This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/MH-6sP6ad1MyZ9g5ruXFKwAmTz4.roa File: MH-6sP6ad1MyZ9g5ruXFKwAmTz4.roa (raw, json) Hash identifier: Rd5Hw6jPtPccbeqIZpgEb4AG6o8It7LiVDSR9ypoxKQ= Subject key identifier: 30:7F:BA:B0:FE:9A:77:53:32:67:D8:39:AE:E5:C5:2B:00:26:4F:3E Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56 Certificate serial: 019B7C806D943C33C618EF271B4D76211FD1 Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/MH-6sP6ad1MyZ9g5ruXFKwAmTz4.roa Signing time: Fri 02 Jan 2026 02:19:09 +0000 ROA not before: Fri 02 Jan 2026 02:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212314 IP address blocks: 80.64.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:6d:94:3c:33:c6:18:ef:27:1b:4d:76:21:1f:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56 Validity Not Before: Jan 2 02:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=307fbab0fe9a77533267d839aee5c52b00264f3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:31:93:75:2d:29:b0:9f:bd:0e:61:02:10:23: 77:56:92:ad:05:66:43:c2:41:c7:0a:4c:37:b4:73: 75:3c:76:d9:9b:df:b6:23:39:ee:e2:c9:4d:a7:6c: 90:80:e7:98:b3:65:4f:8c:ff:d3:c0:22:bd:5d:e3: 6c:40:de:b8:dd:51:60:2a:e3:82:35:2a:f0:28:11: b3:2d:89:88:fa:c1:0d:4b:60:8b:58:8e:74:00:70: ac:a4:1a:a9:6a:00:19:c3:0a:b2:56:dd:78:82:aa: 33:04:13:11:2a:ce:5e:47:1a:bb:20:6a:84:f4:19: 62:7b:3d:8b:20:d6:9f:ae:c2:fb:2b:36:94:c6:89: 6d:36:d4:8c:9a:f7:51:f1:3e:4b:07:a3:05:49:ae: d1:3e:d1:12:7a:23:7a:0e:43:eb:cb:ca:25:75:64: c0:1b:75:4e:35:62:c4:ad:12:44:04:87:9c:ba:30: 4b:39:63:59:92:c6:14:e2:88:81:da:81:c9:45:ac: c6:ca:e7:18:56:07:b5:60:77:32:ba:9e:30:44:bf: 8e:1b:fe:71:bd:37:59:0d:f7:ee:fe:60:49:be:a9: aa:e0:eb:c6:1e:1e:a4:21:cd:f1:de:a9:00:58:22: 6b:83:0c:fa:99:3a:3d:cc:8b:80:2f:71:48:55:df: f4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:7F:BA:B0:FE:9A:77:53:32:67:D8:39:AE:E5:C5:2B:00:26:4F:3E X509v3 Authority Key Identifier: keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/MH-6sP6ad1MyZ9g5ruXFKwAmTz4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.64.16.0/24 Signature Algorithm: sha256WithRSAEncryption 63:0b:e4:fd:72:a2:ef:03:d7:15:1f:4e:1d:0b:95:fb:74:cb: 9f:cd:c2:3f:3a:5d:ae:01:e8:52:56:7c:fc:fd:97:8f:51:32: ae:71:c6:8a:e0:db:ed:8e:27:f3:bd:71:9a:7f:98:e9:0b:33: be:dc:05:fc:6e:86:66:c4:03:6a:eb:04:2c:02:e4:2b:cf:73: e5:40:fc:02:95:df:27:32:59:28:42:d3:b6:c1:c0:b7:d4:80: a1:8a:d0:1d:e1:42:c3:fd:6a:f8:53:60:40:3d:0e:79:7e:a9: 0e:97:ae:f9:e3:a2:da:f3:16:96:4e:50:e0:11:d4:77:82:13: 0b:2b:b3:3b:a6:2e:55:9a:7c:82:3c:b6:d9:cc:10:d3:17:3e: c4:91:24:09:97:6d:d7:6c:b9:6e:14:98:3e:89:ea:fd:41:d2: a4:47:0e:ed:24:82:95:87:bc:28:cf:e4:5e:ea:a7:b0:fa:74: fb:fb:2a:af:26:92:de:17:b1:ec:dc:bd:75:ae:ad:29:35:45: ef:cb:66:ec:d3:c4:00:7b:53:be:94:f4:64:b5:76:78:7c:b2: cf:33:3c:ff:dc:30:bc:aa:28:d7:fa:ba:c4:5d:f6:1e:50:33: 01:82:ba:ae:4a:aa:de:ba:38:95:47:92:47:c8:ba:72:31:9a: 01:86:06:ab -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gG2UPDPGGO8nG012IR/RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0 ZjVlNTYwHhcNMjYwMTAyMDIxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMDdmYmFiMGZlOWE3NzUzMzI2N2Q4MzlhZWU1YzUyYjAwMjY0ZjNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDGTdS0psJ+9DmECECN3VpKtBWZD wkHHCkw3tHN1PHbZm9+2Iznu4slNp2yQgOeYs2VPjP/TwCK9XeNsQN643VFgKuOC NSrwKBGzLYmI+sENS2CLWI50AHCspBqpagAZwwqyVt14gqozBBMRKs5eRxq7IGqE 9Bliez2LINafrsL7KzaUxoltNtSMmvdR8T5LB6MFSa7RPtESeiN6DkPry8oldWTA G3VONWLErRJEBIecujBLOWNZksYU4oiB2oHJRazGyucYVge1YHcyup4wRL+OG/5x vTdZDffu/mBJvqmq4OvGHh6kIc3x3qkAWCJrgwz6mTo9zIuAL3FIVd/0nQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDB/urD+mndTMmfYOa7lxSsAJk8+MB8GA1UdIwQY MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt YmE5OGYxMTIyMTIxLzEvTUgtNnNQNmFkMU15WjlnNXJ1WEZLd0FtVHo0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEAQMA0G CSqGSIb3DQEBCwUAA4IBAQBjC+T9cqLvA9cVH04dC5X7dMufzcI/Ol2uAehSVnz8 /ZePUTKuccaK4NvtjifzvXGaf5jpCzO+3AX8boZmxANq6wQsAuQrz3PlQPwCld8n MlkoQtO2wcC31IChitAd4ULD/Wr4U2BAPQ55fqkOl67546La8xaWTlDgEdR3ghML K7M7pi5VmnyCPLbZzBDTFz7EkSQJl23XbLluFJg+ier9QdKkRw7tJIKVh7woz+Re 6qew+nT7+yqvJpLeF7Hs3L11rq0pNUXvy2bs08QAe1O+lPRktXZ4fLLPMzz/3DC8 qijX+rrEXfYeUDMBgrquSqreujiVR5JHyLpyMZoBhgar -----END CERTIFICATE-----Generated at Sat Jan 10 03:55:37 2026 by rpki-client