This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/dd0189-7969-4fd5-9747-28bdabca70cb/1/mBkIIhBUokxiDs7U62dP6EGJ28A.roa File: mBkIIhBUokxiDs7U62dP6EGJ28A.roa (raw, json) Hash identifier: KThHm1xgh12oiiD8xAb/mt2PPatVJSHJqHsKnrjqp7Q= Subject key identifier: 98:19:08:22:10:54:A2:4C:62:0E:CE:D4:EB:67:4F:E8:41:89:DB:C0 Certificate issuer: /CN=3948869ce54b9d3b2f3e39aee2c9c8eb19cb5b0f Certificate serial: 019B7D5C108CE2B9BF0E7E99D0ABE8684DDF Authority key identifier: 39:48:86:9C:E5:4B:9D:3B:2F:3E:39:AE:E2:C9:C8:EB:19:CB:5B:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUiGnOVLnTsvPjmu4snI6xnLWw8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/dd0189-7969-4fd5-9747-28bdabca70cb/1/mBkIIhBUokxiDs7U62dP6EGJ28A.roa Signing time: Fri 02 Jan 2026 06:19:04 +0000 ROA not before: Fri 02 Jan 2026 06:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201503 IP address blocks: 82.163.120.0/22 maxlen: 22 82.163.132.0/22 maxlen: 22 185.72.208.0/22 maxlen: 22 185.72.208.0/24 maxlen: 24 185.72.209.0/24 maxlen: 24 185.72.210.0/24 maxlen: 24 2a05:3950::/31 maxlen: 31 2a05:3950:8000::/48 maxlen: 48 2a05:3950:8660::/48 maxlen: 48 2a05:3950:9000::/48 maxlen: 48 2a05:3950:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/dd0189-7969-4fd5-9747-28bdabca70cb/1/OUiGnOVLnTsvPjmu4snI6xnLWw8.crl rsync://rpki.ripe.net/repository/DEFAULT/45/dd0189-7969-4fd5-9747-28bdabca70cb/1/OUiGnOVLnTsvPjmu4snI6xnLWw8.mft rsync://rpki.ripe.net/repository/DEFAULT/OUiGnOVLnTsvPjmu4snI6xnLWw8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:10:8c:e2:b9:bf:0e:7e:99:d0:ab:e8:68:4d:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3948869ce54b9d3b2f3e39aee2c9c8eb19cb5b0f Validity Not Before: Jan 2 06:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=981908221054a24c620eced4eb674fe84189dbc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f8:3f:48:2b:60:5d:cd:5c:dc:39:b1:27:33: bd:3b:1c:c2:f3:61:d3:6f:63:b4:a8:74:6e:86:b5: 92:4b:8f:fa:4b:84:dc:fc:76:6c:f1:b9:90:68:92: 50:75:18:97:86:18:3b:45:0f:c4:6c:71:86:1d:16: b9:e9:f4:09:44:a5:aa:3c:19:ff:3f:04:97:2f:96: db:d3:6f:d1:4f:ae:05:ed:f7:11:7d:c7:21:88:27: 0d:b6:77:7d:f6:bf:e3:9f:d0:cc:09:75:85:83:36: 8c:99:35:4f:ca:9c:28:6d:25:ee:c4:c3:6b:64:d6: 67:1e:fc:b9:63:7e:77:6b:5e:22:5a:e6:41:b7:9d: e7:cc:85:38:13:40:f0:30:27:39:59:4e:f9:7b:11: 4f:a0:71:71:d5:9e:ef:86:51:12:f7:bc:7e:45:0f: 95:79:24:31:5d:dc:99:a1:e3:3c:95:8b:4b:f3:3d: 68:74:cc:77:cb:68:f4:b8:d9:1a:29:7a:1d:10:04: 2c:3b:bc:ff:6d:e8:a0:3e:79:1f:e9:cf:c1:f6:56: 1d:e6:41:9a:d2:6f:22:81:e7:d0:44:18:9e:25:57: 8c:c3:a2:12:7d:1a:40:58:da:71:ba:4f:ff:83:94: ea:39:07:8d:04:d5:cb:c3:7c:5c:58:67:da:7c:7f: ac:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:19:08:22:10:54:A2:4C:62:0E:CE:D4:EB:67:4F:E8:41:89:DB:C0 X509v3 Authority Key Identifier: