This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/MOd1w7flMfCwv3SyFF--8p3elzE.roa File: MOd1w7flMfCwv3SyFF--8p3elzE.roa (raw, json) Hash identifier: EYwivvrV/eFyx237VqFEYH6spoOnfr8g4cHpOeBFaeU= Subject key identifier: 30:E7:75:C3:B7:E5:31:F0:B0:BF:74:B2:14:5F:BE:F2:9D:DE:97:31 Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba Certificate serial: 019B7AC78E987AD0B7F41F786693370B8EBB Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/MOd1w7flMfCwv3SyFF--8p3elzE.roa Signing time: Thu 01 Jan 2026 18:17:37 +0000 ROA not before: Thu 01 Jan 2026 18:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48359 IP address blocks: 109.232.5.0/24 maxlen: 24 185.126.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.mft rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:8e:98:7a:d0:b7:f4:1f:78:66:93:37:0b:8e:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba Validity Not Before: Jan 1 18:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=30e775c3b7e531f0b0bf74b2145fbef29dde9731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:12:9b:6e:4b:c9:5a:48:07:82:ae:90:89:a1: a0:d0:cd:24:98:8f:97:19:86:59:02:6d:46:f4:50: aa:68:27:0c:1e:53:c8:a2:20:ac:32:49:a1:67:70: a5:79:88:de:13:d2:fb:37:c6:11:0d:3e:7b:9c:d3: 19:f3:fb:de:e4:62:cd:41:5f:07:21:f5:38:9a:52: b8:b4:a3:37:02:15:c7:8a:0b:08:36:45:de:20:27: 04:67:0e:b5:2a:b3:02:a2:47:1b:25:6e:66:11:6e: 15:06:f4:69:bd:b9:a7:c5:ee:5a:9d:6c:64:e8:60: fc:99:05:07:82:14:cf:9e:71:4d:92:c2:37:d8:af: 11:a2:d6:40:0c:a4:be:7a:42:6e:23:f9:03:39:52: b3:b8:e6:05:b6:f5:82:ab:90:af:34:60:13:e1:7c: 90:52:d9:37:e7:eb:52:7c:64:6c:64:66:8f:43:c0: 48:39:0f:47:a0:7a:b7:57:43:61:ac:70:95:e5:24: 98:e5:18:37:c0:7f:58:d4:5f:19:7b:a7:db:ad:df: ed:07:26:85:53:cf:e0:4d:84:6a:5f:2f:ab:71:31: e5:54:3c:42:53:98:c8:3f:36:9b:e6:b9:98:72:89: ec:0e:a6:48:ac:d2:12:fc:ca:3a:4d:1a:30:d2:9c: 8e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:E7:75:C3:B7:E5:31:F0:B0:BF:74:B2:14:5F:BE:F2:9D:DE:97:31 X509v3 Authority Key Identifier: keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/MOd1w7flMfCwv3SyFF--8p3elzE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.232.5.0/24 185.126.42.0/23 Signature Algorithm: sha256WithRSAEncryption 96:8f:95:ee:a8:99:a2:7f:75:f1:09:9a:2b:9f:ec:56:a2:24: d2:c3:f3:0e:72:d8:c8:cd:dd:b5:eb:26:e2:69:9d:5b:4c:88: 16:ec:b4:b5:f3:c0:66:99:a6:95:e3:e2:c0:c8:8b:ec:20:6f: f9:1a:de:c4:68:7f:44:6b:e3:4f:5c:8d:17:65:e4:d1:fc:a4: a5:50:9c:7c:a6:a5:81:4f:a4:4c:97:a0:73:a6:fa:e8:c8:3d: bd:dc:ba:02:5d:56:7d:3d:98:93:57:3a:e4:1c:99:18:5b:80: 80:94:4d:72:0a:30:4c:11:08:66:11:3c:9d:20:d0:d2:2b:10: 28:07:4a:07:79:31:66:f0:7a:78:ed:9f:3d:18:d4:d7:58:64: 1b:eb:3c:34:e0:70:dc:ca:00:58:c7:f5:13:29:66:fe:15:d4: a9:06:8c:5d:43:c2:6c:2d:e6:6b:71:03:0a:b8:c8:5a:19:13: 58:00:d4:81:a3:b1:a6:da:fc:09:bf:60:ff:2f:0f:0f:49:23: 8c:a7:05:c1:87:4b:85:ff:35:e0:96:0c:f5:dc:2f:24:ee:0b: b0:a1:49:cb:92:d6:72:70:e0:4e:67:8f:d2:96:a1:60:1d:97: d6:5c:89:85:e0:9b:66:f2:ab:22:84:e0:87:e5:ac:e8:e9:b6: 52:ce:37:76 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6x46YetC39B94ZpM3C467MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhMWU2OTM2OGFiZDM0NTM4ZmU3N2RkYWFiY2RjODM1YWY1 OTVlYmEwHhcNMjYwMTAxMTgxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMGU3NzVjM2I3ZTUzMWYwYjBiZjc0YjIxNDVmYmVmMjlkZGU5NzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBKbbkvJWkgHgq6QiaGg0M0kmI+X GYZZAm1G9FCqaCcMHlPIoiCsMkmhZ3CleYjeE9L7N8YRDT57nNMZ8/ve5GLNQV8H IfU4mlK4tKM3AhXHigsINkXeICcEZw61KrMCokcbJW5mEW4VBvRpvbmnxe5anWxk 6GD8mQUHghTPnnFNksI32K8RotZADKS+ekJuI/kDOVKzuOYFtvWCq5CvNGAT4XyQ Utk35+tSfGRsZGaPQ8BIOQ9HoHq3V0NhrHCV5SSY5Rg3wH9Y1F8Ze6fbrd/tByaF U8/gTYRqXy+rcTHlVDxCU5jIPzab5rmYconsDqZIrNIS/Mo6TRow0pyOlQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDDndcO35THwsL90shRfvvKd3pcxMB8GA1UdIwQY MBaAFJoeaTaKvTRTj+d92qvNyDWvWV66MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjIt MTA5ODJlMDQwZDUzLzEvTU9kMXc3ZmxNZkN3djNTeUZGLS04cDNlbHpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjItMTA5ODJlMDQwZDUz LzEvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAbegFAwQB uX4qMA0GCSqGSIb3DQEBCwUAA4IBAQCWj5XuqJmif3XxCZorn+xWoiTSw/MOctjI zd216ybiaZ1bTIgW7LS188BmmaaV4+LAyIvsIG/5Gt7EaH9Ea+NPXI0XZeTR/KSl UJx8pqWBT6RMl6BzpvroyD293LoCXVZ9PZiTVzrkHJkYW4CAlE1yCjBMEQhmETyd INDSKxAoB0oHeTFm8Hp47Z89GNTXWGQb6zw04HDcygBYx/UTKWb+FdSpBoxdQ8Js LeZrcQMKuMhaGRNYANSBo7Gm2vwJv2D/Lw8PSSOMpwXBh0uF/zXglgz13C8k7guw oUnLktZycOBOZ4/SlqFgHZfWXImF4Jtm8qsihOCH5azo6bZSzjd2 -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:56 2026 by rpki-client