This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/6bf528-bd34-40ee-b0dc-45f60f414ff7/1/kJOFq-dKECTWElamkBGQy_qa-rE.roa File: kJOFq-dKECTWElamkBGQy_qa-rE.roa (raw, json) Hash identifier: DICUySlyGKgPQsuB8/dL4T8FFlEahDoLv2rYKXRYyNQ= Subject key identifier: 90:93:85:AB:E7:4A:10:24:D6:12:56:A6:90:11:90:CB:FA:9A:FA:B1 Certificate issuer: /CN=f69f07210b2884b4fea507bde227795b264062ed Certificate serial: 019B7FF27F6681289A04EB3A9E600A75CA08 Authority key identifier: F6:9F:07:21:0B:28:84:B4:FE:A5:07:BD:E2:27:79:5B:26:40:62:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9p8HIQsohLT-pQe94id5WyZAYu0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/6bf528-bd34-40ee-b0dc-45f60f414ff7/1/kJOFq-dKECTWElamkBGQy_qa-rE.roa Signing time: Fri 02 Jan 2026 18:22:37 +0000 ROA not before: Fri 02 Jan 2026 18:22:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214700 IP address blocks: 185.255.31.0/24 maxlen: 24 2a11:e0c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/6bf528-bd34-40ee-b0dc-45f60f414ff7/1/9p8HIQsohLT-pQe94id5WyZAYu0.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/6bf528-bd34-40ee-b0dc-45f60f414ff7/1/9p8HIQsohLT-pQe94id5WyZAYu0.mft rsync://rpki.ripe.net/repository/DEFAULT/9p8HIQsohLT-pQe94id5WyZAYu0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:7f:66:81:28:9a:04:eb:3a:9e:60:0a:75:ca:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f69f07210b2884b4fea507bde227795b264062ed Validity Not Before: Jan 2 18:22:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=909385abe74a1024d61256a6901190cbfa9afab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a8:43:5e:5c:3a:1b:d5:70:ba:fd:39:75:5a: e2:c5:cd:88:92:f9:c3:2b:57:ef:f8:74:1f:63:82: c4:44:b9:ed:33:f8:54:88:f3:9b:c2:02:de:bf:73: 19:3e:04:07:6b:36:f1:17:2d:c0:15:5b:ac:7e:8e: 8a:49:7f:74:70:8a:a7:6b:98:44:a9:71:88:76:e7: ab:e8:a2:76:1e:bd:bf:24:8a:46:a4:12:78:98:3d: 0d:c2:36:74:5c:63:5d:63:72:78:4d:31:a4:09:85: d9:3f:ed:c6:e8:6a:55:6c:e9:8a:da:76:cc:b0:7f: 00:c6:80:55:88:63:2a:a7:ce:8f:24:4f:25:bd:d2: da:9f:39:9b:a6:e2:2a:20:18:7f:b3:1f:ea:d7:14: 88:d9:b8:62:86:5e:6d:0b:f3:54:f0:0a:65:b1:af: ae:89:f0:7e:5f:68:0b:bb:dc:84:ce:35:82:e9:f0: 6b:15:43:77:0a:9a:e6:88:31:eb:c5:d8:17:e0:98: fd:f8:3f:73:03:91:89:7e:3e:dd:d6:f7:2a:bb:70: ed:7c:bc:ed:93:48:60:88:71:b4:df:bc:ce:43:6f: d9:55:ed:69:5f:20:a2:ac:f7:5f:b0:55:ca:18:45: 20:12:c5:73:01:f4:34:06:ea:03:e7:f8:ad:ca:a6: b1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:93:85:AB:E7:4A:10:24:D6:12:56:A6:90:11:90:CB:FA:9A:FA:B1 X509v3 Authority Key Identifier: keyid:F6:9F:07:21:0B:28:84:B4:FE:A5:07:BD:E2:27:79:5B:26:40:62:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9p8HIQsohLT-pQe94id5WyZAYu0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6bf528-bd34-40ee-b0dc-45f60f414ff7/1/kJOFq-dKECTWElamkBGQy_qa-rE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6bf528-bd34-40ee-b0dc-45f60f414ff7/1/9p8HIQsohLT-pQe94id5WyZAYu0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.255.31.0/24 