This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/MRM-CoQOpNzOiMlv-SoepHZ_vkg.roa File: MRM-CoQOpNzOiMlv-SoepHZ_vkg.roa (raw, json) Hash identifier: XmXaFQhLTQFHGNBv8hvjwKW9TmIBhDQDOsRTHRNNRp8= Subject key identifier: 31:13:3E:0A:84:0E:A4:DC:CE:88:C9:6F:F9:2A:1E:A4:76:7F:BE:48 Certificate issuer: /CN=7a1bb036db40d799d861198a5243b3c03d56c20a Certificate serial: 019B7BA470983F667B97ECCD384A9AE904FE Authority key identifier: 7A:1B:B0:36:DB:40:D7:99:D8:61:19:8A:52:43:B3:C0:3D:56:C2:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehuwNttA15nYYRmKUkOzwD1Wwgo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/MRM-CoQOpNzOiMlv-SoepHZ_vkg.roa Signing time: Thu 01 Jan 2026 22:18:52 +0000 ROA not before: Thu 01 Jan 2026 22:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39097 IP address blocks: 176.57.249.0/24 maxlen: 24 176.57.250.0/24 maxlen: 24 176.57.251.0/24 maxlen: 24 176.57.252.0/24 maxlen: 24 176.57.253.0/24 maxlen: 24 176.57.254.0/24 maxlen: 24 176.57.255.0/24 maxlen: 24 185.181.144.0/24 maxlen: 24 185.181.145.0/24 maxlen: 24 185.181.146.0/24 maxlen: 24 185.181.147.0/24 maxlen: 24 195.60.196.0/24 maxlen: 24 195.60.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/ehuwNttA15nYYRmKUkOzwD1Wwgo.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/ehuwNttA15nYYRmKUkOzwD1Wwgo.mft rsync://rpki.ripe.net/repository/DEFAULT/ehuwNttA15nYYRmKUkOzwD1Wwgo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:70:98:3f:66:7b:97:ec:cd:38:4a:9a:e9:04:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a1bb036db40d799d861198a5243b3c03d56c20a Validity Not Before: Jan 1 22:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31133e0a840ea4dcce88c96ff92a1ea4767fbe48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:75:2a:7e:0b:26:93:5f:4d:84:d8:0d:cf:e9: 0c:e6:46:7a:df:72:c0:d1:6f:01:23:45:a4:37:7e: a4:7e:a5:73:05:a7:03:35:8c:e3:64:ef:db:5f:c6: 41:8a:8e:57:16:49:01:a7:74:1d:c4:d4:6e:a4:70: f3:6f:ab:ed:3d:23:54:b8:10:8a:c6:25:e9:d7:c4: 38:bf:b6:84:76:f3:58:ff:40:cc:90:f7:e2:ec:30: a3:37:07:f7:01:80:03:9f:31:0a:f2:6f:fd:27:9c: 95:5b:e1:c4:13:7a:54:5d:47:e6:4c:8f:a7:61:2f: ef:f7:b1:a8:45:d5:8a:d1:46:b2:fe:c2:68:62:59: b4:db:b7:05:76:0d:a8:e8:37:5e:4e:ee:06:5e:dc: ac:a3:fd:32:15:2a:3c:0c:4d:48:e9:e2:e4:a5:57: 2d:88:e8:d4:72:01:f5:2a:6f:26:68:2c:c4:84:49: b2:a2:27:a5:2e:18:25:f4:54:52:05:bd:fe:54:56: ab:a7:5e:f9:af:29:9a:0d:d6:0a:72:cc:42:4b:67: b1:2d:7d:be:ad:76:4e:49:42:34:b3:d9:aa:51:ae: c6:0d:11:82:3f:85:aa:d3:c4:59:a9:57:5a:92:db: aa:48:0f:3e:e3:00:49:85:aa:0c:ce:65:21:48:e8: 6e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:13:3E:0A:84:0E:A4:DC:CE:88:C9:6F:F9:2A:1E:A4:76:7F:BE:48 X509v3 Authority Key Identifier: