This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9467c8-0c90-46e1-91c0-e107d9f16c2d/1/mXT_95G0hHnwfzwy9GHCGff03us.roa File: mXT_95G0hHnwfzwy9GHCGff03us.roa (raw, json) Hash identifier: MURLfvQpANHzg+d3efhUAoTh/8FNUBv5Zb/aAOYp3OU= Subject key identifier: 99:74:FF:F7:91:B4:84:79:F0:7F:3C:32:F4:61:C2:19:F7:F4:DE:EB Certificate issuer: /CN=afe4a0d5fda600c5d5b7f618f686d7e93051b4d7 Certificate serial: 019B7834B92D7B91E63061FDC73014F02B85 Authority key identifier: AF:E4:A0:D5:FD:A6:00:C5:D5:B7:F6:18:F6:86:D7:E9:30:51:B4:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-Sg1f2mAMXVt_YY9obX6TBRtNc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9467c8-0c90-46e1-91c0-e107d9f16c2d/1/mXT_95G0hHnwfzwy9GHCGff03us.roa Signing time: Thu 01 Jan 2026 06:17:59 +0000 ROA not before: Thu 01 Jan 2026 06:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60003 IP address blocks: 185.60.72.0/23 maxlen: 24 2a02:71a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/9467c8-0c90-46e1-91c0-e107d9f16c2d/1/r-Sg1f2mAMXVt_YY9obX6TBRtNc.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/9467c8-0c90-46e1-91c0-e107d9f16c2d/1/r-Sg1f2mAMXVt_YY9obX6TBRtNc.mft rsync://rpki.ripe.net/repository/DEFAULT/r-Sg1f2mAMXVt_YY9obX6TBRtNc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:b9:2d:7b:91:e6:30:61:fd:c7:30:14:f0:2b:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=afe4a0d5fda600c5d5b7f618f686d7e93051b4d7 Validity Not Before: Jan 1 06:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9974fff791b48479f07f3c32f461c219f7f4deeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:41:a2:7d:d1:b5:ac:cd:24:a1:b8:6a:cf:f0: c1:f6:04:ee:8b:ff:34:27:09:34:b3:02:24:e2:ff: b8:0d:b0:b4:eb:19:52:ee:02:1c:f8:5b:6e:f8:0c: 38:63:a7:7b:13:90:11:2f:a5:89:00:20:91:95:26: ed:d8:bf:b8:81:d2:1c:e1:de:75:f7:8d:96:63:bd: 31:47:1c:3a:f7:13:8c:74:c3:c2:8b:6a:e8:70:ca: 21:a5:97:20:1e:0e:21:c6:18:56:54:f1:9e:cd:e8: 08:06:0c:22:89:7f:bf:f9:a8:5e:4a:1c:ef:8d:ab: 48:f8:e9:57:73:f3:90:f3:8b:6f:b7:d1:23:0e:e6: 12:30:ef:62:63:ba:a3:16:82:11:2a:46:71:34:88: 2c:66:01:f4:d4:d2:24:91:45:0a:64:98:d7:d3:f8: c4:5e:bb:e5:c4:25:4b:66:34:79:67:8d:df:51:5a: 16:b5:e8:88:a6:93:67:3f:2d:f9:85:cb:16:0e:40: 2b:c1:16:0f:2a:a6:26:bd:e7:05:ee:df:87:75:59: 35:b8:4b:c6:06:08:e2:29:cb:0a:8e:6c:07:a4:3b: 59:7a:f5:10:7b:8b:78:d3:13:cd:ae:97:8d:da:55: e6:96:62:2c:47:32:92:57:51:c5:06:69:75:34:46: f8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:74:FF:F7:91:B4:84:79:F0:7F:3C:32:F4:61:C2:19:F7:F4:DE:EB X509v3 Authority Key Identifier: keyid:AF:E4:A0:D5:FD:A6:00:C5:D5:B7:F6:18:F6:86:D7:E9:30:51:B4:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-Sg1f2mAMXVt_YY9obX6TBRtNc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9467c8-0c90-46e1-91c0-e107d9f16c2d/1/mXT_95G0hHnwfzwy9GHCGff03us.