This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/xMQ_4p2SM_CIIDSnKCcWGHTj3ok.roa File: xMQ_4p2SM_CIIDSnKCcWGHTj3ok.roa (raw, json) Hash identifier: jcCbxdISoveKOXrkgwWGMRGuVUOJX0gDk8fHI5o5iss= Subject key identifier: C4:C4:3F:E2:9D:92:33:F0:88:20:34:A7:28:27:16:18:74:E3:DE:89 Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603 Certificate serial: 019B7911168BF735B2162D0741021A4B4C57 Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/xMQ_4p2SM_CIIDSnKCcWGHTj3ok.roa Signing time: Thu 01 Jan 2026 10:18:41 +0000 ROA not before: Thu 01 Jan 2026 10:18:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29802 IP address blocks: 43.239.88.0/22 maxlen: 22 91.210.64.0/22 maxlen: 22 103.206.232.0/22 maxlen: 22 107.181.156.0/22 maxlen: 22 155.254.40.0/22 maxlen: 22 155.254.44.0/22 maxlen: 22 155.254.50.0/23 maxlen: 23 155.254.52.0/22 maxlen: 22 155.254.56.0/22 maxlen: 22 185.135.212.0/22 maxlen: 22 198.105.96.0/22 maxlen: 22 198.105.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.mft rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:16:8b:f7:35:b2:16:2d:07:41:02:1a:4b:4c:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603 Validity Not Before: Jan 1 10:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c4c43fe29d9233f0882034a72827161874e3de89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a8:11:af:3e:00:64:63:c2:a8:2c:ad:1c:5a: 97:8f:01:cf:db:c0:54:34:5f:ed:65:27:c3:7b:4d: af:a8:07:70:1b:73:7e:e9:02:6a:ff:43:71:9b:dc: 84:4f:b5:ec:df:08:e9:1a:40:22:91:be:03:9c:02: 59:96:ca:93:52:09:1e:33:12:fc:2e:91:40:75:ae: a9:7a:53:b2:cb:08:d8:67:27:73:4c:26:1d:57:7f: dc:4d:b8:5d:d9:f7:b7:08:ae:74:12:2c:9f:a2:b7: b9:3a:eb:4a:e3:8b:27:21:f9:1e:52:91:39:b6:45: 6a:7a:35:49:70:51:0c:13:e3:99:b7:db:c2:a3:dd: 6f:f1:44:c0:3f:8c:90:c5:6d:96:72:6d:2a:97:b3: 20:84:31:38:4b:5c:a5:cf:99:56:ba:8a:c2:c9:39: 3f:bd:ff:35:82:d6:cc:ff:f5:5f:43:29:ef:d5:ee: 48:a1:a4:4d:79:28:87:ce:b2:be:2e:45:1d:1c:47: e7:17:72:cc:99:f2:21:ea:52:a8:c3:0a:3c:c7:19: 05:fd:ca:72:3e:db:5b:72:aa:a0:b9:f5:40:50:48: bc:3e:cb:4b:ac:0a:c9:1f:19:c2:c6:d0:65:ba:95: 05:22:53:af:aa:4f:4c:98:f5:f6:71:6d:2d:cb:c7: 25:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C4:3F:E2:9D:92:33:F0:88:20:34:A7:28:27:16:18:74:E3:DE:89 X509v3 Authority Key Identifier: keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/xMQ_4p2SM_CIIDSnKCcWGHTj3ok.