This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/84bf54-09c3-4324-a11c-e4ddfa32e52e/1/mjMQEKksicvgZzYu86cOaUikq_o.roa File: mjMQEKksicvgZzYu86cOaUikq_o.roa (raw, json) Hash identifier: 7g64PoLicqxVLeKtHUopkjJGRzw3GYF64nr8YZ5vEEg= Subject key identifier: 9A:33:10:10:A9:2C:89:CB:E0:67:36:2E:F3:A7:0E:69:48:A4:AB:FA Certificate issuer: /CN=5cfe8d72526e4e73a3b57d9360f3a51beb59a45f Certificate serial: 019B77C6D238CC4E9A5D5757AAD92253B34C Authority key identifier: 5C:FE:8D:72:52:6E:4E:73:A3:B5:7D:93:60:F3:A5:1B:EB:59:A4:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XP6NclJuTnOjtX2TYPOlG-tZpF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/84bf54-09c3-4324-a11c-e4ddfa32e52e/1/mjMQEKksicvgZzYu86cOaUikq_o.roa Signing time: Thu 01 Jan 2026 04:17:57 +0000 ROA not before: Thu 01 Jan 2026 04:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208683 IP address blocks: 45.89.132.0/22 maxlen: 22 2a0b:cf00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/84bf54-09c3-4324-a11c-e4ddfa32e52e/1/XP6NclJuTnOjtX2TYPOlG-tZpF8.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/84bf54-09c3-4324-a11c-e4ddfa32e52e/1/XP6NclJuTnOjtX2TYPOlG-tZpF8.mft rsync://rpki.ripe.net/repository/DEFAULT/XP6NclJuTnOjtX2TYPOlG-tZpF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:d2:38:cc:4e:9a:5d:57:57:aa:d9:22:53:b3:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5cfe8d72526e4e73a3b57d9360f3a51beb59a45f Validity Not Before: Jan 1 04:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9a331010a92c89cbe067362ef3a70e6948a4abfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:01:ca:cc:03:04:20:8b:f0:58:d8:a1:d8:19: 74:a5:42:44:ac:5f:78:76:c7:50:15:c2:c9:6a:29: d5:9f:aa:c3:5d:99:ff:b8:09:a5:f3:fb:ca:3e:9e: ce:c9:e8:d2:22:c1:c6:a1:47:81:91:51:da:e8:24: 9a:9a:21:c7:46:4d:86:03:78:c0:9a:e2:60:35:7a: 4f:71:2a:e9:5a:34:52:86:34:17:8c:59:09:6b:9c: dd:02:2d:02:65:35:e5:c6:e3:0c:06:77:40:ca:f6: 8f:70:30:93:00:c4:05:9f:87:47:20:63:1c:b0:dc: 58:b8:b3:28:a6:aa:c9:fe:25:3b:99:eb:42:10:e4: 24:4b:c5:1f:39:d5:ed:fe:f3:cb:ff:cb:7f:5b:28: 9d:e8:ba:31:6a:98:44:9e:8b:34:93:91:8e:0e:ed: 1f:98:46:55:ff:f5:60:81:c6:9c:65:2f:15:68:d3: b4:b1:2a:a7:e9:c7:c0:1c:a3:ac:f2:bf:b6:7a:f3: 17:c2:8b:3c:e7:50:8d:35:de:a6:c1:7d:0b:89:08: 2f:dc:c9:a3:b2:5f:ed:27:83:4c:7a:8f:93:f5:e1: aa:6b:ec:62:74:a2:85:ed:16:9a:d9:eb:97:93:29: 7d:22:f6:c0:d6:dc:e8:ef:b8:e4:65:de:a7:b2:fc: f8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:33:10:10:A9:2C:89:CB:E0:67:36:2E:F3:A7:0E:69:48:A4:AB:FA X509v3 Authority Key Identifier: keyid:5C:FE:8D:72:52:6E:4E:73:A3:B5:7D:93:60:F3:A5:1B:EB:59:A4:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XP6NclJuTnOjtX2TYPOlG-tZpF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/84bf54-09c3-4324-a11c-e4ddfa32e52e/1/mjMQEKksicvgZzYu86cOaUikq_o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/84bf54-09c3-4324-a11c-e4ddfa32e52e/1/XP6NclJuTnOjtX2TYPOlG-tZpF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.89.132.0/22 