This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/299fe7-9ab7-473a-b62a-ab063938f1ce/1/MHBYvDEfair8LMjjWldjlJSK4Kg.roa File: MHBYvDEfair8LMjjWldjlJSK4Kg.roa (raw, json) Hash identifier: vmmrMoTWhgUvddV4vdbfGS7BdwqYfrrX4L+ZJDyj1ho= Subject key identifier: 30:70:58:BC:31:1F:6A:2A:FC:2C:C8:E3:5A:57:63:94:94:8A:E0:A8 Certificate issuer: /CN=cd0cc7fd8898b0f7df4b9df0b99319bcb29ec243 Certificate serial: 019B7C130C225CAF843375CC94F59B80D69D Authority key identifier: CD:0C:C7:FD:88:98:B0:F7:DF:4B:9D:F0:B9:93:19:BC:B2:9E:C2:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQzH_YiYsPffS53wuZMZvLKewkM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/299fe7-9ab7-473a-b62a-ab063938f1ce/1/MHBYvDEfair8LMjjWldjlJSK4Kg.roa Signing time: Fri 02 Jan 2026 00:19:41 +0000 ROA not before: Fri 02 Jan 2026 00:19:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39748 IP address blocks: 193.93.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/299fe7-9ab7-473a-b62a-ab063938f1ce/1/zQzH_YiYsPffS53wuZMZvLKewkM.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/299fe7-9ab7-473a-b62a-ab063938f1ce/1/zQzH_YiYsPffS53wuZMZvLKewkM.mft rsync://rpki.ripe.net/repository/DEFAULT/zQzH_YiYsPffS53wuZMZvLKewkM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:0c:22:5c:af:84:33:75:cc:94:f5:9b:80:d6:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd0cc7fd8898b0f7df4b9df0b99319bcb29ec243 Validity Not Before: Jan 2 00:19:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=307058bc311f6a2afc2cc8e35a576394948ae0a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a9:87:53:56:3a:fe:b9:da:13:c1:f9:37:4e: 85:02:84:74:56:8c:44:22:08:aa:8e:0a:61:29:d7: d5:00:80:1c:ff:f4:b9:25:00:e3:86:5b:1a:6f:38: de:9a:dc:08:67:86:e4:e6:cf:79:09:12:b9:26:3d: 21:24:2d:bb:bf:a3:4e:a8:ac:66:cb:a3:35:a8:07: 70:1b:e0:2f:01:93:0c:42:20:54:87:cc:f5:d3:45: 97:c1:a3:7c:bf:83:3d:fe:cf:4e:8a:8e:c3:dd:5b: 7d:5c:b7:6d:c7:ee:32:83:4f:a3:c5:28:12:26:9f: 49:7c:40:54:ee:2e:f5:e3:09:a5:a6:0b:b9:1e:d8: 7d:cb:82:88:e5:10:87:e7:e6:b9:03:d7:55:a1:c2: e4:94:1e:7b:c6:e8:d6:0f:be:18:e5:fb:bd:97:ec: 33:7b:c8:f0:ae:fc:0c:08:7d:93:66:b1:ae:19:6d: 54:0f:c9:d7:b1:d5:0a:95:19:41:be:7d:62:da:df: 7a:8c:e0:4b:55:9a:b9:84:17:b6:e4:a7:12:67:5b: db:c5:1e:b6:ae:90:b7:5a:8e:d2:99:13:d0:2f:98: b5:ec:51:d3:ac:79:9e:31:af:4e:88:1b:98:85:9c: ac:b9:10:20:0f:7c:c5:34:39:ce:fe:a7:1c:17:bc: 49:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:70:58:BC:31:1F:6A:2A:FC:2C:C8:E3:5A:57:63:94:94:8A:E0:A8 X509v3 Authority Key Identifier: keyid:CD:0C:C7:FD:88:98:B0:F7:DF:4B:9D:F0:B9:93:19:BC:B2:9E:C2:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQzH_YiYsPffS53wuZMZvLKewkM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/299fe7-9ab7-473a-b62a-ab063938f1ce/1/MHBYvDEfair8LMjjWldjlJSK4Kg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/299fe7-9ab7-473a-b62a-ab063938f1ce/1/zQzH_YiYsPffS53wuZMZvLKewkM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.93.188.0/22 