IPv6: 2a11:e0c0::/29 Signature Algorithm: sha256WithRSAEncryption d3:7a:73:da:c7:ca:a9:a3:39:0b:3c:fa:d4:97:7d:12:a0:60: 59:ad:20:af:79:fa:7c:23:c1:94:9a:c5:37:cb:d5:65:95:70: 89:b2:fc:b3:b4:68:5b:e9:c3:8c:a9:96:e0:08:f4:6a:03:56: 04:63:2b:17:64:bd:1b:f8:db:3d:09:8a:f0:70:9e:24:94:40: 19:d2:f0:e1:fc:80:ce:46:7c:1e:48:42:1d:aa:49:5c:dc:29: 43:c2:79:54:f8:4c:f3:c8:3d:23:46:3d:b3:55:09:59:f3:c0: 39:d9:dc:b1:95:d2:14:99:32:78:3f:1b:33:2e:09:df:2e:a9: e8:87:a4:8a:f3:ba:be:cf:cc:75:bd:7e:95:a4:c5:2e:26:c6: 44:e1:e6:1c:d1:37:eb:aa:50:e1:b1:e1:6d:bc:bc:6b:7d:af: fe:d1:b6:1a:c4:b7:e2:1c:05:12:2b:78:7b:57:74:d4:76:07: a1:35:38:5b:02:c0:11:73:7a:83:09:22:5f:76:47:fd:92:f9: 6b:e7:8d:97:e5:76:ce:44:05:36:e4:c0:fc:be:95:3d:d6:ba: 72:6f:e0:a3:8b:bb:c1:18:8c:a3:03:c5:ca:87:9d:e6:36:2d: cb:49:60:06:65:ca:83:32:2f:63:ba:84:c6:0d:ca:33:13:37: fc:d9:0b:f5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/8n9mgSiaBOs6nmAKdcoIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY2OWYwNzIxMGIyODg0YjRmZWE1MDdiZGUyMjc3OTViMjY0 MDYyZWQwHhcNMjYwMTAyMTgyMjM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDkzODVhYmU3NGExMDI0ZDYxMjU2YTY5MDExOTBjYmZhOWFmYWIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsahDXlw6G9Vwuv05dVrixc2IkvnD K1fv+HQfY4LERLntM/hUiPObwgLev3MZPgQHazbxFy3AFVusfo6KSX90cIqna5hE qXGIduer6KJ2Hr2/JIpGpBJ4mD0NwjZ0XGNdY3J4TTGkCYXZP+3G6GpVbOmK2nbM sH8AxoBViGMqp86PJE8lvdLanzmbpuIqIBh/sx/q1xSI2bhihl5tC/NU8Aplsa+u ifB+X2gLu9yEzjWC6fBrFUN3CprmiDHrxdgX4Jj9+D9zA5GJfj7d1vcqu3DtfLzt k0hgiHG037zOQ2/ZVe1pXyCirPdfsFXKGEUgEsVzAfQ0BuoD5/ityqaxtwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJCThavnShAk1hJWppARkMv6mvqxMB8GA1UdIwQY MBaAFPafByELKIS0/qUHveIneVsmQGLtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXA4SElRc29oTFQtcFFlOTRpZDVXeVpBWXUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS82YmY1MjgtYmQzNC00MGVlLWIwZGMt NDVmNjBmNDE0ZmY3LzEva0pPRnEtZEtFQ1RXRWxhbWtCR1F5X3FhLXJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS82YmY1MjgtYmQzNC00MGVlLWIwZGMtNDVmNjBmNDE0ZmY3 LzEvOXA4SElRc29oTFQtcFFlOTRpZDVXeVpBWXUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuf8fMA0E AgACMAcDBQMqEeDAMA0GCSqGSIb3DQEBCwUAA4IBAQDTenPax8qpozkLPPrUl30S oGBZrSCvefp8I8GUmsU3y9VllXCJsvyztGhb6cOMqZbgCPRqA1YEYysXZL0b+Ns9 CYrwcJ4klEAZ0vDh/IDORnweSEIdqklc3ClDwnlU+EzzyD0jRj2zVQlZ88A52dyx ldIUmTJ4PxszLgnfLqnoh6SK87q+z8x1vX6VpMUuJsZE4eYc0TfrqlDhseFtvLxr fa/+0bYaxLfiHAUSK3h7V3TUdgehNThbAsARc3qDCSJfdkf9kvlr542X5XbORAU2 5MD8vpU91rpyb+Cji7vBGIyjA8XKh53mNi3LSWAGZcqDMi9juoTGDcozEzf82Qv1 -----END CERTIFICATE-----Generated at Mon Jan 12 01:42:32 2026 by rpki-client