This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7943a0-ccab-4260-bd51-afe89aacc492/1/BK2ktyU34ofrpamQZgAZgS1SDAw.roa File: BK2ktyU34ofrpamQZgAZgS1SDAw.roa (raw, json) Hash identifier: UFCcNLAPVlBtUduNktGFZUuUL/6s5iN6F5JFOmjmPCk= Subject key identifier: 04:AD:A4:B7:25:37:E2:87:EB:A5:A9:90:66:00:19:81:2D:52:0C:0C Certificate issuer: /CN=92eff6162502ea3b52fd8ca3ae108d13d6bff652 Certificate serial: 019B7C1264217F3BF15F5F2EAB4BD2F910E4 Authority key identifier: 92:EF:F6:16:25:02:EA:3B:52:FD:8C:A3:AE:10:8D:13:D6:BF:F6:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ku_2FiUC6jtS_YyjrhCNE9a_9lI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7943a0-ccab-4260-bd51-afe89aacc492/1/BK2ktyU34ofrpamQZgAZgS1SDAw.roa Signing time: Fri 02 Jan 2026 00:18:58 +0000 ROA not before: Fri 02 Jan 2026 00:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60670 IP address blocks: 45.155.108.0/24 maxlen: 24 45.155.109.0/24 maxlen: 24 45.155.110.0/24 maxlen: 24 45.155.111.0/24 maxlen: 24 62.68.95.0/24 maxlen: 24 185.180.184.0/24 maxlen: 24 185.180.185.0/24 maxlen: 24 185.180.186.0/24 maxlen: 24 185.180.187.0/24 maxlen: 24 2a0a:ad80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7943a0-ccab-4260-bd51-afe89aacc492/1/ku_2FiUC6jtS_YyjrhCNE9a_9lI.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/7943a0-ccab-4260-bd51-afe89aacc492/1/ku_2FiUC6jtS_YyjrhCNE9a_9lI.mft rsync://rpki.ripe.net/repository/DEFAULT/ku_2FiUC6jtS_YyjrhCNE9a_9lI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:64:21:7f:3b:f1:5f:5f:2e:ab:4b:d2:f9:10:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92eff6162502ea3b52fd8ca3ae108d13d6bff652 Validity Not Before: Jan 2 00:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04ada4b72537e287eba5a990660019812d520c0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:11:7b:e6:f6:92:21:44:78:26:6c:26:24:ec: 81:7a:38:40:b9:44:42:46:13:6d:54:92:43:ae:ec: 14:8e:64:0b:e8:24:b0:9c:ab:5f:57:39:55:32:83: 87:df:f3:35:65:69:61:79:1d:80:67:40:03:a9:cb: 3e:60:27:e4:a5:4b:8f:0d:8f:de:bb:1e:5b:f0:e3: 3d:6e:7a:d0:e8:19:e4:6b:16:5c:ae:a1:f4:ce:7f: 0f:07:4a:67:4e:2f:e0:42:ac:c5:8b:88:3a:07:15: bd:47:f3:fa:02:30:97:20:6b:d8:c1:3f:56:34:53: bf:68:bc:d4:de:51:aa:cb:64:10:f4:e2:fc:bf:9b: d3:07:6a:ab:e8:aa:e7:fc:3a:57:5e:ac:cd:c9:9c: b6:16:87:a3:e1:0a:2a:5f:50:ab:cb:32:b3:7e:b8: e2:4b:85:3b:00:44:f6:fb:0e:b1:8e:34:99:c6:8d: 5b:0b:bf:f3:10:e3:73:48:32:45:c2:9d:21:fc:78: 2c:6d:e7:e0:2e:9c:34:16:a0:45:e6:67:64:07:7d: bb:fa:46:ed:4e:d2:3e:8f:cc:4c:a7:01:3e:49:ad: 66:fa:e6:71:9a:9b:7e:b9:e7:58:a7:a0:56:31:c4: d3:1e:c5:d3:01:46:6c:0c:7d:5a:c6:45:b6:f8:02: de:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AD:A4:B7:25:37:E2:87:EB:A5:A9:90:66:00:19:81:2D:52:0C:0C X509v3 Authority Key Identifier: