This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/94cdb2-9399-450b-a82e-7c590bcf981a/1/MR4tadWQqqW0E_JHwLfifWepFWQ.roa File: MR4tadWQqqW0E_JHwLfifWepFWQ.roa (raw, json) Hash identifier: mUSw2oO1jY6CqzjCmRhvxhRtn1BibguKjyUPW0J26ls= Subject key identifier: 31:1E:2D:69:D5:90:AA:A5:B4:13:F2:47:C0:B7:E2:7D:67:A9:15:64 Certificate issuer: /CN=1a5caaf3a0993b76ae13e119136dbf0069698911 Certificate serial: 019B7CEDDB0C98AC725B87C70D980F20EF89 Authority key identifier: 1A:5C:AA:F3:A0:99:3B:76:AE:13:E1:19:13:6D:BF:00:69:69:89:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Glyq86CZO3auE-EZE22_AGlpiRE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/94cdb2-9399-450b-a82e-7c590bcf981a/1/MR4tadWQqqW0E_JHwLfifWepFWQ.roa Signing time: Fri 02 Jan 2026 04:18:41 +0000 ROA not before: Fri 02 Jan 2026 04:18:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 398577 IP address blocks: 144.57.40.0/21 maxlen: 21 144.57.40.0/24 maxlen: 24 144.57.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/94cdb2-9399-450b-a82e-7c590bcf981a/1/Glyq86CZO3auE-EZE22_AGlpiRE.crl rsync://rpki.ripe.net/repository/DEFAULT/47/94cdb2-9399-450b-a82e-7c590bcf981a/1/Glyq86CZO3auE-EZE22_AGlpiRE.mft rsync://rpki.ripe.net/repository/DEFAULT/Glyq86CZO3auE-EZE22_AGlpiRE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:db:0c:98:ac:72:5b:87:c7:0d:98:0f:20:ef:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a5caaf3a0993b76ae13e119136dbf0069698911 Validity Not Before: Jan 2 04:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=311e2d69d590aaa5b413f247c0b7e27d67a91564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:aa:6f:fd:33:ab:a7:f3:a5:87:5b:99:3b:04: dd:7b:e7:5f:88:48:f2:36:f2:9b:a6:39:5e:cf:11: df:89:7c:ba:57:45:f3:dd:8d:25:09:51:0c:40:78: 44:47:15:8c:8d:10:55:e0:80:f9:7b:0f:ba:bf:52: f2:6c:4b:9a:c2:b4:ba:30:32:9e:ac:3f:d8:57:0f: 10:f5:23:67:12:53:b8:6d:06:2b:58:da:24:d0:7d: 3a:f6:1d:e1:cf:d8:2e:ae:d1:f5:50:42:f7:e2:e7: 16:f8:d7:9d:f2:d8:ed:d8:90:5a:ec:51:8f:e7:5a: 8a:88:92:9c:c6:7a:1c:66:f8:70:12:9e:07:04:03: b5:13:a9:d5:d1:c3:e4:9f:7d:19:b2:7b:98:55:2f: 16:40:8a:d7:c9:f7:43:ae:d7:e2:88:19:13:aa:e2: e6:fe:5b:c9:0e:b7:e2:91:c1:68:ad:f3:55:4b:8f: 52:29:ca:29:ab:62:b1:20:66:2a:03:6d:80:57:31: 04:f2:02:68:10:81:0d:ae:11:ca:8e:b1:ab:2f:b6: fa:59:8f:c8:96:3f:a3:18:63:aa:7d:c1:d2:06:2e: 93:64:13:89:7e:05:85:b5:23:f1:22:84:fd:9d:d3: 2d:2c:30:14:9a:ec:fe:71:bb:7c:3a:72:44:d5:75: 27:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:1E:2D:69:D5:90:AA:A5:B4:13:F2:47:C0:B7:E2:7D:67:A9:15:64 X509v3 Authority Key Identifier: