This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/MvgVDAqPSE3okj5m3PcFfzXBk1w.roa File: MvgVDAqPSE3okj5m3PcFfzXBk1w.roa (raw, json) Hash identifier: WTJgxLOGGaH3LR8ATwMwf+dORKDlRpVth28vAu1Woxg= Subject key identifier: 32:F8:15:0C:0A:8F:48:4D:E8:92:3E:66:DC:F7:05:7F:35:C1:93:5C Certificate issuer: /CN=93ece780dfda43ab4a841727eb20d71fc76528bc Certificate serial: 019B7A5AA04061FA57D364FB1FF502684421 Authority key identifier: 93:EC:E7:80:DF:DA:43:AB:4A:84:17:27:EB:20:D7:1F:C7:65:28:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-zngN_aQ6tKhBcn6yDXH8dlKLw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/MvgVDAqPSE3okj5m3PcFfzXBk1w.roa Signing time: Thu 01 Jan 2026 16:18:38 +0000 ROA not before: Thu 01 Jan 2026 16:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 400133 IP address blocks: 185.216.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.mft rsync://rpki.ripe.net/repository/DEFAULT/k-zngN_aQ6tKhBcn6yDXH8dlKLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:a0:40:61:fa:57:d3:64:fb:1f:f5:02:68:44:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93ece780dfda43ab4a841727eb20d71fc76528bc Validity Not Before: Jan 1 16:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=32f8150c0a8f484de8923e66dcf7057f35c1935c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:62:a2:52:7b:03:13:d1:00:36:9f:fa:ef:7b: c4:bd:7e:77:8d:0f:71:ac:40:63:cc:4c:8b:2c:5b: 85:ba:7c:91:14:18:47:b0:43:a7:5f:40:87:18:17: 91:b4:90:f6:49:8d:7e:29:b7:32:33:cf:58:52:2c: 2d:f1:f3:87:9e:0d:bc:6f:bd:c5:65:ea:d3:b3:25: e4:45:e9:82:0b:f8:48:13:d9:d3:2b:7b:d5:37:07: ce:a7:fa:14:82:56:e1:e2:91:96:75:aa:e4:af:f3: 0c:bf:cf:71:e5:fb:26:76:3f:35:40:f3:e2:31:0e: 4c:67:db:07:28:9b:ae:52:ad:64:b0:ed:b8:54:e0: 55:21:22:b5:ff:ac:3d:c9:d2:96:a7:0b:4f:7f:5d: 17:59:28:b4:88:31:ab:69:0f:a0:74:c0:f9:af:1d: a1:f1:cc:7e:4c:de:1a:6a:10:a0:37:2b:40:2e:a7: 64:d4:bf:14:ad:b9:a8:72:d2:d9:c9:55:bf:7d:bb: d1:33:c2:09:5a:a8:e4:54:32:92:88:1b:22:a1:ad: e5:9f:7d:06:81:e2:20:3d:f7:41:2b:2c:b4:71:1d: 3a:ac:88:60:04:80:1a:3d:90:86:b9:aa:99:78:c8: c5:c6:4c:a6:08:ef:45:55:8b:53:2e:de:98:37:1e: a0:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F8:15:0C:0A:8F:48:4D:E8:92:3E:66:DC:F7:05:7F:35:C1:93:5C X509v3 Authority Key Identifier: keyid:93:EC:E7:80:DF:DA:43:AB:4A:84:17:27:EB:20:D7:1F:C7:65:28:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-zngN_aQ6tKhBcn6yDXH8dlKLw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/MvgVDAqPSE3okj5m3PcFfzXBk1w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.216.23.0/24 