This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/mSR-tUP_TA6P0-YmWv_BmP5dGrQ.roa File: mSR-tUP_TA6P0-YmWv_BmP5dGrQ.roa (raw, json) Hash identifier: Zk3HITKR0Vd5bCtEk7UmjoLjGkblsD2ydJoOujH5Db0= Subject key identifier: 99:24:7E:B5:43:FF:4C:0E:8F:D3:E6:26:5A:FF:C1:98:FE:5D:1A:B4 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019C201E1E59E17364D1DAF19AAFF905B6AD Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/mSR-tUP_TA6P0-YmWv_BmP5dGrQ.roa Signing time: Mon 02 Feb 2026 20:49:30 +0000 ROA not before: Mon 02 Feb 2026 20:49:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216039 IP address blocks: 144.31.225.0/24 maxlen: 24 185.176.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:20:1e:1e:59:e1:73:64:d1:da:f1:9a:af:f9:05:b6:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Feb 2 20:49:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=99247eb543ff4c0e8fd3e6265affc198fe5d1ab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ac:2d:bc:19:48:8d:b9:7f:c7:b4:d6:49:f0: f5:4c:e7:cf:2f:ce:de:08:71:6d:57:c6:16:41:49: 6b:e5:45:d6:1c:34:d6:72:10:69:56:6a:25:6b:c9: 67:2f:80:cf:10:15:b1:25:5e:86:2e:40:55:b2:40: 1c:4d:66:79:6c:20:b6:d5:a8:ba:62:a7:e9:e8:6a: 4b:ec:e4:1b:3a:73:f4:66:99:cc:c7:e5:05:b5:2b: bb:02:72:80:e7:d1:24:9a:12:3c:6a:67:3e:e7:04: eb:fb:bc:36:f9:47:fb:83:04:8f:e2:02:67:a1:5f: af:fb:0a:bc:02:de:3c:6b:d3:f1:09:2f:aa:5e:14: fa:fe:0c:81:83:bc:19:d9:de:7c:14:7b:0c:e3:b3: ef:b2:34:8b:1f:9c:cb:37:2b:54:93:4f:ca:28:e3: 24:4f:15:15:df:1c:ed:0b:d0:83:46:e0:0a:c1:28: b4:b5:9e:f0:98:76:e2:84:fd:1c:ce:c0:61:d4:33: 73:73:98:09:15:4c:ed:16:23:de:05:f4:00:ef:e2: d9:27:ed:f8:15:b9:52:9f:e8:a4:20:88:00:bc:80: 10:1b:5e:53:48:57:de:17:1b:fc:3b:26:c8:30:a0: bd:53:4d:aa:ae:2e:c3:01:38:33:e8:cd:0d:2e:bc: 4a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:24:7E:B5:43:FF:4C:0E:8F:D3:E6:26:5A:FF:C1:98:FE:5D:1A:B4 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/mSR-tUP_TA6P0-YmWv_BmP5dGrQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.31.225.0/24 185.176.94.0/24 Signature Algorithm: sha256WithRSAEncryption 38:c3:98:ad:ec:0f:a7:3e:b1:db:b0:de:b9:2a:e1:b0:8c:e1: ba:6e:5d:64:07:94:db:ec:fd:ba:12:f5:88:ac:43:6b:4d:35: 95:ac:cf:85:b4:6c:4c:86:3d:a9:34:5b:12:08:63:3c:cd:9f: 7e:1f:a2:44:99:ef:d6:9a:d2:e5:78:35:7a:c4:40:74:a8:b5: 6a:73:86:e9:21:8b:db:79:20:59:91:91:38:be:90:b1:46:20: fd:b2:d2:8b:82:16:ef:8e:37:19:42:03:6c:21:9a:c8:94:a8: d7:7c:b0:be:fe:83:ae:d6:0f:ba:61:5b:da:be:76:6e:17:09: 71:2c:c7:83:f6:a5:d4:56:69:c3:7c:b8:04:1a:00:19:3e:df: c7:c0:fe:02:c2:20:c3:1f:b5:3c:59:3f:0f:b8:08:7a:9f:91: c9:d0:de:e8:98:1d:6e:36:24:51:35:ad:95:39:ae:04:17:10: 17:dd:37:67:b8:58:1f:14:ea:c3:ce:98:2f:3d:c4:1b:b6:e8: fb:3b:71:d7:1f:96:7d:ec:9f:aa:e3:ca:f7:5f:49:67:af:85: 0a:60:26:36:8a:02:a7:7d:ea:e1:50:69:ae:30:d6:74:be:d7: 58:c5:9b:c7:de:85:82:c0:ef:91:0c:bc:79:63:8b:ae:aa:dd: 83:c6:f5:b9 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZwgHh5Z4XNk0drxmq/5BbatMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMjAyMjA0OTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTI0N2ViNTQzZmY0YzBlOGZkM2U2MjY1YWZmYzE5OGZlNWQxYWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxawtvBlIjbl/x7TWSfD1TOfPL87e CHFtV8YWQUlr5UXWHDTWchBpVmola8lnL4DPEBWxJV6GLkBVskAcTWZ5bCC21ai6 Yqfp6GpL7OQbOnP0ZpnMx+UFtSu7AnKA59EkmhI8amc+5wTr+7w2+Uf7gwSP4gJn oV+v+wq8At48a9PxCS+qXhT6/gyBg7wZ2d58FHsM47PvsjSLH5zLNytUk0/KKOMk TxUV3xztC9CDRuAKwSi0tZ7wmHbihP0czsBh1DNzc5gJFUztFiPeBfQA7+LZJ+34 FblSn+ikIIgAvIAQG15TSFfeFxv8OybIMKC9U02qri7DATgz6M0NLrxK/QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJkkfrVD/0wOj9PmJlr/wZj+XRq0MB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvbVNSLXRVUF9UQTZQMC1ZbVd2X0JtUDVkR3JRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAkB/hAwQA ubBeMA0GCSqGSIb3DQEBCwUAA4IBAQA4w5it7A+nPrHbsN65KuGwjOG6bl1kB5Tb 7P26EvWIrENrTTWVrM+FtGxMhj2pNFsSCGM8zZ9+H6JEme/WmtLleDV6xEB0qLVq c4bpIYvbeSBZkZE4vpCxRiD9stKLghbvjjcZQgNsIZrIlKjXfLC+/oOu1g+6YVva vnZuFwlxLMeD9qXUVmnDfLgEGgAZPt/HwP4CwiDDH7U8WT8PuAh6n5HJ0N7omB1u NiRRNa2VOa4EFxAX3TdnuFgfFOrDzpgvPcQbtuj7O3HXH5Z97J+q48r3X0lnr4UK YCY2igKnferhUGmuMNZ0vtdYxZvH3oWCwO+RDLx5Y4uuqt2DxvW5 -----END CERTIFICATE-----Generated at Wed Feb 4 10:06:10 2026 by rpki-client