This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/b403cc-4e6c-4fe9-83a1-7550529d847a/1/mATboytCwcfVcr9XMxZhnCNuehM.roa File: mATboytCwcfVcr9XMxZhnCNuehM.roa (raw, json) Hash identifier: CSLxUhKEA5+LpJXjF03TzcnktKHmPFZOf51CwhIx1L0= Subject key identifier: 98:04:DB:A3:2B:42:C1:C7:D5:72:BF:57:33:16:61:9C:23:6E:7A:13 Certificate issuer: /CN=6f5c5712fbbcd832419d4c5884ae3bc3c4a16e7b Certificate serial: 019B7BA32BEB64DF785F1478DE0F593C4246 Authority key identifier: 6F:5C:57:12:FB:BC:D8:32:41:9D:4C:58:84:AE:3B:C3:C4:A1:6E:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b1xXEvu82DJBnUxYhK47w8Shbns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/b403cc-4e6c-4fe9-83a1-7550529d847a/1/mATboytCwcfVcr9XMxZhnCNuehM.roa Signing time: Thu 01 Jan 2026 22:17:29 +0000 ROA not before: Thu 01 Jan 2026 22:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38917 IP address blocks: 87.255.224.0/19 maxlen: 24 87.255.224.0/20 maxlen: 24 87.255.240.0/20 maxlen: 24 87.255.248.0/22 maxlen: 24 87.255.252.0/24 maxlen: 24 109.111.64.0/19 maxlen: 24 109.111.64.0/24 maxlen: 24 109.111.70.0/24 maxlen: 24 149.255.16.0/22 maxlen: 22 176.110.184.0/21 maxlen: 24 176.110.192.0/21 maxlen: 21 176.110.200.0/22 maxlen: 22 176.110.206.0/23 maxlen: 23 176.110.208.0/21 maxlen: 24 185.24.112.0/22 maxlen: 24 185.86.112.0/20 maxlen: 24 188.0.192.0/20 maxlen: 20 188.0.208.0/20 maxlen: 20 194.32.156.0/22 maxlen: 22 217.175.32.0/20 maxlen: 24 2a04:2cc0::/32 maxlen: 32 2a04:2cc1::/32 maxlen: 32 2a04:2cc2::/32 maxlen: 32 2a04:2cc3::/32 maxlen: 32 2a04:2cc4::/32 maxlen: 32 2a04:2cc5::/32 maxlen: 32 2a04:2cc6::/32 maxlen: 32 2a04:2cc7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/b403cc-4e6c-4fe9-83a1-7550529d847a/1/b1xXEvu82DJBnUxYhK47w8Shbns.crl rsync://rpki.ripe.net/repository/DEFAULT/49/b403cc-4e6c-4fe9-83a1-7550529d847a/1/b1xXEvu82DJBnUxYhK47w8Shbns.mft rsync://rpki.ripe.net/repository/DEFAULT/b1xXEvu82DJBnUxYhK47w8Shbns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:2b:eb:64:df:78:5f:14:78:de:0f:59:3c:42:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f5c5712fbbcd832419d4c5884ae3bc3c4a16e7b Validity Not Before: Jan 1 22:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9804dba32b42c1c7d572bf573316619c236e7a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:38:13:a6:94:c3:0e:75:cb:8e:9d:b0:9c:95: cc:42:32:e0:5b:fe:73:bb:fe:85:6b:ed:e2:b4:61: b0:6a:eb:14:12:61:76:9a:e0:f2:4a:8a:bc:df:2d: a1:1f:d7:2c:14:f0:47:c0:e2:0b:61:7e:2b:79:ce: 60:b3:8b:7c:d1:b8:a2:ca:1d:da:e2:96:c4:00:78: 13:7f:31:4d:5d:d8:2b:35:e5:19:c8:1c:88:96:ce: 76:40:51:89:87:cf:31:16:28:6e:27:db:bd:e3:ec: d9:aa:fa:37:9f:f3:3d:8b:25:9a:e8:1d:ba:e7:bf: e4:2e:a1:aa:91:28:04:9e:1b:a1:0e:b4:c4:c7:59: d8:05:76:84:1b:0c:83:f2:11:fe:77:3d:e6:00:1f: 75:40:f1:a8:82:76:42:80:33:1f:fa:5a:ee:da:d8: 74:6b:e9:0b:db:8f:e5:b0:c2:b3:82:d3:a1:33:93: 66:09:ea:c8:8a:53:e3:b1:da:e3:c7:41:db:04:64: e3:c0:4f:6b:de:b5:fd:a8:43:bb:09:fc:98:34:f0: 04:c3:3a:be:94:0a:45:6b:15:92:50:62:58:a3:59: e3:4e:52:c3:99:ef:16:c8:0d:b6:4c:4a:d0:46:68: 1c:e8:12:a3:5e:37:92:0d:18:ac:01:28:db:02:40: 57:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:04:DB:A3:2B:42:C1:C7:D5:72:BF:57:33:16:61:9C:23:6E:7A:13 X509v3 Authority Key Identifier: keyid:6F:5C:57:12:FB:BC:D8:32:41:9D:4C:58:84:AE:3B:C3:C4:A1:6E:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1xXEvu82DJBnUxYhK47w8Shbns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b403cc-4e6c-4fe9-83a1-7550529d847a/1/mATboytCwcfVcr9XMxZhnCNuehM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b403cc-4e6c-4fe9-83a1-7550529d847a/1/b1xXEvu82DJBnUxYhK47w8Shbns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.255.224.0/19 109.111.64.0/19 149.255.16.0/22 176.110.184.0-176.110.203.255 176.110.206.0-176.110.215.255 185.24.112.0/22 185.86.112.0/20 188.0.192.0/19 194.32.156.0/22 217.175.32.0/20 IPv6: 2a04:2cc0::/29 Signature Algorithm: sha256WithRSAEncryption 15:8f:1f:25:bf:22:c9:84:db:d6:3d:f2:1f:fb:0e:fa:4a:b3: fc:00:56:a3:22:63:28:d1:99:09:e2:6a:68:86:70:95:4c:f4: 2f:08:72:19:6f:91:14:13:e2:f5:e3:c4:a2:74:9c:a8:87:a8: f0:a1:e0:47:b9:37:c1:e4:d0:ff:4b:62:8c:a2:9a:22:43:3a: 8f:ae:63:e6:c9:31:79:65:ad:a3:88:fb:28:1e:37:90:51:a4: 35:ff:d2:4b:1c:d2:df:e4:85:86:d5:ac:0a:95:82:0a:6b:77: bb:c8:70:52:b5:bf:db:32:cb:ad:bd:f5:af:7d:9c:75:dd:36: ce:17:7d:81:a0:db:70:9d:20:fe:ba:a3:bb:df:94:b9:e9:d1: 55:fe:3c:dd:89:7c:f8:e4:73:84:33:aa:2d:50:94:00:09:ea: e3:8a:c9:85:55:bc:bf:fa:bc:1b:51:44:64:27:6a:1a:f3:88: b7:4b:ca:ce:8a:a3:d4:92:c6:0f:c2:d6:32:c8:a9:cc:f2:19: 03:8b:65:ca:60:c2:78:30:04:ae:cd:6f:b0:80:d4:6c:80:e4: 07:b6:1e:7c:c5:50:20:e7:6b:05:e5:45:51:f0:63:e4:ec:e5: b1:d9:a9:6d:55:52:40:f7:38:43:72:77:7c:4e:2c:f9:da:b0: 89:58:e7:2a -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgISAZt7oyvrZN94XxR43g9ZPEJGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmNWM1NzEyZmJiY2Q4MzI0MTlkNGM1ODg0YWUzYmMzYzRh MTZlN2IwHhcNMjYwMTAxMjIxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODA0ZGJhMzJiNDJjMWM3ZDU3MmJmNTczMzE2NjE5YzIzNmU3YTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjgTppTDDnXLjp2wnJXMQjLgW/5z u/6Fa+3itGGwausUEmF2muDySoq83y2hH9csFPBHwOILYX4rec5gs4t80biiyh3a 4pbEAHgTfzFNXdgrNeUZyByIls52QFGJh88xFihuJ9u94+zZqvo3n/M9iyWa6B26 57/kLqGqkSgEnhuhDrTEx1nYBXaEGwyD8hH+dz3mAB91QPGognZCgDMf+lru2th0 a+kL24/lsMKzgtOhM5NmCerIilPjsdrjx0HbBGTjwE9r3rX9qEO7CfyYNPAEwzq+ lApFaxWSUGJYo1njTlLDme8WyA22TErQRmgc6BKjXjeSDRisASjbAkBXXQIDAQAB o4ICXjCCAlowHQYDVR0OBBYEFJgE26MrQsHH1XK/VzMWYZwjbnoTMB8GA1UdIwQY MBaAFG9cVxL7vNgyQZ1MWISuO8PEoW57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjF4WEV2dTgyREpCblV4WWhLNDd3OFNoYm5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9iNDAzY2MtNGU2Yy00ZmU5LTgzYTEt NzU1MDUyOWQ4NDdhLzEvbUFUYm95dEN3Y2ZWY3I5WE14WmhuQ051ZWhNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS9iNDAzY2MtNGU2Yy00ZmU5LTgzYTEtNzU1MDUyOWQ4NDdh LzEvYjF4WEV2dTgyREpCblV4WWhLNDd3OFNoYm5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHQGCCsGAQUFBwEHAQH/BGUwYzBSBAIAATBMAwQFV//gAwQF bW9AAwQClf8QMAwDBAOwbrgDBAKwbsgwDAMEAbBuzgMEA7Bu0AMEArkYcAMEBLlW cAMEBbwAwAMEAsIgnAMEBNmvIDANBAIAAjAHAwUDKgQswDANBgkqhkiG9w0BAQsF AAOCAQEAFY8fJb8iyYTb1j3yH/sO+kqz/ABWoyJjKNGZCeJqaIZwlUz0LwhyGW+R FBPi9ePEonScqIeo8KHgR7k3weTQ/0tijKKaIkM6j65j5skxeWWto4j7KB43kFGk Nf/SSxzS3+SFhtWsCpWCCmt3u8hwUrW/2zLLrb31r32cdd02zhd9gaDbcJ0g/rqj u9+UuenRVf483Yl8+ORzhDOqLVCUAAnq44rJhVW8v/q8G1FEZCdqGvOIt0vKzoqj 1JLGD8LWMsipzPIZA4tlymDCeDAErs1vsIDUbIDkB7YefMVQIOdrBeVFUfBj5Ozl sdmpbVVSQPc4Q3J3fE4s+dqwiVjnKg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:25 2026 by rpki-client