This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/81024f-5171-47c4-b5ca-6b63331eff02/1/MZedXybYHwozV6I5FVF9kaQXqGw.roa File: MZedXybYHwozV6I5FVF9kaQXqGw.roa (raw, json) Hash identifier: 9GqJqyPbldCXpYPmuX8YAVKvtX3ZVzz/4Tffa0wjAiw= Subject key identifier: 31:97:9D:5F:26:D8:1F:0A:33:57:A2:39:15:51:7D:91:A4:17:A8:6C Certificate issuer: /CN=d0ca3c0b196fde0ba74c1487bdcb9c5fa053664b Certificate serial: 019B7C80601A3BEB3BDC6BCE783B945F7292 Authority key identifier: D0:CA:3C:0B:19:6F:DE:0B:A7:4C:14:87:BD:CB:9C:5F:A0:53:66:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Mo8Cxlv3gunTBSHvcucX6BTZks.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/81024f-5171-47c4-b5ca-6b63331eff02/1/MZedXybYHwozV6I5FVF9kaQXqGw.roa Signing time: Fri 02 Jan 2026 02:19:06 +0000 ROA not before: Fri 02 Jan 2026 02:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8637 IP address blocks: 5.180.228.0/22 maxlen: 24 5.180.228.0/24 maxlen: 24 5.180.229.0/24 maxlen: 24 2a0b:c800:1::/48 maxlen: 48 2a0b:c800:2::/48 maxlen: 48 2a0b:c800:3::/48 maxlen: 48 2a0b:c800:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/81024f-5171-47c4-b5ca-6b63331eff02/1/0Mo8Cxlv3gunTBSHvcucX6BTZks.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/81024f-5171-47c4-b5ca-6b63331eff02/1/0Mo8Cxlv3gunTBSHvcucX6BTZks.mft rsync://rpki.ripe.net/repository/DEFAULT/0Mo8Cxlv3gunTBSHvcucX6BTZks.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:60:1a:3b:eb:3b:dc:6b:ce:78:3b:94:5f:72:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0ca3c0b196fde0ba74c1487bdcb9c5fa053664b Validity Not Before: Jan 2 02:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31979d5f26d81f0a3357a23915517d91a417a86c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f0:c3:43:99:6e:db:ab:8e:f3:0e:98:9e:ea: 96:72:cb:6c:88:69:54:3d:8d:63:71:59:7d:0c:a5: ff:a8:fa:60:09:3a:24:1d:8e:4b:42:ed:bf:c7:f2: 2e:1a:5a:38:b5:23:82:2c:d2:00:1a:00:c3:63:16: 46:1a:f2:f2:44:fa:f9:f4:8b:9a:b8:14:62:55:78: 26:cf:b6:83:ca:63:11:de:5a:1a:94:26:31:d2:1e: db:7f:12:45:0f:4d:11:e4:98:50:d9:31:ba:a2:c9: ac:a8:20:d9:3d:e2:29:e0:dd:bf:84:7f:ba:79:4c: 64:af:4c:8c:c0:9a:78:21:e6:fb:5b:63:3c:7e:13: 25:83:4b:27:af:0e:e3:c2:50:f3:ab:19:e3:38:0b: 0a:cc:6c:56:38:8c:b4:9d:2d:c0:e0:1d:d1:86:f3: 08:10:2b:59:1b:97:2b:04:b1:2f:f9:23:c5:0b:ad: 83:28:20:bd:d7:98:8f:50:12:c1:26:c0:0b:3f:45: 4f:93:61:94:34:d2:77:82:99:f9:4e:82:4b:17:8a: 12:2f:72:3f:34:de:63:70:08:74:74:be:72:5c:a7: 00:89:d2:a8:11:56:1e:5f:d1:43:1c:24:91:02:e3: 45:53:91:35:ab:94:b1:f0:88:be:a9:b3:ba:1d:61: f6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:97:9D:5F:26:D8:1F:0A:33:57:A2:39:15:51:7D:91:A4:17:A8:6C X509v3 Authority Key Identifier: keyid:D0:CA:3C:0B:19:6F:DE:0B:A7:4C:14:87:BD:CB:9C:5F:A0:53:66:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Mo8Cxlv3gunTBSHvcucX6BTZks.