This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/mr_pNb5yoRFqFtKMWG7FgP2ifyU.roa File: mr_pNb5yoRFqFtKMWG7FgP2ifyU.roa (raw, json) Hash identifier: KUyylK1Gn/i/rEUpdmb4WY0ip5PHMUeW+sIt34Rv4vU= Subject key identifier: 9A:BF:E9:35:BE:72:A1:11:6A:16:D2:8C:58:6E:C5:80:FD:A2:7F:25 Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db Certificate serial: 019B7910884E3BC9AC326084CDF200479D64 Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/mr_pNb5yoRFqFtKMWG7FgP2ifyU.roa Signing time: Thu 01 Jan 2026 10:18:05 +0000 ROA not before: Thu 01 Jan 2026 10:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61157 IP address blocks: 46.23.208.0/21 maxlen: 24 62.75.174.0/24 maxlen: 24 185.55.68.0/22 maxlen: 24 185.209.64.0/22 maxlen: 22 188.64.192.0/21 maxlen: 21 195.244.96.0/19 maxlen: 19 212.1.32.0/19 maxlen: 19 2a02:ad0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.mft rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 12:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:88:4e:3b:c9:ac:32:60:84:cd:f2:00:47:9d:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db Validity Not Before: Jan 1 10:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9abfe935be72a1116a16d28c586ec580fda27f25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7a:0d:e8:e8:31:f9:31:f3:c5:1a:99:24:25: d6:9a:e3:ad:11:04:be:3d:dc:8c:45:b7:29:b0:d6: 40:95:22:c4:bb:67:b0:85:9b:5b:2d:03:83:45:2a: a5:58:17:c0:c0:0a:e4:7a:58:51:0c:46:71:ab:32: 1c:cf:f1:ea:83:39:c7:30:12:c5:03:eb:a8:d9:1f: fc:6c:fc:54:59:c1:ab:54:8d:65:70:d2:bb:39:a4: 3c:44:c3:aa:94:6f:d9:ca:34:80:16:a5:87:b5:1a: 94:c9:90:37:c7:ed:f2:00:34:c2:32:4a:46:da:3f: 3d:c8:4f:5e:b2:04:e1:93:55:2e:9b:5a:10:84:2b: 97:12:b5:62:fc:7b:88:55:c4:10:93:5f:ca:dd:78: 53:0e:74:49:ac:c8:4c:fd:d8:a3:ff:5f:90:c3:73: 23:02:4e:3d:b4:64:c6:89:4d:87:9e:72:b7:8e:76: 02:7c:e2:51:bb:dd:45:a0:33:9c:74:35:4c:b8:f8: 00:23:04:24:f3:a9:f0:66:9d:fe:c0:0b:a6:a1:c6: 85:7d:a9:dc:34:50:ca:db:ff:88:b7:8f:26:fd:e0: ad:2e:00:1b:24:a9:5b:0e:02:68:55:69:75:3c:81: 2b:e4:a1:90:72:e2:1c:2f:f6:07:9d:27:4f:a6:b1: 0a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:BF:E9:35:BE:72:A1:11:6A:16:D2:8C:58:6E:C5:80:FD:A2:7F:25 X509v3 Authority Key Identifier: keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/mr_pNb5yoRFqFtKMWG7FgP2ifyU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.23.208.0/21 62.75.174.0/24 185.55.68.0/22 185.209.64.0/22 188.64.192.0/21 195.244.96.0/19 212.1.32.0/19 