This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/mqgpdMuqiVglKY9miPJxo9C0iTQ.roa File: mqgpdMuqiVglKY9miPJxo9C0iTQ.roa (raw, json) Hash identifier: cS8JqXqtjXcEL0kXghoZe2Txkm/P1kISxoeWzSy0MNI= Subject key identifier: 9A:A8:29:74:CB:AA:89:58:25:29:8F:66:88:F2:71:A3:D0:B4:89:34 Certificate issuer: /CN=07d3c0c115328c3d28c0f5721b00982b2cd4215e Certificate serial: 019B7C1250342827FEBF712C7FA3AE3F32F1 Authority key identifier: 07:D3:C0:C1:15:32:8C:3D:28:C0:F5:72:1B:00:98:2B:2C:D4:21:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9PAwRUyjD0owPVyGwCYKyzUIV4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/mqgpdMuqiVglKY9miPJxo9C0iTQ.roa Signing time: Fri 02 Jan 2026 00:18:53 +0000 ROA not before: Fri 02 Jan 2026 00:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 195.22.120.0/24 maxlen: 24 2001:67c:2f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/B9PAwRUyjD0owPVyGwCYKyzUIV4.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/B9PAwRUyjD0owPVyGwCYKyzUIV4.mft rsync://rpki.ripe.net/repository/DEFAULT/B9PAwRUyjD0owPVyGwCYKyzUIV4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 00:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:50:34:28:27:fe:bf:71:2c:7f:a3:ae:3f:32:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07d3c0c115328c3d28c0f5721b00982b2cd4215e Validity Not Before: Jan 2 00:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9aa82974cbaa895825298f6688f271a3d0b48934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0c:ab:90:c6:11:c5:db:ae:f7:33:b8:1f:99: 06:31:70:16:4e:fa:dc:8d:a6:3d:a0:fe:04:7c:78: c3:4b:7c:29:d3:e6:af:21:f8:05:8e:4d:02:37:e4: b7:bb:e5:06:ea:c4:37:37:b7:ba:a1:ef:1b:95:cb: 5f:79:8a:2d:46:2c:b5:d0:c7:3c:b2:26:24:2b:9b: 54:3a:0d:ba:8d:c2:2f:ec:2c:1e:60:6d:18:e0:c6: d0:5a:bb:8f:81:6f:fa:5b:a5:53:8d:23:f1:7a:10: 13:58:cc:27:e6:b5:51:47:22:b0:8a:32:d5:9d:3b: 81:ee:db:02:96:bf:d4:73:45:ea:39:7f:4b:d0:12: b6:03:56:04:66:eb:4f:1f:e9:27:85:7c:54:61:2b: f8:54:d4:98:5b:c5:e5:0e:08:03:7f:d9:c4:b7:54: d0:cd:73:c9:a4:4a:1f:65:5a:ad:1e:21:53:89:b4: 11:53:da:c7:ef:17:1a:f3:ca:7d:67:d3:30:90:13: 41:43:c4:34:b4:91:fa:37:21:e7:5a:08:6c:20:7e: df:67:e8:ab:7c:00:7f:29:1e:bf:aa:ad:bd:61:2f: d4:5c:c7:8e:33:fe:a3:d4:74:19:8c:1a:30:10:45: 27:76:9d:e4:34:d8:3a:d7:49:70:01:e5:aa:1b:e4: 06:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A8:29:74:CB:AA:89:58:25:29:8F:66:88:F2:71:A3:D0:B4:89:34 X509v3 Authority Key Identifier: keyid:07:D3:C0:C1:15:32:8C:3D:28:C0:F5:72:1B:00:98:2B:2C:D4:21:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9PAwRUyjD0owPVyGwCYKyzUIV4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/mqgpdMuqiVglKY9miPJxo9C0iTQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/376f5a-c026-4bae-8847-2b1d439b2227/1/B9PAwRUyjD0owPVyGwCYKyzUIV4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.22.120.0/24 