This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/cf0072-10d7-4759-80f6-4296937c9d94/1/mhzOrqeYNT7SjpUPXv-s1PAWjw8.roa File: mhzOrqeYNT7SjpUPXv-s1PAWjw8.roa (raw, json) Hash identifier: Cbf7NCR/yFej0NrknKmJmQagLdwvhDzTJuSAw2w2l7c= Subject key identifier: 9A:1C:CE:AE:A7:98:35:3E:D2:8E:95:0F:5E:FF:AC:D4:F0:16:8F:0F Certificate issuer: /CN=a5cce7916c7afa649532a7b829a459d6ee5e36bc Certificate serial: 019B79ECC548FC495A24665D4CEB19C9094B Authority key identifier: A5:CC:E7:91:6C:7A:FA:64:95:32:A7:B8:29:A4:59:D6:EE:5E:36:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcznkWx6-mSVMqe4KaRZ1u5eNrw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/cf0072-10d7-4759-80f6-4296937c9d94/1/mhzOrqeYNT7SjpUPXv-s1PAWjw8.roa Signing time: Thu 01 Jan 2026 14:18:38 +0000 ROA not before: Thu 01 Jan 2026 14:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208810 IP address blocks: 91.216.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/cf0072-10d7-4759-80f6-4296937c9d94/1/pcznkWx6-mSVMqe4KaRZ1u5eNrw.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/cf0072-10d7-4759-80f6-4296937c9d94/1/pcznkWx6-mSVMqe4KaRZ1u5eNrw.mft rsync://rpki.ripe.net/repository/DEFAULT/pcznkWx6-mSVMqe4KaRZ1u5eNrw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:c5:48:fc:49:5a:24:66:5d:4c:eb:19:c9:09:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5cce7916c7afa649532a7b829a459d6ee5e36bc Validity Not Before: Jan 1 14:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9a1cceaea798353ed28e950f5effacd4f0168f0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:12:5d:07:ac:a8:b2:c2:ba:ab:4c:0d:95:c2: ce:2b:1f:e7:3c:ed:5d:5c:ee:c4:5b:9f:72:2a:55: 5d:a5:b9:12:3d:b3:4b:1b:cf:b9:95:a6:41:c3:18: 3c:fa:3f:e7:5b:97:ab:a4:f8:78:9d:48:94:06:8d: f7:6b:52:79:7b:f2:b2:eb:d3:bd:d0:43:5c:2e:41: cb:8e:b2:6d:f6:dd:72:9e:df:66:3b:01:82:63:96: f1:a2:8d:88:c3:78:1a:f7:cb:ff:44:7e:72:2c:04: ce:ec:c0:38:f6:47:b8:68:01:a1:cf:af:1a:cb:7b: 55:46:c1:fc:68:1b:8b:9a:31:b6:2b:c7:b7:e5:c4: 50:58:c2:5f:d5:17:3a:22:57:a4:3a:d2:14:03:45: 4f:17:16:43:27:2e:27:68:6c:8f:87:bd:ba:24:3e: fa:91:9a:8f:6b:a7:f5:5c:d8:7e:e0:92:7f:28:4c: 09:28:f3:23:8a:66:58:29:e5:f2:22:48:80:61:82: 69:b3:f5:dc:8f:b8:9f:89:62:59:f5:51:6d:1a:5c: 5e:f5:cc:5a:2c:2e:b8:17:25:0d:77:69:8e:53:6b: e3:10:73:d1:65:95:9c:79:bd:e1:91:8a:a9:a2:ca: 8b:23:54:f7:7d:6c:4e:25:63:36:f5:e1:a5:03:d0: e9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:1C:CE:AE:A7:98:35:3E:D2:8E:95:0F:5E:FF:AC:D4:F0:16:8F:0F X509v3 Authority Key Identifier: keyid:A5:CC:E7:91:6C:7A:FA:64:95:32:A7:B8:29:A4:59:D6:EE:5E:36:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcznkWx6-mSVMqe4KaRZ1u5eNrw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/cf0072-10d7-4759-80f6-4296937c9d94/1/mhzOrqeYNT7SjpUPXv-s1PAWjw8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/cf0072-10d7-4759-80f6-4296937c9d94/1/pcznkWx6-mSVMqe4KaRZ1u5eNrw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.216.250.0/24 