This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/MPq8iza6WIhB1o1xVKox7Pzo9Kk.roa File: MPq8iza6WIhB1o1xVKox7Pzo9Kk.roa (raw, json) Hash identifier: RL0GK8JPuvsKiHzOav85apDuZHO/yene+gQ6QpASIMk= Subject key identifier: 30:FA:BC:8B:36:BA:58:88:41:D6:8D:71:54:AA:31:EC:FC:E8:F4:A9 Certificate issuer: /CN=51ebf60f221a8e31d36b07eaa6d2e53f6d064b6d Certificate serial: 019B7CEE51EF640986E51A765525BD739E9B Authority key identifier: 51:EB:F6:0F:22:1A:8E:31:D3:6B:07:EA:A6:D2:E5:3F:6D:06:4B:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uev2DyIajjHTawfqptLlP20GS20.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/MPq8iza6WIhB1o1xVKox7Pzo9Kk.roa Signing time: Fri 02 Jan 2026 04:19:11 +0000 ROA not before: Fri 02 Jan 2026 04:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205689 IP address blocks: 185.203.56.0/22 maxlen: 24 2a0a:e340::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/Uev2DyIajjHTawfqptLlP20GS20.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/Uev2DyIajjHTawfqptLlP20GS20.mft rsync://rpki.ripe.net/repository/DEFAULT/Uev2DyIajjHTawfqptLlP20GS20.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:51:ef:64:09:86:e5:1a:76:55:25:bd:73:9e:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51ebf60f221a8e31d36b07eaa6d2e53f6d064b6d Validity Not Before: Jan 2 04:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=30fabc8b36ba588841d68d7154aa31ecfce8f4a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d3:e0:8f:15:3f:1b:ef:f5:30:2b:45:c4:e8: 15:e4:d5:c8:9a:4b:ab:98:b4:86:a3:17:de:a6:69: 63:fe:d8:9e:0f:e5:02:04:a8:d4:3a:12:bf:06:83: e5:39:e5:64:ce:4d:b8:cd:8e:56:42:f1:31:91:d4: db:3e:4f:11:59:33:9d:41:a7:20:3d:13:81:47:e1: 1e:d2:28:22:ea:95:a8:56:15:88:69:fa:e7:32:6c: cf:ba:33:db:3d:04:d9:15:1a:6a:43:52:04:ff:c2: 42:7e:04:2b:f5:78:34:39:cc:70:9c:9b:15:09:ac: 18:b8:b4:63:f7:2e:05:dc:c2:e2:a5:e3:fc:01:e2: a8:5a:53:75:cb:a0:8d:aa:e5:d6:35:c5:5c:ee:73: 22:f6:a9:b4:c4:03:9b:a5:44:4f:6e:a3:53:d6:61: 7a:7b:97:5f:5f:a8:ab:b7:17:62:f2:08:5a:be:d0: 29:fa:cc:ef:fe:f5:0f:1a:87:b3:75:ca:fe:d1:78: 88:7e:35:11:f9:8a:05:ce:97:ea:c7:b4:f0:03:33: 18:e0:eb:20:57:7c:96:dd:47:de:49:2f:60:1b:83: 17:25:be:f3:80:cc:79:98:09:ff:ab:b6:d4:ef:78: 7c:53:00:af:46:30:b1:0e:49:29:1e:75:88:c3:e8: d7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:FA:BC:8B:36:BA:58:88:41:D6:8D:71:54:AA:31:EC:FC:E8:F4:A9 X509v3 Authority Key Identifier: keyid:51:EB:F6:0F:22:1A:8E:31:D3:6B:07:EA:A6:D2:E5:3F:6D:06:4B:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uev2DyIajjHTawfqptLlP20GS20.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/MPq8iza6WIhB1o1xVKox7Pzo9Kk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/Uev2DyIajjHTawfqptLlP20GS20.