This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/Ms5QQ8hSMqQ1fJTgyVbM1SW-D0E.roa File: Ms5QQ8hSMqQ1fJTgyVbM1SW-D0E.roa (raw, json) Hash identifier: x2s25Fjh6v9DZuMShLb6qRa3XLGsukQHsqtZn9Lxoeo= Subject key identifier: 32:CE:50:43:C8:52:32:A4:35:7C:94:E0:C9:56:CC:D5:25:BE:0F:41 Certificate issuer: /CN=5a68d699d1a9457c78acfbec004f98677aa4cc16 Certificate serial: 019B77C6F9FE8DD74F88DA96C763F0E33EFB Authority key identifier: 5A:68:D6:99:D1:A9:45:7C:78:AC:FB:EC:00:4F:98:67:7A:A4:CC:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/Ms5QQ8hSMqQ1fJTgyVbM1SW-D0E.roa Signing time: Thu 01 Jan 2026 04:18:07 +0000 ROA not before: Thu 01 Jan 2026 04:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12676 IP address blocks: 88.205.0.0/20 maxlen: 24 88.205.32.0/19 maxlen: 24 88.205.64.0/19 maxlen: 24 88.205.96.0/19 maxlen: 24 185.90.228.0/22 maxlen: 24 212.46.96.0/19 maxlen: 24 213.9.0.0/17 maxlen: 24 2a02:4c00::/32 maxlen: 40 2a02:4c00::/40 maxlen: 40 2a02:4c00:100::/40 maxlen: 40 2a02:4c01::/32 maxlen: 32 2a02:4c02::/32 maxlen: 32 2a02:4c03::/32 maxlen: 32 2a02:4c04::/32 maxlen: 32 2a02:4c05::/32 maxlen: 32 2a02:4c06::/32 maxlen: 32 2a02:4c07::/32 maxlen: 34 2a02:4c07:4000::/34 maxlen: 34 2a02:4c07:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.crl rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.mft rsync://rpki.ripe.net/repository/DEFAULT/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:f9:fe:8d:d7:4f:88:da:96:c7:63:f0:e3:3e:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5a68d699d1a9457c78acfbec004f98677aa4cc16 Validity Not Before: Jan 1 04:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=32ce5043c85232a4357c94e0c956ccd525be0f41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c5:44:71:b3:ea:09:77:c0:a9:29:b5:60:a2: 4c:67:d5:82:7c:47:60:fe:bf:c2:0c:6f:60:13:c8: a8:17:61:ad:37:fd:85:35:17:e8:34:66:73:cb:a3: 2a:8f:45:93:5b:fb:f5:db:fa:a1:0d:9d:32:2a:ab: ac:d3:ce:6d:c3:b7:86:a1:9d:dc:df:58:96:77:89: 0f:38:0b:5d:30:af:33:4f:55:03:78:86:79:95:6d: 65:eb:c6:1e:1f:f6:56:4e:e1:88:d5:70:89:06:e2: 90:de:7e:f3:54:fe:6c:e0:ba:af:a4:d3:0b:f3:8c: cf:bb:e8:18:6a:0a:7d:ce:5d:1e:54:81:97:1a:22: 89:33:c5:4e:b3:71:37:87:97:c8:97:66:d7:87:c5: dc:cd:37:b9:32:cb:41:45:4b:5b:6f:0f:60:66:08: 4d:d9:66:78:ba:3c:20:b9:8a:4f:6e:34:59:cb:40: fb:d2:0f:7a:ec:77:9f:ae:f3:06:c4:c4:56:20:dd: 6b:cc:a2:eb:87:0e:8f:1a:b7:f0:80:be:f6:bf:da: 85:8a:7a:da:3a:6d:46:bf:8e:89:e3:27:41:7c:99: 83:13:90:d4:61:0c:7a:d2:52:a0:93:9c:0c:f4:05: ce:96:f6:20:5f:88:46:fb:79:fc:8e:ba:69:ff:ff: da:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:CE:50:43:C8:52:32:A4:35:7C:94:E0:C9:56:CC:D5:25:BE:0F:41 X509v3 Authority Key Identifier: keyid:5A:68:D6:99:D1:A9:45:7C:78:AC:FB:EC:00:4F:98:67:7A:A4:CC:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/Ms5QQ8hSMqQ1fJTgyVbM1SW-D0E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.205.0.0/20 