This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/093fcb-fe77-449b-a1af-21bc48ef1660/1/MihSKG7X7G5hbWHLKrg3NwyaRV8.roa File: MihSKG7X7G5hbWHLKrg3NwyaRV8.roa (raw, json) Hash identifier: pifaWr0Q6EtkAgB5G0YP5mWdeXXsBTXipgMqv9n85pY= Subject key identifier: 32:28:52:28:6E:D7:EC:6E:61:6D:61:CB:2A:B8:37:37:0C:9A:45:5F Certificate issuer: /CN=4978a8641ce785be34685030527723e5fdce562a Certificate serial: 019B7DC98B194990FA0BCBDD8E3C869BB009 Authority key identifier: 49:78:A8:64:1C:E7:85:BE:34:68:50:30:52:77:23:E5:FD:CE:56:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SXioZBznhb40aFAwUncj5f3OVio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/093fcb-fe77-449b-a1af-21bc48ef1660/1/MihSKG7X7G5hbWHLKrg3NwyaRV8.roa Signing time: Fri 02 Jan 2026 08:18:38 +0000 ROA not before: Fri 02 Jan 2026 08:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215912 IP address blocks: 2001:67c:d60::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/093fcb-fe77-449b-a1af-21bc48ef1660/1/SXioZBznhb40aFAwUncj5f3OVio.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/093fcb-fe77-449b-a1af-21bc48ef1660/1/SXioZBznhb40aFAwUncj5f3OVio.mft rsync://rpki.ripe.net/repository/DEFAULT/SXioZBznhb40aFAwUncj5f3OVio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:8b:19:49:90:fa:0b:cb:dd:8e:3c:86:9b:b0:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4978a8641ce785be34685030527723e5fdce562a Validity Not Before: Jan 2 08:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=322852286ed7ec6e616d61cb2ab837370c9a455f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fe:d6:b1:61:41:41:00:cf:c6:b0:49:97:0e: ac:ef:31:d4:e8:d0:20:89:ad:b8:e2:9a:23:ea:34: 43:3c:c7:5a:ec:ca:54:61:9a:3d:b9:2d:20:13:af: 33:2f:3a:f7:64:ea:10:f7:d3:20:89:82:e8:d7:6e: 83:41:da:1c:b9:0e:12:41:b7:5c:7f:79:95:56:8e: c4:a5:ab:03:21:0d:7c:a0:1c:39:79:33:6a:5c:18: 6e:97:e1:e1:0b:88:f6:a8:d4:f8:f2:72:44:a7:5c: 4e:54:4d:07:e5:76:56:76:c7:62:9f:cf:11:75:8f: a4:0d:3d:d4:7a:ba:40:5b:29:0c:e9:a2:97:e2:f7: be:82:94:45:fd:8a:8f:ea:a1:1e:34:9a:ed:d5:a6: 0f:47:2c:e8:de:ff:2f:4b:93:ed:3d:9c:9a:cb:f5: bc:6c:f1:92:0a:1b:36:6b:ac:b4:9c:b1:da:1f:9f: d4:6f:11:5b:fa:77:c5:25:22:2c:2a:54:45:4a:93: fa:18:f1:75:f9:50:61:f7:31:a2:c7:e6:54:e4:c1: f6:23:3c:3f:70:85:99:3b:09:1e:54:01:bf:78:67: 50:dc:7b:4e:c2:7d:8d:a9:8a:80:4f:61:2b:4a:21: 4d:da:ec:80:96:a4:79:28:0a:69:d0:ab:c9:99:8c: a5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:28:52:28:6E:D7:EC:6E:61:6D:61:CB:2A:B8:37:37:0C:9A:45:5F X509v3 Authority Key Identifier: keyid:49:78:A8:64:1C:E7:85:BE:34:68:50:30:52:77:23:E5:FD:CE:56:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SXioZBznhb40aFAwUncj5f3OVio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/093fcb-fe77-449b-a1af-21bc48ef1660/1/MihSKG7X7G5hbWHLKrg3NwyaRV8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/093fcb-fe77-449b-a1af-21bc48ef1660/1/SXioZBznhb40aFAwUncj5f3OVio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:d60::/48 