This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/f9a8ec-f582-475c-8cc9-d5c8635bec88/1/MJsBtMXDsOv4TTZ2efs5vOnxahY.roa File: MJsBtMXDsOv4TTZ2efs5vOnxahY.roa (raw, json) Hash identifier: jJGmnHuAyaWahhHhka2WAv2IAmrJwIOdndtEnTBheHs= Subject key identifier: 30:9B:01:B4:C5:C3:B0:EB:F8:4D:36:76:79:FB:39:BC:E9:F1:6A:16 Certificate issuer: /CN=bd6aa7362d36792cbcfa83609b5d75cc965f3faf Certificate serial: 019B7EA6FC0B8AB579DB036C2BE40AE3F378 Authority key identifier: BD:6A:A7:36:2D:36:79:2C:BC:FA:83:60:9B:5D:75:CC:96:5F:3F:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vWqnNi02eSy8-oNgm111zJZfP68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/f9a8ec-f582-475c-8cc9-d5c8635bec88/1/MJsBtMXDsOv4TTZ2efs5vOnxahY.roa Signing time: Fri 02 Jan 2026 12:20:31 +0000 ROA not before: Fri 02 Jan 2026 12:20:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208669 IP address blocks: 85.202.92.0/24 maxlen: 24 85.202.93.0/24 maxlen: 24 85.202.94.0/24 maxlen: 24 85.202.95.0/24 maxlen: 24 2a10:1900::/32 maxlen: 32 2a10:1901::/32 maxlen: 32 2a10:1902::/32 maxlen: 32 2a10:1903::/32 maxlen: 32 2a10:1904::/32 maxlen: 32 2a10:1905::/32 maxlen: 32 2a10:1906::/32 maxlen: 32 2a10:1907::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/f9a8ec-f582-475c-8cc9-d5c8635bec88/1/vWqnNi02eSy8-oNgm111zJZfP68.crl rsync://rpki.ripe.net/repository/DEFAULT/35/f9a8ec-f582-475c-8cc9-d5c8635bec88/1/vWqnNi02eSy8-oNgm111zJZfP68.mft rsync://rpki.ripe.net/repository/DEFAULT/vWqnNi02eSy8-oNgm111zJZfP68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:fc:0b:8a:b5:79:db:03:6c:2b:e4:0a:e3:f3:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd6aa7362d36792cbcfa83609b5d75cc965f3faf Validity Not Before: Jan 2 12:20:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=309b01b4c5c3b0ebf84d367679fb39bce9f16a16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:44:43:26:98:ae:e4:a8:a4:47:a0:42:e3:8f: 00:c9:fb:e8:7a:70:db:28:42:1f:ee:8a:81:36:be: 8f:49:7d:e4:ad:e7:f1:2f:5a:7f:38:64:ae:67:ad: 75:25:cc:38:0a:fa:4d:43:e0:52:dc:ef:78:00:19: 1d:d8:ae:2b:d5:40:4c:7b:b7:c7:8a:8d:b5:e6:ae: bd:1e:6e:f8:84:53:e6:df:a5:a5:2f:0d:fe:9f:d9: 98:36:c8:09:1b:73:22:37:1d:db:b6:67:aa:1d:a4: 13:84:ad:1d:9e:72:e9:e9:d5:43:d4:01:4f:88:96: 37:73:f2:4e:af:c8:a5:f2:16:ee:48:fb:01:aa:c2: a5:a7:2b:26:00:e8:bb:66:a8:c5:97:c7:9e:bc:f2: 0a:cb:13:af:23:e0:c3:30:ef:cc:60:6d:99:8e:ef: 4c:42:cf:5d:b3:ed:5a:e8:ee:0c:c0:98:64:1a:19: ab:0a:b4:38:f7:f9:da:47:2a:4b:32:4c:72:e6:19: a2:92:78:45:ce:63:88:ed:65:de:ba:25:ef:77:27: e2:61:8f:24:38:6a:3c:1d:f4:e6:58:11:e2:e2:95: 49:ae:84:15:70:b7:ca:7c:af:79:0e:ba:ef:0d:8b: 5b:b2:d5:ac:b2:06:e2:16:d1:34:98:8f:a2:5f:ed: 61:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9B:01:B4:C5:C3:B0:EB:F8:4D:36:76:79:FB:39:BC:E9:F1:6A:16 X509v3 Authority Key Identifier: keyid:BD:6A:A7:36:2D:36:79:2C:BC:FA:83:60:9B:5D:75:CC:96:5F:3F:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vWqnNi02eSy8-oNgm111zJZfP68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f9a8ec-f582-475c-8cc9-d5c8635bec88/1/MJsBtMXDsOv4TTZ2efs5vOnxahY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f9a8ec-f582-475c-8cc9-d5c8635bec88/1/vWqnNi02eSy8-oNgm111zJZfP68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.202.92.0/22 IPv6: 2a10:1900::/29 Signature Algorithm: sha256WithRSAEncryption 0e:4c:a4:a1:37:bc:5d:39:29:d1:92:3d:2e:89:f8:42:06:84: b9:56:d0:f5:e7:7d:1d:4a:7e:d2:ce:0e:ef:37:d9:cb:5c:36: a5:cb:ca:49:04:2c:48:02:77:fd:87:97:68:2d:d6:fe:1c:26: 7c:3e:76:6b:2b:f1:32:da:02:89:b9:e1:d2:da:34:d7:b9:b5: 05:e4:fe:26:4e:7b:be:b7:66:6e:19:ca:27:6c:18:3a:fc:f5: b4:f0:ff:dd:0c:63:5f:b3:cb:df:7d:92:2a:13:ac:4e:db:b1: 5b:31:43:88:24:40:fa:81:31:45:a6:2c:f7:1b:dc:49:00:03: ee:e2:46:ce:2b:c3:cb:9d:b3:38:a3:97:a1:98:0f:f4:87:1a: aa:26:37:2f:56:1b:93:17:00:0e:98:08:b1:96:8f:81:f3:77: c7:42:08:3b:e1:61:da:d8:11:cb:78:b1:a6:0e:45:6e:64:03: 08:25:bf:4a:ed:8a:7f:62:2a:f4:11:07:be:4d:2a:b9:5a:b0: f7:c6:67:de:ba:a9:a5:56:f7:ae:d2:d1:a8:84:e3:f7:e2:3e: 39:46:2d:73:95:dd:6f:dd:8b:4d:58:e0:4a:8d:52:29:84:a3: 43:4e:5b:ea:05:6a:90:89:b8:8a:f2:cf:72:06:f8:bf:45:fe: fa:b3:73:fb -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pvwLirV52wNsK+QK4/N4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkNmFhNzM2MmQzNjc5MmNiY2ZhODM2MDliNWQ3NWNjOTY1 ZjNmYWYwHhcNMjYwMTAyMTIyMDMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMDliMDFiNGM1YzNiMGViZjg0ZDM2NzY3OWZiMzliY2U5ZjE2YTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkRDJpiu5KikR6BC448AyfvoenDb KEIf7oqBNr6PSX3krefxL1p/OGSuZ611Jcw4CvpNQ+BS3O94ABkd2K4r1UBMe7fH io215q69Hm74hFPm36WlLw3+n9mYNsgJG3MiNx3btmeqHaQThK0dnnLp6dVD1AFP iJY3c/JOr8il8hbuSPsBqsKlpysmAOi7ZqjFl8eevPIKyxOvI+DDMO/MYG2Zju9M Qs9ds+1a6O4MwJhkGhmrCrQ49/naRypLMkxy5hmiknhFzmOI7WXeuiXvdyfiYY8k OGo8HfTmWBHi4pVJroQVcLfKfK95DrrvDYtbstWssgbiFtE0mI+iX+1hFwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDCbAbTFw7Dr+E02dnn7Obzp8WoWMB8GA1UdIwQY MBaAFL1qpzYtNnksvPqDYJtddcyWXz+vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdldxbk5pMDJlU3k4LW9OZ20xMTF6SlpmUDY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9mOWE4ZWMtZjU4Mi00NzVjLThjYzkt ZDVjODYzNWJlYzg4LzEvTUpzQnRNWERzT3Y0VFRaMmVmczV2T254YWhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9mOWE4ZWMtZjU4Mi00NzVjLThjYzktZDVjODYzNWJlYzg4 LzEvdldxbk5pMDJlU3k4LW9OZ20xMTF6SlpmUDY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCVcpcMA0E AgACMAcDBQMqEBkAMA0GCSqGSIb3DQEBCwUAA4IBAQAOTKShN7xdOSnRkj0uifhC BoS5VtD1530dSn7Szg7vN9nLXDaly8pJBCxIAnf9h5doLdb+HCZ8PnZrK/Ey2gKJ ueHS2jTXubUF5P4mTnu+t2ZuGconbBg6/PW08P/dDGNfs8vffZIqE6xO27FbMUOI JED6gTFFpiz3G9xJAAPu4kbOK8PLnbM4o5ehmA/0hxqqJjcvVhuTFwAOmAixlo+B 83fHQgg74WHa2BHLeLGmDkVuZAMIJb9K7Yp/Yir0EQe+TSq5WrD3xmfeuqmlVveu 0tGohOP34j45Ri1zld1v3YtNWOBKjVIphKNDTlvqBWqQibiK8s9yBvi/Rf76s3P7 -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:16 2026 by rpki-client