This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/638109-b320-45a1-906e-60f49d123173/1/mRqgMQ1oyI_OLISSLDMm0vHAWUE.roa File: mRqgMQ1oyI_OLISSLDMm0vHAWUE.roa (raw, json) Hash identifier: Yip22LT0+wHV/CLjrRT+qmDSA0wut/7NqfT12lIPjXM= Subject key identifier: 99:1A:A0:31:0D:68:C8:8F:CE:2C:84:92:2C:33:26:D2:F1:C0:59:41 Certificate issuer: /CN=a85db8c9b56308cf089021b516cae4c55fd64fe4 Certificate serial: 019B7D5C17C25EEE7787DA584CFFD6A44383 Authority key identifier: A8:5D:B8:C9:B5:63:08:CF:08:90:21:B5:16:CA:E4:C5:5F:D6:4F:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qF24ybVjCM8IkCG1FsrkxV_WT-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/638109-b320-45a1-906e-60f49d123173/1/mRqgMQ1oyI_OLISSLDMm0vHAWUE.roa Signing time: Fri 02 Jan 2026 06:19:06 +0000 ROA not before: Fri 02 Jan 2026 06:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197177 IP address blocks: 193.23.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/638109-b320-45a1-906e-60f49d123173/1/qF24ybVjCM8IkCG1FsrkxV_WT-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/638109-b320-45a1-906e-60f49d123173/1/qF24ybVjCM8IkCG1FsrkxV_WT-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/qF24ybVjCM8IkCG1FsrkxV_WT-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:17:c2:5e:ee:77:87:da:58:4c:ff:d6:a4:43:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a85db8c9b56308cf089021b516cae4c55fd64fe4 Validity Not Before: Jan 2 06:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=991aa0310d68c88fce2c84922c3326d2f1c05941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f3:e4:5c:a2:95:0e:5b:04:96:1f:5a:54:65: 2c:b0:eb:d5:05:22:a5:f0:9c:6f:36:e2:51:54:75: 10:5a:66:60:0b:26:e2:87:27:37:54:3b:51:3b:64: cb:e7:ca:d4:b3:6d:cd:b0:5a:02:72:c5:b7:42:8c: 6b:49:c3:41:ca:93:ca:eb:10:c0:cc:d1:76:2f:e3: e7:f5:98:32:d7:91:03:eb:d2:0f:65:a0:ff:0a:b6: c1:56:fb:0b:68:82:e7:d4:4c:10:87:42:d4:32:2e: cd:3d:39:74:f5:dc:85:8b:55:fe:10:af:9a:6d:fb: 26:d2:27:b6:7d:4c:6c:61:0d:86:9e:59:91:33:63: c8:8a:c1:9f:41:b1:5e:ac:2f:22:c2:49:55:5a:40: 51:17:56:a0:92:a6:50:08:44:5c:51:4b:a9:d0:73: 92:da:8c:0d:e7:fc:7c:a2:91:d0:73:68:cc:09:cd: 38:46:06:4d:cd:32:2c:7a:b0:fe:a3:90:a0:29:29: bc:55:60:27:30:77:75:a2:65:20:17:fc:7e:10:47: 12:8f:e4:07:07:60:51:c2:41:9c:da:a0:19:a6:c1: 7c:b9:98:bf:db:9a:26:19:7c:ba:47:4a:d5:53:97: e3:16:40:2c:2e:de:b6:1d:c5:57:02:f0:60:d7:7c: dc:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:1A:A0:31:0D:68:C8:8F:CE:2C:84:92:2C:33:26:D2:F1:C0:59:41 X509v3 Authority Key Identifier: keyid:A8:5D:B8:C9:B5:63:08:CF:08:90:21:B5:16:CA:E4:C5:5F:D6:4F:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qF24ybVjCM8IkCG1FsrkxV_WT-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/638109-b320-45a1-906e-60f49d123173/1/mRqgMQ1oyI_OLISSLDMm0vHAWUE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/638109-b320-45a1-906e-60f49d123173/1/qF24ybVjCM8IkCG1FsrkxV_WT-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.23.227.0/24 