This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/334c56-2e69-4da2-b01d-030802641c67/1/mFHqDso79bnSGrudnucQz5R41Oo.roa File: mFHqDso79bnSGrudnucQz5R41Oo.roa (raw, json) Hash identifier: xaP9Kn1Lx08lI3zRt9f0iOZYpubw0vPg4T0MZuTFXEQ= Subject key identifier: 98:51:EA:0E:CA:3B:F5:B9:D2:1A:BB:9D:9E:E7:10:CF:94:78:D4:EA Certificate issuer: /CN=e43f91b02152882bf9605d76bea421aa0bd4e628 Certificate serial: 019B7EA59B25EA56A27B9A14262BA19C3CAA Authority key identifier: E4:3F:91:B0:21:52:88:2B:F9:60:5D:76:BE:A4:21:AA:0B:D4:E6:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5D-RsCFSiCv5YF12vqQhqgvU5ig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/334c56-2e69-4da2-b01d-030802641c67/1/mFHqDso79bnSGrudnucQz5R41Oo.roa Signing time: Fri 02 Jan 2026 12:19:00 +0000 ROA not before: Fri 02 Jan 2026 12:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212766 IP address blocks: 193.163.116.0/24 maxlen: 24 2a11:e340::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/334c56-2e69-4da2-b01d-030802641c67/1/5D-RsCFSiCv5YF12vqQhqgvU5ig.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/334c56-2e69-4da2-b01d-030802641c67/1/5D-RsCFSiCv5YF12vqQhqgvU5ig.mft rsync://rpki.ripe.net/repository/DEFAULT/5D-RsCFSiCv5YF12vqQhqgvU5ig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:9b:25:ea:56:a2:7b:9a:14:26:2b:a1:9c:3c:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e43f91b02152882bf9605d76bea421aa0bd4e628 Validity Not Before: Jan 2 12:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9851ea0eca3bf5b9d21abb9d9ee710cf9478d4ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:81:20:b5:fb:44:4f:c1:29:21:91:ec:18:39: 63:a9:c4:dd:b6:9f:2f:13:76:d9:f3:38:07:eb:ae: ac:3a:11:f2:4c:e8:78:aa:3c:7d:ed:d5:3e:aa:24: ea:97:0f:4d:a8:67:9e:f5:8a:b2:a7:c2:5c:18:d8: ea:ee:d1:8a:3b:95:8c:12:17:6f:0d:bf:c1:22:e0: 11:4b:89:e5:0c:11:4d:aa:60:ec:e2:a2:48:14:c3: 9e:89:d5:dd:20:9c:5a:4a:1f:2b:da:4a:ae:06:ed: c6:4b:6c:9e:f9:81:8f:54:56:ea:81:4e:f6:ec:e2: 75:b6:ec:ce:b5:a2:dd:d7:f5:6c:50:e9:67:cb:29: a5:87:44:46:5a:8e:b2:2d:8d:f1:18:76:58:b5:71: a9:ac:61:d0:3a:28:54:50:53:14:93:c1:72:59:be: 40:cb:a4:e4:8b:21:76:b7:10:5d:53:b6:69:07:e1: 1f:45:fb:43:d9:7d:c6:b9:e5:d0:7d:d4:42:74:ac: 86:5b:3a:38:78:c7:91:c0:e1:a5:de:0a:ed:79:c4: cd:0a:f5:d4:7f:f1:48:9b:4e:9d:7f:e2:83:19:a3: 91:c0:3c:c0:ae:ee:58:81:49:de:ae:29:8e:d0:65: b1:45:c4:a9:f0:3b:9c:d6:43:4d:f3:a7:45:ce:32: 97:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:51:EA:0E:CA:3B:F5:B9:D2:1A:BB:9D:9E:E7:10:CF:94:78:D4:EA X509v3 Authority Key Identifier: keyid:E4:3F:91:B0:21:52:88:2B:F9:60:5D:76:BE:A4:21:AA:0B:D4:E6:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5D-RsCFSiCv5YF12vqQhqgvU5ig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/334c56-2e69-4da2-b01d-030802641c67/1/mFHqDso79bnSGrudnucQz5R41Oo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/334c56-2e69-4da2-b01d-030802641c67/1/5D-RsCFSiCv5YF12vqQhqgvU5ig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.163.116.0/24 