This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/mgGVP9w-ya_7zv7yO1xWTM7sa_0.roa File: mgGVP9w-ya_7zv7yO1xWTM7sa_0.roa (raw, json) Hash identifier: CNgDgTCH1ZO1+h/LC5uHK3Xji2RJx/Y7qygtDyi4V4k= Subject key identifier: 9A:01:95:3F:DC:3E:C9:AF:FB:CE:FE:F2:3B:5C:56:4C:CE:EC:6B:FD Certificate issuer: /CN=1d0871fc2e99892ea1115a302138e1d32a62182c Certificate serial: 019B7F155F8B58FA5CC5191B9E6998B53F18 Authority key identifier: 1D:08:71:FC:2E:99:89:2E:A1:11:5A:30:21:38:E1:D3:2A:62:18:2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQhx_C6ZiS6hEVowITjh0ypiGCw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/mgGVP9w-ya_7zv7yO1xWTM7sa_0.roa Signing time: Fri 02 Jan 2026 14:21:05 +0000 ROA not before: Fri 02 Jan 2026 14:21:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 185.118.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/HQhx_C6ZiS6hEVowITjh0ypiGCw.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/HQhx_C6ZiS6hEVowITjh0ypiGCw.mft rsync://rpki.ripe.net/repository/DEFAULT/HQhx_C6ZiS6hEVowITjh0ypiGCw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:5f:8b:58:fa:5c:c5:19:1b:9e:69:98:b5:3f:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d0871fc2e99892ea1115a302138e1d32a62182c Validity Not Before: Jan 2 14:21:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9a01953fdc3ec9affbcefef23b5c564cceec6bfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:35:31:5e:7f:d4:51:82:1c:00:65:f6:48:ff: aa:8b:b6:5c:35:93:b7:d0:51:e4:30:c2:27:27:99: b6:af:f9:1c:ec:72:8e:db:5c:1e:37:9c:a4:14:ad: 10:d4:cc:ed:f4:3f:76:9b:51:7c:73:c6:db:7b:51: bb:b5:1b:23:2b:7f:3c:9e:e1:c8:ca:52:a1:91:94: 43:30:b8:33:55:89:35:41:b5:c6:b1:e6:da:9b:8c: 18:68:e1:d1:7e:16:84:8d:cf:95:86:da:59:6a:85: bb:4b:52:7f:cd:73:8b:18:a6:61:f5:e3:1a:9f:69: ce:d8:86:f1:ad:31:ca:8f:40:67:38:d5:78:cd:3f: 7a:20:71:00:6d:ed:79:93:1b:70:73:9e:a8:84:00: 23:2b:1e:84:ca:3e:c4:e4:22:05:cf:f3:42:27:9b: a2:30:12:d2:62:7d:4e:78:13:65:2c:1a:fb:3d:c5: 13:0a:49:f7:ce:38:78:2f:90:9a:7b:6f:a4:d7:21: a7:4f:86:39:04:88:ca:24:b4:33:56:1a:18:e1:70: ab:72:21:71:02:e0:cd:1d:e2:d1:0d:d3:cb:21:9e: cf:ac:4f:91:37:78:1f:79:58:d6:be:3d:20:0f:48: 42:4b:d7:4b:ff:4f:70:72:a7:a2:4d:d9:7c:65:7e: f5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:01:95:3F:DC:3E:C9:AF:FB:CE:FE:F2:3B:5C:56:4C:CE:EC:6B:FD X509v3 Authority Key Identifier: keyid:1D:08:71:FC:2E:99:89:2E:A1:11:5A:30:21:38:E1:D3:2A:62:18:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQhx_C6ZiS6hEVowITjh0ypiGCw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/mgGVP9w-ya_7zv7yO1xWTM7sa_0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/HQhx_C6ZiS6hEVowITjh0ypiGCw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.118.109.0/24 