Signature Algorithm: sha256WithRSAEncryption 51:97:d0:33:ce:20:5e:b1:f5:29:94:4d:d7:42:9d:5a:f1:f2: 8b:77:b0:d3:e0:f6:a9:59:5c:e7:c0:69:a0:5e:cf:66:63:41: fc:86:89:1f:9b:99:78:33:35:bd:1a:0a:c8:34:4d:5c:46:4f: 5c:ee:94:f2:a0:c0:6d:80:e5:c9:91:3c:ba:b6:58:95:3e:5b: 89:a7:74:91:38:03:b4:28:a1:00:b7:40:b4:e6:3c:1d:45:b4: 42:56:06:b8:c6:be:69:a3:f4:39:0c:db:f5:6c:c4:a2:a9:df: dd:69:bc:c0:68:99:54:c2:16:c4:c7:68:b5:66:34:a4:1f:6e: f2:e1:cf:12:30:22:9f:7f:cf:1f:a2:72:e9:8c:1c:7d:64:ce: 00:71:11:93:a5:42:eb:c4:a5:91:08:2f:f6:02:c5:fe:3f:a5: fb:df:0b:4d:45:12:81:b4:5d:1c:d1:1e:7a:f9:e6:f2:fe:0e: 21:cd:2c:51:3d:8c:4c:89:2c:c7:83:4a:9f:02:86:70:49:79: db:28:f5:3f:7e:6e:0e:bd:98:bf:b6:ca:76:bf:3a:93:d2:a6: 98:59:37:b8:04:98:03:05:e5:0d:81:11:f4:38:4d:34:0b:64: d4:0e:7b:47:2b:17:d3:40:fc:18:da:e1:af:21:c2:77:eb:25: 68:77:e1:03 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XBfCXu53h9pYTP/WpEODMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NWRiOGM5YjU2MzA4Y2YwODkwMjFiNTE2Y2FlNGM1NWZk NjRmZTQwHhcNMjYwMTAyMDYxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTFhYTAzMTBkNjhjODhmY2UyYzg0OTIyYzMzMjZkMmYxYzA1OTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfPkXKKVDlsElh9aVGUssOvVBSKl 8JxvNuJRVHUQWmZgCybihyc3VDtRO2TL58rUs23NsFoCcsW3QoxrScNBypPK6xDA zNF2L+Pn9Zgy15ED69IPZaD/CrbBVvsLaILn1EwQh0LUMi7NPTl09dyFi1X+EK+a bfsm0ie2fUxsYQ2GnlmRM2PIisGfQbFerC8iwklVWkBRF1agkqZQCERcUUup0HOS 2owN5/x8opHQc2jMCc04RgZNzTIserD+o5CgKSm8VWAnMHd1omUgF/x+EEcSj+QH B2BRwkGc2qAZpsF8uZi/25omGXy6R0rVU5fjFkAsLt62HcVXAvBg13zcPwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJkaoDENaMiPziyEkiwzJtLxwFlBMB8GA1UdIwQY MBaAFKhduMm1YwjPCJAhtRbK5MVf1k/kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUYyNHliVmpDTThJa0NHMUZzcmt4Vl9XVC1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS82MzgxMDktYjMyMC00NWExLTkwNmUt NjBmNDlkMTIzMTczLzEvbVJxZ01RMW95SV9PTElTU0xETW0wdkhBV1VFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS82MzgxMDktYjMyMC00NWExLTkwNmUtNjBmNDlkMTIzMTcz LzEvcUYyNHliVmpDTThJa0NHMUZzcmt4Vl9XVC1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRfjMA0G CSqGSIb3DQEBCwUAA4IBAQBRl9AzziBesfUplE3XQp1a8fKLd7DT4PapWVznwGmg Xs9mY0H8hokfm5l4MzW9GgrINE1cRk9c7pTyoMBtgOXJkTy6tliVPluJp3SROAO0 KKEAt0C05jwdRbRCVga4xr5po/Q5DNv1bMSiqd/dabzAaJlUwhbEx2i1ZjSkH27y 4c8SMCKff88fonLpjBx9ZM4AcRGTpULrxKWRCC/2AsX+P6X73wtNRRKBtF0c0R56 +eby/g4hzSxRPYxMiSzHg0qfAoZwSXnbKPU/fm4OvZi/tsp2vzqT0qaYWTe4BJgD BeUNgRH0OE00C2TUDntHKxfTQPwY2uGvIcJ36yVod+ED -----END CERTIFICATE-----Generated at Mon Jan 26 08:38:47 2026 by rpki-client