdiNTA0 LzEvekIzRi1nMjJ3bWZBdWRsdVRlY0pTekZXWXZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgYJwDAN BgkqhkiG9w0BAQsFAAOCAQEACWcYHzkzsE4OGXaIwz5cwl6YuL3jOkKCVT3LI8n4 WbJAwnnfgEalt2zD2c9H0FIUcNuE3Q/q234XnKi5bsC6eh+LjZwDgsX2zEE/fUjy PJXn1Wc660P2/KiCXsQU+uQWClbLtMQm7UPIR+C8F0Flj3gu6Q1lsgpj0JhTJdyp 8cKWFEr5jVIHSXcvX+zyBHkGH+qWrFn+nkuftjwgohktkL8iO0CrSunyrjQDG95x FdvfAPNg3O/L3bAXM0DDUsY1oxZlwCIInDX/L8vd4zTY8fjj/hvd59+z3gkz7Asy AXEMuFoNheoznp22I/UBbLuxVP9CBRRVgNewev92W66UDQ== -----END CERTIFICATE-----Generated at Sun Jan 11 12:21:29 2026 by rpki-client