keyid:7A:1B:B0:36:DB:40:D7:99:D8:61:19:8A:52:43:B3:C0:3D:56:C2:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehuwNttA15nYYRmKUkOzwD1Wwgo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/MRM-CoQOpNzOiMlv-SoepHZ_vkg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/ehuwNttA15nYYRmKUkOzwD1Wwgo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.57.249.0-176.57.255.255 185.181.144.0/22 195.60.196.0/23 Signature Algorithm: sha256WithRSAEncryption a1:35:09:83:21:7e:d1:03:4b:5f:c6:2b:cf:5f:9b:9c:fb:e9: 7e:87:1e:fe:03:b3:81:ea:e4:85:d3:76:2f:40:2f:a1:bc:bf: e3:9e:b2:e3:a6:c9:83:86:d0:eb:1e:ad:81:3f:2d:77:34:23: 6c:dc:3b:45:0d:b9:41:6d:44:68:c9:52:e4:c0:0b:81:f3:61: 46:31:d0:86:51:29:6b:5a:23:14:85:93:36:59:6a:c6:37:58: cd:be:f9:67:7c:11:52:30:36:17:69:fa:40:f6:8d:3b:c1:f9: bf:1e:59:c7:11:19:82:3d:a3:ef:22:28:d4:c9:33:61:90:dd: 9f:19:d7:1b:0a:c8:b2:7b:e2:4f:b8:0f:dc:67:4e:99:10:48: 21:e5:90:f5:b2:24:90:fa:04:87:de:a2:51:52:f1:ce:6c:b8: 4a:ac:57:f3:89:12:bc:b6:38:b3:a0:4b:4a:a3:a2:0f:be:f2: b0:54:30:82:8a:0a:be:1e:af:0e:fb:b1:94:87:a2:90:49:61: ef:ea:61:d3:e1:78:2c:60:02:e7:0c:a5:5e:ed:69:41:9a:f0: 72:81:21:31:47:de:73:b2:54:03:ba:1b:97:11:4b:8c:9e:e6: 03:61:69:09:a9:fd:52:cb:7b:4d:63:37:14:84:37:4a:b6:50: b6:90:e1:5f -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgISAZt7pHCYP2Z7l+zNOEqa6QT+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMWJiMDM2ZGI0MGQ3OTlkODYxMTk4YTUyNDNiM2MwM2Q1 NmMyMGEwHhcNMjYwMTAxMjIxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMTEzM2UwYTg0MGVhNGRjY2U4OGM5NmZmOTJhMWVhNDc2N2ZiZTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnUqfgsmk19NhNgNz+kM5kZ633LA 0W8BI0WkN36kfqVzBacDNYzjZO/bX8ZBio5XFkkBp3QdxNRupHDzb6vtPSNUuBCK xiXp18Q4v7aEdvNY/0DMkPfi7DCjNwf3AYADnzEK8m/9J5yVW+HEE3pUXUfmTI+n YS/v97GoRdWK0Uay/sJoYlm027cFdg2o6DdeTu4GXtyso/0yFSo8DE1I6eLkpVct iOjUcgH1Km8maCzEhEmyoielLhgl9FRSBb3+VFarp175rymaDdYKcsxCS2exLX2+ rXZOSUI0s9mqUa7GDRGCP4Wq08RZqVdaktuqSA8+4wBJhaoMzmUhSOhu7QIDAQAB o4ICHDCCAhgwHQYDVR0OBBYEFDETPgqEDqTczojJb/kqHqR2f75IMB8GA1UdIwQY MBaAFHobsDbbQNeZ2GEZilJDs8A9VsIKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWh1d050dEExNW5ZWVJtS1VrT3p3RDFXd2dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ZGE1YjMtMjRjNy00ZWU1LTk1ZGMt YjA4ZGIzYzM2ZmJiLzEvTVJNLUNvUU9wTnpPaU1sdi1Tb2VwSFpfdmtnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ZGE1YjMtMjRjNy00ZWU1LTk1ZGMtYjA4ZGIzYzM2ZmJi LzEvZWh1d050dEExNW5ZWVJtS1VrT3p3RDFXd2dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDIGCCsGAQUFBwEHAQH/BCMwITAfBAIAATAZMAsDBACwOfkD AwGwOAMEArm1kAMEAcM8xDANBgkqhkiG9w0BAQsFAAOCAQEAoTUJgyF+0QNLX8Yr z1+bnPvpfoce/gOzgerkhdN2L0Avoby/456y46bJg4bQ6x6tgT8tdzQjbNw7RQ25 QW1EaMlS5MALgfNhRjHQhlEpa1ojFIWTNllqxjdYzb75Z3wRUjA2F2n6QPaNO8H5 vx5ZxxEZgj2j7yIo1MkzYZDdnxnXGwrIsnviT7gP3GdOmRBIIeWQ9bIkkPoEh96i UVLxzmy4SqxX84kSvLY4s6BLSqOiD77ysFQwgooKvh6vDvuxlIeikElh7+ph0+F4 LGAC5wylXu1pQZrwcoEhMUfec7JUA7oblxFLjJ7mA2FpCan9Ust7TWM3FIQ3SrZQ tpDhXw== -----END CERTIFICATE-----Generated at Tue Jan 20 04:46:11 2026 by rpki-client