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.203.56.0/22 IPv6: 2a0a:e340::/29 Signature Algorithm: sha256WithRSAEncryption 8f:b4:29:65:1c:87:32:a4:58:6c:80:12:5f:e9:83:b0:71:ba: 71:61:63:1b:46:c1:fb:16:87:cf:67:c2:3b:1e:ce:e4:52:5b: f2:58:45:d6:c3:43:7e:07:c4:c5:70:db:8e:e0:b6:a2:f2:eb: 72:86:0f:1d:9c:fa:89:e8:a9:9d:24:c6:64:c7:e2:91:48:33: 4f:cb:8e:30:96:82:d3:3b:01:eb:e3:2d:83:f9:25:48:51:07: 39:27:bf:e2:33:c0:3f:45:a7:cc:10:d3:d9:86:fd:88:c8:6f: ac:46:94:d0:e7:ee:a9:0e:fd:b3:8e:ba:e0:5e:cb:08:b9:1e: 38:d8:08:88:f4:5e:6f:7a:d4:c8:a8:80:b2:38:8c:cf:bf:97: e1:c7:4a:5e:d6:3a:47:b2:61:a8:ab:fb:a9:ef:be:c0:b8:ef: 9a:d2:7a:a2:3e:73:bf:86:1e:51:c6:15:01:be:b9:b0:d3:e7: 02:9a:c8:7a:cf:24:cf:2f:9c:22:32:8e:21:d5:7c:30:6d:0a: f3:85:45:5e:85:9f:ae:4c:72:11:e7:7a:6d:2a:81:44:f9:ad: 72:44:4f:ef:46:1e:e7:91:1a:06:2e:8c:25:03:6b:de:7f:cf: b8:85:90:cf:f2:18:e7:c9:d4:69:e5:a3:12:d0:76:c9:c9:8e: b0:f8:32:34 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87lHvZAmG5Rp2VSW9c56bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxZWJmNjBmMjIxYThlMzFkMzZiMDdlYWE2ZDJlNTNmNmQw NjRiNmQwHhcNMjYwMTAyMDQxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMGZhYmM4YjM2YmE1ODg4NDFkNjhkNzE1NGFhMzFlY2ZjZThmNGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdPgjxU/G+/1MCtFxOgV5NXImkur mLSGoxfepmlj/tieD+UCBKjUOhK/BoPlOeVkzk24zY5WQvExkdTbPk8RWTOdQacg PROBR+Ee0igi6pWoVhWIafrnMmzPujPbPQTZFRpqQ1IE/8JCfgQr9Xg0OcxwnJsV CawYuLRj9y4F3MLipeP8AeKoWlN1y6CNquXWNcVc7nMi9qm0xAObpURPbqNT1mF6 e5dfX6irtxdi8ghavtAp+szv/vUPGoezdcr+0XiIfjUR+YoFzpfqx7TwAzMY4Osg V3yW3UfeSS9gG4MXJb7zgMx5mAn/q7bU73h8UwCvRjCxDkkpHnWIw+jXVwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDD6vIs2uliIQdaNcVSqMez86PSpMB8GA1UdIwQY MBaAFFHr9g8iGo4x02sH6qbS5T9tBkttMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWV2MkR5SWFqakhUYXdmcXB0TGxQMjBHUzIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8yY2FlMTgtNTk2Ny00YzY4LWIwOWIt NzdjNzAzNjU3NDFmLzEvTVBxOGl6YTZXSWhCMW8xeFZLb3g3UHpvOUtrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8yY2FlMTgtNTk2Ny00YzY4LWIwOWItNzdjNzAzNjU3NDFm LzEvVWV2MkR5SWFqakhUYXdmcXB0TGxQMjBHUzIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCucs4MA0E AgACMAcDBQMqCuNAMA0GCSqGSIb3DQEBCwUAA4IBAQCPtCllHIcypFhsgBJf6YOw cbpxYWMbRsH7FofPZ8I7Hs7kUlvyWEXWw0N+B8TFcNuO4Lai8utyhg8dnPqJ6Kmd JMZkx+KRSDNPy44wloLTOwHr4y2D+SVIUQc5J7/iM8A/RafMENPZhv2IyG+sRpTQ 5+6pDv2zjrrgXssIuR442AiI9F5vetTIqICyOIzPv5fhx0pe1jpHsmGoq/up777A uO+a0nqiPnO/hh5RxhUBvrmw0+cCmsh6zyTPL5wiMo4h1XwwbQrzhUVehZ+uTHIR 53ptKoFE+a1yRE/vRh7nkRoGLowlA2vef8+4hZDP8hjnydRp5aMS0HbJyY6w+DI0 -----END CERTIFICATE-----Generated at Tue Feb 10 03:07:15 2026 by rpki-client