IPv6: 2001:67c:2f00::/48 Signature Algorithm: sha256WithRSAEncryption 3f:da:0b:ab:5b:ec:d9:c3:9f:fe:c9:e8:a3:b1:a0:31:7d:32: a0:22:05:7d:b8:3e:9f:bc:db:06:56:25:dc:46:87:b2:d9:b2: 0c:4d:8d:d8:f0:0d:00:87:48:53:ca:a5:33:ca:d6:f1:7c:29: d9:a2:72:b2:d1:db:02:b6:48:e6:b5:7e:2a:a9:56:bb:59:65: 8c:92:16:bf:15:4d:65:c0:2e:07:3a:b6:a6:41:e2:b5:9e:fe: 9c:e7:fe:b6:f6:da:87:47:6b:eb:04:45:82:3c:d1:6e:ea:22: d1:e3:e1:4c:97:1d:6f:7e:a7:55:0a:2e:08:af:7d:ca:33:7d: ac:b5:24:3a:de:7b:65:39:8b:90:88:8a:cf:05:01:8f:8f:6d: 12:df:c8:80:21:9b:c6:f9:21:e4:97:14:66:b9:0e:cf:c6:f7: 5c:53:ea:b1:10:fa:40:26:37:da:eb:d2:ce:0e:ae:a8:63:0f: 38:12:8e:13:15:b6:b6:c1:46:20:6f:5a:fa:d0:eb:59:ef:6c: bb:9c:4a:b6:1c:dd:7a:f9:4e:61:80:0b:10:e4:db:8e:97:f7: 75:69:2d:44:ab:a2:19:84:9e:82:eb:d8:fb:4e:79:43:34:50: d5:33:6e:40:44:e8:29:e9:10:58:be:7b:e4:1a:cd:35:59:31: 4f:ae:c5:80 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8ElA0KCf+v3Esf6OuPzLxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3ZDNjMGMxMTUzMjhjM2QyOGMwZjU3MjFiMDA5ODJiMmNk NDIxNWUwHhcNMjYwMTAyMDAxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YWE4Mjk3NGNiYWE4OTU4MjUyOThmNjY4OGYyNzFhM2QwYjQ4OTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwyrkMYRxduu9zO4H5kGMXAWTvrc jaY9oP4EfHjDS3wp0+avIfgFjk0CN+S3u+UG6sQ3N7e6oe8blctfeYotRiy10Mc8 siYkK5tUOg26jcIv7CweYG0Y4MbQWruPgW/6W6VTjSPxehATWMwn5rVRRyKwijLV nTuB7tsClr/Uc0XqOX9L0BK2A1YEZutPH+knhXxUYSv4VNSYW8XlDggDf9nEt1TQ zXPJpEofZVqtHiFTibQRU9rH7xca88p9Z9MwkBNBQ8Q0tJH6NyHnWghsIH7fZ+ir fAB/KR6/qq29YS/UXMeOM/6j1HQZjBowEEUndp3kNNg610lwAeWqG+QG8QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFJqoKXTLqolYJSmPZojycaPQtIk0MB8GA1UdIwQY MBaAFAfTwMEVMow9KMD1chsAmCss1CFeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQjlQQXdSVXlqRDBvd1BWeUd3Q1lLeXpVSVY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8zNzZmNWEtYzAyNi00YmFlLTg4NDct MmIxZDQzOWIyMjI3LzEvbXFncGRNdXFpVmdsS1k5bWlQSnhvOUMwaVRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS8zNzZmNWEtYzAyNi00YmFlLTg4NDctMmIxZDQzOWIyMjI3 LzEvQjlQQXdSVXlqRDBvd1BWeUd3Q1lLeXpVSVY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwxZ4MA8E AgACMAkDBwAgAQZ8LwAwDQYJKoZIhvcNAQELBQADggEBAD/aC6tb7NnDn/7J6KOx oDF9MqAiBX24Pp+82wZWJdxGh7LZsgxNjdjwDQCHSFPKpTPK1vF8KdmicrLR2wK2 SOa1fiqpVrtZZYySFr8VTWXALgc6tqZB4rWe/pzn/rb22odHa+sERYI80W7qItHj 4UyXHW9+p1UKLgivfcozfay1JDree2U5i5CIis8FAY+PbRLfyIAhm8b5IeSXFGa5 Ds/G91xT6rEQ+kAmN9rr0s4OrqhjDzgSjhMVtrbBRiBvWvrQ61nvbLucSrYc3Xr5 TmGACxDk246X93VpLUSrohmEnoLr2PtOeUM0UNUzbkBE6CnpEFi+e+QazTVZMU+u xYA= -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:20 2026 by rpki-client