This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/4a05f0-7abb-4e1f-8c27-215cd570e409/1/mGIcxgiPYTdH4yLZmV0JBleuht4.roa File: mGIcxgiPYTdH4yLZmV0JBleuht4.roa (raw, json) Hash identifier: OZj4BcogggilSPwT8xEb1QoBaX+3k88vX0bMKlFe0Qg= Subject key identifier: 98:62:1C:C6:08:8F:61:37:47:E3:22:D9:99:5D:09:06:57:AE:86:DE Certificate issuer: /CN=cea179e4f353ea9dcaf02f37a72b750ecfa1c354 Certificate serial: 019B7D5C846D57DB000F39B64DF91F0EA64E Authority key identifier: CE:A1:79:E4:F3:53:EA:9D:CA:F0:2F:37:A7:2B:75:0E:CF:A1:C3:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zqF55PNT6p3K8C83pyt1Ds-hw1Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/4a05f0-7abb-4e1f-8c27-215cd570e409/1/mGIcxgiPYTdH4yLZmV0JBleuht4.roa Signing time: Fri 02 Jan 2026 06:19:33 +0000 ROA not before: Fri 02 Jan 2026 06:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48666 IP address blocks: 91.223.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/4a05f0-7abb-4e1f-8c27-215cd570e409/1/zqF55PNT6p3K8C83pyt1Ds-hw1Q.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/4a05f0-7abb-4e1f-8c27-215cd570e409/1/zqF55PNT6p3K8C83pyt1Ds-hw1Q.mft rsync://rpki.ripe.net/repository/DEFAULT/zqF55PNT6p3K8C83pyt1Ds-hw1Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:84:6d:57:db:00:0f:39:b6:4d:f9:1f:0e:a6:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cea179e4f353ea9dcaf02f37a72b750ecfa1c354 Validity Not Before: Jan 2 06:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=98621cc6088f613747e322d9995d090657ae86de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:12:80:13:d2:07:c3:14:85:96:e1:7e:1d:62: 8c:1a:1b:71:15:7a:49:fd:85:3f:b4:17:96:59:5c: 62:e3:4d:0e:a7:c7:b6:0f:a0:ba:dd:dc:5e:e9:52: ee:0d:f1:0a:a5:13:cd:e3:49:43:40:7f:b5:97:d8: 40:18:f0:9f:f2:7e:46:38:b8:4c:35:46:6f:11:5f: a5:09:5b:b1:36:15:10:8d:3f:14:be:8e:47:b7:53: 40:7c:06:a3:2c:15:41:af:fb:ca:1b:2d:5f:af:8a: 18:4d:70:55:41:cb:4b:91:c6:48:8a:c8:96:89:91: c2:c5:fd:d5:80:88:3a:e2:68:04:ec:80:8e:6c:72: 46:6f:8b:75:dd:6a:6f:2a:7b:cd:b1:c4:fb:ec:44: 38:ab:08:7c:8a:fc:f1:6f:e6:c9:cb:db:09:56:fc: 57:62:b1:4c:1b:92:2f:a1:df:17:6c:8d:62:73:94: a8:0f:f1:a7:1d:b9:c1:07:ee:3b:09:37:ff:41:04: 34:1b:b5:ab:33:19:01:38:26:f7:ab:28:e6:4e:41: 3e:0d:41:10:59:3a:10:4a:b9:a6:3f:d1:93:7d:55: 23:84:cf:03:92:10:98:a0:43:a4:ea:c4:5e:1d:e6: 5b:1c:3b:9a:2d:0b:1d:98:60:6e:47:1b:be:4e:ce: 30:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:62:1C:C6:08:8F:61:37:47:E3:22:D9:99:5D:09:06:57:AE:86:DE X509v3 Authority Key Identifier: keyid:CE:A1:79:E4:F3:53:EA:9D:CA:F0:2F:37:A7:2B:75:0E:CF:A1:C3:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zqF55PNT6p3K8C83pyt1Ds-hw1Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/4a05f0-7abb-4e1f-8c27-215cd570e409/1/mGIcxgiPYTdH4yLZmV0JBleuht4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/4a05f0-7abb-4e1f-8c27-215cd570e409/1/zqF55PNT6p3K8C83pyt1Ds-hw1Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.144.0/24 