keyid:92:EF:F6:16:25:02:EA:3B:52:FD:8C:A3:AE:10:8D:13:D6:BF:F6:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ku_2FiUC6jtS_YyjrhCNE9a_9lI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7943a0-ccab-4260-bd51-afe89aacc492/1/BK2ktyU34ofrpamQZgAZgS1SDAw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7943a0-ccab-4260-bd51-afe89aacc492/1/ku_2FiUC6jtS_YyjrhCNE9a_9lI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.155.108.0/22 62.68.95.0/24 185.180.184.0/22 IPv6: 2a0a:ad80::/29 Signature Algorithm: sha256WithRSAEncryption 5b:68:44:71:90:81:0e:43:ed:f1:45:8f:e9:a5:9c:92:05:b6: 34:74:16:c6:ce:a8:7e:06:3d:c2:91:f3:61:cb:2c:e3:6c:82: 47:ca:f3:21:6e:13:34:5c:c3:82:bb:8c:34:ec:4d:fa:ff:c5: 97:a9:c6:e7:06:7d:06:31:98:cd:32:1b:6f:53:42:f2:c6:03: 5a:a6:01:bc:40:06:78:43:d5:ef:c7:2e:f9:09:26:ee:15:fd: b4:b7:7b:b0:a2:ac:66:d0:d0:fa:06:95:fe:90:80:3a:21:61: 5f:e1:c9:dc:b4:aa:5d:c6:b1:8b:a2:05:ac:2f:10:0c:72:43: 6f:57:ee:65:3d:b8:a0:db:e2:a5:3f:19:ef:bb:5b:33:7b:ef: bd:0c:c3:97:a2:4a:cc:10:7b:5c:70:0f:e5:d8:4b:44:e8:55: e9:b9:7b:a4:a4:b4:8e:74:2c:34:fa:16:82:f4:ec:2a:12:11: 10:9a:27:5c:c8:07:73:8e:4b:6d:66:6f:1e:c5:56:9e:36:97: 55:ff:f9:aa:ec:ec:19:7f:e6:d2:f3:31:64:42:f5:32:ac:8c: 73:c9:c4:5f:fe:34:b2:c0:bd:69:a0:ac:06:1f:54:5e:ff:da: 3d:69:1b:3c:d4:3a:19:81:f7:cf:ad:87:99:b0:14:97:0d:5a: 60:65:47:cf -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt8EmQhfzvxX18uq0vS+RDkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyZWZmNjE2MjUwMmVhM2I1MmZkOGNhM2FlMTA4ZDEzZDZi ZmY2NTIwHhcNMjYwMTAyMDAxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNGFkYTRiNzI1MzdlMjg3ZWJhNWE5OTA2NjAwMTk4MTJkNTIwYzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBF75vaSIUR4JmwmJOyBejhAuURC RhNtVJJDruwUjmQL6CSwnKtfVzlVMoOH3/M1ZWlheR2AZ0ADqcs+YCfkpUuPDY/e ux5b8OM9bnrQ6BnkaxZcrqH0zn8PB0pnTi/gQqzFi4g6BxW9R/P6AjCXIGvYwT9W NFO/aLzU3lGqy2QQ9OL8v5vTB2qr6Krn/DpXXqzNyZy2Foej4QoqX1CryzKzfrji S4U7AET2+w6xjjSZxo1bC7/zEONzSDJFwp0h/HgsbefgLpw0FqBF5mdkB327+kbt TtI+j8xMpwE+Sa1m+uZxmpt+uedYp6BWMcTTHsXTAUZsDH1axkW2+ALeMQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFAStpLclN+KH66WpkGYAGYEtUgwMMB8GA1UdIwQY MBaAFJLv9hYlAuo7Uv2Mo64QjRPWv/ZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3VfMkZpVUM2anRTX1l5anJoQ05FOWFfOWxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS83OTQzYTAtY2NhYi00MjYwLWJkNTEt YWZlODlhYWNjNDkyLzEvQksya3R5VTM0b2ZycGFtUVpnQVpnUzFTREF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS83OTQzYTAtY2NhYi00MjYwLWJkNTEtYWZlODlhYWNjNDky LzEva3VfMkZpVUM2anRTX1l5anJoQ05FOWFfOWxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCLZtsAwQA PkRfAwQCubS4MA0EAgACMAcDBQMqCq2AMA0GCSqGSIb3DQEBCwUAA4IBAQBbaERx kIEOQ+3xRY/ppZySBbY0dBbGzqh+Bj3CkfNhyyzjbIJHyvMhbhM0XMOCu4w07E36 /8WXqcbnBn0GMZjNMhtvU0LyxgNapgG8QAZ4Q9Xvxy75CSbuFf20t3uwoqxm0ND6 BpX+kIA6IWFf4cnctKpdxrGLogWsLxAMckNvV+5lPbig2+KlPxnvu1sze++9DMOX okrMEHtccA/l2EtE6FXpuXukpLSOdCw0+haC9OwqEhEQmidcyAdzjkttZm8exVae NpdV//mq7OwZf+bS8zFkQvUyrIxzycRf/jSywL1poKwGH1Re/9o9aRs81DoZgffP rYeZsBSXDVpgZUfP -----END CERTIFICATE-----Generated at Sun Jan 11 23:03:20 2026 by rpki-client