This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/mk-o5pzcFZ829W_PREQ8FPPRzlM.roa File: mk-o5pzcFZ829W_PREQ8FPPRzlM.roa (raw, json) Hash identifier: /akxso2djAilBz3nuuXvJ6Kc63SQJSYVStzj36gpVWQ= Subject key identifier: 9A:4F:A8:E6:9C:DC:15:9F:36:F5:6F:CF:44:44:3C:14:F3:D1:CE:53 Certificate issuer: /CN=d1ca1a706abcfbe1b85865238d8435ee33e75820 Certificate serial: 019B7C1206D61C4CF036EAF55118D72E7735 Authority key identifier: D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/mk-o5pzcFZ829W_PREQ8FPPRzlM.roa Signing time: Fri 02 Jan 2026 00:18:34 +0000 ROA not before: Fri 02 Jan 2026 00:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42846 IP address blocks: 45.84.188.0/24 maxlen: 24 45.84.189.0/24 maxlen: 24 45.84.190.0/24 maxlen: 24 45.84.191.0/24 maxlen: 24 89.252.178.0/24 maxlen: 24 89.252.179.0/24 maxlen: 24 89.252.180.0/24 maxlen: 24 89.252.181.0/24 maxlen: 24 89.252.182.0/24 maxlen: 24 89.252.183.0/24 maxlen: 24 89.252.184.0/24 maxlen: 24 89.252.185.0/24 maxlen: 24 89.252.186.0/24 maxlen: 24 89.252.187.0/24 maxlen: 24 185.106.208.0/24 maxlen: 24 185.106.209.0/24 maxlen: 24 185.106.210.0/24 maxlen: 24 185.106.211.0/24 maxlen: 24 2a06:41c0::/48 maxlen: 48 2a06:41c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/0coacGq8--G4WGUjjYQ17jPnWCA.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/0coacGq8--G4WGUjjYQ17jPnWCA.mft rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:06:d6:1c:4c:f0:36:ea:f5:51:18:d7:2e:77:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1ca1a706abcfbe1b85865238d8435ee33e75820 Validity Not Before: Jan 2 00:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9a4fa8e69cdc159f36f56fcf44443c14f3d1ce53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1b:7c:69:76:6f:a5:ee:dd:31:97:61:a4:71: d8:ef:dc:ff:7e:75:40:20:53:03:96:37:fb:e5:98: 66:69:4d:96:53:3e:66:f3:b8:79:b5:42:43:30:4d: d9:7d:a6:cb:a7:b3:aa:20:12:d3:29:64:65:da:9b: d0:3b:6f:dd:1e:60:33:fe:68:b7:37:e9:25:e7:df: 71:9a:2a:ca:99:82:23:90:ab:ec:04:79:66:66:b7: 4b:29:ba:24:fd:3e:ef:d2:4a:b4:c0:96:ea:3a:5b: 46:9a:2a:b2:c5:f6:eb:f9:fb:24:0c:08:68:c9:26: 1a:4c:58:0c:a6:8e:90:9c:4e:bb:5c:98:c9:f6:83: 71:d9:5f:28:cd:fd:f0:a2:c1:8d:8f:ba:88:07:f6: 45:3d:c4:3c:e8:f7:01:c5:66:4a:f5:24:36:6c:bc: 38:cd:76:dd:8e:78:da:aa:47:f7:5e:c2:2e:d3:d8: ff:b2:43:1c:cc:5c:75:61:cc:f6:05:dd:02:78:f1: 75:8a:b7:99:17:bd:13:4f:bd:35:50:79:16:dd:7c: 30:59:bf:55:90:e1:0f:e3:e4:4d:81:90:55:45:ff: dd:83:6b:e4:5a:fa:7c:46:33:fc:08:e7:34:3b:0d: c9:11:74:7d:fc:49:c7:6d:d8:f3:ff:27:64:27:58: 37:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:4F:A8:E6:9C:DC:15:9F:36:F5:6F:CF:44:44:3C:14:F3:D1:CE:53 X509v3 Authority Key Identifier: keyid:D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/mk-o5pzcFZ829W_PREQ8FPPRzlM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/0coacGq8--G4WGUjjYQ17jPnWCA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.84.188.0/22 