This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/ae5206-c843-4bd5-8860-71e95b04b3ec/1/mMsPrtRi4JJovpyGYjWOc4wt2Ac.roa File: mMsPrtRi4JJovpyGYjWOc4wt2Ac.roa (raw, json) Hash identifier: NZ9c/htksySRie6h0nflWnbh4o9NACM0t9JzBFsPMrg= Subject key identifier: 98:CB:0F:AE:D4:62:E0:92:68:BE:9C:86:62:35:8E:73:8C:2D:D8:07 Certificate issuer: /CN=a43b5322b8ea38a7a044dcb0671a75dba1043d7e Certificate serial: 019B7EA5F7354CB8D6B0575A75DF253AD17C Authority key identifier: A4:3B:53:22:B8:EA:38:A7:A0:44:DC:B0:67:1A:75:DB:A1:04:3D:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pDtTIrjqOKegRNywZxp126EEPX4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/ae5206-c843-4bd5-8860-71e95b04b3ec/1/mMsPrtRi4JJovpyGYjWOc4wt2Ac.roa Signing time: Fri 02 Jan 2026 12:19:24 +0000 ROA not before: Fri 02 Jan 2026 12:19:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214876 IP address blocks: 185.190.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/ae5206-c843-4bd5-8860-71e95b04b3ec/1/pDtTIrjqOKegRNywZxp126EEPX4.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/ae5206-c843-4bd5-8860-71e95b04b3ec/1/pDtTIrjqOKegRNywZxp126EEPX4.mft rsync://rpki.ripe.net/repository/DEFAULT/pDtTIrjqOKegRNywZxp126EEPX4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 14:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:f7:35:4c:b8:d6:b0:57:5a:75:df:25:3a:d1:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a43b5322b8ea38a7a044dcb0671a75dba1043d7e Validity Not Before: Jan 2 12:19:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=98cb0faed462e09268be9c8662358e738c2dd807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bc:fd:67:38:36:31:e4:ae:40:2b:1c:96:96: 50:d6:1e:5b:3d:e5:40:fd:41:8a:68:77:3a:ea:b9: 22:94:96:19:cc:b5:85:71:f1:dc:b8:fb:1e:6c:a4: 47:8a:ac:fd:83:4d:9b:01:07:8e:05:8e:7c:1a:b6: fc:9c:3c:a9:e0:b7:a0:a3:5c:a2:90:8d:0b:48:47: 57:04:e3:7c:e3:38:58:00:90:9b:55:96:bd:42:37: 03:ba:8b:ba:a1:f1:25:c1:d7:ce:23:d0:7b:0c:37: 15:61:ce:4f:e6:87:fa:4b:18:5f:eb:af:d8:ed:d8: 25:5a:50:8c:f7:f3:3c:6d:94:2b:3a:47:56:03:65: 92:f3:bf:52:af:47:0b:96:a9:7c:76:84:58:25:15: e5:ad:a7:c1:64:c8:0e:ba:8a:55:31:50:66:50:98: 0b:c4:8c:58:6e:95:ee:8f:29:b8:03:96:61:5a:77: 85:a4:16:88:96:51:b0:58:e7:5e:16:64:43:27:51: d8:0f:f8:0f:e7:8d:c1:52:6e:44:f8:12:c9:b1:07: ab:39:2f:25:f1:5e:4f:07:f9:5d:d1:9e:0b:c7:62: ef:51:4c:c2:63:83:6e:d6:15:85:05:28:84:4e:18: cb:b5:32:7f:12:31:a9:23:bd:45:71:00:0d:db:9b: 71:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:CB:0F:AE:D4:62:E0:92:68:BE:9C:86:62:35:8E:73:8C:2D:D8:07 X509v3 Authority Key Identifier: keyid:A4:3B:53:22:B8:EA:38:A7:A0:44:DC:B0:67:1A:75:DB:A1:04:3D:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pDtTIrjqOKegRNywZxp126EEPX4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/ae5206-c843-4bd5-8860-71e95b04b3ec/1/mMsPrtRi4JJovpyGYjWOc4wt2Ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/ae5206-c843-4bd5-8860-71e95b04b3ec/1/pDtTIrjqOKegRNywZxp126EEPX4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.190.17.