This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/MtKKGxknpqV0SAwV1SnoWCj8v9Y.roa File: MtKKGxknpqV0SAwV1SnoWCj8v9Y.roa (raw, json) Hash identifier: Xxj9IgPFxpWo1sC6v9L/9rOeH2Ecnvo8hwFv7t6dXh0= Subject key identifier: 32:D2:8A:1B:19:27:A6:A5:74:48:0C:15:D5:29:E8:58:28:FC:BF:D6 Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd Certificate serial: 019B7DCA2A52E54F2CF179DD8B7560589902 Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/MtKKGxknpqV0SAwV1SnoWCj8v9Y.roa Signing time: Fri 02 Jan 2026 08:19:19 +0000 ROA not before: Fri 02 Jan 2026 08:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59651 IP address blocks: 31.40.195.0/24 maxlen: 24 37.72.141.0/24 maxlen: 24 45.141.128.0/24 maxlen: 24 45.159.21.0/24 maxlen: 24 45.159.22.0/24 maxlen: 24 46.253.131.0/24 maxlen: 24 62.204.49.0/24 maxlen: 24 77.83.24.0/22 maxlen: 24 83.97.116.0/22 maxlen: 24 88.218.45.0/24 maxlen: 24 88.218.47.0/24 maxlen: 24 91.246.51.0/24 maxlen: 24 91.247.163.0/24 maxlen: 24 94.154.113.0/24 maxlen: 24 146.19.39.0/24 maxlen: 24 146.19.44.0/24 maxlen: 24 176.126.104.0/24 maxlen: 24 178.20.28.0/22 maxlen: 24 185.202.108.0/24 maxlen: 24 185.212.115.0/24 maxlen: 24 193.31.126.0/24 maxlen: 24 193.42.245.0/24 maxlen: 24 193.151.189.0/24 maxlen: 24 193.151.190.0/24 maxlen: 24 193.151.191.0/24 maxlen: 24 193.163.89.0/24 maxlen: 24 193.163.92.0/24 maxlen: 24 193.163.207.0/24 maxlen: 24 194.70.234.0/24 maxlen: 24 194.99.24.0/24 maxlen: 24 194.99.26.0/24 maxlen: 24 212.18.113.0/24 maxlen: 24 212.18.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.mft rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:2a:52:e5:4f:2c:f1:79:dd:8b:75:60:58:99:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd Validity Not Before: Jan 2 08:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=32d28a1b1927a6a574480c15d529e85828fcbfd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a2:e2:7d:fa:fa:9f:4b:df:70:5a:53:39:97: 03:e8:72:a8:08:72:a2:57:e7:9f:c8:0d:76:28:63: 06:84:a3:0b:ce:ea:b7:95:ea:0d:ca:76:f2:51:e6: d4:27:90:9a:87:a5:d2:84:91:24:f6:8f:21:49:89: fe:d0:54:ff:46:fb:52:a3:db:43:54:d5:64:b5:2d: 73:f2:f7:fe:05:6c:20:b3:df:bf:13:39:0a:97:d3: b3:f7:3e:ee:24:16:80:05:ef:3f:99:a2:81:53:ab: 41:48:18:1a:7a:37:e4:0d:72:f9:7e:82:af:59:5f: ac:cc:8f:be:25:84:3d:e0:1b:aa:3e:70:7f:73:f3: 27:98:35:9d:5a:2c:2a:eb:d7:d0:73:f3:44:8f:e3: 9f:05:cd:77:56:c1:57:02:26:f6:f2:ce:20:bd:f4: e7:3f:5d:47:5b:69:7b:4c:57:b9:87:7e:70:4f:11: 58:ff:5c:05:b5:7c:bb:62:60:a1:99:96:3c:97:22: b7:f9:f2:ee:b1:06:0b:23:4a:23:8e:c7:08:46:0a: 88:ea:77:9c:a0:14:95:21:a4:22:88:64:02:8f:d5: d3:ca:ff:b4:d2:56:52:9d:30:7d:50:c0:dc:92:b0: 20:9c:54:0c:03:71:79:51:bc:9e:07:9c:a2:62:94: c7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D2:8A:1B:19:27:A6:A5:74:48:0C:15:D5:29:E8:58:28:FC:BF:D6 X509v3 Authority Key Identifier: keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/MtKKGxknpqV0SAwV1SnoWCj8v9Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.40.195.0/24 37.72.141.0/24 45.141.128.0/24 45.159.21.0-45.159.22.255 46.253.131.0/24 