Signature Algorithm: sha256WithRSAEncryption b9:3c:aa:cb:f8:87:1d:e9:c5:a6:85:39:90:c2:c6:74:9c:d3: b5:7e:2a:2c:cf:52:12:fb:9a:77:88:ab:73:36:7e:69:50:b0: 76:83:67:ca:dc:13:cb:a1:f3:7c:a7:47:26:1e:41:59:05:36: b7:13:f6:40:c2:35:74:5d:03:4d:08:e3:96:ae:c4:56:68:b2: 4b:fe:58:76:9a:06:05:c3:e7:23:1b:db:21:75:ca:6c:a8:65: ca:50:5a:58:41:fe:7e:7e:89:08:43:0e:16:67:2b:21:13:3c: 42:91:2a:ff:66:50:8d:95:28:5e:e9:2a:05:46:46:de:37:22: 6f:33:36:db:9f:74:a1:a6:d1:ea:6f:d8:31:78:25:5f:29:6c: d0:cf:5e:22:b6:34:4f:83:e7:20:91:39:53:b9:3b:ae:a6:54: b2:c0:50:89:40:70:f7:b7:68:04:03:75:92:4f:cf:30:a9:ae: ae:f6:c8:d4:a3:f6:74:3b:de:e4:15:af:a8:65:f6:6c:a8:81: 1b:3b:fd:fa:57:0d:c5:8f:03:63:1c:44:7d:1a:b8:a7:d6:f1: 7d:42:62:72:e9:d2:e6:0c:5a:b8:12:8e:fa:b2:66:fd:c9:0a: 8f:e1:5b:55:00:16:3c:aa:8e:6b:e2:61:e4:bf:00:2e:42:6d: 35:c4:ac:58 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9yYsZSZD6C8vdjjyGm7AJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5NzhhODY0MWNlNzg1YmUzNDY4NTAzMDUyNzcyM2U1ZmRj ZTU2MmEwHhcNMjYwMTAyMDgxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMjI4NTIyODZlZDdlYzZlNjE2ZDYxY2IyYWI4MzczNzBjOWE0NTVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsv7WsWFBQQDPxrBJlw6s7zHU6NAg ia244poj6jRDPMda7MpUYZo9uS0gE68zLzr3ZOoQ99MgiYLo126DQdocuQ4SQbdc f3mVVo7EpasDIQ18oBw5eTNqXBhul+HhC4j2qNT48nJEp1xOVE0H5XZWdsdin88R dY+kDT3UerpAWykM6aKX4ve+gpRF/YqP6qEeNJrt1aYPRyzo3v8vS5PtPZyay/W8 bPGSChs2a6y0nLHaH5/UbxFb+nfFJSIsKlRFSpP6GPF1+VBh9zGix+ZU5MH2Izw/ cIWZOwkeVAG/eGdQ3HtOwn2NqYqAT2ErSiFN2uyAlqR5KApp0KvJmYyltQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDIoUihu1+xuYW1hyyq4NzcMmkVfMB8GA1UdIwQY MBaAFEl4qGQc54W+NGhQMFJ3I+X9zlYqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1hpb1pCem5oYjQwYUZBd1VuY2o1ZjNPVmlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8wOTNmY2ItZmU3Ny00NDliLWExYWYt MjFiYzQ4ZWYxNjYwLzEvTWloU0tHN1g3RzVoYldITEtyZzNOd3lhUlY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy8wOTNmY2ItZmU3Ny00NDliLWExYWYtMjFiYzQ4ZWYxNjYw LzEvU1hpb1pCem5oYjQwYUZBd1VuY2o1ZjNPVmlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA1g MA0GCSqGSIb3DQEBCwUAA4IBAQC5PKrL+Icd6cWmhTmQwsZ0nNO1fiosz1IS+5p3 iKtzNn5pULB2g2fK3BPLofN8p0cmHkFZBTa3E/ZAwjV0XQNNCOOWrsRWaLJL/lh2 mgYFw+cjG9shdcpsqGXKUFpYQf5+fokIQw4WZyshEzxCkSr/ZlCNlShe6SoFRkbe NyJvMzbbn3ShptHqb9gxeCVfKWzQz14itjRPg+cgkTlTuTuuplSywFCJQHD3t2gE A3WST88wqa6u9sjUo/Z0O97kFa+oZfZsqIEbO/36Vw3FjwNjHER9Grin1vF9QmJy 6dLmDFq4Eo76smb9yQqP4VtVABY8qo5r4mHkvwAuQm01xKxY -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:14 2026 by rpki-client