This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/mGlCacge7YnUjqIQY4CvKFnqpx4.roa File: mGlCacge7YnUjqIQY4CvKFnqpx4.roa (raw, json) Hash identifier: AVo0MRQRTy6CdeGacGKP+5uMUkB7HT3z+0JrAGp0xWk= Subject key identifier: 98:69:42:69:C8:1E:ED:89:D4:8E:A2:10:63:80:AF:28:59:EA:A7:1E Certificate issuer: /CN=4d13128815103574417ca7a70412da3ab3b84511 Certificate serial: 019B7EA51A10111191ABEC85ABEAA8EBCEEA Authority key identifier: 4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/mGlCacge7YnUjqIQY4CvKFnqpx4.roa Signing time: Fri 02 Jan 2026 12:18:27 +0000 ROA not before: Fri 02 Jan 2026 12:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8587 IP address blocks: 91.208.251.0/24 maxlen: 24 91.209.14.0/24 maxlen: 24 91.209.21.0/24 maxlen: 24 91.209.22.0/24 maxlen: 24 94.247.72.0/21 maxlen: 21 195.114.224.0/20 maxlen: 20 212.104.210.0/24 maxlen: 24 2a02:ca0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:1a:10:11:11:91:ab:ec:85:ab:ea:a8:eb:ce:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d13128815103574417ca7a70412da3ab3b84511 Validity Not Before: Jan 2 12:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=98694269c81eed89d48ea2106380af2859eaa71e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:57:f9:a8:11:a5:87:24:d7:e9:59:6c:41:fb: eb:a7:fe:52:ca:74:6e:95:44:4b:49:c6:a4:d4:9a: 73:20:0c:71:6d:38:23:f6:c7:ee:5e:b7:55:ec:5d: 79:1f:38:be:69:9a:90:82:79:c8:36:2c:d0:96:cd: 66:ef:89:1a:67:ac:67:14:1a:98:b8:00:40:75:72: 9a:d6:83:2b:5a:4b:09:23:40:62:67:10:5b:be:79: a3:57:32:02:94:77:6d:3d:55:00:ce:fd:37:00:2b: dd:23:ba:c0:aa:bb:db:0e:66:84:8d:28:59:d8:76: 4b:97:ec:05:a0:d4:18:f6:9a:19:83:c8:9e:9d:5f: b0:0a:f5:37:8e:a7:72:de:4d:d6:3e:f2:06:35:d1: 48:1c:e6:2e:a9:c0:64:80:1c:ff:cc:b6:61:4b:cc: 41:cd:e4:aa:5d:c4:38:b4:c0:ee:66:bb:e8:87:34: 5f:dd:a2:2f:e4:ba:a0:19:c7:6a:b8:f5:db:d6:3f: 23:76:c4:07:38:b0:45:ee:0e:e1:1e:82:c8:21:15: 12:a8:a1:66:9c:8f:53:e9:c4:21:0d:75:d2:f1:69: af:91:04:39:16:33:0b:30:09:6e:c5:dd:46:56:37: 59:7c:a3:0e:80:94:f9:5e:c1:89:f7:9c:e3:3f:30: 58:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:69:42:69:C8:1E:ED:89:D4:8E:A2:10:63:80:AF:28:59:EA:A7:1E X509v3 Authority Key Identifier: keyid:4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/mGlCacge7YnUjqIQY4CvKFnqpx4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.208.251.0/24 91.209.14.0/24 91.209.21.0-91.209.22.255 94.247.72.0/21 195.114.224.0/20 212.104.210.0/24 IPv6: 2a02:ca0::/32 Signature Algorithm: sha256WithRSAEncryption 1a:dd:5b:b5:16:37:51:2d:96:08:1c:8e:86:df:5e:7b:e9:51: 