Signature Algorithm: sha256WithRSAEncryption 21:f3:2e:bf:d6:32:c2:9f:37:b9:8b:85:31:62:8b:53:97:a3: ea:0b:a1:49:93:d4:98:c8:cb:3f:07:4f:d5:c1:3a:fc:13:78: 99:8a:28:4f:aa:c2:75:d5:ac:63:18:17:35:27:84:ef:6f:ac: 4c:f4:ee:31:0e:56:88:9e:08:e2:a9:8b:a2:e3:a8:6d:2d:47: a9:5a:a4:64:28:66:7c:16:ca:28:2b:9f:43:1e:89:15:e8:01: 11:21:5c:31:3b:4d:db:83:51:6f:81:ba:99:b6:6b:4f:c7:f2: a6:4d:ab:08:97:1c:67:45:b0:15:b4:0a:ba:83:e1:42:64:6e: e0:cd:84:ff:ca:15:52:c0:9c:bf:a9:06:5c:c4:22:a5:ed:6f: cc:d6:c6:2a:40:6a:fb:7e:f3:52:cf:26:31:36:e1:a1:5e:5f: 12:96:3a:88:8f:8e:0a:00:61:1a:65:a5:15:a8:05:3c:1b:3c: a5:fb:b7:88:07:3c:c4:9c:ab:5f:c8:fb:87:f0:8a:cd:db:53: 73:d7:ae:8d:3c:89:55:9a:96:8b:1a:3d:39:36:df:da:68:1b: 81:dc:11:8a:75:37:ec:80:c7:23:73:0e:b3:c1:f7:68:74:26: b3:45:82:ae:95:65:12:44:a9:68:de:96:2f:8d:11:ad:eb:ae: a8:85:ea:6c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WqBAYfpX02T7H/UCaEQhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzZWNlNzgwZGZkYTQzYWI0YTg0MTcyN2ViMjBkNzFmYzc2 NTI4YmMwHhcNMjYwMTAxMTYxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMmY4MTUwYzBhOGY0ODRkZTg5MjNlNjZkY2Y3MDU3ZjM1YzE5MzVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh2KiUnsDE9EANp/673vEvX53jQ9x rEBjzEyLLFuFunyRFBhHsEOnX0CHGBeRtJD2SY1+KbcyM89YUiwt8fOHng28b73F ZerTsyXkRemCC/hIE9nTK3vVNwfOp/oUglbh4pGWdarkr/MMv89x5fsmdj81QPPi MQ5MZ9sHKJuuUq1ksO24VOBVISK1/6w9ydKWpwtPf10XWSi0iDGraQ+gdMD5rx2h 8cx+TN4aahCgNytALqdk1L8UrbmoctLZyVW/fbvRM8IJWqjkVDKSiBsioa3ln30G geIgPfdBKyy0cR06rIhgBIAaPZCGuaqZeMjFxkymCO9FVYtTLt6YNx6gMwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDL4FQwKj0hN6JI+Ztz3BX81wZNcMB8GA1UdIwQY MBaAFJPs54Df2kOrSoQXJ+sg1x/HZSi8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvay16bmdOX2FRNnRLaEJjbjZ5RFhIOGRsS0x3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy83ZmE5NDMtOWVhNi00MDY4LWI2YWUt YTRkNDEzZDdmODljLzEvTXZnVkRBcVBTRTNva2o1bTNQY0ZmelhCazF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy83ZmE5NDMtOWVhNi00MDY4LWI2YWUtYTRkNDEzZDdmODlj LzEvay16bmdOX2FRNnRLaEJjbjZ5RFhIOGRsS0x3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudgXMA0G CSqGSIb3DQEBCwUAA4IBAQAh8y6/1jLCnze5i4UxYotTl6PqC6FJk9SYyMs/B0/V wTr8E3iZiihPqsJ11axjGBc1J4Tvb6xM9O4xDlaIngjiqYui46htLUepWqRkKGZ8 FsooK59DHokV6AERIVwxO03bg1FvgbqZtmtPx/KmTasIlxxnRbAVtAq6g+FCZG7g zYT/yhVSwJy/qQZcxCKl7W/M1sYqQGr7fvNSzyYxNuGhXl8SljqIj44KAGEaZaUV qAU8Gzyl+7eIBzzEnKtfyPuH8IrN21Nz166NPIlVmpaLGj05Nt/aaBuB3BGKdTfs gMcjcw6zwfdodCazRYKulWUSRKlo3pYvjRGt666oheps -----END CERTIFICATE-----Generated at Sat Jan 10 21:40:29 2026 by rpki-client