This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/MQh6Wz2-8CGK9b8xrkIk2AZbqhQ.roa File: MQh6Wz2-8CGK9b8xrkIk2AZbqhQ.roa (raw, json) Hash identifier: Vu6+oiBxaiIXPalKgvaptYqxpXWKSxP7AU+MBEut6Xs= Subject key identifier: 31:08:7A:5B:3D:BE:F0:21:8A:F5:BF:31:AE:42:24:D8:06:5B:AA:14 Certificate issuer: /CN=93dc45ffe13f841f188af743bd7dc34ed54805d4 Certificate serial: 019B76EB94A180B0C7DAF22B3F71E41E8C15 Authority key identifier: 93:DC:45:FF:E1:3F:84:1F:18:8A:F7:43:BD:7D:C3:4E:D5:48:05:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k9xF_-E_hB8YivdDvX3DTtVIBdQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/MQh6Wz2-8CGK9b8xrkIk2AZbqhQ.roa Signing time: Thu 01 Jan 2026 00:18:28 +0000 ROA not before: Thu 01 Jan 2026 00:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205660 IP address blocks: 185.188.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/k9xF_-E_hB8YivdDvX3DTtVIBdQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/k9xF_-E_hB8YivdDvX3DTtVIBdQ.mft rsync://rpki.ripe.net/repository/DEFAULT/k9xF_-E_hB8YivdDvX3DTtVIBdQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:94:a1:80:b0:c7:da:f2:2b:3f:71:e4:1e:8c:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93dc45ffe13f841f188af743bd7dc34ed54805d4 Validity Not Before: Jan 1 00:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31087a5b3dbef0218af5bf31ae4224d8065baa14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:55:1d:46:bd:34:7f:b9:94:22:2e:c4:8b:ce: e9:86:93:e7:b3:41:04:b1:81:c2:7b:ec:b7:55:22: e7:05:da:bb:e3:9f:d8:41:dc:e7:8b:d6:91:8d:94: a1:49:be:cd:84:de:e4:18:28:99:89:4d:46:da:5b: c2:e2:5d:28:07:5f:be:04:47:44:1a:12:c3:62:72: 10:01:fd:42:fc:76:f0:4d:47:50:5b:2f:2e:c9:0c: 16:b5:32:15:00:f7:6c:16:2d:4d:e3:fa:78:3f:9a: e4:5c:ac:3e:96:d3:f6:7a:dd:c1:55:d2:96:5d:24: 8d:96:c0:3d:65:1e:db:29:70:7b:a3:40:3c:8c:49: 00:95:74:51:bf:0c:64:77:d1:0a:a5:0f:56:59:7c: 48:89:1c:ab:0c:ed:89:0c:fb:57:a1:1d:12:df:fc: dd:79:2f:43:7b:cf:a4:68:d2:48:30:1c:3e:6d:e8: 6f:4a:4a:9c:2c:e4:05:f4:b4:b8:ba:41:a2:a1:17: c3:aa:72:b5:41:ae:24:12:de:a2:45:1e:b1:4a:34: c8:79:78:16:d8:d9:74:1e:cb:92:b5:06:36:3b:83: 86:ba:e5:97:f5:af:50:54:d6:6a:e4:93:45:6a:df: 5d:07:e1:16:52:c4:21:98:fc:89:dc:24:0a:fd:55: 06:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:08:7A:5B:3D:BE:F0:21:8A:F5:BF:31:AE:42:24:D8:06:5B:AA:14 X509v3 Authority Key Identifier: keyid:93:DC:45:FF:E1:3F:84:1F:18:8A:F7:43:BD:7D:C3:4E:D5:48:05:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9xF_-E_hB8YivdDvX3DTtVIBdQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/MQh6Wz2-8CGK9b8xrkIk2AZbqhQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/k9xF_-E_hB8YivdDvX3DTtVIBdQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.188.2.