Signature Algorithm: sha256WithRSAEncryption 95:2c:23:8d:d6:f6:04:80:d2:44:a7:8b:74:15:2a:f7:f3:d4: 30:fc:ec:d6:d1:5c:be:19:22:1a:80:55:a0:4b:c2:b3:7a:59: 8c:39:d0:67:80:c3:c3:ac:24:20:fa:78:75:d4:69:9d:21:fc: 56:60:7e:e6:c1:d5:66:1f:ef:35:3f:be:60:06:d8:02:58:bd: bd:3c:17:db:84:54:fb:0f:dc:4c:f7:d5:d8:37:2f:ee:fd:f1: d3:ce:5e:a1:1b:fb:3a:d5:a6:ee:27:59:cb:ea:20:e6:c2:25: 31:2d:41:e0:a7:ad:e3:b7:2a:be:1f:f8:bb:ab:3a:26:6c:a0: fb:0d:df:8a:a4:61:fc:25:f5:ce:c1:03:de:73:c7:20:47:b0: d0:47:49:57:a5:e0:27:43:32:7a:bd:69:28:a2:95:6c:98:5d: b4:56:51:f1:ef:8b:4d:1f:13:86:34:2e:b6:1b:27:6d:68:bb: aa:ed:6d:e3:82:41:6a:fb:c5:1c:b5:d5:04:45:4b:3f:73:03: 8b:df:f6:f5:f1:09:7d:52:1f:88:88:6c:a3:9d:40:d2:c8:e6: 6b:a0:7d:e9:e7:16:6a:26:f7:af:80:a0:66:8a:69:58:f2:36: d5:ad:3e:7e:f2:0b:86:6d:91:7c:c3:66:15:18:9b:29:35:fc: c5:88:c4:de -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57MVI/ElaJGZdTOsZyQlLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1Y2NlNzkxNmM3YWZhNjQ5NTMyYTdiODI5YTQ1OWQ2ZWU1 ZTM2YmMwHhcNMjYwMTAxMTQxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YTFjY2VhZWE3OTgzNTNlZDI4ZTk1MGY1ZWZmYWNkNGYwMTY4ZjBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6RJdB6yossK6q0wNlcLOKx/nPO1d XO7EW59yKlVdpbkSPbNLG8+5laZBwxg8+j/nW5erpPh4nUiUBo33a1J5e/Ky69O9 0ENcLkHLjrJt9t1ynt9mOwGCY5bxoo2Iw3ga98v/RH5yLATO7MA49ke4aAGhz68a y3tVRsH8aBuLmjG2K8e35cRQWMJf1Rc6IlekOtIUA0VPFxZDJy4naGyPh726JD76 kZqPa6f1XNh+4JJ/KEwJKPMjimZYKeXyIkiAYYJps/Xcj7ifiWJZ9VFtGlxe9cxa LC64FyUNd2mOU2vjEHPRZZWceb3hkYqposqLI1T3fWxOJWM29eGlA9DpbQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJoczq6nmDU+0o6VD17/rNTwFo8PMB8GA1UdIwQY MBaAFKXM55FsevpklTKnuCmkWdbuXja8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGN6bmtXeDYtbVNWTXFlNEthUloxdTVlTnJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jZjAwNzItMTBkNy00NzU5LTgwZjYt NDI5NjkzN2M5ZDk0LzEvbWh6T3JxZVlOVDdTanBVUFh2LXMxUEFXanc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS9jZjAwNzItMTBkNy00NzU5LTgwZjYtNDI5NjkzN2M5ZDk0 LzEvcGN6bmtXeDYtbVNWTXFlNEthUloxdTVlTnJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9j6MA0G CSqGSIb3DQEBCwUAA4IBAQCVLCON1vYEgNJEp4t0FSr389Qw/OzW0Vy+GSIagFWg S8KzelmMOdBngMPDrCQg+nh11GmdIfxWYH7mwdVmH+81P75gBtgCWL29PBfbhFT7 D9xM99XYNy/u/fHTzl6hG/s61abuJ1nL6iDmwiUxLUHgp63jtyq+H/i7qzombKD7 Dd+KpGH8JfXOwQPec8cgR7DQR0lXpeAnQzJ6vWkoopVsmF20VlHx74tNHxOGNC62 GydtaLuq7W3jgkFq+8UctdUERUs/cwOL3/b18Ql9Uh+IiGyjnUDSyOZroH3p5xZq JvevgKBmimlY8jbVrT5+8guGbZF8w2YVGJspNfzFiMTe -----END CERTIFICATE-----Generated at Mon Feb 9 22:24:49 2026 by rpki-client