This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/7b6110-8c4b-4af6-a7ca-2edfe25bb58a/1/MgBJu4WWos9Z1z-Uq6LDar3lp6M.roa File: MgBJu4WWos9Z1z-Uq6LDar3lp6M.roa (raw, json) Hash identifier: 1p8uWzk7DNO2vPX6kU3W0Ezoj6zfJP5zsOfL1hM9eeA= Subject key identifier: 32:00:49:BB:85:96:A2:CF:59:D7:3F:94:AB:A2:C3:6A:BD:E5:A7:A3 Certificate issuer: /CN=a0acca9c4fe9bf9edf3bc6e5cabc52838d93cb13 Certificate serial: 019B0EA1E5A1FD3750BBB4B52400D8C8CA99 Authority key identifier: A0:AC:CA:9C:4F:E9:BF:9E:DF:3B:C6:E5:CA:BC:52:83:8D:93:CB:13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKzKnE_pv57fO8blyrxSg42TyxM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/7b6110-8c4b-4af6-a7ca-2edfe25bb58a/1/MgBJu4WWos9Z1z-Uq6LDar3lp6M.roa Signing time: Thu 11 Dec 2025 18:17:29 +0000 ROA not before: Thu 11 Dec 2025 18:17:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 397477 IP address blocks: 185.174.144.0/24 maxlen: 24 185.174.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/7b6110-8c4b-4af6-a7ca-2edfe25bb58a/1/oKzKnE_pv57fO8blyrxSg42TyxM.crl rsync://rpki.ripe.net/repository/DEFAULT/96/7b6110-8c4b-4af6-a7ca-2edfe25bb58a/1/oKzKnE_pv57fO8blyrxSg42TyxM.mft rsync://rpki.ripe.net/repository/DEFAULT/oKzKnE_pv57fO8blyrxSg42TyxM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:a1:e5:a1:fd:37:50:bb:b4:b5:24:00:d8:c8:ca:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0acca9c4fe9bf9edf3bc6e5cabc52838d93cb13 Validity Not Before: Dec 11 18:17:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=320049bb8596a2cf59d73f94aba2c36abde5a7a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:5b:83:2d:8d:9b:ad:00:c4:29:3e:56:47:4a: c6:5c:55:68:ba:fb:4a:5a:16:96:73:b6:2c:12:de: 6e:72:91:87:f5:bf:22:1d:be:6c:e0:4f:69:a0:66: d8:a8:90:65:ac:8e:86:92:72:21:d1:a1:a4:04:19: b0:8d:44:8e:d6:71:9b:5c:b8:0a:61:42:0a:b7:31: c6:df:47:cc:79:eb:9a:58:1b:1a:05:17:86:30:b3: 15:47:cb:84:c2:c9:54:bc:eb:64:f8:71:75:b4:b6: 64:0b:95:98:29:21:94:39:e0:45:eb:8a:33:23:8e: e3:f1:f8:2c:81:56:0d:83:86:73:4d:a6:0f:cb:54: 17:51:cf:13:c8:52:45:35:45:3a:0d:08:31:47:3a: e2:25:e5:e1:36:0d:a9:1e:10:79:ec:f4:87:a1:b8: de:ba:90:cf:53:ea:32:f5:97:af:ab:06:1c:ab:57: 2e:a7:3d:a3:02:f2:9d:bd:41:02:a0:50:5e:ff:e8: a8:ac:85:ad:34:ca:e9:31:d9:ed:04:83:7f:d1:27: da:e3:11:8d:73:36:19:d5:55:0c:5c:87:cd:74:85: a2:a0:51:14:28:19:36:7c:a9:93:1c:c1:ce:7f:7e: 88:a4:b0:6a:2c:14:d1:df:7d:8d:5e:b7:48:9f:d9: 68:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:00:49:BB:85:96:A2:CF:59:D7:3F:94:AB:A2:C3:6A:BD:E5:A7:A3 X509v3 Authority Key Identifier: keyid:A0:AC:CA:9C:4F:E9:BF:9E:DF:3B:C6:E5:CA:BC:52:83:8D:93:CB:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKzKnE_pv57fO8blyrxSg42TyxM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7b6110-8c4b-4af6-a7ca-2edfe25bb58a/1/MgBJu4WWos9Z1z-Uq6LDar3lp6M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7b6110-8c4b-4af6-a7ca-2edfe25bb58a/1/oKzKnE_pv57fO8blyrxSg42TyxM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.174.144.0/24 185.174.146.