This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/mw5z1pFkh2d-1DRwWTOukH2liME.roa File: mw5z1pFkh2d-1DRwWTOukH2liME.roa (raw, json) Hash identifier: KbE04LQ94yOx/lsc8RqLPSiv/e+Wg45pd1d7WYv9cfY= Subject key identifier: 9B:0E:73:D6:91:64:87:67:7E:D4:34:70:59:33:AE:90:7D:A5:88:C1 Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Certificate serial: 019B790FFA6A375315D70FF5FCC2729196DE Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/mw5z1pFkh2d-1DRwWTOukH2liME.roa Signing time: Thu 01 Jan 2026 10:17:28 +0000 ROA not before: Thu 01 Jan 2026 10:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16019 IP address blocks: 109.205.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.mft rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:0f:fa:6a:37:53:15:d7:0f:f5:fc:c2:72:91:96:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Validity Not Before: Jan 1 10:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9b0e73d6916487677ed434705933ae907da588c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:01:ac:65:0f:28:a0:4b:4f:22:81:ac:4f:f2: fb:5a:d2:11:37:4f:08:1a:d8:e6:f2:4f:62:fb:d3: a3:d3:b5:d6:b6:70:0c:57:28:45:14:45:d2:cc:fb: 18:ea:9a:d5:9a:c0:2d:2e:d5:fa:c5:0c:ee:21:43: cf:8c:8d:6a:a0:80:cf:30:16:18:b5:b9:6c:58:29: 03:5e:f1:59:ed:4e:95:a7:13:e8:27:ca:bf:b1:f7: a9:b4:42:4a:91:3b:f9:ed:81:da:d5:88:f3:d0:f4: 31:99:6d:56:d1:c7:29:02:4f:54:ac:de:73:fd:6c: 12:48:64:47:7e:b5:bf:80:54:25:f1:34:31:19:84: 2a:47:5c:f2:bf:08:ab:6f:ec:ff:1c:c1:8c:1b:e5: 87:a9:4d:b4:3e:91:4f:9f:96:9a:11:51:ee:29:d5: 16:10:bc:fb:cf:b4:60:07:a4:28:2f:24:7f:6c:d3: c3:48:6d:a8:39:ad:70:b5:08:e5:01:77:f8:5f:46: dd:7b:aa:02:f6:07:4a:98:06:cf:8f:ee:91:e4:c5: e1:5c:e0:c4:ca:ef:b2:6f:74:fb:a2:39:15:e8:17: 93:ab:2f:b5:5a:dc:2c:95:27:de:c8:63:0e:bb:5d: f0:da:e4:f6:91:c9:15:b1:ad:ab:5a:92:cb:b4:10: a7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:0E:73:D6:91:64:87:67:7E:D4:34:70:59:33:AE:90:7D:A5:88:C1 X509v3 Authority Key Identifier: keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/mw5z1pFkh2d-1DRwWTOukH2liME.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.240.0/24 Signature Algorithm: sha256WithRSAEncryption 05:9c:e6:9c:c8:c5:9d:a6:e8:a5:e9:32:7d:71:b5:cb:c3:2d: ee:fc:e7:71:43:a7:9a:6e:d9:df:0e:b6:8b:4a:98:8f:86:fc: df:43:93:15:2b:48:1b:f2:30:b3:f2:17:d0:e9:d3:25:03:e5: 59:04:a4:40:bc:4f:22:50:9e:66:58:8e:03:77:f7:12:80:af: 3b:25:c5:17:4f:83:26:1d:4a:7b:38:bd:55:07:2d:7b:c3:3f: 3c:82:0f:e0:ed:5f:3a:4b:00:0f:ac:90:1d:8e:d8:70:30:d4: 88:d4:8e:33:e4:07:95:8b:4f:42:6a:91:c8:00:4f:cc:cc:52: e4:be:43:b9:e5:d2:91:4d:da:f9:8e:62:45:78:03:58:3e:ef: f9:f8:a2:1b:df:cf:76:19:0d:61:a7:8f:f8:88:4c:79:20:0e: 0b:5e:45:95:fd:d9:0b:e3:ec:1d:12:e1:d4:05:3b:86:d8:50: 94:1a:82:35:fa:48:3d:d6:12:bf:53:bc:e8:20:8f:04:43:a3: 9b:f8:ed:73:7c:9b:98:33:ba:27:bc:43:8c:8d:3b:e1:ad:34: 2c:b5:50:98:e6:9e:0a:a2:05:48:ad:c3:79:7a:2a:fa:38:98: 83:ec:33:fc:22:e3:d9:5c:4f:a8:a6:71:0c:9d:5b:5b:0f:89: 68:08:6c:48 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5D/pqN1MV1w/1/MJykZbeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmOTNkM2JhMTk3ZjVjZTMwOThiZmE3NzAwYjQzODU0ZWFh ODBlOWUwHhcNMjYwMTAxMTAxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YjBlNzNkNjkxNjQ4NzY3N2VkNDM0NzA1OTMzYWU5MDdkYTU4OGMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgGsZQ8ooEtPIoGsT/L7WtIRN08I Gtjm8k9i+9Oj07XWtnAMVyhFFEXSzPsY6prVmsAtLtX6xQzuIUPPjI1qoIDPMBYY tblsWCkDXvFZ7U6VpxPoJ8q/sfeptEJKkTv57YHa1Yjz0PQxmW1W0ccpAk9UrN5z /WwSSGRHfrW/gFQl8TQxGYQqR1zyvwirb+z/HMGMG+WHqU20PpFPn5aaEVHuKdUW ELz7z7RgB6QoLyR/bNPDSG2oOa1wtQjlAXf4X0bde6oC9gdKmAbPj+6R5MXhXODE yu+yb3T7ojkV6BeTqy+1WtwslSfeyGMOu13w2uT2kckVsa2rWpLLtBCn9QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJsOc9aRZIdnftQ0cFkzrpB9pYjBMB8GA1UdIwQY MBaAFC+T07oZf1zjCYv6dwC0OFTqqA6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUt OWU3MWRjMjRhNjgzLzEvbXc1ejFwRmtoMmQtMURSd1dUT3VrSDJsaU1FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUtOWU3MWRjMjRhNjgz LzEvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbc3wMA0G CSqGSIb3DQEBCwUAA4IBAQAFnOacyMWdpuil6TJ9cbXLwy3u/OdxQ6eabtnfDraL SpiPhvzfQ5MVK0gb8jCz8hfQ6dMlA+VZBKRAvE8iUJ5mWI4Dd/cSgK87JcUXT4Mm HUp7OL1VBy17wz88gg/g7V86SwAPrJAdjthwMNSI1I4z5AeVi09CapHIAE/MzFLk vkO55dKRTdr5jmJFeANYPu/5+KIb3892GQ1hp4/4iEx5IA4LXkWV/dkL4+wdEuHU BTuG2FCUGoI1+kg91hK/U7zoII8EQ6Ob+O1zfJuYM7onvEOMjTvhrTQstVCY5p4K ogVIrcN5eir6OJiD7DP8IuPZXE+opnEMnVtbD4loCGxI -----END CERTIFICATE-----Generated at Sun Jan 25 13:32:04 2026 by rpki-client