Signature Algorithm: sha256WithRSAEncryption 93:c4:ee:fe:73:e6:94:11:ae:c2:e3:05:44:26:4d:dc:eb:2d: 5d:95:c4:6e:ff:43:52:5a:05:d7:e0:8e:5b:2e:8a:04:4e:5c: bd:c7:d5:f9:1b:a8:99:20:c3:60:f1:cb:8b:58:d8:c0:3f:e5: 8f:f0:0c:08:81:ed:26:a9:38:a0:5e:f8:0b:1e:e0:af:ce:d7: 91:4a:e1:49:a5:fa:21:1e:3c:b0:ce:e5:06:f7:77:4a:dd:50: bb:bf:05:f9:f1:5c:4c:05:10:0a:0a:28:59:f6:0e:53:84:2a: 1c:03:6f:b1:22:61:a3:2b:d2:0e:ab:97:ee:f1:09:7d:9a:69: b5:0b:7c:dd:a9:cb:88:5f:5b:70:2c:65:0b:41:41:09:ad:ee: 45:3c:12:d9:1c:19:9a:20:7d:2b:20:0b:6e:d8:bd:ce:e5:41: c5:64:4b:cb:e8:d4:40:ee:61:9f:e1:ca:85:c8:44:c0:60:77: bb:b3:a5:88:a4:53:eb:7f:7f:ff:f9:9e:5e:d2:bb:7f:59:e5: b8:05:cc:2c:ed:2c:81:a2:5b:86:2a:ad:2a:68:5e:23:c6:29: 89:be:19:b3:f3:e5:b6:ba:9a:83:82:a4:1f:b6:1e:ff:ad:22: 35:47:6e:7c:cf:b3:c2:9a:19:c8:0a:f3:c9:11:66:8f:2b:9a: f1:ac:f7:b5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EwwiXK+EM3XMlPWbgNadMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMGNjN2ZkODg5OGIwZjdkZjRiOWRmMGI5OTMxOWJjYjI5 ZWMyNDMwHhcNMjYwMTAyMDAxOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMDcwNThiYzMxMWY2YTJhZmMyY2M4ZTM1YTU3NjM5NDk0OGFlMGE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwKmHU1Y6/rnaE8H5N06FAoR0VoxE IgiqjgphKdfVAIAc//S5JQDjhlsabzjemtwIZ4bk5s95CRK5Jj0hJC27v6NOqKxm y6M1qAdwG+AvAZMMQiBUh8z100WXwaN8v4M9/s9Oio7D3Vt9XLdtx+4yg0+jxSgS Jp9JfEBU7i714wmlpgu5Hth9y4KI5RCH5+a5A9dVocLklB57xujWD74Y5fu9l+wz e8jwrvwMCH2TZrGuGW1UD8nXsdUKlRlBvn1i2t96jOBLVZq5hBe25KcSZ1vbxR62 rpC3Wo7SmRPQL5i17FHTrHmeMa9OiBuYhZysuRAgD3zFNDnO/qccF7xJVQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDBwWLwxH2oq/CzI41pXY5SUiuCoMB8GA1UdIwQY MBaAFM0Mx/2ImLD330ud8LmTGbyynsJDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelF6SF9ZaVlzUGZmUzUzd3VaTVp2TEtld2tNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8yOTlmZTctOWFiNy00NzNhLWI2MmEt YWIwNjM5MzhmMWNlLzEvTUhCWXZERWZhaXI4TE1qaldsZGpsSlNLNEtnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS8yOTlmZTctOWFiNy00NzNhLWI2MmEtYWIwNjM5MzhmMWNl LzEvelF6SF9ZaVlzUGZmUzUzd3VaTVp2TEtld2tNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwV28MA0G CSqGSIb3DQEBCwUAA4IBAQCTxO7+c+aUEa7C4wVEJk3c6y1dlcRu/0NSWgXX4I5b LooETly9x9X5G6iZIMNg8cuLWNjAP+WP8AwIge0mqTigXvgLHuCvzteRSuFJpfoh HjywzuUG93dK3VC7vwX58VxMBRAKCihZ9g5ThCocA2+xImGjK9IOq5fu8Ql9mmm1 C3zdqcuIX1twLGULQUEJre5FPBLZHBmaIH0rIAtu2L3O5UHFZEvL6NRA7mGf4cqF yETAYHe7s6WIpFPrf3//+Z5e0rt/WeW4Bcws7SyBoluGKq0qaF4jximJvhmz8+W2 upqDgqQfth7/rSI1R258z7PCmhnICvPJEWaPK5rxrPe1 -----END CERTIFICATE-----Generated at Mon Jan 12 08:48:47 2026 by rpki-client