This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/63b875-0643-4724-928e-3d743980b6e2/1/MdhTY8foQJKx0mdlP05igAT5a9E.roa File: MdhTY8foQJKx0mdlP05igAT5a9E.roa (raw, json) Hash identifier: 1qZJayac2vfyAfUyRCRfqXyKoeJ0mRVVfL/eLJWxk1s= Subject key identifier: 31:D8:53:63:C7:E8:40:92:B1:D2:67:65:3F:4E:62:80:04:F9:6B:D1 Certificate issuer: /CN=556828d62a5b893e22d5867f1a142d198e85e1ab Certificate serial: 019B78A368B25FFBC876AF70CCA9A0C3DE65 Authority key identifier: 55:68:28:D6:2A:5B:89:3E:22:D5:86:7F:1A:14:2D:19:8E:85:E1:AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VWgo1ipbiT4i1YZ_GhQtGY6F4as.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/63b875-0643-4724-928e-3d743980b6e2/1/MdhTY8foQJKx0mdlP05igAT5a9E.roa Signing time: Thu 01 Jan 2026 08:18:53 +0000 ROA not before: Thu 01 Jan 2026 08:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25091 IP address blocks: 185.188.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/63b875-0643-4724-928e-3d743980b6e2/1/VWgo1ipbiT4i1YZ_GhQtGY6F4as.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/63b875-0643-4724-928e-3d743980b6e2/1/VWgo1ipbiT4i1YZ_GhQtGY6F4as.mft rsync://rpki.ripe.net/repository/DEFAULT/VWgo1ipbiT4i1YZ_GhQtGY6F4as.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 14:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:68:b2:5f:fb:c8:76:af:70:cc:a9:a0:c3:de:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=556828d62a5b893e22d5867f1a142d198e85e1ab Validity Not Before: Jan 1 08:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31d85363c7e84092b1d267653f4e628004f96bd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6e:05:5a:f7:3f:d0:3e:59:1e:e4:77:f4:3c: 6c:f8:1b:db:77:3c:35:99:ad:81:35:21:67:04:43: 7b:93:bb:c9:1c:81:3b:ba:92:65:8c:de:11:70:c2: ae:2c:18:ce:7b:d1:f9:70:62:7b:ee:04:5a:22:1b: 9d:63:20:b7:77:6d:80:79:b8:26:70:23:aa:08:cd: a5:6a:79:12:b5:24:5d:69:b1:4b:b7:db:63:27:db: 01:14:7e:7b:cc:a6:7a:52:8c:c4:49:55:01:5a:3f: b1:bc:c7:aa:06:93:d4:e0:d2:43:8d:80:db:99:d8: 40:1d:39:45:2b:18:0b:19:90:e6:3e:36:82:67:df: 10:d6:2b:52:c3:22:1f:68:1e:8c:4a:9a:55:8f:41: eb:6d:2b:99:00:84:4a:33:20:d2:e8:54:0a:83:2c: 49:96:96:f9:90:16:86:61:5f:17:a8:3c:2a:d2:29: 74:9d:4c:68:cf:73:4d:b4:48:04:da:87:2e:28:3e: e2:10:1d:60:54:e0:6b:78:d5:7a:4a:c0:fd:07:b9: f3:31:14:78:fe:fe:ab:c2:0f:e2:42:f4:a2:42:e5: 05:9a:2b:e4:a5:d7:db:1d:ee:3d:3b:63:12:4e:82: cd:83:99:5b:bd:23:94:b9:3f:85:a3:40:6c:41:c0: 95:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:D8:53:63:C7:E8:40:92:B1:D2:67:65:3F:4E:62:80:04:F9:6B:D1 X509v3 Authority Key Identifier: keyid:55:68:28:D6:2A:5B:89:3E:22:D5:86:7F:1A:14:2D:19:8E:85:E1:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VWgo1ipbiT4i1YZ_GhQtGY6F4as.