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:f0:f4:5a:f7:1a:f7:ec:39:dd:5e:3a:a7:ff:db:8b:c3:af: b1:98:cf:e3:69:cf:70:76:5d:73:4b:84:72:25:e1:c1:2a:a5: 9f:b7:35:ba:73:88:32:7f:3b:d7:ac:51:6a:8d:33:88:58:67: 61:95:88:ef:c7:b9:de:19:35:12:1d:a2:98:13:5a:5e:55:12: e1:6b:9a:63:54:1a:d0:75:8c:f8:1d:bb:97:74:83:c3:55:fd: e9:9c:44:d4:52:9c:27:21:47:16:d9:aa:ac:3a:be:04:07:0a: 6b:c4:ad:9e:a4:ff:4d:4e:61:6d:ba:d3:52:c9:0b:be:70:be: c0:fa:34:d3:2f:94:ea:53:20:94:9b:87:0b:75:a3:28:b5:8f: 77:a8:99:57:12:b5:85:ec:15:d2:fe:f7:bc:74:8a:ce:33:92: e3:81:d0:da:ae:d0:d5:7d:23:94:2c:57:51:ea:7b:ac:92:42: 95:48:b7:e2:05:dc:ce:fe:9c:a6:39:55:4d:59:5e:1b:e6:af: f3:c7:69:0a:31:4b:79:da:69:6e:00:71:70:a4:c4:c5:e8:1e: 91:f5:4b:9d:45:09:d3:78:55:e9:a9:05:0b:af:31:a5:b6:8c: 8f:5d:6b:f2:18:e6:9c:57:59:88:43:67:0d:29:54:86:54:e6: 7d:4c:00:8e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt265ShgLDH2vIrP3HkHowVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzZGM0NWZmZTEzZjg0MWYxODhhZjc0M2JkN2RjMzRlZDU0 ODA1ZDQwHhcNMjYwMTAxMDAxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMTA4N2E1YjNkYmVmMDIxOGFmNWJmMzFhZTQyMjRkODA2NWJhYTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslUdRr00f7mUIi7Ei87phpPns0EE sYHCe+y3VSLnBdq745/YQdzni9aRjZShSb7NhN7kGCiZiU1G2lvC4l0oB1++BEdE GhLDYnIQAf1C/HbwTUdQWy8uyQwWtTIVAPdsFi1N4/p4P5rkXKw+ltP2et3BVdKW XSSNlsA9ZR7bKXB7o0A8jEkAlXRRvwxkd9EKpQ9WWXxIiRyrDO2JDPtXoR0S3/zd eS9De8+kaNJIMBw+behvSkqcLOQF9LS4ukGioRfDqnK1Qa4kEt6iRR6xSjTIeXgW 2Nl0HsuStQY2O4OGuuWX9a9QVNZq5JNFat9dB+EWUsQhmPyJ3CQK/VUGMQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDEIels9vvAhivW/Ma5CJNgGW6oUMB8GA1UdIwQY MBaAFJPcRf/hP4QfGIr3Q719w07VSAXUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazl4Rl8tRV9oQjhZaXZkRHZYM0RUdFZJQmRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8yZDBiMTktMGFmZi00MTJmLWEyZmQt MjE4OTU3MjhiYTRlLzEvTVFoNld6Mi04Q0dLOWI4eHJrSWsyQVpicWhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC8yZDBiMTktMGFmZi00MTJmLWEyZmQtMjE4OTU3MjhiYTRl LzEvazl4Rl8tRV9oQjhZaXZkRHZYM0RUdFZJQmRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBubwCMA0G CSqGSIb3DQEBCwUAA4IBAQAr8PRa9xr37DndXjqn/9uLw6+xmM/jac9wdl1zS4Ry JeHBKqWftzW6c4gyfzvXrFFqjTOIWGdhlYjvx7neGTUSHaKYE1peVRLha5pjVBrQ dYz4HbuXdIPDVf3pnETUUpwnIUcW2aqsOr4EBwprxK2epP9NTmFtutNSyQu+cL7A +jTTL5TqUyCUm4cLdaMotY93qJlXErWF7BXS/ve8dIrOM5LjgdDartDVfSOULFdR 6nuskkKVSLfiBdzO/pymOVVNWV4b5q/zx2kKMUt52mluAHFwpMTF6B6R9UudRQnT eFXpqQULrzGltoyPXWvyGOacV1mIQ2cNKVSGVOZ9TACO -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:27 2026 by rpki-client