This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/mHUy1KocxToYW37_wT8MS55csmw.roa File: mHUy1KocxToYW37_wT8MS55csmw.roa (raw, json) Hash identifier: GK3vXe/kBgknY/Rv7K9y8jXyx4Ju3q8arsSKNLe+PPk= Subject key identifier: 98:75:32:D4:AA:1C:C5:3A:18:5B:7E:FF:C1:3F:0C:4B:9E:5C:B2:6C Certificate issuer: /CN=5d129b0460cf9ee0500ee880a2cfa1a524e4df00 Certificate serial: 019C0F651BC6F0141B18D90660B8C90B0C2D Authority key identifier: 5D:12:9B:04:60:CF:9E:E0:50:0E:E8:80:A2:CF:A1:A5:24:E4:DF:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XRKbBGDPnuBQDuiAos-hpSTk3wA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/mHUy1KocxToYW37_wT8MS55csmw.roa Signing time: Fri 30 Jan 2026 14:53:30 +0000 ROA not before: Fri 30 Jan 2026 14:53:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214875 IP address blocks: 37.97.0.0/20 maxlen: 20 37.97.2.0/24 maxlen: 24 37.97.3.0/24 maxlen: 24 37.97.48.0/21 maxlen: 21 37.97.58.0/23 maxlen: 23 37.97.62.0/23 maxlen: 23 45.13.240.0/22 maxlen: 22 188.228.14.0/24 maxlen: 24 188.228.48.0/23 maxlen: 23 188.228.54.0/24 maxlen: 24 188.228.68.0/23 maxlen: 23 188.228.78.0/24 maxlen: 24 188.228.80.0/22 maxlen: 22 188.228.88.0/22 maxlen: 22 188.228.92.0/23 maxlen: 23 188.228.102.0/23 maxlen: 23 2a00:fd01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/XRKbBGDPnuBQDuiAos-hpSTk3wA.crl rsync://rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/XRKbBGDPnuBQDuiAos-hpSTk3wA.mft rsync://rpki.ripe.net/repository/DEFAULT/XRKbBGDPnuBQDuiAos-hpSTk3wA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:0f:65:1b:c6:f0:14:1b:18:d9:06:60:b8:c9:0b:0c:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d129b0460cf9ee0500ee880a2cfa1a524e4df00 Validity Not Before: Jan 30 14:53:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=987532d4aa1cc53a185b7effc13f0c4b9e5cb26c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d9:2d:3e:9b:bc:99:91:b4:f0:ad:e3:e4:0b: 45:26:3f:ca:ee:02:97:ae:9d:69:b7:00:f0:e2:46: 46:79:23:3f:61:f0:35:f0:f3:65:89:a0:3c:bb:1e: fb:5e:30:13:90:3b:3a:c7:67:1c:80:e4:2c:49:4b: c0:a0:64:99:7b:fe:0a:f0:50:3f:eb:17:ea:c0:3b: 2a:90:15:a2:0c:4d:af:89:37:14:2e:c3:fa:b9:11: 6e:22:82:1b:a9:cb:dd:54:2a:01:f3:eb:bd:85:f3: e0:a3:2a:df:9a:c1:50:8f:4b:93:2f:12:4f:b1:27: bc:c9:1e:ce:1d:51:40:56:d7:12:b8:9a:c3:7c:94: e6:12:89:b0:9f:b9:42:86:8e:09:0c:fb:2f:fc:ef: 01:77:8a:b3:08:c3:32:ec:d5:ac:70:23:f8:e0:60: cd:9a:02:c6:d3:6b:06:41:f7:af:fa:90:c1:54:29: c9:fd:eb:37:59:29:be:af:a9:23:9d:fe:59:7c:d1: 54:e7:d6:86:8d:f3:1d:4a:99:65:97:b3:fa:86:4e: 3e:fa:33:09:86:b1:77:4e:f8:59:34:a0:72:c7:5f: 4a:85:70:c3:8b:d5:3e:02:af:66:7b:73:13:7e:e2: ae:ce:70:34:92:83:c2:89:02:0e:c5:e7:29:55:e4: de:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:75:32:D4:AA:1C:C5:3A:18:5B:7E:FF:C1:3F:0C:4B:9E:5C:B2:6C X509v3 Authority Key Identifier: keyid:5D:12:9B:04:60:CF:9E:E0:50:0E:E8:80:A2:CF:A1:A5:24:E4:DF:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XRKbBGDPnuBQDuiAos-hpSTk3wA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/mHUy1KocxToYW37_wT8MS55csmw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/8557e0-368d-4d8e-9741-a877dd51bc49/1/XRKbBGDPnuBQDuiAos-hpSTk3wA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.97.0.0/20 