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:e3:09:aa:da:2a:1b:c2:a3:d0:80:bf:ad:98:fd:8f:d2:85: a4:81:91:ee:07:ac:fc:d9:d4:78:22:c6:98:5c:8f:57:8c:ca: 68:e7:ac:d7:37:ca:b8:ed:70:bb:1a:14:41:79:f2:ad:ff:e5: b9:74:71:94:80:38:8a:ed:99:6b:23:16:d4:be:b5:06:f4:98: 1c:97:23:b8:5c:fd:d9:5f:9a:2b:a9:5e:01:3a:c6:67:f8:c0: 2a:e3:13:d8:13:77:b9:8d:69:e1:83:a2:b4:99:a0:21:ca:67: 12:15:5a:91:a4:f0:aa:ac:54:4b:5c:59:99:da:88:58:2c:9f: b2:fb:3e:13:31:ab:45:2a:7f:df:e5:9a:7e:a5:25:c3:f6:3e: ae:c2:8d:88:9e:28:ce:51:05:18:5f:db:40:c3:90:2d:2f:92: 05:94:8a:48:1b:5e:7c:69:9b:c1:51:21:55:c6:78:9f:35:1a: b5:85:df:9b:c0:40:3a:80:8f:b0:c1:9a:5f:f4:9e:8a:23:2e: 10:ae:fa:0e:fe:e5:85:c7:36:3e:19:6e:a1:4a:b0:18:50:e2: 45:df:9d:da:ef:f8:75:65:57:75:e2:c8:2d:ef:bb:c3:5e:b5: 65:92:24:6d:bd:4c:98:e6:0b:cc:73:eb:1f:80:59:b0:0f:75: 16:50:88:3a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pfc1TLjWsFdadd8lOtF8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0M2I1MzIyYjhlYTM4YTdhMDQ0ZGNiMDY3MWE3NWRiYTEw NDNkN2UwHhcNMjYwMTAyMTIxOTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OGNiMGZhZWQ0NjJlMDkyNjhiZTljODY2MjM1OGU3MzhjMmRkODA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7z9Zzg2MeSuQCsclpZQ1h5bPeVA /UGKaHc66rkilJYZzLWFcfHcuPsebKRHiqz9g02bAQeOBY58Grb8nDyp4Lego1yi kI0LSEdXBON84zhYAJCbVZa9QjcDuou6ofElwdfOI9B7DDcVYc5P5of6Sxhf66/Y 7dglWlCM9/M8bZQrOkdWA2WS879Sr0cLlql8doRYJRXlrafBZMgOuopVMVBmUJgL xIxYbpXujym4A5ZhWneFpBaIllGwWOdeFmRDJ1HYD/gP543BUm5E+BLJsQerOS8l 8V5PB/ld0Z4Lx2LvUUzCY4Nu1hWFBSiEThjLtTJ/EjGpI71FcQAN25txCQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJjLD67UYuCSaL6chmI1jnOMLdgHMB8GA1UdIwQY MBaAFKQ7UyK46jinoETcsGcadduhBD1+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcER0VElyanFPS2VnUk55d1p4cDEyNkVFUFg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9hZTUyMDYtYzg0My00YmQ1LTg4NjAt NzFlOTViMDRiM2VjLzEvbU1zUHJ0Umk0SkpvdnB5R1lqV09jNHd0MkFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9hZTUyMDYtYzg0My00YmQ1LTg4NjAtNzFlOTViMDRiM2Vj LzEvcER0VElyanFPS2VnUk55d1p4cDEyNkVFUFg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAub4RMA0G CSqGSIb3DQEBCwUAA4IBAQCP4wmq2iobwqPQgL+tmP2P0oWkgZHuB6z82dR4IsaY XI9XjMpo56zXN8q47XC7GhRBefKt/+W5dHGUgDiK7ZlrIxbUvrUG9JgclyO4XP3Z X5orqV4BOsZn+MAq4xPYE3e5jWnhg6K0maAhymcSFVqRpPCqrFRLXFmZ2ohYLJ+y +z4TMatFKn/f5Zp+pSXD9j6uwo2InijOUQUYX9tAw5AtL5IFlIpIG158aZvBUSFV xnifNRq1hd+bwEA6gI+wwZpf9J6KIy4QrvoO/uWFxzY+GW6hSrAYUOJF353a7/h1 ZVd14sgt77vDXrVlkiRtvUyY5gvMc+sfgFmwD3UWUIg6 -----END CERTIFICATE-----Generated at Wed Jan 21 16:14:50 2026 by rpki-client