Signature Algorithm: sha256WithRSAEncryption 62:2f:86:4e:38:4e:22:eb:6f:16:c6:7b:e2:d5:5f:e5:4a:69: c2:c1:39:ff:48:f9:cf:53:37:6f:62:aa:33:5e:ea:ca:23:f8: c6:f9:e6:d4:be:ec:73:6e:86:5e:15:0d:b9:55:2c:65:d0:54: 83:8a:bf:f9:34:bd:83:92:e2:b3:bd:50:30:11:5d:b4:c4:38: aa:42:c7:ab:1d:9a:0e:44:72:91:4b:9e:bd:b9:c8:50:35:23: cf:68:02:01:95:e4:b0:24:bd:6d:db:7a:4a:ad:75:0d:9c:bd: 1e:73:e5:f0:cb:82:fe:90:e5:b5:eb:ff:1c:3f:dd:f3:bf:bc: 1a:9b:8d:62:9e:5a:fb:e3:5a:f3:22:9d:95:4b:69:e9:83:30: 6d:8d:8a:c6:9d:4e:b7:17:78:a7:29:d2:97:30:de:e3:87:da: c1:3b:8f:21:d4:ca:f1:0e:b1:8b:59:14:a7:1f:9a:47:2a:0d: 8e:c1:3f:07:86:01:2f:3a:3a:b0:5b:67:a3:3b:3f:2d:0f:98: c4:8b:ac:78:4d:1b:82:a4:22:31:4f:20:0d:4f:72:1f:6a:d8: 7f:95:5f:43:0f:80:84:4d:d7:02:07:24:39:d0:47:80:18:e6: c3:a8:a7:e8:44:f6:fe:1c:fb:ad:24:16:9f:bb:e8:5f:4c:dc: 3e:f4:df:ca -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FV+LWPpcxRkbnmmYtT8YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMDg3MWZjMmU5OTg5MmVhMTExNWEzMDIxMzhlMWQzMmE2 MjE4MmMwHhcNMjYwMTAyMTQyMTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YTAxOTUzZmRjM2VjOWFmZmJjZWZlZjIzYjVjNTY0Y2NlZWM2YmZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jUxXn/UUYIcAGX2SP+qi7ZcNZO3 0FHkMMInJ5m2r/kc7HKO21weN5ykFK0Q1Mzt9D92m1F8c8bbe1G7tRsjK388nuHI ylKhkZRDMLgzVYk1QbXGsebam4wYaOHRfhaEjc+VhtpZaoW7S1J/zXOLGKZh9eMa n2nO2IbxrTHKj0BnONV4zT96IHEAbe15kxtwc56ohAAjKx6Eyj7E5CIFz/NCJ5ui MBLSYn1OeBNlLBr7PcUTCkn3zjh4L5Cae2+k1yGnT4Y5BIjKJLQzVhoY4XCrciFx AuDNHeLRDdPLIZ7PrE+RN3gfeVjWvj0gD0hCS9dL/09wcqeiTdl8ZX713wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJoBlT/cPsmv+87+8jtcVkzO7Gv9MB8GA1UdIwQY MBaAFB0IcfwumYkuoRFaMCE44dMqYhgsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFFoeF9DNlppUzZoRVZvd0lUamgweXBpR0N3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8yMDUyNzUtMmNlZC00YTRlLWI5MDAt NGYzZTViMmUwYzU2LzEvbWdHVlA5dy15YV83enY3eU8xeFdUTTdzYV8wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy8yMDUyNzUtMmNlZC00YTRlLWI5MDAtNGYzZTViMmUwYzU2 LzEvSFFoeF9DNlppUzZoRVZvd0lUamgweXBpR0N3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXZtMA0G CSqGSIb3DQEBCwUAA4IBAQBiL4ZOOE4i628Wxnvi1V/lSmnCwTn/SPnPUzdvYqoz XurKI/jG+ebUvuxzboZeFQ25VSxl0FSDir/5NL2DkuKzvVAwEV20xDiqQserHZoO RHKRS569uchQNSPPaAIBleSwJL1t23pKrXUNnL0ec+Xwy4L+kOW16/8cP93zv7wa m41inlr741rzIp2VS2npgzBtjYrGnU63F3inKdKXMN7jh9rBO48h1MrxDrGLWRSn H5pHKg2OwT8HhgEvOjqwW2ejOz8tD5jEi6x4TRuCpCIxTyANT3Ifath/lV9DD4CE TdcCByQ50EeAGObDqKfoRPb+HPutJBafu+hfTNw+9N/K -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:33 2026 by rpki-client