37.97.48.0/21 37.97.58.0/23 37.97.62.0/23 45.13.240.0/22 188.228.14.0/24 188.228.48.0/23 188.228.54.0/24 188.228.68.0/23 188.228.78.0/24 188.228.80.0/22 188.228.88.0-188.228.93.255 188.228.102.0/23 IPv6: 2a00:fd01::/32 Signature Algorithm: sha256WithRSAEncryption 5d:d4:af:a0:2b:64:e2:11:58:65:23:c5:5f:0d:6f:68:56:f8: af:b8:ff:8c:41:d8:a5:96:cf:1c:96:fb:dd:85:ec:20:ec:74: 36:43:bd:27:bb:32:d0:f6:64:81:ca:66:ce:44:e2:fd:c4:1f: 63:8b:e0:65:17:61:0f:ef:69:f8:db:31:11:89:d9:18:bd:1c: 72:79:9b:02:2a:a8:29:5e:59:e0:ad:e5:5b:5a:b4:75:64:b1: c1:4a:45:b4:86:10:28:e6:bc:31:6a:e9:8e:e3:17:95:c8:5a: 20:31:24:15:30:d6:ed:56:63:41:60:8b:b9:08:88:14:d2:23: 4b:91:54:59:82:de:74:6d:f8:60:f8:9a:15:5b:c1:fd:0a:9e: c1:c8:ae:f8:2a:61:2e:38:d7:15:86:75:52:26:9f:43:fe:61: 61:8f:a3:8c:6b:35:9f:f5:39:9e:bc:ac:19:ca:82:24:00:e4: ab:54:60:eb:05:e2:0a:03:3a:bc:ec:b5:72:0f:18:f1:22:45: 47:2d:dd:98:fe:17:43:7e:be:52:08:fc:fa:61:6d:5f:a5:fb: 4f:dc:cd:fb:d6:df:26:03:9b:91:3f:ec:df:33:25:1c:54:cd: f2:0f:55:fc:2d:f4:79:ab:9f:7f:80:6c:d0:5f:79:84:aa:c9: c2:48:47:23 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgISAZwPZRvG8BQbGNkGYLjJCwwtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkMTI5YjA0NjBjZjllZTA1MDBlZTg4MGEyY2ZhMWE1MjRl NGRmMDAwHhcNMjYwMTMwMTQ1MzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODc1MzJkNGFhMWNjNTNhMTg1YjdlZmZjMTNmMGM0YjllNWNiMjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdktPpu8mZG08K3j5AtFJj/K7gKX rp1ptwDw4kZGeSM/YfA18PNliaA8ux77XjATkDs6x2ccgOQsSUvAoGSZe/4K8FA/ 6xfqwDsqkBWiDE2viTcULsP6uRFuIoIbqcvdVCoB8+u9hfPgoyrfmsFQj0uTLxJP sSe8yR7OHVFAVtcSuJrDfJTmEomwn7lCho4JDPsv/O8Bd4qzCMMy7NWscCP44GDN mgLG02sGQfev+pDBVCnJ/es3WSm+r6kjnf5ZfNFU59aGjfMdSplll7P6hk4++jMJ hrF3TvhZNKByx19KhXDDi9U+Aq9me3MTfuKuznA0koPCiQIOxecpVeTe7QIDAQAB o4ICaDCCAmQwHQYDVR0OBBYEFJh1MtSqHMU6GFt+/8E/DEueXLJsMB8GA1UdIwQY MBaAFF0SmwRgz57gUA7ogKLPoaUk5N8AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFJLYkJHRFBudUJRRHVpQW9zLWhwU1RrM3dBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi84NTU3ZTAtMzY4ZC00ZDhlLTk3NDEt YTg3N2RkNTFiYzQ5LzEvbUhVeTFLb2N4VG9ZVzM3X3dUOE1TNTVjc213LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi84NTU3ZTAtMzY4ZC00ZDhlLTk3NDEtYTg3N2RkNTFiYzQ5 LzEvWFJLYkJHRFBudUJRRHVpQW9zLWhwU1RrM3dBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMH4GCCsGAQUFBwEHAQH/BG8wbTBcBAIAATBWAwQEJWEAAwQD JWEwAwQBJWE6AwQBJWE+AwQCLQ3wAwQAvOQOAwQBvOQwAwQAvOQ2AwQBvOREAwQA vOROAwQCvORQMAwDBAO85FgDBAG85FwDBAG85GYwDQQCAAIwBwMFACoA/QEwDQYJ KoZIhvcNAQELBQADggEBAF3Ur6ArZOIRWGUjxV8Nb2hW+K+4/4xB2KWWzxyW+92F 7CDsdDZDvSe7MtD2ZIHKZs5E4v3EH2OL4GUXYQ/vafjbMRGJ2Ri9HHJ5mwIqqCle WeCt5VtatHVkscFKRbSGECjmvDFq6Y7jF5XIWiAxJBUw1u1WY0Fgi7kIiBTSI0uR VFmC3nRt+GD4mhVbwf0KnsHIrvgqYS441xWGdVImn0P+YWGPo4xrNZ/1OZ68rBnK giQA5KtUYOsF4goDOrzstXIPGPEiRUct3Zj+F0N+vlII/PphbV+l+0/czfvW3yYD m5E/7N8zJRxUzfIPVfwt9Hmrn3+AbNBfeYSqycJIRyM= -----END CERTIFICATE-----Generated at Mon Feb 9 23:46:19 2026 by rpki-client