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.239.88.0/22 91.210.64.0/22 103.206.232.0/22 107.181.156.0/22 155.254.40.0/21 155.254.50.0-155.254.59.255 185.135.212.0/22 198.105.96.0/22 198.105.104.0/22 Signature Algorithm: sha256WithRSAEncryption 21:30:6b:95:f8:a6:53:bc:66:f6:f2:50:39:67:9b:32:96:74: ae:7c:b2:4a:dc:95:b3:fc:e9:af:30:f5:ce:e8:42:01:24:f6: ff:12:d3:3a:b5:c9:b1:ed:61:39:4f:80:c4:e7:91:7d:1f:fd: 61:62:40:3a:03:1a:91:4e:de:13:65:9b:87:5e:9f:35:e2:6a: 6f:3d:97:dc:4d:b5:fb:b6:7c:0b:0d:e8:5d:bd:49:ac:c9:3b: 85:7f:84:a0:4d:33:81:80:b9:5a:f3:62:b4:ef:1d:dc:d0:d3: e0:92:5e:3a:60:9e:b8:ab:37:7b:3e:ba:eb:9b:86:0a:f3:5a: 44:bc:cd:ee:0a:4a:85:4b:5d:0c:73:69:aa:2a:c0:5d:87:a2: 46:31:0b:dd:da:67:db:44:24:d9:b2:5d:7a:94:30:d5:27:d9: 6b:00:87:27:1a:e9:02:c1:b5:18:5b:30:41:7e:ae:14:72:36: dc:87:bf:d2:ec:c2:8d:4d:56:07:39:fe:e1:e9:e4:32:30:1a: 12:6e:d8:76:a8:4c:7a:c5:b5:e1:ec:86:26:96:52:c5:eb:fa: f4:8e:de:e4:3f:1b:c2:61:54:2c:4d:79:f7:69:b0:5b:1e:4b: 60:5b:48:64:99:d3:e0:c2:90:5e:2b:f1:b4:9f:45:c5:2d:32: ae:75:d3:c8 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISAZt5ERaL9zWyFi0HQQIaS0xXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NTRjMzQ3ZDY4ZDE1NDkzZGU3MWJiOTYyZjBhNTY3ZTEz NGQ2MDMwHhcNMjYwMTAxMTAxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNGM0M2ZlMjlkOTIzM2YwODgyMDM0YTcyODI3MTYxODc0ZTNkZTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6gRrz4AZGPCqCytHFqXjwHP28BU NF/tZSfDe02vqAdwG3N+6QJq/0Nxm9yET7Xs3wjpGkAikb4DnAJZlsqTUgkeMxL8 LpFAda6pelOyywjYZydzTCYdV3/cTbhd2fe3CK50Eiyfore5OutK44snIfkeUpE5 tkVqejVJcFEME+OZt9vCo91v8UTAP4yQxW2Wcm0ql7MghDE4S1ylz5lWuorCyTk/ vf81gtbM//VfQynv1e5IoaRNeSiHzrK+LkUdHEfnF3LMmfIh6lKowwo8xxkF/cpy PttbcqqgufVAUEi8PstLrArJHxnCxtBlupUFIlOvqk9MmPX2cW0ty8clIwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFMTEP+KdkjPwiCA0pygnFhh0496JMB8GA1UdIwQY MBaAFOdUw0fWjRVJPecbuWLwpWfhNNYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTFURFI5YU5GVWs5NXh1NVl2Q2xaLUUwMWdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80NmRiM2EtYTU3My00ZjI4LWI0M2It MzdiNjJkMjIzOTI0LzEveE1RXzRwMlNNX0NJSURTbktDY1dHSFRqM29rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80NmRiM2EtYTU3My00ZjI4LWI0M2ItMzdiNjJkMjIzOTI0 LzEvNTFURFI5YU5GVWs5NXh1NVl2Q2xaLUUwMWdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+AwQCK+9YAwQC W9JAAwQCZ87oAwQCa7WcAwQDm/4oMAwDBAGb/jIDBAKb/jgDBAK5h9QDBALGaWAD BALGaWgwDQYJKoZIhvcNAQELBQADggEBACEwa5X4plO8ZvbyUDlnmzKWdK58skrc lbP86a8w9c7oQgEk9v8S0zq1ybHtYTlPgMTnkX0f/WFiQDoDGpFO3hNlm4denzXi am89l9xNtfu2fAsN6F29SazJO4V/hKBNM4GAuVrzYrTvHdzQ0+CSXjpgnrirN3s+ uuubhgrzWkS8ze4KSoVLXQxzaaoqwF2HokYxC93aZ9tEJNmyXXqUMNUn2WsAhyca 6QLBtRhbMEF+rhRyNtyHv9Lswo1NVgc5/uHp5DIwGhJu2HaoTHrFteHshiaWUsXr +vSO3uQ/G8JhVCxNefdpsFseS2BbSGSZ0+DCkF4r8bSfRcUtMq5108g= -----END CERTIFICATE-----Generated at Wed Jan 21 15:04:54 2026 by rpki-client