88.205.32.0-88.205.127.255 185.90.228.0/22 212.46.96.0/19 213.9.0.0/17 IPv6: 2a02:4c00::/29 Signature Algorithm: sha256WithRSAEncryption 8b:d1:ed:7f:3c:e7:56:d1:d7:b1:4a:39:90:b8:1d:65:36:39: 33:9a:00:8b:9e:b6:5f:32:d0:bd:24:c5:b9:2f:33:d7:b8:ae: 93:2b:9a:f7:70:ec:04:b5:82:af:e7:fb:6c:e9:d7:60:5a:ac: db:09:d6:7f:93:42:94:f2:d4:05:b9:01:54:d6:77:dd:4e:f0: c2:f8:eb:6c:28:a5:50:4f:45:87:d3:38:4c:a5:28:1a:04:cb: 08:a5:01:f5:bc:06:90:bb:75:4e:e9:60:1b:6c:df:02:4f:88: 8c:6c:9b:d9:a0:b8:35:76:6c:47:a0:af:d0:b3:6c:93:12:37: 67:99:8c:80:27:7a:9c:d5:50:56:66:a2:be:71:40:f3:8d:4c: f9:e7:96:e7:d8:88:32:e9:60:f0:20:bb:cb:a8:02:29:8e:c8: c3:f5:b5:98:0b:0c:0d:1f:31:68:f1:68:45:7e:82:54:8f:bc: d7:73:8f:86:04:ef:24:07:a7:43:79:9b:9a:be:50:09:25:c6: 39:be:ca:b9:ee:a2:c0:64:73:9f:73:22:c9:bf:86:30:5b:91: c4:fa:1d:49:ff:fc:ee:2b:b4:dc:21:d1:0d:5e:c5:ea:81:7e: a8:56:ff:81:3d:55:d1:be:96:98:f4:b4:c2:0a:c8:0a:e9:cf: db:09:05:43 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgISAZt3xvn+jddPiNqWx2Pw4z77MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhNjhkNjk5ZDFhOTQ1N2M3OGFjZmJlYzAwNGY5ODY3N2Fh NGNjMTYwHhcNMjYwMTAxMDQxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMmNlNTA0M2M4NTIzMmE0MzU3Yzk0ZTBjOTU2Y2NkNTI1YmUwZjQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcVEcbPqCXfAqSm1YKJMZ9WCfEdg /r/CDG9gE8ioF2GtN/2FNRfoNGZzy6Mqj0WTW/v12/qhDZ0yKqus085tw7eGoZ3c 31iWd4kPOAtdMK8zT1UDeIZ5lW1l68YeH/ZWTuGI1XCJBuKQ3n7zVP5s4LqvpNML 84zPu+gYagp9zl0eVIGXGiKJM8VOs3E3h5fIl2bXh8XczTe5MstBRUtbbw9gZghN 2WZ4ujwguYpPbjRZy0D70g967HefrvMGxMRWIN1rzKLrhw6PGrfwgL72v9qFinra Om1Gv46J4ydBfJmDE5DUYQx60lKgk5wM9AXOlvYgX4hG+3n8jrpp///a4wIDAQAB o4ICODCCAjQwHQYDVR0OBBYEFDLOUEPIUjKkNXyU4MlWzNUlvg9BMB8GA1UdIwQY MBaAFFpo1pnRqUV8eKz77ABPmGd6pMwWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV21qV21kR3BSWHg0clB2c0FFLVlaM3FrekJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9lMjhiYTYtYWFhZi00ZDMzLWI4ZGMt MGFlZTM2MGIwYmE0LzEvTXM1UVE4aFNNcVExZkpUZ3lWYk0xU1ctRDBFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9lMjhiYTYtYWFhZi00ZDMzLWI4ZGMtMGFlZTM2MGIwYmE0 LzEvV21qV21kR3BSWHg0clB2c0FFLVlaM3FrekJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAsBAIAATAmAwQEWM0AMAwD BAVYzSADBAdYzQADBAK5WuQDBAXULmADBAfVCQAwDQQCAAIwBwMFAyoCTAAwDQYJ KoZIhvcNAQELBQADggEBAIvR7X8851bR17FKOZC4HWU2OTOaAIuetl8y0L0kxbkv M9e4rpMrmvdw7AS1gq/n+2zp12BarNsJ1n+TQpTy1AW5AVTWd91O8ML462wopVBP RYfTOEylKBoEywilAfW8BpC7dU7pYBts3wJPiIxsm9mguDV2bEegr9CzbJMSN2eZ jIAnepzVUFZmor5xQPONTPnnlufYiDLpYPAgu8uoAimOyMP1tZgLDA0fMWjxaEV+ glSPvNdzj4YE7yQHp0N5m5q+UAklxjm+yrnuosBkc59zIsm/hjBbkcT6HUn//O4r tNwh0Q1exeqBfqhW/4E9VdG+lpj0tMIKyArpz9sJBUM= -----END CERTIFICATE-----Generated at Mon Jan 26 07:07:13 2026 by rpki-client