This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/mgLJqvtZLvw_zMXsaHVw0CxdvyY.roa File: mgLJqvtZLvw_zMXsaHVw0CxdvyY.roa (raw, json) Hash identifier: /FNWqx6kPhlir6gMp94kBBwTzAj5/7NkW+tcAQ/fNbo= Subject key identifier: 9A:02:C9:AA:FB:59:2E:FC:3F:CC:C5:EC:68:75:70:D0:2C:5D:BF:26 Certificate issuer: /CN=b6d14118dbd227298daa80c7acab11eea6d63e21 Certificate serial: 019B77C676F5AB8FA5539C5B2741BE10F582 Authority key identifier: B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/mgLJqvtZLvw_zMXsaHVw0CxdvyY.roa Signing time: Thu 01 Jan 2026 04:17:33 +0000 ROA not before: Thu 01 Jan 2026 04:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34636 IP address blocks: 88.135.40.0/22 maxlen: 22 88.135.40.0/23 maxlen: 23 88.135.40.0/24 maxlen: 24 88.135.41.0/24 maxlen: 24 88.135.42.0/23 maxlen: 23 88.135.42.0/24 maxlen: 24 88.135.43.0/24 maxlen: 24 88.135.44.0/24 maxlen: 24 88.135.46.0/24 maxlen: 24 88.135.47.0/24 maxlen: 24 185.67.100.0/22 maxlen: 22 185.67.100.0/24 maxlen: 24 185.67.101.0/24 maxlen: 24 185.67.102.0/24 maxlen: 24 185.67.103.0/24 maxlen: 24 185.189.120.0/22 maxlen: 22 185.189.120.0/23 maxlen: 23 185.189.120.0/24 maxlen: 24 185.189.121.0/24 maxlen: 24 185.189.122.0/23 maxlen: 23 185.189.122.0/24 maxlen: 24 185.189.123.0/24 maxlen: 24 185.233.12.0/22 maxlen: 22 185.233.12.0/24 maxlen: 24 185.233.13.0/24 maxlen: 24 185.233.14.0/24 maxlen: 24 185.233.15.0/24 maxlen: 24 185.237.8.0/22 maxlen: 22 185.237.8.0/24 maxlen: 24 185.237.9.0/24 maxlen: 24 185.237.10.0/24 maxlen: 24 185.237.11.0/24 maxlen: 24 2a04:f080::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.crl rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.mft rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:76:f5:ab:8f:a5:53:9c:5b:27:41:be:10:f5:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b6d14118dbd227298daa80c7acab11eea6d63e21 Validity Not Before: Jan 1 04:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9a02c9aafb592efc3fccc5ec687570d02c5dbf26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:19:78:c9:d4:e0:cd:22:74:c7:2c:64:01:69: 48:1f:e7:d6:30:9c:3c:6d:43:67:a9:3b:bb:09:5c: 09:90:f6:01:71:e2:ea:79:e8:fb:03:6e:b9:df:a0: 33:6e:71:44:20:a0:a6:ec:10:bd:6a:71:62:76:fb: 20:f4:d9:ff:aa:ae:57:3a:8a:a6:5e:70:86:38:88: 3e:fd:21:d5:d8:8e:4e:e8:c3:42:11:96:4c:a9:ab: 05:ae:bd:6f:87:00:e9:44:c9:b3:79:36:38:7a:57: 44:88:59:02:1f:00:09:f1:f5:da:a9:d9:6a:ee:68: a6:ff:ba:e1:58:94:74:39:77:38:70:74:0d:64:4e: a1:a0:4c:6a:b6:49:a5:d0:4c:a3:29:23:41:28:3a: 4f:ff:51:84:61:7a:9f:8a:ee:d0:e1:64:2a:4d:ea: 28:ee:60:53:ae:ed:24:08:d8:d3:dc:57:64:d7:ce: d8:08:5d:9c:d6:a2:f8:c1:7b:39:e6:19:9a:5d:2c: d7:25:ec:4e:1e:67:df:81:cd:08:e8:00:16:19:c6: b7:03:4b:9a:ba:0e:7a:12:e7:6c:cc:90:44:18:fe: e1:2b:1f:3b:3f:f9:5a:19:31:ed:73:09:9b:6e:cf: 52:c0:1e:08:f5:b5:f6:3e:c7:08:ee:04:89:02:64: 08:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:02:C9:AA:FB:59:2E:FC:3F:CC:C5:EC:68:75:70:D0:2C:5D:BF:26 