62.204.49.0/24 77.83.24.0/22 83.97.116.0/22 88.218.45.0/24 88.218.47.0/24 91.246.51.0/24 91.247.163.0/24 94.154.113.0/24 146.19.39.0/24 146.19.44.0/24 176.126.104.0/24 178.20.28.0/22 185.202.108.0/24 185.212.115.0/24 193.31.126.0/24 193.42.245.0/24 193.151.189.0-193.151.191.255 193.163.89.0/24 193.163.92.0/24 193.163.207.0/24 194.70.234.0/24 194.99.24.0/24 194.99.26.0/24 212.18.113.0/24 212.18.127.0/24 Signature Algorithm: sha256WithRSAEncryption 33:80:9a:8d:2a:01:30:2c:ad:5a:99:0b:cd:7a:5f:0a:e7:2e: ac:38:4c:30:a5:99:12:17:3d:36:23:dc:4b:bd:bc:e0:ee:06: d2:c7:03:55:0d:ab:25:81:7a:f4:e4:18:6d:45:f0:37:76:20: 31:38:ba:9f:c5:89:4e:6c:e7:24:28:71:be:6a:0b:4b:b7:83: 57:35:a9:f8:4e:dd:68:94:4e:c3:34:06:8f:e4:81:21:50:50: 1e:f6:79:f2:68:56:f3:86:dd:0e:63:06:d0:4e:4f:31:2a:dd: c9:79:46:03:ec:4b:52:13:3d:21:da:48:3c:20:99:f2:ea:15: 88:2c:25:62:6c:72:2b:b7:ab:39:b3:ac:25:2a:02:61:f2:57: 5d:9c:40:9c:ff:e4:70:7e:de:b0:bf:3a:ac:4f:c2:73:ec:f1: 58:1c:66:38:a0:9f:45:71:63:c7:c7:30:67:37:e0:c3:16:27: ff:a4:c5:30:d3:31:ff:06:99:f4:49:5f:1a:99:de:b1:a3:ba: 80:aa:d2:d6:aa:20:56:bf:0c:02:32:58:82:96:65:10:6d:c3: 6d:4a:8b:b5:14:3d:06:92:c9:c0:b1:a7:bb:27:3a:19:04:66: f7:45:5e:12:2d:1f:30:65:7c:54:88:82:c3:2c:79:49:0d:ab: 58:25:fc:7b -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgISAZt9yipS5U8s8Xndi3VgWJkCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyYzJiODM0ZmJjOTFhZjBlYzZiMWQzNGZkNjQwNTRkMjI2 OWExZmQwHhcNMjYwMTAyMDgxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMmQyOGExYjE5MjdhNmE1NzQ0ODBjMTVkNTI5ZTg1ODI4ZmNiZmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKLiffr6n0vfcFpTOZcD6HKoCHKi V+efyA12KGMGhKMLzuq3leoNynbyUebUJ5Cah6XShJEk9o8hSYn+0FT/RvtSo9tD VNVktS1z8vf+BWwgs9+/EzkKl9Oz9z7uJBaABe8/maKBU6tBSBgaejfkDXL5foKv WV+szI++JYQ94BuqPnB/c/MnmDWdWiwq69fQc/NEj+OfBc13VsFXAib28s4gvfTn P11HW2l7TFe5h35wTxFY/1wFtXy7YmChmZY8lyK3+fLusQYLI0ojjscIRgqI6nec oBSVIaQiiGQCj9XTyv+00lZSnTB9UMDckrAgnFQMA3F5UbyeB5yiYpTHBQIDAQAB o4ICzDCCAsgwHQYDVR0OBBYEFDLSihsZJ6aldEgMFdUp6Fgo/L/WMB8GA1UdIwQY MBaAFOLCuDT7yRrw7GsdNP1kBU0iaaH9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2Et OTk0ODA2ZjA4MWYwLzEvTXRLS0d4a25wcVYwU0F3VjFTbm9XQ2o4djlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2EtOTk0ODA2ZjA4MWYw LzEvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHhBggrBgEFBQcBBwEB/wSB0TCBzjCBywQCAAEwgcQDBAAf KMMDBAAlSI0DBAAtjYAwDAMEAC2fFQMEAC2fFgMEAC79gwMEAD7MMQMEAk1TGAME AlNhdAMEAFjaLQMEAFjaLwMEAFv2MwMEAFv3owMEAF6acQMEAJITJwMEAJITLAME ALB+aAMEArIUHAMEALnKbAMEALnUcwMEAMEffgMEAMEq9TAMAwQAwZe9AwQGwZeA AwQAwaNZAwQAwaNcAwQAwaPPAwQAwkbqAwQAwmMYAwQAwmMaAwQA1BJxAwQA1BJ/ MA0GCSqGSIb3DQEBCwUAA4IBAQAzgJqNKgEwLK1amQvNel8K5y6sOEwwpZkSFz02 I9xLvbzg7gbSxwNVDaslgXr05BhtRfA3diAxOLqfxYlObOckKHG+agtLt4NXNan4 Tt1olE7DNAaP5IEhUFAe9nnyaFbzht0OYwbQTk8xKt3JeUYD7EtSEz0h2kg8IJny 6hWILCVibHIrt6s5s6wlKgJh8lddnECc/+Rwft6wvzqsT8Jz7PFYHGY4oJ9FcWPH xzBnN+DDFif/pMUw0zH/Bpn0SV8amd6xo7qAqtLWqiBWvwwCMliClmUQbcNtSou1 FD0GksnAsae7JzoZBGb3RV4SLR8wZXxUiILDLHlJDatYJfx7 -----END CERTIFICATE-----Generated at Mon Jan 19 21:27:22 2026 by rpki-client