keyid:39:48:86:9C:E5:4B:9D:3B:2F:3E:39:AE:E2:C9:C8:EB:19:CB:5B:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUiGnOVLnTsvPjmu4snI6xnLWw8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/dd0189-7969-4fd5-9747-28bdabca70cb/1/mBkIIhBUokxiDs7U62dP6EGJ28A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/dd0189-7969-4fd5-9747-28bdabca70cb/1/OUiGnOVLnTsvPjmu4snI6xnLWw8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.163.120.0/22 82.163.132.0/22 185.72.208.0/22 IPv6: 2a05:3950::/31 Signature Algorithm: sha256WithRSAEncryption 5e:01:c9:49:6d:5e:7d:4b:b5:0b:cb:1f:88:d5:94:b1:f0:14: e9:e9:c4:87:94:37:3f:86:76:3e:d5:25:b5:2b:0c:b6:1f:ea: 75:4e:72:22:c5:0a:8b:34:a8:d2:e9:b0:f4:38:d9:cb:de:a5: 95:6a:eb:8f:00:cf:bf:56:21:f9:55:e2:78:23:33:af:99:ae: da:8e:ee:30:4f:f4:0f:e2:6d:94:ff:94:c7:c8:ba:ea:d1:05: 0c:71:07:31:ef:10:70:d5:e7:bf:c9:8d:86:b5:86:e8:2d:19: 0e:cf:06:fe:98:0c:84:6b:5b:ed:d2:1e:53:77:07:7a:57:b6: 9d:28:0e:01:72:48:86:de:a0:f0:9d:70:32:1e:09:60:b7:57: a2:99:08:54:47:c6:ce:d9:18:17:7a:43:49:ac:52:bc:4c:6d: 2e:43:06:58:00:dc:af:f1:ec:71:45:7e:68:e8:f1:ad:63:d4: 68:60:ba:13:33:c3:bf:ae:47:0c:7c:ce:92:23:23:03:f8:5c: a6:63:1c:df:ef:2d:80:0c:ef:b6:d9:2d:90:71:98:2f:9f:e3: 81:36:1f:8d:35:66:34:95:13:21:21:cf:38:92:e9:16:a4:bf: 5f:3c:ae:81:f1:d1:95:7d:45:5d:08:58:48:42:b8:48:ed:6d: 96:43:55:51 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt9XBCM4rm/Dn6Z0KvoaE3fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NDg4NjljZTU0YjlkM2IyZjNlMzlhZWUyYzljOGViMTlj YjViMGYwHhcNMjYwMTAyMDYxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODE5MDgyMjEwNTRhMjRjNjIwZWNlZDRlYjY3NGZlODQxODlkYmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/g/SCtgXc1c3DmxJzO9OxzC82HT b2O0qHRuhrWSS4/6S4Tc/HZs8bmQaJJQdRiXhhg7RQ/EbHGGHRa56fQJRKWqPBn/ PwSXL5bb02/RT64F7fcRfcchiCcNtnd99r/jn9DMCXWFgzaMmTVPypwobSXuxMNr ZNZnHvy5Y353a14iWuZBt53nzIU4E0DwMCc5WU75exFPoHFx1Z7vhlES97x+RQ+V eSQxXdyZoeM8lYtL8z1odMx3y2j0uNkaKXodEAQsO7z/beigPnkf6c/B9lYd5kGa 0m8igefQRBieJVeMw6ISfRpAWNpxuk//g5TqOQeNBNXLw3xcWGfafH+sjQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFJgZCCIQVKJMYg7O1OtnT+hBidvAMB8GA1UdIwQY MBaAFDlIhpzlS507Lz45ruLJyOsZy1sPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1VpR25PVkxuVHN2UGptdTRzbkk2eG5MV3c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9kZDAxODktNzk2OS00ZmQ1LTk3NDct MjhiZGFiY2E3MGNiLzEvbUJrSUloQlVva3hpRHM3VTYyZFA2RUdKMjhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS9kZDAxODktNzk2OS00ZmQ1LTk3NDctMjhiZGFiY2E3MGNi LzEvT1VpR25PVkxuVHN2UGptdTRzbkk2eG5MV3c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCUqN4AwQC UqOEAwQCuUjQMA0EAgACMAcDBQEqBTlQMA0GCSqGSIb3DQEBCwUAA4IBAQBeAclJ bV59S7ULyx+I1ZSx8BTp6cSHlDc/hnY+1SW1Kwy2H+p1TnIixQqLNKjS6bD0ONnL 3qWVauuPAM+/ViH5VeJ4IzOvma7aju4wT/QP4m2U/5THyLrq0QUMcQcx7xBw1ee/ yY2GtYboLRkOzwb+mAyEa1vt0h5Tdwd6V7adKA4BckiG3qDwnXAyHglgt1eimQhU R8bO2RgXekNJrFK8TG0uQwZYANyv8exxRX5o6PGtY9RoYLoTM8O/rkcMfM6SIyMD +FymYxzf7y2ADO+22S2QcZgvn+OBNh+NNWY0lRMhIc84kukWpL9fPK6B8dGVfUVd CFhIQrhI7W2WQ1VR -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:18 2026 by rpki-client