IPv6: 2a11:e340::/29 Signature Algorithm: sha256WithRSAEncryption 73:51:bd:af:99:9d:58:57:42:a3:0d:18:97:72:67:2b:b3:80: 55:f9:9e:bf:23:2b:ed:92:9f:6e:aa:0a:f8:1b:4e:bf:a6:f1: 69:ac:86:0a:fe:e8:94:76:34:af:7f:77:81:01:7d:ce:98:da: c2:e2:2f:81:92:28:50:9f:27:41:45:0f:e9:b6:b4:ee:b6:51: c8:c6:4a:f7:de:d2:40:9f:2d:c8:96:3a:90:08:2b:a2:2c:2e: af:0a:a4:0c:61:26:a0:e9:8e:fd:b0:1c:61:50:df:8c:dc:bd: 9b:fe:9a:18:90:13:ff:f4:01:27:3b:7d:97:ed:0b:bf:fe:10: 65:37:3b:ab:64:de:8b:2e:5c:7c:2d:19:34:ab:65:69:18:ce: 96:b3:4c:d2:d3:19:e9:4f:6a:45:20:a4:e5:f6:9b:ad:73:69: ee:9f:33:58:5c:96:2e:99:ac:4e:0a:9e:b3:75:49:a8:0b:7a: 79:07:bd:39:e9:56:c1:8f:e2:eb:78:51:e7:ef:2b:a5:5a:50: 1e:bc:c8:3c:4f:aa:16:d5:b8:68:7f:11:ee:2e:e7:5c:e5:0e: e8:a4:d0:b8:21:65:d4:ec:cb:eb:ed:4d:44:64:32:43:f3:0b: b4:82:15:9e:8e:d4:86:fb:95:e8:16:17:32:3f:b0:9c:d4:43: 54:da:34:f0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pZsl6laie5oUJiuhnDyqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0M2Y5MWIwMjE1Mjg4MmJmOTYwNWQ3NmJlYTQyMWFhMGJk NGU2MjgwHhcNMjYwMTAyMTIxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODUxZWEwZWNhM2JmNWI5ZDIxYWJiOWQ5ZWU3MTBjZjk0NzhkNGVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1oEgtftET8EpIZHsGDljqcTdtp8v E3bZ8zgH666sOhHyTOh4qjx97dU+qiTqlw9NqGee9Yqyp8JcGNjq7tGKO5WMEhdv Db/BIuARS4nlDBFNqmDs4qJIFMOeidXdIJxaSh8r2kquBu3GS2ye+YGPVFbqgU72 7OJ1tuzOtaLd1/VsUOlnyymlh0RGWo6yLY3xGHZYtXGprGHQOihUUFMUk8FyWb5A y6TkiyF2txBdU7ZpB+EfRftD2X3GueXQfdRCdKyGWzo4eMeRwOGl3grtecTNCvXU f/FIm06df+KDGaORwDzAru5YgUnerimO0GWxRcSp8Duc1kNN86dFzjKX2QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJhR6g7KO/W50hq7nZ7nEM+UeNTqMB8GA1UdIwQY MBaAFOQ/kbAhUogr+WBddr6kIaoL1OYoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUQtUnNDRlNpQ3Y1WUYxMnZxUWhxZ3ZVNWlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8zMzRjNTYtMmU2OS00ZGEyLWIwMWQt MDMwODAyNjQxYzY3LzEvbUZIcURzbzc5Ym5TR3J1ZG51Y1F6NVI0MU9vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy8zMzRjNTYtMmU2OS00ZGEyLWIwMWQtMDMwODAyNjQxYzY3 LzEvNUQtUnNDRlNpQ3Y1WUYxMnZxUWhxZ3ZVNWlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwaN0MA0E AgACMAcDBQMqEeNAMA0GCSqGSIb3DQEBCwUAA4IBAQBzUb2vmZ1YV0KjDRiXcmcr s4BV+Z6/Iyvtkp9uqgr4G06/pvFprIYK/uiUdjSvf3eBAX3OmNrC4i+BkihQnydB RQ/ptrTutlHIxkr33tJAny3IljqQCCuiLC6vCqQMYSag6Y79sBxhUN+M3L2b/poY kBP/9AEnO32X7Qu//hBlNzurZN6LLlx8LRk0q2VpGM6Ws0zS0xnpT2pFIKTl9put c2nunzNYXJYumaxOCp6zdUmoC3p5B7056VbBj+LreFHn7yulWlAevMg8T6oW1bho fxHuLudc5Q7opNC4IWXU7Mvr7U1EZDJD8wu0ghWejtSG+5XoFhcyP7Cc1ENU2jTw -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:58 2026 by rpki-client