This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/mQmNjaIvSR8hFSlTWR0m8SQs8rc.roa File: mQmNjaIvSR8hFSlTWR0m8SQs8rc.roa (raw, json) Hash identifier: IYNaZADqAUjk7/e1/iYar80jbxVV3W9VuV1VEhmJ4Ho= Subject key identifier: 99:09:8D:8D:A2:2F:49:1F:21:15:29:53:59:1D:26:F1:24:2C:F2:B7 Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d Certificate serial: 019B7C130D6AA49032495BB51481C8CE6A70 Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/mQmNjaIvSR8hFSlTWR0m8SQs8rc.roa Signing time: Fri 02 Jan 2026 00:19:41 +0000 ROA not before: Fri 02 Jan 2026 00:19:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216381 IP address blocks: 194.209.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.mft rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:0d:6a:a4:90:32:49:5b:b5:14:81:c8:ce:6a:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d Validity Not Before: Jan 2 00:19:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=99098d8da22f491f21152953591d26f1242cf2b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f3:41:1a:bb:cc:b8:a0:19:13:23:c7:fd:2a: 9c:eb:56:29:29:d5:21:6f:5d:23:95:9a:8d:78:8c: 0c:a7:67:93:73:17:85:7d:c3:74:ee:08:0f:17:69: 57:42:2d:c3:76:fc:ea:30:2a:fd:74:c4:e7:50:5f: 3c:dd:e5:81:24:0f:ae:c9:5d:76:8c:3c:9b:f1:c0: 0b:85:56:12:28:17:a9:8b:d8:f6:69:c0:a7:24:d0: 7a:17:de:53:d8:6a:35:c8:19:da:f7:29:ac:12:06: e0:93:8f:c7:01:0e:38:c3:ca:1d:1e:3f:30:7b:c9: b4:c7:4f:53:64:d4:17:d0:25:cf:3a:0b:73:ee:12: d9:63:6e:03:8d:13:95:21:50:70:0d:67:1b:f7:2d: 40:84:b5:7c:1c:e6:58:4a:5b:58:d5:74:3c:1b:b9: ec:d1:fb:34:9a:d4:92:a6:ba:a4:57:d2:fe:7b:8e: aa:68:96:79:05:77:10:fa:10:e8:ff:c3:50:2c:d6: 7e:8e:70:ab:31:9a:6d:36:fb:ac:9a:4f:59:03:a7: 1b:9f:a0:11:4e:36:31:92:00:22:89:db:24:8e:e7: a8:25:b6:c0:12:cc:2f:64:33:06:01:19:06:66:21: 1d:5a:a8:72:ba:0c:21:02:52:e8:1b:24:8a:81:87: b5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:09:8D:8D:A2:2F:49:1F:21:15:29:53:59:1D:26:F1:24:2C:F2:B7 X509v3 Authority Key Identifier: keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/mQmNjaIvSR8hFSlTWR0m8SQs8rc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.209.113.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:ec:23:98:f4:76:40:15:03:85:09:58:2a:01:4a:eb:8c:94: 39:40:0d:1d:7d:46:01:7a:ce:a3:a8:01:75:a8:a7:89:f1:5a: ea:0d:1c:54:08:87:55:c5:d9:26:ee:21:97:bf:f0:28:fe:ca: a8:35:01:92:3f:c0:92:a7:b8:e4:a8:77:c4:03:07:53:12:9b: 10:f8:fd:a8:05:a8:fd:13:24:6f:3d:17:d7:9c:36:8d:7d:f8: 0a:78:ee:85:9f:af:3c:0b:60:b8:3c:ab:33:d9:3e:aa:88:cb: 70:37:59:03:94:64:9d:8a:db:5a:21:37:da:ec:f6:34:5b:1d: 1d:1f:db:95:fe:23:2f:75:7d:a0:8e:7a:db:7f:58:15:b7:0d: b3:97:c0:bd:a5:37:59:f3:73:eb:dd:9d:81:66:e9:3a:c9:9a: 39:80:71:71:e5:80:14:37:b4:f4:87:fa:9c:63:90:69:c4:90: db:d8:f7:66:43:73:e0:b5:96:40:db:49:6e:68:7f:57:ea:5b: ed:16:af:42:72:49:01:04:9c:eb:39:e1:f1:8d:66:3e:6c:d1: 86:4c:0e:92:70:19:2e:75:9d:41:9b:fd:45:49:5d:b5:c2:87: ef:3d:27:e0:91:40:07:67:c1:f2:8c:a9:98:ff:92:cc:98:ab: 2b:53:97:08 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Ew1qpJAySVu1FIHIzmpwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2NjNmM2RiMTUyZTA1NWFjMTQ1YmRiYjQyOWUwMTg2NTQy MDRjOGQwHhcNMjYwMTAyMDAxOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTA5OGQ4ZGEyMmY0OTFmMjExNTI5NTM1OTFkMjZmMTI0MmNmMmI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfNBGrvMuKAZEyPH/Sqc61YpKdUh b10jlZqNeIwMp2eTcxeFfcN07ggPF2lXQi3DdvzqMCr9dMTnUF883eWBJA+uyV12 jDyb8cALhVYSKBepi9j2acCnJNB6F95T2Go1yBna9ymsEgbgk4/HAQ44w8odHj8w e8m0x09TZNQX0CXPOgtz7hLZY24DjROVIVBwDWcb9y1AhLV8HOZYSltY1XQ8G7ns 0fs0mtSSprqkV9L+e46qaJZ5BXcQ+hDo/8NQLNZ+jnCrMZptNvusmk9ZA6cbn6AR TjYxkgAiidskjueoJbbAEswvZDMGARkGZiEdWqhyugwhAlLoGySKgYe1PwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJkJjY2iL0kfIRUpU1kdJvEkLPK3MB8GA1UdIwQY MBaAFCZj89sVLgVawUW9u0KeAYZUIEyNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUt YmQxOTI2NzZjOWJiLzEvbVFtTmphSXZTUjhoRlNsVFdSMG04U1FzOHJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUtYmQxOTI2NzZjOWJi LzEvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwtFxMA0G CSqGSIb3DQEBCwUAA4IBAQAs7COY9HZAFQOFCVgqAUrrjJQ5QA0dfUYBes6jqAF1 qKeJ8VrqDRxUCIdVxdkm7iGXv/Ao/sqoNQGSP8CSp7jkqHfEAwdTEpsQ+P2oBaj9 EyRvPRfXnDaNffgKeO6Fn688C2C4PKsz2T6qiMtwN1kDlGSdittaITfa7PY0Wx0d H9uV/iMvdX2gjnrbf1gVtw2zl8C9pTdZ83Pr3Z2BZuk6yZo5gHFx5YAUN7T0h/qc Y5BpxJDb2PdmQ3PgtZZA20luaH9X6lvtFq9CckkBBJzrOeHxjWY+bNGGTA6ScBku dZ1Bm/1FSV21wofvPSfgkUAHZ8HyjKmY/5LMmKsrU5cI -----END CERTIFICATE-----Generated at Mon Jan 26 17:44:23 2026 by rpki-client