This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/d58401-a67c-4583-b9b6-64166c695378/1/ro1Jcp2lxC4NOVFabgqftamKm9c.roa File: ro1Jcp2lxC4NOVFabgqftamKm9c.roa (raw, json) Hash identifier: pPjbit7yUoBryRtekoI8dZ+LsQVJcINu/p0DoPay2ZE= Subject key identifier: AE:8D:49:72:9D:A5:C4:2E:0D:39:51:5A:6E:0A:9F:B5:A9:8A:9B:D7 Certificate issuer: /CN=3061e6155e3f35f88e6b44cd355e6e936e921a6c Certificate serial: 019B7EA5190E86F239589D2700EC762BE1F8 Authority key identifier: 30:61:E6:15:5E:3F:35:F8:8E:6B:44:CD:35:5E:6E:93:6E:92:1A:6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGHmFV4_NfiOa0TNNV5uk26SGmw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/d58401-a67c-4583-b9b6-64166c695378/1/ro1Jcp2lxC4NOVFabgqftamKm9c.roa Signing time: Fri 02 Jan 2026 12:18:27 +0000 ROA not before: Fri 02 Jan 2026 12:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205637 IP address blocks: 185.211.184.0/22 maxlen: 22 185.211.184.0/23 maxlen: 23 185.211.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/d58401-a67c-4583-b9b6-64166c695378/1/MGHmFV4_NfiOa0TNNV5uk26SGmw.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/d58401-a67c-4583-b9b6-64166c695378/1/MGHmFV4_NfiOa0TNNV5uk26SGmw.mft rsync://rpki.ripe.net/repository/DEFAULT/MGHmFV4_NfiOa0TNNV5uk26SGmw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:19:0e:86:f2:39:58:9d:27:00:ec:76:2b:e1:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3061e6155e3f35f88e6b44cd355e6e936e921a6c Validity Not Before: Jan 2 12:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae8d49729da5c42e0d39515a6e0a9fb5a98a9bd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:76:e8:8c:90:cb:bf:30:31:b3:28:7a:79:98: b1:fd:48:f2:23:d9:8c:f9:67:20:09:1e:3a:33:64: 9d:0a:e9:83:8b:4e:07:59:31:5c:03:2e:84:71:4a: 6f:e8:ff:dd:d2:7a:31:7b:b5:57:88:33:5b:eb:c3: 2f:a5:b3:ca:4a:86:cd:d0:6d:88:d0:67:01:f2:bc: fc:05:32:36:d9:d0:1d:b6:1b:c4:69:51:30:fb:f0: 7c:de:fa:2a:57:b2:22:64:7c:ca:03:70:48:a6:9a: 2f:3d:e5:f1:10:08:7a:7e:e9:4a:c5:82:e7:47:e8: 24:0e:31:e8:9c:bd:ae:e6:68:cc:24:f5:90:9d:08: b7:e1:ec:d4:7f:41:e6:f8:b9:95:3c:8b:8c:f8:e4: e0:0b:55:6b:a9:17:72:a8:76:81:21:50:95:cc:95: 7e:c2:a6:39:87:fe:2a:97:2d:e3:ac:1a:18:b8:07: ca:f4:26:94:99:95:5d:f5:e6:b9:7a:23:78:31:fa: ef:b3:79:d7:b8:9e:4c:dc:13:2c:95:3a:6b:d5:f7: 55:64:13:29:ea:e2:90:44:b7:99:9a:31:2e:a0:be: 06:c1:1b:b1:5b:81:d5:5b:60:13:c1:43:17:18:9e: 69:64:59:7b:f5:ae:8e:18:24:67:4b:f6:33:59:11: cf:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:8D:49:72:9D:A5:C4:2E:0D:39:51:5A:6E:0A:9F:B5:A9:8A:9B:D7 X509v3 Authority Key Identifier: keyid:30:61:E6:15:5E:3F:35:F8:8E:6B:44:CD:35:5E:6E:93:6E:92:1A:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGHmFV4_NfiOa0TNNV5uk26SGmw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d58401-a67c-4583-b9b6-64166c695378/1/ro1Jcp2lxC4NOVFabgqftamKm9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d58401-a67c-4583-b9b6-64166c695378/1/MGHmFV4_NfiOa0TNNV5uk26SGmw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.211.184.0/22 Signature Algorithm: sha256WithRSAEncryption a7:bd:da:98:54:8e:1f:45:e6:ce:9e:6d:66:ba:70:ad:7d:84: 96:f4:04:ed:fd:52:ae:07:b1:3f:f5:f1:d8:4f:51:30:44:3d: 43:e0:03:fa:a7:fb:47:bc:6d:97:f1:2a:ae:0a:0d:23:6f:9c: 33:85:69:a0:f8:0e:7a:35:30:34:2c:ce:f6:ab:fc:5c:2b:f5: 76:56:8f:d3:86:01:0c:4c:e6:bb:d5:b4:f8:80:17:9c:52:71: c4:51:f6:fe:fb:88:80:74:a8:42:3b:79:0c:63:ff:58:79:90: 50:79:99:18:de:df:95:24:78:03:1b:cf:7a:58:9a:38:f7:0a: 74:e9:3c:b1:fa:5b:fd:c5:12:6e:bb:06:26:7d:42:20:dd:ca: f9:37:f1:b9:b4:1f:e8:90:cf:32:dc:31:be:ca:80:19:63:a8: 67:04:be:9b:db:8e:3d:2a:02:c2:f0:60:95:d1:5d:1f:b9:9d: 95:ac:22:fe:b4:75:0f:12:e8:94:a4:06:84:d4:d9:08:ab:48: 5d:16:3b:58:0b:14:74:3c:e0:5b:18:ab:fc:ac:ea:18:bc:60: 83:ee:7d:dd:50:62:fd:5d:28:60:aa:c6:b6:2f:6d:ab:37:d7: f5:d3:4f:aa:a9:66:9a:b7:47:97:29:d9:3b:16:97:33:5f:c6: 03:f8:6f:ca -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pRkOhvI5WJ0nAOx2K+H4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwNjFlNjE1NWUzZjM1Zjg4ZTZiNDRjZDM1NWU2ZTkzNmU5 MjFhNmMwHhcNMjYwMTAyMTIxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZThkNDk3MjlkYTVjNDJlMGQzOTUxNWE2ZTBhOWZiNWE5OGE5YmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXbojJDLvzAxsyh6eZix/UjyI9mM +WcgCR46M2SdCumDi04HWTFcAy6EcUpv6P/d0noxe7VXiDNb68MvpbPKSobN0G2I 0GcB8rz8BTI22dAdthvEaVEw+/B83voqV7IiZHzKA3BIppovPeXxEAh6fulKxYLn R+gkDjHonL2u5mjMJPWQnQi34ezUf0Hm+LmVPIuM+OTgC1VrqRdyqHaBIVCVzJV+ wqY5h/4qly3jrBoYuAfK9CaUmZVd9ea5eiN4Mfrvs3nXuJ5M3BMslTpr1fdVZBMp 6uKQRLeZmjEuoL4GwRuxW4HVW2ATwUMXGJ5pZFl79a6OGCRnS/YzWRHPAwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK6NSXKdpcQuDTlRWm4Kn7WpipvXMB8GA1UdIwQY MBaAFDBh5hVePzX4jmtEzTVebpNukhpsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUdIbUZWNF9OZmlPYTBUTk5WNXVrMjZTR213LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9kNTg0MDEtYTY3Yy00NTgzLWI5YjYt NjQxNjZjNjk1Mzc4LzEvcm8xSmNwMmx4QzROT1ZGYWJncWZ0YW1LbTljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9kNTg0MDEtYTY3Yy00NTgzLWI5YjYtNjQxNjZjNjk1Mzc4 LzEvTUdIbUZWNF9OZmlPYTBUTk5WNXVrMjZTR213LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCudO4MA0G CSqGSIb3DQEBCwUAA4IBAQCnvdqYVI4fRebOnm1munCtfYSW9ATt/VKuB7E/9fHY T1EwRD1D4AP6p/tHvG2X8SquCg0jb5wzhWmg+A56NTA0LM72q/xcK/V2Vo/ThgEM TOa71bT4gBecUnHEUfb++4iAdKhCO3kMY/9YeZBQeZkY3t+VJHgDG896WJo49wp0 6Tyx+lv9xRJuuwYmfUIg3cr5N/G5tB/okM8y3DG+yoAZY6hnBL6b2449KgLC8GCV 0V0fuZ2VrCL+tHUPEuiUpAaE1NkIq0hdFjtYCxR0POBbGKv8rOoYvGCD7n3dUGL9 XShgqsa2L22rN9f100+qqWaat0eXKdk7FpczX8YD+G/K -----END CERTIFICATE-----Generated at Tue Jan 27 03:53:18 2026 by rpki-client