7a:16:54:3c:e7:90:02:bf:75:e2:e2:a8:44:7c:e9:80:a6:a9: 52:51:0f:a5:81:32:ff:85:ce:36:85:dc:c0:74:99:36:74:b4: 99:4b:54:6e:98:ac:12:62:f3:6b:0b:da:b9:44:0a:7f:f4:ef: 5c:47:cb:b4:ce:87:31:64:a9:e3:d6:31:a8:fb:b5:2b:dd:6a: 59:6a:15:cb:06:b8:7e:b9:1a:d1:68:9c:00:92:72:b2:a7:f9: b0:c7:4f:ba:1e:51:69:b0:32:6e:91:7e:a4:f1:92:c6:b2:c4: d6:94:db:e2:cc:70:03:1d:e5:ce:1e:87:a8:51:8b:6d:0c:47: 9e:45:ac:4e:b7:03:1f:18:53:3a:7c:7b:c4:e1:04:4e:32:36: c2:98:03:85:4d:c7:39:2e:80:66:15:7c:23:af:de:d6:5f:1e: 07:b6:9b:22:49:e0:76:27:da:39:a3:b6:12:eb:da:55:90:1c: 8d:bc:86:5f:dd:ad:6d:5e:3d:37:0b:5c:72:71:49:74:52:f2: 6e:62:14:20:e6:53:6b:f4:16:f9:98:db:f7:e3:2d:9c:d3:b9: 05:82:c7:c8:2d:e3:5f:d5:df:96:d2:36:70:51:c9:2b:32:01: 1f:b7:c5:87 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgISAZt+pRoQERGRq+yFq+qo687qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMTMxMjg4MTUxMDM1NzQ0MTdjYTdhNzA0MTJkYTNhYjNi ODQ1MTEwHhcNMjYwMTAyMTIxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODY5NDI2OWM4MWVlZDg5ZDQ4ZWEyMTA2MzgwYWYyODU5ZWFhNzFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjFf5qBGlhyTX6VlsQfvrp/5SynRu lURLScak1JpzIAxxbTgj9sfuXrdV7F15Hzi+aZqQgnnINizQls1m74kaZ6xnFBqY uABAdXKa1oMrWksJI0BiZxBbvnmjVzIClHdtPVUAzv03ACvdI7rAqrvbDmaEjShZ 2HZLl+wFoNQY9poZg8ienV+wCvU3jqdy3k3WPvIGNdFIHOYuqcBkgBz/zLZhS8xB zeSqXcQ4tMDuZrvohzRf3aIv5LqgGcdquPXb1j8jdsQHOLBF7g7hHoLIIRUSqKFm nI9T6cQhDXXS8WmvkQQ5FjMLMAluxd1GVjdZfKMOgJT5XsGJ95zjPzBYMwIDAQAB o4ICPjCCAjowHQYDVR0OBBYEFJhpQmnIHu2J1I6iEGOAryhZ6qceMB8GA1UdIwQY MBaAFE0TEogVEDV0QXynpwQS2jqzuEURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFJNU2lCVVFOWFJCZktlbkJCTGFPck80UlJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9mYWZmYzItOTUxNy00ZDE4LTg5OTMt ZjU1ZWE0OGNlNzVhLzEvbUdsQ2FjZ2U3WW5VanFJUVk0Q3ZLRm5xcHg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC9mYWZmYzItOTUxNy00ZDE4LTg5OTMtZjU1ZWE0OGNlNzVh LzEvVFJNU2lCVVFOWFJCZktlbkJCTGFPck80UlJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAyBAIAATAsAwQAW9D7AwQA W9EOMAwDBABb0RUDBABb0RYDBANe90gDBATDcuADBADUaNIwDQQCAAIwBwMFACoC DKAwDQYJKoZIhvcNAQELBQADggEBABrdW7UWN1EtlggcjobfXnvpUXoWVDznkAK/ deLiqER86YCmqVJRD6WBMv+FzjaF3MB0mTZ0tJlLVG6YrBJi82sL2rlECn/071xH y7TOhzFkqePWMaj7tSvdallqFcsGuH65GtFonACScrKn+bDHT7oeUWmwMm6RfqTx ksayxNaU2+LMcAMd5c4eh6hRi20MR55FrE63Ax8YUzp8e8ThBE4yNsKYA4VNxzku gGYVfCOv3tZfHge2myJJ4HYn2jmjthLr2lWQHI28hl/drW1ePTcLXHJxSXRS8m5i FCDmU2v0FvmY2/fjLZzTuQWCx8gt41/V35bSNnBRySsyAR+3xYc= -----END CERTIFICATE-----Generated at Sun Jan 25 19:39:16 2026 by rpki-client