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/81024f-5171-47c4-b5ca-6b63331eff02/1/MZedXybYHwozV6I5FVF9kaQXqGw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/81024f-5171-47c4-b5ca-6b63331eff02/1/0Mo8Cxlv3gunTBSHvcucX6BTZks.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.228.0/22 IPv6: 2a0b:c800:1::-2a0b:c800:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 7d:88:08:27:ac:d2:71:1d:c3:88:4a:1f:08:e5:87:66:cb:f3: ae:dc:33:06:4e:4a:69:aa:c0:a1:a7:e4:44:c1:4d:fb:46:4a: 6d:b7:e2:ef:ed:31:4d:63:0f:aa:f7:5a:eb:e6:45:cb:07:d4: dd:e2:dc:76:eb:6e:eb:88:34:41:30:93:30:0a:52:7f:63:7b: 62:ef:7f:12:13:1f:1d:46:a8:b5:27:b4:c8:90:91:75:1b:d6: 03:af:f3:a2:43:4d:67:62:33:5c:f7:f3:35:3f:da:53:55:4a: 32:57:70:e9:9a:a0:29:08:ca:f7:42:bf:7c:14:8a:51:23:e9: c8:b0:78:2e:1b:98:79:b9:0f:86:47:26:dc:49:33:1c:f8:92: 94:77:4d:5e:aa:cc:26:b6:dc:81:09:c4:ff:69:5b:c3:ad:2c: 5d:39:d4:d1:f2:93:5d:61:8d:3f:61:73:68:5f:35:61:55:50: bf:b6:66:b8:07:14:5d:08:16:58:08:3d:4b:f9:bb:d9:95:97: 11:bc:de:e6:dc:f9:4c:8c:3a:90:99:c1:f8:82:31:f6:6b:30: 9a:ae:23:09:0d:0e:0c:ae:0f:84:79:4f:5e:7b:63:33:42:f2: d2:b2:d3:3a:b7:77:7d:f4:39:9b:3e:50:19:2c:6e:ea:f9:58: 23:2c:49:a0 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt8gGAaO+s73GvOeDuUX3KSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwY2EzYzBiMTk2ZmRlMGJhNzRjMTQ4N2JkY2I5YzVmYTA1 MzY2NGIwHhcNMjYwMTAyMDIxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMTk3OWQ1ZjI2ZDgxZjBhMzM1N2EyMzkxNTUxN2Q5MWE0MTdhODZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvDDQ5lu26uO8w6YnuqWcstsiGlU PY1jcVl9DKX/qPpgCTokHY5LQu2/x/IuGlo4tSOCLNIAGgDDYxZGGvLyRPr59Iua uBRiVXgmz7aDymMR3loalCYx0h7bfxJFD00R5JhQ2TG6osmsqCDZPeIp4N2/hH+6 eUxkr0yMwJp4Ieb7W2M8fhMlg0snrw7jwlDzqxnjOAsKzGxWOIy0nS3A4B3RhvMI ECtZG5crBLEv+SPFC62DKCC915iPUBLBJsALP0VPk2GUNNJ3gpn5ToJLF4oSL3I/ NN5jcAh0dL5yXKcAidKoEVYeX9FDHCSRAuNFU5E1q5Sx8Ii+qbO6HWH2IwIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFDGXnV8m2B8KM1eiORVRfZGkF6hsMB8GA1UdIwQY MBaAFNDKPAsZb94Lp0wUh73LnF+gU2ZLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvME1vOEN4bHYzZ3VuVEJTSHZjdWNYNkJUWmtzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi84MTAyNGYtNTE3MS00N2M0LWI1Y2Et NmI2MzMzMWVmZjAyLzEvTVplZFh5YllId296VjZJNUZWRjlrYVFYcUd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi84MTAyNGYtNTE3MS00N2M0LWI1Y2EtNmI2MzMzMWVmZjAy LzEvME1vOEN4bHYzZ3VuVEJTSHZjdWNYNkJUWmtzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAMBAIAATAGAwQCBbTkMBoE AgACMBQwEgMHACoLyAAAAQMHACoLyAAABDANBgkqhkiG9w0BAQsFAAOCAQEAfYgI J6zScR3DiEofCOWHZsvzrtwzBk5KaarAoafkRMFN+0ZKbbfi7+0xTWMPqvda6+ZF ywfU3eLcdutu64g0QTCTMApSf2N7Yu9/EhMfHUaotSe0yJCRdRvWA6/zokNNZ2Iz XPfzNT/aU1VKMldw6ZqgKQjK90K/fBSKUSPpyLB4LhuYebkPhkcm3EkzHPiSlHdN XqrMJrbcgQnE/2lbw60sXTnU0fKTXWGNP2FzaF81YVVQv7ZmuAcUXQgWWAg9S/m7 2ZWXEbze5tz5TIw6kJnB+IIx9mswmq4jCQ0ODK4PhHlPXntjM0Ly0rLTOrd3ffQ5 mz5QGSxu6vlYIyxJoA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:07:22 2026 by rpki-client