89.252.178.0-89.252.187.255 185.106.208.0/22 IPv6: 2a06:41c0::/47 Signature Algorithm: sha256WithRSAEncryption a4:c7:5b:f6:60:5d:57:46:a5:db:73:d4:e6:37:95:e1:74:f0: b3:70:b7:bd:71:48:91:4a:d3:5d:51:ad:b2:8e:e4:dd:fb:5b: 7d:ee:1b:7c:b5:dc:19:80:54:39:ac:3e:71:e3:0f:34:83:6c: 49:ad:53:1b:04:58:a5:63:8e:96:9f:15:45:50:bf:1c:5d:4c: 3d:d1:bc:79:19:fe:d7:01:17:bf:2e:9f:3f:53:69:e4:02:00: c0:b1:34:97:92:33:c1:7f:30:33:c4:ee:33:81:ab:17:f5:7c: 1a:85:b2:89:cb:73:aa:1a:4f:4d:a7:da:0f:e8:bc:4d:dd:75: 05:f0:f4:7d:40:3b:76:7f:47:d3:3e:91:e2:8b:69:e1:cb:5d: e1:74:bd:67:cb:7d:51:57:53:25:95:1a:bc:82:eb:2a:77:71: 36:7d:49:15:fd:bf:81:c7:de:8e:c3:1b:1b:43:3d:ef:35:fd: 2e:7d:66:22:c5:35:8a:cd:d0:95:74:55:4f:06:fc:fe:e4:d3: 96:d3:32:b4:9b:5c:53:4b:d2:4d:63:12:2e:8f:53:07:42:19: 56:f0:27:6d:16:fc:3c:e0:ed:8e:cf:3e:67:27:7e:d1:3f:15: 8b:ac:57:ae:a4:18:24:76:a4:8a:6d:48:fb:de:b1:54:9f:40: ba:c0:e6:7b -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgISAZt8EgbWHEzwNur1URjXLnc1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxY2ExYTcwNmFiY2ZiZTFiODU4NjUyMzhkODQzNWVlMzNl NzU4MjAwHhcNMjYwMTAyMDAxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YTRmYThlNjljZGMxNTlmMzZmNTZmY2Y0NDQ0M2MxNGYzZDFjZTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBt8aXZvpe7dMZdhpHHY79z/fnVA IFMDljf75ZhmaU2WUz5m87h5tUJDME3ZfabLp7OqIBLTKWRl2pvQO2/dHmAz/mi3 N+kl599xmirKmYIjkKvsBHlmZrdLKbok/T7v0kq0wJbqOltGmiqyxfbr+fskDAho ySYaTFgMpo6QnE67XJjJ9oNx2V8ozf3wosGNj7qIB/ZFPcQ86PcBxWZK9SQ2bLw4 zXbdjnjaqkf3XsIu09j/skMczFx1Ycz2Bd0CePF1ireZF70TT701UHkW3XwwWb9V kOEP4+RNgZBVRf/dg2vkWvp8RjP8COc0Ow3JEXR9/EnHbdjz/ydkJ1g3PQIDAQAB o4ICLjCCAiowHQYDVR0OBBYEFJpPqOac3BWfNvVvz0REPBTz0c5TMB8GA1UdIwQY MBaAFNHKGnBqvPvhuFhlI42ENe4z51ggMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGNvYWNHcTgtLUc0V0dVampZUTE3alBuV0NBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9jZjc5YTMtZjNjYy00ZDVhLTk2NzIt ZThmN2ZkM2E0MDc4LzEvbWstbzVwemNGWjgyOVdfUFJFUThGUFBSemxNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9jZjc5YTMtZjNjYy00ZDVhLTk2NzItZThmN2ZkM2E0MDc4 LzEvMGNvYWNHcTgtLUc0V0dVampZUTE3alBuV0NBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEQGCCsGAQUFBwEHAQH/BDUwMzAgBAIAATAaAwQCLVS8MAwD BAFZ/LIDBAJZ/LgDBAK5atAwDwQCAAIwCQMHASoGQcAAADANBgkqhkiG9w0BAQsF AAOCAQEApMdb9mBdV0al23PU5jeV4XTws3C3vXFIkUrTXVGtso7k3ftbfe4bfLXc GYBUOaw+ceMPNINsSa1TGwRYpWOOlp8VRVC/HF1MPdG8eRn+1wEXvy6fP1Np5AIA wLE0l5IzwX8wM8TuM4GrF/V8GoWyictzqhpPTafaD+i8Td11BfD0fUA7dn9H0z6R 4otp4ctd4XS9Z8t9UVdTJZUavILrKndxNn1JFf2/gcfejsMbG0M97zX9Ln1mIsU1 is3QlXRVTwb8/uTTltMytJtcU0vSTWMSLo9TB0IZVvAnbRb8PODtjs8+Zyd+0T8V i6xXrqQYJHakim1I+96xVJ9AusDmew== -----END CERTIFICATE-----Generated at Mon Jan 26 14:08:01 2026 by rpki-client