X509v3 Authority Key Identifier: keyid:B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/mgLJqvtZLvw_zMXsaHVw0CxdvyY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.135.40.0-88.135.44.255 88.135.46.0/23 185.67.100.0/22 185.189.120.0/22 185.233.12.0/22 185.237.8.0/22 IPv6: 2a04:f080::/29 Signature Algorithm: sha256WithRSAEncryption 78:76:ee:36:34:2a:97:0e:b5:17:c0:ad:d8:be:d8:96:3e:4b: 26:c6:ce:d5:52:b5:bd:bb:61:a5:72:63:9b:66:2a:0f:7d:b2: 14:12:70:87:03:b2:88:56:71:9e:a3:9b:7d:33:06:5c:06:f0: 18:79:8d:c9:04:79:e9:44:a7:22:5c:9f:f4:4e:7e:16:c9:57: c8:97:5d:ea:83:bf:a6:d5:55:ef:f9:e6:4d:53:ba:c0:78:fc: 4f:4a:53:b4:50:1a:47:24:1a:86:c0:8e:46:f7:ff:24:e2:9f: e2:b7:8b:ab:d2:c7:f8:53:b9:30:38:2b:1d:6f:fe:0d:29:72: cf:cb:fb:3a:55:16:42:1b:e6:36:62:d1:12:cb:bd:4e:8f:53: f6:a4:93:01:7e:59:de:d6:a3:14:a8:aa:36:c4:53:a9:d9:66: b6:70:d1:19:82:62:b2:72:92:99:78:e0:9f:cd:14:fe:a0:97: 51:fa:2c:83:25:71:30:95:19:ba:1a:66:c8:5b:b6:27:fc:e2: b1:67:12:1d:25:5e:a9:c1:fa:2f:c3:57:16:20:23:c1:d5:ae: fa:c7:31:c8:6f:b5:5c:5c:f7:0e:d5:66:bb:a1:e4:b2:77:1f: 09:33:6e:34:f7:8a:e5:26:d4:a0:2c:2a:9f:00:6e:e1:94:d2: a7:8d:20:04 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgISAZt3xnb1q4+lU5xbJ0G+EPWCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2ZDE0MTE4ZGJkMjI3Mjk4ZGFhODBjN2FjYWIxMWVlYTZk NjNlMjEwHhcNMjYwMTAxMDQxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YTAyYzlhYWZiNTkyZWZjM2ZjY2M1ZWM2ODc1NzBkMDJjNWRiZjI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRl4ydTgzSJ0xyxkAWlIH+fWMJw8 bUNnqTu7CVwJkPYBceLqeej7A26536AzbnFEIKCm7BC9anFidvsg9Nn/qq5XOoqm XnCGOIg+/SHV2I5O6MNCEZZMqasFrr1vhwDpRMmzeTY4eldEiFkCHwAJ8fXaqdlq 7mim/7rhWJR0OXc4cHQNZE6hoExqtkml0EyjKSNBKDpP/1GEYXqfiu7Q4WQqTeoo 7mBTru0kCNjT3Fdk187YCF2c1qL4wXs55hmaXSzXJexOHmffgc0I6AAWGca3A0ua ug56EudszJBEGP7hKx87P/laGTHtcwmbbs9SwB4I9bX2PscI7gSJAmQI1QIDAQAB o4ICPjCCAjowHQYDVR0OBBYEFJoCyar7WS78P8zF7Gh1cNAsXb8mMB8GA1UdIwQY MBaAFLbRQRjb0icpjaqAx6yrEe6m1j4hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHRGQkdOdlNKeW1OcW9ESHJLc1I3cWJXUGlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9lZDUxZDctNjRmZC00YzczLTllOGMt MGUzN2UxMWQwZWMzLzEvbWdMSnF2dFpMdndfek1Yc2FIVncwQ3hkdnlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9lZDUxZDctNjRmZC00YzczLTllOGMtMGUzN2UxMWQwZWMz LzEvdHRGQkdOdlNKeW1OcW9ESHJLc1I3cWJXUGlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAyBAIAATAsMAwDBANYhygD BABYhywDBAFYhy4DBAK5Q2QDBAK5vXgDBAK56QwDBAK57QgwDQQCAAIwBwMFAyoE 8IAwDQYJKoZIhvcNAQELBQADggEBAHh27jY0KpcOtRfArdi+2JY+SybGztVStb27 YaVyY5tmKg99shQScIcDsohWcZ6jm30zBlwG8Bh5jckEeelEpyJcn/ROfhbJV8iX XeqDv6bVVe/55k1TusB4/E9KU7RQGkckGobAjkb3/yTin+K3i6vSx/hTuTA4Kx1v /g0pcs/L+zpVFkIb5jZi0RLLvU6PU/akkwF+Wd7WoxSoqjbEU6nZZrZw0RmCYrJy kpl44J/NFP6gl1H6LIMlcTCVGboaZshbtif84rFnEh0lXqnB+i/DVxYgI8HVrvrH MchvtVxc9w7VZruh5LJ3HwkzbjT3iuUm1KAsKp8AbuGU0qeNIAQ= -----END CERTIFICATE-----Generated at Mon Jan 26 04:42:27 2026 by rpki-client