This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/78b190-8a02-4cb8-b484-526f7cc529b7/1/rxMNMquNmnBAETPpjSPsz8xiWiw.roa File: rxMNMquNmnBAETPpjSPsz8xiWiw.roa (raw, json) Hash identifier: SPkA6S4HqDNpxWy9E9LRWb/XpKpbwajfBQGXEVH96cc= Subject key identifier: AF:13:0D:32:AB:8D:9A:70:40:11:33:E9:8D:23:EC:CF:CC:62:5A:2C Certificate issuer: /CN=ba54b6e5fcca308b36dc8f167606b2d659839cf1 Certificate serial: 019B7BA42604CB9EE3BF560E172A477F1E83 Authority key identifier: BA:54:B6:E5:FC:CA:30:8B:36:DC:8F:16:76:06:B2:D6:59:83:9C:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ulS25fzKMIs23I8Wdgay1lmDnPE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/78b190-8a02-4cb8-b484-526f7cc529b7/1/rxMNMquNmnBAETPpjSPsz8xiWiw.roa Signing time: Thu 01 Jan 2026 22:18:33 +0000 ROA not before: Thu 01 Jan 2026 22:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211594 IP address blocks: 185.254.123.0/24 maxlen: 24 2a0c:1880::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/78b190-8a02-4cb8-b484-526f7cc529b7/1/ulS25fzKMIs23I8Wdgay1lmDnPE.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/78b190-8a02-4cb8-b484-526f7cc529b7/1/ulS25fzKMIs23I8Wdgay1lmDnPE.mft rsync://rpki.ripe.net/repository/DEFAULT/ulS25fzKMIs23I8Wdgay1lmDnPE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:26:04:cb:9e:e3:bf:56:0e:17:2a:47:7f:1e:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba54b6e5fcca308b36dc8f167606b2d659839cf1 Validity Not Before: Jan 1 22:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af130d32ab8d9a70401133e98d23eccfcc625a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1a:c5:02:79:6a:2c:eb:3d:cf:d8:a6:93:06: ee:88:d8:8b:f5:6a:19:43:02:48:8e:4e:f2:9f:77: 20:cf:fc:d9:06:fe:fd:60:6f:13:b9:e8:c6:04:62: e8:d6:40:38:07:6f:6e:37:4d:f9:ee:a6:c8:56:66: 71:00:e9:ec:82:8f:6a:1d:fe:55:63:ad:3e:87:ab: 97:03:63:af:d4:86:34:cb:c3:64:78:87:6d:f2:bd: 4e:93:82:cb:0a:be:20:fb:60:8e:03:8c:8b:4d:e6: c1:a5:ae:f4:7e:61:50:58:e4:e6:6d:a6:ca:1e:33: 84:53:c6:be:ad:54:86:18:68:fa:dd:62:3c:d6:ac: bd:b1:40:74:3e:01:65:e6:d7:8b:24:4c:2e:36:fa: 6d:fa:6f:90:08:2f:4d:d3:2c:ca:98:4c:bf:dc:52: 54:cb:e1:d8:56:ee:1d:fe:39:d4:58:f3:7c:14:5e: 59:43:a6:00:0a:f0:d2:c9:f2:c8:76:1c:2b:06:c4: 19:f6:30:aa:09:4c:50:3e:d4:bb:65:cc:13:d4:e3: 12:81:94:a9:12:90:ea:b9:dc:14:9e:73:39:65:7f: 06:d1:ee:e5:84:c2:d4:47:5a:1e:b5:0b:7a:dc:fd: 0d:11:c0:6f:f5:78:28:bf:fa:1e:06:5f:cf:55:0c: 1a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:13:0D:32:AB:8D:9A:70:40:11:33:E9:8D:23:EC:CF:CC:62:5A:2C X509v3 Authority Key Identifier: keyid:BA:54:B6:E5:FC:CA:30:8B:36:DC:8F:16:76:06:B2:D6:59:83:9C:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ulS25fzKMIs23I8Wdgay1lmDnPE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/78b190-8a02-4cb8-b484-526f7cc529b7/1/rxMNMquNmnBAETPpjSPsz8xiWiw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/78b190-8a02-4cb8-b484-526f7cc529b7/1/ulS25fzKMIs23I8Wdgay1lmDnPE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.254.123.0/24 