keyid:1A:5C:AA:F3:A0:99:3B:76:AE:13:E1:19:13:6D:BF:00:69:69:89:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Glyq86CZO3auE-EZE22_AGlpiRE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/94cdb2-9399-450b-a82e-7c590bcf981a/1/MR4tadWQqqW0E_JHwLfifWepFWQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/94cdb2-9399-450b-a82e-7c590bcf981a/1/Glyq86CZO3auE-EZE22_AGlpiRE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.57.40.0/21 Signature Algorithm: sha256WithRSAEncryption ae:ca:bc:b8:f9:41:90:52:05:24:59:e0:a3:2b:90:64:a6:f3: a8:00:b4:88:27:0b:b7:99:1d:91:42:e5:a1:9f:e8:47:e4:f5: 71:70:df:61:e7:38:c7:fe:3e:53:df:16:12:38:87:7c:46:34: 20:ee:76:08:8a:09:1f:bf:ea:d3:d8:2e:a6:71:ef:b6:4a:3e: dd:34:2e:eb:23:2d:24:fb:8e:15:92:69:2b:ef:7e:69:28:ac: 05:b8:15:75:a5:fb:aa:19:c3:18:a9:27:06:f0:73:8b:fb:97: 1d:15:c4:c8:e3:66:ec:22:16:86:14:a2:56:0b:d2:58:32:ff: 91:5c:c7:f0:9f:b6:fb:be:c7:f1:fd:73:47:a6:d8:90:b4:08: db:62:52:f0:3d:0d:cc:80:dd:02:24:6d:f9:af:14:04:9c:b5: 0c:1c:62:c8:87:f2:fd:ba:31:79:01:00:7d:7c:2d:29:9c:f9: 9e:30:6c:ed:d7:f6:18:e5:1e:11:10:a7:89:95:88:a4:27:ab: 19:65:e0:fc:af:b4:b6:8c:60:92:d3:ea:c9:61:f6:70:08:b7: e9:b8:b1:a7:aa:b7:0d:46:34:60:38:ce:c9:7b:bd:e1:dc:82: 10:e1:96:f2:20:9e:85:05:c3:c2:2c:38:a8:37:09:2f:62:ac: 84:89:0d:c7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87dsMmKxyW4fHDZgPIO+JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhNWNhYWYzYTA5OTNiNzZhZTEzZTExOTEzNmRiZjAwNjk2 OTg5MTEwHhcNMjYwMTAyMDQxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMTFlMmQ2OWQ1OTBhYWE1YjQxM2YyNDdjMGI3ZTI3ZDY3YTkxNTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxqpv/TOrp/Olh1uZOwTde+dfiEjy NvKbpjlezxHfiXy6V0Xz3Y0lCVEMQHhERxWMjRBV4ID5ew+6v1LybEuawrS6MDKe rD/YVw8Q9SNnElO4bQYrWNok0H069h3hz9gurtH1UEL34ucW+Ned8tjt2JBa7FGP 51qKiJKcxnocZvhwEp4HBAO1E6nV0cPkn30ZsnuYVS8WQIrXyfdDrtfiiBkTquLm /lvJDrfikcForfNVS49SKcopq2KxIGYqA22AVzEE8gJoEIENrhHKjrGrL7b6WY/I lj+jGGOqfcHSBi6TZBOJfgWFtSPxIoT9ndMtLDAUmuz+cbt8OnJE1XUnmQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDEeLWnVkKqltBPyR8C34n1nqRVkMB8GA1UdIwQY MBaAFBpcqvOgmTt2rhPhGRNtvwBpaYkRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR2x5cTg2Q1pPM2F1RS1FWkUyMl9BR2xwaVJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny85NGNkYjItOTM5OS00NTBiLWE4MmUt N2M1OTBiY2Y5ODFhLzEvTVI0dGFkV1FxcVcwRV9KSHdMZmlmV2VwRldRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny85NGNkYjItOTM5OS00NTBiLWE4MmUtN2M1OTBiY2Y5ODFh LzEvR2x5cTg2Q1pPM2F1RS1FWkUyMl9BR2xwaVJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDkDkoMA0G CSqGSIb3DQEBCwUAA4IBAQCuyry4+UGQUgUkWeCjK5BkpvOoALSIJwu3mR2RQuWh n+hH5PVxcN9h5zjH/j5T3xYSOId8RjQg7nYIigkfv+rT2C6mce+2Sj7dNC7rIy0k +44Vkmkr735pKKwFuBV1pfuqGcMYqScG8HOL+5cdFcTI42bsIhaGFKJWC9JYMv+R XMfwn7b7vsfx/XNHptiQtAjbYlLwPQ3MgN0CJG35rxQEnLUMHGLIh/L9ujF5AQB9 fC0pnPmeMGzt1/YY5R4REKeJlYikJ6sZZeD8r7S2jGCS0+rJYfZwCLfpuLGnqrcN RjRgOM7Je73h3IIQ4ZbyIJ6FBcPCLDioNwkvYqyEiQ3H -----END CERTIFICATE-----Generated at Tue Feb 10 01:44:13 2026 by rpki-client