Signature Algorithm: sha256WithRSAEncryption d0:7b:05:f2:8f:1b:40:db:4b:c6:d0:e8:93:3c:3f:f8:33:89: e8:5b:fa:2f:f5:58:c6:2b:ce:6b:c9:6f:74:04:8a:be:a5:ff: 7d:cd:53:ab:8d:0c:73:6b:bc:5f:56:dd:de:c6:ae:8f:06:b5: 5a:39:88:7e:22:1f:b0:76:26:9f:a2:59:fd:b7:42:d5:c8:00: 44:3b:24:b2:2d:be:31:3d:54:5a:a0:16:2a:e6:0a:9a:8d:f6: be:ba:2a:cc:fe:5b:80:14:a4:d4:19:d3:a7:64:d4:e4:bd:be: 75:a7:8c:e0:91:85:b8:68:c6:f4:94:c3:d7:a8:01:0c:bb:78: ca:65:43:62:48:55:5e:80:25:42:55:0f:97:38:9e:87:15:96: 0b:93:18:e5:83:b9:c3:e6:db:cf:5c:c5:c8:97:75:59:be:fa: 5d:a7:46:06:72:8e:4b:b8:f1:5b:07:3c:c8:03:bf:24:53:1c: 51:a5:e0:61:53:70:e7:7c:45:bb:b6:a5:0e:8d:a0:0e:e3:77: 0d:d1:fc:d5:48:8d:d9:ca:98:32:c8:ea:b2:a6:f2:19:f7:89: 96:0b:9f:35:f0:a0:22:9a:2d:96:56:e2:e5:67:c4:f2:e9:ce: a1:8d:89:ee:3e:5f:30:88:16:0d:30:71:b2:fb:be:d4:d2:43: 3e:a6:9b:9c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XIRtV9sADzm2TfkfDqZOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlYTE3OWU0ZjM1M2VhOWRjYWYwMmYzN2E3MmI3NTBlY2Zh MWMzNTQwHhcNMjYwMTAyMDYxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODYyMWNjNjA4OGY2MTM3NDdlMzIyZDk5OTVkMDkwNjU3YWU4NmRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhKAE9IHwxSFluF+HWKMGhtxFXpJ /YU/tBeWWVxi400Op8e2D6C63dxe6VLuDfEKpRPN40lDQH+1l9hAGPCf8n5GOLhM NUZvEV+lCVuxNhUQjT8Uvo5Ht1NAfAajLBVBr/vKGy1fr4oYTXBVQctLkcZIisiW iZHCxf3VgIg64mgE7ICObHJGb4t13WpvKnvNscT77EQ4qwh8ivzxb+bJy9sJVvxX YrFMG5Ivod8XbI1ic5SoD/GnHbnBB+47CTf/QQQ0G7WrMxkBOCb3qyjmTkE+DUEQ WToQSrmmP9GTfVUjhM8DkhCYoEOk6sReHeZbHDuaLQsdmGBuRxu+Ts4wPQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJhiHMYIj2E3R+Mi2ZldCQZXrobeMB8GA1UdIwQY MBaAFM6heeTzU+qdyvAvN6crdQ7PocNUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenFGNTVQTlQ2cDNLOEM4M3B5dDFEcy1odzFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy80YTA1ZjAtN2FiYi00ZTFmLThjMjct MjE1Y2Q1NzBlNDA5LzEvbUdJY3hnaVBZVGRINHlMWm1WMEpCbGV1aHQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy80YTA1ZjAtN2FiYi00ZTFmLThjMjctMjE1Y2Q1NzBlNDA5 LzEvenFGNTVQTlQ2cDNLOEM4M3B5dDFEcy1odzFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9+QMA0G CSqGSIb3DQEBCwUAA4IBAQDQewXyjxtA20vG0OiTPD/4M4noW/ov9VjGK85ryW90 BIq+pf99zVOrjQxza7xfVt3exq6PBrVaOYh+Ih+wdiafoln9t0LVyABEOySyLb4x PVRaoBYq5gqajfa+uirM/luAFKTUGdOnZNTkvb51p4zgkYW4aMb0lMPXqAEMu3jK ZUNiSFVegCVCVQ+XOJ6HFZYLkxjlg7nD5tvPXMXIl3VZvvpdp0YGco5LuPFbBzzI A78kUxxRpeBhU3DnfEW7tqUOjaAO43cN0fzVSI3ZypgyyOqypvIZ94mWC5818KAi mi2WVuLlZ8Ty6c6hjYnuPl8wiBYNMHGy+77U0kM+ppuc -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:08 2026 by rpki-client