This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/MHBCTXCtqJyPGeu6-h_sGimgFks.roa File: MHBCTXCtqJyPGeu6-h_sGimgFks.roa (raw, json) Hash identifier: FhZ1Wv6wEXqAh+S8AyjnLewiNX+Nuws2N0nRXoFUCTw= Subject key identifier: 30:70:42:4D:70:AD:A8:9C:8F:19:EB:BA:FA:1F:EC:1A:29:A0:16:4B Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb Certificate serial: 019B7758EAB6473730A911D0EBC19120B1D4 Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/MHBCTXCtqJyPGeu6-h_sGimgFks.roa Signing time: Thu 01 Jan 2026 02:17:54 +0000 ROA not before: Thu 01 Jan 2026 02:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64289 IP address blocks: 94.247.44.0/24 maxlen: 24 178.251.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.mft rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 14:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:ea:b6:47:37:30:a9:11:d0:eb:c1:91:20:b1:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb Validity Not Before: Jan 1 02:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3070424d70ada89c8f19ebbafa1fec1a29a0164b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:20:a9:80:dd:66:29:b5:88:e3:90:f8:32:91: ca:d3:37:62:ed:98:b7:38:54:10:cf:b6:8f:fc:11: eb:c4:e4:59:e7:2e:e7:b0:83:be:1f:3e:33:50:2d: f2:e5:b2:27:67:ff:61:e9:72:35:e1:5b:e9:4e:a7: 3d:3e:6e:73:46:64:2b:77:2d:57:24:56:3c:45:34: f1:0a:6a:fa:23:11:77:bd:94:26:53:66:7f:33:8e: 7c:cb:d4:6e:60:f4:d7:10:c8:c0:da:6d:94:30:ba: 3f:8b:88:91:b8:aa:7b:14:1e:91:a3:7e:d6:99:29: 26:f6:c2:89:96:57:6b:43:5b:0a:0f:e7:a1:9a:52: b3:04:25:88:cd:5d:95:4f:a9:d1:57:34:55:52:90: a9:64:55:6d:6c:c0:92:5e:f0:16:e8:fb:23:f3:d2: 1e:86:85:18:af:7b:88:a2:0a:07:78:d2:81:5c:d4: ad:07:9f:7f:b3:8d:59:18:45:28:1b:13:e6:59:d7: a2:65:56:00:f2:fd:e1:bc:11:f9:be:ac:cd:e9:b7: e5:c6:26:7b:29:63:64:6b:5d:8b:f4:d1:49:0a:48: 72:a8:64:21:c5:de:9e:f6:76:96:c3:8b:dc:39:61: e7:b2:34:8a:ad:a2:24:57:d5:fb:05:74:68:a3:70: 29:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:70:42:4D:70:AD:A8:9C:8F:19:EB:BA:FA:1F:EC:1A:29:A0:16:4B X509v3 Authority Key Identifier: keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/MHBCTXCtqJyPGeu6-h_sGimgFks.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.247.44.0/24 178.251.231.0/24 Signature Algorithm: sha256WithRSAEncryption 61:5d:a1:9d:23:ac:07:c4:62:88:a4:9b:79:25:49:5a:f8:74: ca:ae:07:c2:24:d8:38:52:97:52:74:4e:0a:e6:16:a4:57:bd: a5:a2:1a:4d:95:f9:43:f5:40:b3:35:2e:d0:c4:3c:dc:48:f1: 66:7b:ba:a4:2c:39:9a:79:2f:a1:9a:61:04:72:80:39:a3:b2: 52:1b:e5:1e:8a:a6:39:61:0a:40:55:35:42:3a:75:c7:26:69: 0d:de:f5:82:92:53:f9:64:34:c2:fe:43:35:5f:bd:db:30:a4: eb:2b:0a:f1:93:6e:b8:9f:e4:f4:ed:04:ea:e3:e5:b7:5a:a5: 56:ac:5b:0c:bb:20:19:df:f3:0d:95:9d:bb:d6:a3:ba:a5:25: a1:51:8b:a5:92:1b:50:73:bc:17:b3:f2:99:59:4d:8b:da:49: 40:c2:21:ca:ba:c1:51:1f:db:ec:52:8d:cf:a7:66:6a:5b:ad: c7:47:0e:55:3b:26:c1:9f:c1:88:87:c6:00:10:42:74:dd:29: 86:f4:9d:a9:91:6e:c6:56:40:e7:7b:ce:b1:77:c7:de:b3:65: 4c:a8:b5:76:d1:98:02:27:55:76:93:ac:dd:08:49:46:33:b3: a3:ae:c6:e5:7e:8e:fa:50:6a:18:84:dc:7a:87:7d:d3:b2:80: 82:02:69:2e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WOq2RzcwqRHQ68GRILHUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0MjUzYzRmMjMzY2U5ODQ3Njk5YWU2OGVjYmY1ZDc1MTRi MGZhZGIwHhcNMjYwMTAxMDIxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMDcwNDI0ZDcwYWRhODljOGYxOWViYmFmYTFmZWMxYTI5YTAxNjRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6iCpgN1mKbWI45D4MpHK0zdi7Zi3 OFQQz7aP/BHrxORZ5y7nsIO+Hz4zUC3y5bInZ/9h6XI14VvpTqc9Pm5zRmQrdy1X JFY8RTTxCmr6IxF3vZQmU2Z/M458y9RuYPTXEMjA2m2UMLo/i4iRuKp7FB6Ro37W mSkm9sKJlldrQ1sKD+ehmlKzBCWIzV2VT6nRVzRVUpCpZFVtbMCSXvAW6Psj89Ie hoUYr3uIogoHeNKBXNStB59/s41ZGEUoGxPmWdeiZVYA8v3hvBH5vqzN6bflxiZ7 KWNka12L9NFJCkhyqGQhxd6e9naWw4vcOWHnsjSKraIkV9X7BXRoo3ApqwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDBwQk1wraicjxnruvof7BopoBZLMB8GA1UdIwQY MBaAFLQlPE8jPOmEdpmuaOy/XXUUsPrbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdENVOFR5TTg2WVIybWE1bzdMOWRkUlN3LXRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80MWQ2ZTEtNWNhZC00MGRiLTk3NzMt NThiMzhmNWFjODBiLzEvTUhCQ1RYQ3RxSnlQR2V1Ni1oX3NHaW1nRmtzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC80MWQ2ZTEtNWNhZC00MGRiLTk3NzMtNThiMzhmNWFjODBi LzEvdENVOFR5TTg2WVIybWE1bzdMOWRkUlN3LXRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXvcsAwQA svvnMA0GCSqGSIb3DQEBCwUAA4IBAQBhXaGdI6wHxGKIpJt5JUla+HTKrgfCJNg4 UpdSdE4K5hakV72lohpNlflD9UCzNS7QxDzcSPFme7qkLDmaeS+hmmEEcoA5o7JS G+UeiqY5YQpAVTVCOnXHJmkN3vWCklP5ZDTC/kM1X73bMKTrKwrxk264n+T07QTq 4+W3WqVWrFsMuyAZ3/MNlZ271qO6pSWhUYulkhtQc7wXs/KZWU2L2klAwiHKusFR H9vsUo3Pp2ZqW63HRw5VOybBn8GIh8YAEEJ03SmG9J2pkW7GVkDne86xd8fes2VM qLV20ZgCJ1V2k6zdCElGM7Ojrsblfo76UGoYhNx6h33TsoCCAmku -----END CERTIFICATE-----Generated at Wed Jan 21 00:03:43 2026 by rpki-client