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/63b875-0643-4724-928e-3d743980b6e2/1/MdhTY8foQJKx0mdlP05igAT5a9E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/63b875-0643-4724-928e-3d743980b6e2/1/VWgo1ipbiT4i1YZ_GhQtGY6F4as.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.188.15.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:8e:95:8c:4b:c2:37:6c:06:af:ac:c4:95:47:d6:14:97:81: d6:93:8d:24:04:76:18:be:f3:30:f2:62:37:2d:3e:d4:b6:85: dd:c3:62:70:6c:e7:cd:3c:cb:de:8e:3b:d3:7c:9a:38:45:93: 28:ed:bf:cd:cb:0d:97:66:0e:de:44:0f:d5:fb:1c:9c:d5:89: 04:43:39:63:da:f5:f6:5e:db:e0:f0:18:d1:d1:6b:70:e9:dd: 41:af:14:c4:a8:09:ba:01:ce:0f:8a:8a:8c:30:58:6c:1f:a9: d0:b8:04:c6:79:6d:ad:c7:41:cd:b6:9c:f7:ee:d7:ac:68:a4: 03:bd:c6:ed:46:ac:90:cc:15:f4:99:71:5e:26:5f:97:7f:97: d2:f1:1f:75:4d:a9:cc:d4:bb:cd:90:12:bf:25:27:f5:c2:2b: 00:03:64:bd:e9:59:fd:a7:44:c2:9c:e8:c9:29:48:c7:e5:d6: 57:f4:95:5d:72:2a:2b:c4:49:ae:36:4e:48:11:2c:46:6a:e5: a6:d1:23:24:da:34:4d:32:4b:02:91:e3:5c:af:70:49:e8:bb: cd:9b:f0:ee:b8:d2:2b:9d:db:b5:08:81:91:7d:f3:4d:75:60: fe:91:a2:f9:02:e6:ba:cb:58:a5:b1:e3:88:7e:b4:15:d8:6f: 0b:61:cf:8b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4o2iyX/vIdq9wzKmgw95lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1NjgyOGQ2MmE1Yjg5M2UyMmQ1ODY3ZjFhMTQyZDE5OGU4 NWUxYWIwHhcNMjYwMTAxMDgxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMWQ4NTM2M2M3ZTg0MDkyYjFkMjY3NjUzZjRlNjI4MDA0Zjk2YmQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA024FWvc/0D5ZHuR39Dxs+Bvbdzw1 ma2BNSFnBEN7k7vJHIE7upJljN4RcMKuLBjOe9H5cGJ77gRaIhudYyC3d22Aebgm cCOqCM2lankStSRdabFLt9tjJ9sBFH57zKZ6UozESVUBWj+xvMeqBpPU4NJDjYDb mdhAHTlFKxgLGZDmPjaCZ98Q1itSwyIfaB6MSppVj0HrbSuZAIRKMyDS6FQKgyxJ lpb5kBaGYV8XqDwq0il0nUxoz3NNtEgE2ocuKD7iEB1gVOBreNV6SsD9B7nzMRR4 /v6rwg/iQvSiQuUFmivkpdfbHe49O2MSToLNg5lbvSOUuT+Fo0BsQcCVoQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDHYU2PH6ECSsdJnZT9OYoAE+WvRMB8GA1UdIwQY MBaAFFVoKNYqW4k+ItWGfxoULRmOheGrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVldnbzFpcGJpVDRpMVlaX0doUXRHWTZGNGFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS82M2I4NzUtMDY0My00NzI0LTkyOGUt M2Q3NDM5ODBiNmUyLzEvTWRoVFk4Zm9RSkt4MG1kbFAwNWlnQVQ1YTlFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS82M2I4NzUtMDY0My00NzI0LTkyOGUtM2Q3NDM5ODBiNmUy LzEvVldnbzFpcGJpVDRpMVlaX0doUXRHWTZGNGFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubwPMA0G CSqGSIb3DQEBCwUAA4IBAQB7jpWMS8I3bAavrMSVR9YUl4HWk40kBHYYvvMw8mI3 LT7UtoXdw2JwbOfNPMvejjvTfJo4RZMo7b/Nyw2XZg7eRA/V+xyc1YkEQzlj2vX2 Xtvg8BjR0Wtw6d1BrxTEqAm6Ac4PioqMMFhsH6nQuATGeW2tx0HNtpz37tesaKQD vcbtRqyQzBX0mXFeJl+Xf5fS8R91TanM1LvNkBK/JSf1wisAA2S96Vn9p0TCnOjJ KUjH5dZX9JVdciorxEmuNk5IESxGauWm0SMk2jRNMksCkeNcr3BJ6LvNm/DuuNIr ndu1CIGRffNNdWD+kaL5Aua6y1ilseOIfrQV2G8LYc+L -----END CERTIFICATE-----Generated at Sun Jan 18 20:54:32 2026 by rpki-client