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:f7:ca:83:17:5f:9d:21:62:47:7e:06:4d:25:bf:e0:ab:97: c2:5f:98:a7:88:75:2b:b6:58:ee:5d:ba:5e:69:c8:53:50:3d: 79:5a:75:7b:31:28:e0:4d:d2:bd:dc:2a:20:09:88:77:b4:fa: 6f:c6:0e:92:84:9a:96:77:ba:b1:41:7c:d7:96:79:c1:f5:45: 30:04:72:1e:3d:0a:44:ef:39:e9:f2:f9:40:16:e8:66:ea:5e: 58:d3:75:6a:25:5f:02:c1:61:d9:cb:76:b1:e2:a4:72:ba:46: 20:b5:a4:5a:79:1d:77:08:f3:52:ec:d6:b1:b2:f3:1f:1c:2d: 2f:ab:17:00:2f:55:87:07:ec:96:7c:63:18:7e:c2:a8:0e:7c: 36:55:da:b7:e5:e6:25:9a:56:96:92:d2:a4:93:7f:2d:be:f6: 2e:6e:62:a1:c7:a1:9a:02:5c:6a:21:54:4e:1c:4f:ae:7b:da: 95:83:8d:55:5f:01:d6:a8:4f:0f:49:c4:81:ce:7a:55:36:72: 18:b9:77:6e:90:29:89:b7:ca:ce:a5:1b:44:b6:7b:f9:22:0b: 1f:64:71:b3:17:e8:70:87:c7:da:b7:3a:15:ea:11:00:f2:46: e9:1a:9e:59:bb:cb:77:85:4b:cd:53:15:d7:3e:48:20:f4:2b: e7:af:9e:f0 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZsOoeWh/TdQu7S1JADYyMqZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYWNjYTljNGZlOWJmOWVkZjNiYzZlNWNhYmM1MjgzOGQ5 M2NiMTMwHhcNMjUxMjExMTgxNzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMjAwNDliYjg1OTZhMmNmNTlkNzNmOTRhYmEyYzM2YWJkZTVhN2EzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA71uDLY2brQDEKT5WR0rGXFVouvtK WhaWc7YsEt5ucpGH9b8iHb5s4E9poGbYqJBlrI6GknIh0aGkBBmwjUSO1nGbXLgK YUIKtzHG30fMeeuaWBsaBReGMLMVR8uEwslUvOtk+HF1tLZkC5WYKSGUOeBF64oz I47j8fgsgVYNg4ZzTaYPy1QXUc8TyFJFNUU6DQgxRzriJeXhNg2pHhB57PSHobje upDPU+oy9ZevqwYcq1cupz2jAvKdvUECoFBe/+iorIWtNMrpMdntBIN/0Sfa4xGN czYZ1VUMXIfNdIWioFEUKBk2fKmTHMHOf36IpLBqLBTR332NXrdIn9lo+QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDIASbuFlqLPWdc/lKuiw2q95aejMB8GA1UdIwQY MBaAFKCsypxP6b+e3zvG5cq8UoONk8sTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0t6S25FX3B2NTdmTzhibHlyeFNnNDJUeXhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni83YjYxMTAtOGM0Yi00YWY2LWE3Y2Et MmVkZmUyNWJiNThhLzEvTWdCSnU0V1dvczlaMXotVXE2TERhcjNscDZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ni83YjYxMTAtOGM0Yi00YWY2LWE3Y2EtMmVkZmUyNWJiNThh LzEvb0t6S25FX3B2NTdmTzhibHlyeFNnNDJUeXhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAua6QAwQA ua6SMA0GCSqGSIb3DQEBCwUAA4IBAQBv98qDF1+dIWJHfgZNJb/gq5fCX5iniHUr tljuXbpeachTUD15WnV7MSjgTdK93CogCYh3tPpvxg6ShJqWd7qxQXzXlnnB9UUw BHIePQpE7znp8vlAFuhm6l5Y03VqJV8CwWHZy3ax4qRyukYgtaRaeR13CPNS7Nax svMfHC0vqxcAL1WHB+yWfGMYfsKoDnw2Vdq35eYlmlaWktKkk38tvvYubmKhx6Ga AlxqIVROHE+ue9qVg41VXwHWqE8PScSBznpVNnIYuXdukCmJt8rOpRtEtnv5Igsf ZHGzF+hwh8fatzoV6hEA8kbpGp5Zu8t3hUvNUxXXPkgg9Cvnr57w -----END CERTIFICATE-----Generated at Wed Dec 17 20:07:34 2025 by rpki-client