IPv6: 2a0b:cf00::/32 Signature Algorithm: sha256WithRSAEncryption 66:08:62:17:92:10:bb:10:5b:3a:94:d9:1b:e9:c7:68:c1:3d: 31:d1:d7:ba:ea:9c:b9:37:ac:55:4e:6e:5a:61:ab:be:8e:9c: f7:6c:29:98:a6:93:42:30:28:ff:84:a4:b5:6f:81:9c:48:b1: cb:08:66:ef:83:3c:4b:53:cd:1d:c7:3a:e9:93:ed:f3:ff:f1: c5:30:df:41:df:09:ef:df:89:83:68:8e:6a:15:3b:f6:f6:f3: 04:53:70:d0:c6:52:9a:62:b8:1f:31:80:b0:16:53:68:4e:1b: e0:1e:e3:1d:31:99:a9:c6:85:bd:b9:df:86:e7:14:6a:14:29: 7f:6a:16:7b:37:54:0a:c8:de:07:97:b6:4f:d0:b1:5e:3f:83: c7:c4:d6:37:da:4c:bd:b8:45:02:21:ae:d2:97:eb:7d:66:09: 3b:03:c5:70:ea:3e:17:68:10:f9:82:17:b3:c7:33:59:d5:6b: d6:6a:e9:10:1b:24:82:80:bc:75:e0:33:d0:aa:2d:bb:2e:4d: eb:0e:e5:5b:0a:aa:ab:9f:2a:1d:dc:3c:73:53:65:1b:45:80: 56:a2:d5:b0:7c:a2:35:8a:4d:6e:b6:13:4d:fa:3e:58:46:31: ee:f0:63:c9:bd:bc:3e:ed:67:d0:73:68:a4:a3:2e:d5:e7:3a: b1:42:33:17 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3xtI4zE6aXVdXqtkiU7NMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjZmU4ZDcyNTI2ZTRlNzNhM2I1N2Q5MzYwZjNhNTFiZWI1 OWE0NWYwHhcNMjYwMTAxMDQxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YTMzMTAxMGE5MmM4OWNiZTA2NzM2MmVmM2E3MGU2OTQ4YTRhYmZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgHKzAMEIIvwWNih2Bl0pUJErF94 dsdQFcLJainVn6rDXZn/uAml8/vKPp7OyejSIsHGoUeBkVHa6CSamiHHRk2GA3jA muJgNXpPcSrpWjRShjQXjFkJa5zdAi0CZTXlxuMMBndAyvaPcDCTAMQFn4dHIGMc sNxYuLMopqrJ/iU7metCEOQkS8UfOdXt/vPL/8t/Wyid6LoxaphEnos0k5GODu0f mEZV//VggcacZS8VaNO0sSqn6cfAHKOs8r+2evMXwos851CNNd6mwX0LiQgv3Mmj sl/tJ4NMeo+T9eGqa+xidKKF7Raa2euXkyl9IvbA1tzo77jkZd6nsvz45QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJozEBCpLInL4Gc2LvOnDmlIpKv6MB8GA1UdIwQY MBaAFFz+jXJSbk5zo7V9k2DzpRvrWaRfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFA2TmNsSnVUbk9qdFgyVFlQT2xHLXRacEY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84NGJmNTQtMDljMy00MzI0LWExMWMt ZTRkZGZhMzJlNTJlLzEvbWpNUUVLa3NpY3ZnWnpZdTg2Y09hVWlrcV9vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC84NGJmNTQtMDljMy00MzI0LWExMWMtZTRkZGZhMzJlNTJl LzEvWFA2TmNsSnVUbk9qdFgyVFlQT2xHLXRacEY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLVmEMA0E AgACMAcDBQAqC88AMA0GCSqGSIb3DQEBCwUAA4IBAQBmCGIXkhC7EFs6lNkb6cdo wT0x0de66py5N6xVTm5aYau+jpz3bCmYppNCMCj/hKS1b4GcSLHLCGbvgzxLU80d xzrpk+3z//HFMN9B3wnv34mDaI5qFTv29vMEU3DQxlKaYrgfMYCwFlNoThvgHuMd MZmpxoW9ud+G5xRqFCl/ahZ7N1QKyN4Hl7ZP0LFeP4PHxNY32ky9uEUCIa7Sl+t9 Zgk7A8Vw6j4XaBD5ghezxzNZ1WvWaukQGySCgLx14DPQqi27Lk3rDuVbCqqrnyod 3DxzU2UbRYBWotWwfKI1ik1uthNN+j5YRjHu8GPJvbw+7WfQc2ikoy7V5zqxQjMX -----END CERTIFICATE-----Generated at Tue Feb 10 01:44:27 2026 by rpki-client