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9467c8-0c90-46e1-91c0-e107d9f16c2d/1/r-Sg1f2mAMXVt_YY9obX6TBRtNc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.60.72.0/23 IPv6: 2a02:71a0::/32 Signature Algorithm: sha256WithRSAEncryption d7:d7:2e:1f:39:cb:b5:0e:0a:32:3a:a7:44:12:c9:ba:92:ab: 07:30:b5:07:24:65:df:4a:e9:20:77:ba:45:ca:4d:9c:b3:b6: 92:eb:79:e4:28:5d:a8:47:0f:de:27:dd:24:21:33:0e:d4:c7: cb:b4:90:66:2e:a6:a0:f8:32:92:66:75:38:0d:b7:c7:e6:6a: ed:d0:f4:4a:bb:8e:da:e0:17:87:78:54:34:10:77:fa:c4:91: 6f:7b:43:8a:ea:d3:e6:c9:8d:f2:06:05:d3:8c:ed:25:d7:36: dc:88:11:cb:2e:49:9d:fe:d7:98:1e:14:ea:06:ed:9b:41:32: ec:8c:9d:c4:f0:76:cc:3a:b6:1f:8d:0d:de:e3:14:9f:38:47: cd:47:de:ca:0d:42:17:0b:96:a3:b0:a3:da:6a:1a:f5:3a:c0: 7c:87:5a:d8:bf:74:51:7d:37:1a:64:74:80:1d:01:ad:34:76: 57:7c:a3:1f:77:d7:f8:1c:bd:0f:d7:42:52:e7:98:e1:2d:18: 40:33:6a:55:c3:ab:55:69:64:86:7b:23:eb:17:aa:2b:e7:da: c7:a9:8d:3f:f5:a5:23:65:28:76:8d:dc:83:d2:39:d2:d3:f6: 85:b1:e6:33:ed:d6:ac:30:4c:a3:a7:63:7f:0b:5b:cc:21:92: 14:71:cf:a9 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NLkte5HmMGH9xzAU8CuFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmZTRhMGQ1ZmRhNjAwYzVkNWI3ZjYxOGY2ODZkN2U5MzA1 MWI0ZDcwHhcNMjYwMTAxMDYxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTc0ZmZmNzkxYjQ4NDc5ZjA3ZjNjMzJmNDYxYzIxOWY3ZjRkZWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0GifdG1rM0kobhqz/DB9gTui/80 Jwk0swIk4v+4DbC06xlS7gIc+Ftu+Aw4Y6d7E5ARL6WJACCRlSbt2L+4gdIc4d51 942WY70xRxw69xOMdMPCi2rocMohpZcgHg4hxhhWVPGezegIBgwiiX+/+aheShzv jatI+OlXc/OQ84tvt9EjDuYSMO9iY7qjFoIRKkZxNIgsZgH01NIkkUUKZJjX0/jE XrvlxCVLZjR5Z43fUVoWteiIppNnPy35hcsWDkArwRYPKqYmvecF7t+HdVk1uEvG BgjiKcsKjmwHpDtZevUQe4t40xPNrpeN2lXmlmIsRzKSV1HFBml1NEb4AwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJl0//eRtIR58H88MvRhwhn39N7rMB8GA1UdIwQY MBaAFK/koNX9pgDF1bf2GPaG1+kwUbTXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvci1TZzFmMm1BTVhWdF9ZWTlvYlg2VEJSdE5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85NDY3YzgtMGM5MC00NmUxLTkxYzAt ZTEwN2Q5ZjE2YzJkLzEvbVhUXzk1RzBoSG53Znp3eTlHSENHZmYwM3VzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi85NDY3YzgtMGM5MC00NmUxLTkxYzAtZTEwN2Q5ZjE2YzJk LzEvci1TZzFmMm1BTVhWdF9ZWTlvYlg2VEJSdE5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBuTxIMA0E AgACMAcDBQAqAnGgMA0GCSqGSIb3DQEBCwUAA4IBAQDX1y4fOcu1DgoyOqdEEsm6 kqsHMLUHJGXfSukgd7pFyk2cs7aS63nkKF2oRw/eJ90kITMO1MfLtJBmLqag+DKS ZnU4DbfH5mrt0PRKu47a4BeHeFQ0EHf6xJFve0OK6tPmyY3yBgXTjO0l1zbciBHL Lkmd/teYHhTqBu2bQTLsjJ3E8HbMOrYfjQ3e4xSfOEfNR97KDUIXC5ajsKPaahr1 OsB8h1rYv3RRfTcaZHSAHQGtNHZXfKMfd9f4HL0P10JS55jhLRhAM2pVw6tVaWSG eyPrF6or59rHqY0/9aUjZSh2jdyD0jnS0/aFseYz7dasMEyjp2N/C1vMIZIUcc+p -----END CERTIFICATE-----Generated at Mon Feb 2 07:54:53 2026 by rpki-client