IPv6: 2a0c:1880::/29 Signature Algorithm: sha256WithRSAEncryption c7:79:0d:40:8b:00:ab:51:af:7d:bd:5b:eb:b7:b1:6c:4d:f0: f5:37:c6:f1:d9:91:94:bb:5c:f5:52:d1:bb:4a:f9:05:9a:6c: a0:bd:e3:66:fd:bf:21:58:36:66:32:11:68:9f:01:14:2c:11: 4d:6e:3f:47:d0:12:db:6b:e3:73:74:aa:0c:6e:a2:d7:38:26: d0:e6:17:3b:52:ec:0c:97:c0:74:cb:5e:f0:1a:4a:e3:5a:ec: 4e:8f:80:1a:9c:fc:2d:d8:f9:12:ff:1e:53:74:43:f3:59:a8: b8:2c:b2:6d:47:53:51:55:e6:85:52:1d:bf:db:39:8a:da:ab: 38:72:f5:84:a3:9a:8f:f5:9e:9f:ea:f1:10:ea:62:b8:b6:e2: 88:af:76:b1:30:3d:6a:f6:41:ff:22:f2:f8:f8:1b:cf:ec:e8: d3:74:0a:32:c0:6f:07:3a:cd:51:df:6f:fc:bf:91:54:fd:43: a3:08:43:b6:36:b9:fc:f6:44:2c:f2:a5:c3:98:16:ef:ba:18: a8:8a:30:55:83:c6:fa:e8:52:66:9d:35:72:cf:36:0f:7e:ac: 92:48:c7:3a:35:80:88:18:89:17:80:2f:bd:f9:1f:c7:18:53: 54:05:aa:ed:dc:df:dd:e2:31:a8:79:ad:b7:17:73:69:3e:f1: 9d:ac:3a:8c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pCYEy57jv1YOFypHfx6DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNTRiNmU1ZmNjYTMwOGIzNmRjOGYxNjc2MDZiMmQ2NTk4 MzljZjEwHhcNMjYwMTAxMjIxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjEzMGQzMmFiOGQ5YTcwNDAxMTMzZTk4ZDIzZWNjZmNjNjI1YTJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRrFAnlqLOs9z9imkwbuiNiL9WoZ QwJIjk7yn3cgz/zZBv79YG8TuejGBGLo1kA4B29uN0357qbIVmZxAOnsgo9qHf5V Y60+h6uXA2Ov1IY0y8NkeIdt8r1Ok4LLCr4g+2COA4yLTebBpa70fmFQWOTmbabK HjOEU8a+rVSGGGj63WI81qy9sUB0PgFl5teLJEwuNvpt+m+QCC9N0yzKmEy/3FJU y+HYVu4d/jnUWPN8FF5ZQ6YACvDSyfLIdhwrBsQZ9jCqCUxQPtS7ZcwT1OMSgZSp EpDqudwUnnM5ZX8G0e7lhMLUR1oetQt63P0NEcBv9Xgov/oeBl/PVQwaOwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFK8TDTKrjZpwQBEz6Y0j7M/MYlosMB8GA1UdIwQY MBaAFLpUtuX8yjCLNtyPFnYGstZZg5zxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWxTMjVmektNSXMyM0k4V2RnYXkxbG1EblBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi83OGIxOTAtOGEwMi00Y2I4LWI0ODQt NTI2ZjdjYzUyOWI3LzEvcnhNTk1xdU5tbkJBRVRQcGpTUHN6OHhpV2l3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi83OGIxOTAtOGEwMi00Y2I4LWI0ODQtNTI2ZjdjYzUyOWI3 LzEvdWxTMjVmektNSXMyM0k4V2RnYXkxbG1EblBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuf57MA0E AgACMAcDBQMqDBiAMA0GCSqGSIb3DQEBCwUAA4IBAQDHeQ1AiwCrUa99vVvrt7Fs TfD1N8bx2ZGUu1z1UtG7SvkFmmygveNm/b8hWDZmMhFonwEULBFNbj9H0BLba+Nz dKoMbqLXOCbQ5hc7UuwMl8B0y17wGkrjWuxOj4AanPwt2PkS/x5TdEPzWai4LLJt R1NRVeaFUh2/2zmK2qs4cvWEo5qP9Z6f6vEQ6mK4tuKIr3axMD1q9kH/IvL4+BvP 7OjTdAoywG8HOs1R32/8v5FU/UOjCEO2Nrn89kQs8qXDmBbvuhioijBVg8b66FJm nTVyzzYPfqySSMc6NYCIGIkXgC+9+R/HGFNUBart3N/d4jGoea23F3NpPvGdrDqM -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:30 2026 by rpki-client