IPv6: 2a02:ad0::/29 Signature Algorithm: sha256WithRSAEncryption 64:68:2b:73:ad:d4:dd:7a:72:dc:fe:79:9d:fe:f4:e9:20:f0: 14:1c:f9:a3:df:59:6b:f4:7f:ce:ed:bf:1a:ac:9c:71:ef:6d: aa:3e:87:09:c3:2f:cd:fb:da:a7:d6:11:c5:1d:45:10:6c:bb: db:6d:c6:88:5c:8b:3c:4f:a9:56:7b:cd:d8:d9:90:ef:18:a2: 76:aa:5c:fd:00:44:f1:d0:73:9a:9c:be:0d:01:fb:9a:a2:a5: 8e:f9:33:c2:03:e6:1d:39:e8:10:ae:a3:5f:52:1c:56:e5:ed: 6e:43:81:ac:f0:2f:ee:f4:4a:0e:3e:f2:4e:3e:40:8e:e3:e3: a2:96:e5:87:f0:81:b8:79:c2:09:64:07:46:17:16:0a:d3:58: f5:74:34:d6:63:28:43:57:65:5a:29:16:77:32:25:89:32:e9: 65:c3:f2:16:86:eb:df:8c:8f:45:6d:bf:7e:86:37:af:dd:54: 16:f4:f8:a0:49:ac:c4:1a:1b:d4:54:90:88:df:af:24:fc:27: fa:d7:4c:96:11:ed:61:29:81:ba:48:43:36:1a:df:53:4a:ee: 8a:6e:55:0f:16:20:d5:9a:f1:93:8d:fe:24:51:f8:e7:12:72: ed:61:55:6d:bf:30:8b:0c:fb:6d:92:c6:27:fb:d6:a3:81:36: 50:dc:25:31 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt5EIhOO8msMmCEzfIAR51kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3NDcwMTc1NjRjNzExYmNiZDU3NjgwYTBkZmQwMGYyYTVk MDk5ZGIwHhcNMjYwMTAxMTAxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YWJmZTkzNWJlNzJhMTExNmExNmQyOGM1ODZlYzU4MGZkYTI3ZjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXoN6Ogx+THzxRqZJCXWmuOtEQS+ PdyMRbcpsNZAlSLEu2ewhZtbLQODRSqlWBfAwArkelhRDEZxqzIcz/HqgznHMBLF A+uo2R/8bPxUWcGrVI1lcNK7OaQ8RMOqlG/ZyjSAFqWHtRqUyZA3x+3yADTCMkpG 2j89yE9esgThk1Uum1oQhCuXErVi/HuIVcQQk1/K3XhTDnRJrMhM/dij/1+Qw3Mj Ak49tGTGiU2HnnK3jnYCfOJRu91FoDOcdDVMuPgAIwQk86nwZp3+wAumocaFfanc NFDK2/+It48m/eCtLgAbJKlbDgJoVWl1PIEr5KGQcuIcL/YHnSdPprEKfwIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFJq/6TW+cqERahbSjFhuxYD9on8lMB8GA1UdIwQY MBaAFNdHAXVkxxG8vVdoCg39APKl0JnbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjIt NGYwZThjZTExYTdkLzEvbXJfcE5iNXlvUkZxRnRLTVdHN0ZnUDJpZnlVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjItNGYwZThjZTExYTdk LzEvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQDLhfQAwQA PkuuAwQCuTdEAwQCudFAAwQDvEDAAwQFw/RgAwQF1AEgMA0EAgACMAcDBQMqAgrQ MA0GCSqGSIb3DQEBCwUAA4IBAQBkaCtzrdTdenLc/nmd/vTpIPAUHPmj31lr9H/O 7b8arJxx722qPocJwy/N+9qn1hHFHUUQbLvbbcaIXIs8T6lWe83Y2ZDvGKJ2qlz9 AETx0HOanL4NAfuaoqWO+TPCA+YdOegQrqNfUhxW5e1uQ4Gs8C/u9EoOPvJOPkCO 4+OiluWH8IG4ecIJZAdGFxYK01j1dDTWYyhDV2VaKRZ3MiWJMullw/IWhuvfjI9F bb9+hjev3VQW9PigSazEGhvUVJCI368k/Cf610yWEe1hKYG6SEM2Gt9TSu6KblUP FiDVmvGTjf4kUfjnEnLtYVVtvzCLDPttksYn+9ajgTZQ3CUx -----END CERTIFICATE-----Generated at Wed Jan 21 18:43:23 2026 by rpki-client