This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/55a74f-49ca-4a63-9eda-517eff908975/1/KBM2JifvD2Vh2akJjDLpqYRnGis.roa File: KBM2JifvD2Vh2akJjDLpqYRnGis.roa (raw, json) Hash identifier: qcaeJ9j6EbyDF5mQddzhEcOLSvwlN5hP0uXT449+ltQ= Subject key identifier: 28:13:36:26:27:EF:0F:65:61:D9:A9:09:8C:32:E9:A9:84:67:1A:2B Certificate issuer: /CN=be125cad7dd4c5f0201ee2a21deac387366981c4 Certificate serial: 019B7AC87CA5DCAE27921A34FEDFEEC578CD Authority key identifier: BE:12:5C:AD:7D:D4:C5:F0:20:1E:E2:A2:1D:EA:C3:87:36:69:81:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vhJcrX3UxfAgHuKiHerDhzZpgcQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/55a74f-49ca-4a63-9eda-517eff908975/1/KBM2JifvD2Vh2akJjDLpqYRnGis.roa Signing time: Thu 01 Jan 2026 18:18:38 +0000 ROA not before: Thu 01 Jan 2026 18:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41202 IP address blocks: 37.110.208.0/21 maxlen: 21 37.110.208.0/22 maxlen: 22 37.110.208.0/24 maxlen: 24 37.110.209.0/24 maxlen: 24 37.110.210.0/24 maxlen: 24 37.110.212.0/22 maxlen: 22 37.110.214.0/24 maxlen: 24 37.110.215.0/24 maxlen: 24 185.183.240.0/22 maxlen: 22 185.183.240.0/23 maxlen: 23 185.183.240.0/24 maxlen: 24 185.183.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/55a74f-49ca-4a63-9eda-517eff908975/1/vhJcrX3UxfAgHuKiHerDhzZpgcQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/55a74f-49ca-4a63-9eda-517eff908975/1/vhJcrX3UxfAgHuKiHerDhzZpgcQ.mft rsync://rpki.ripe.net/repository/DEFAULT/vhJcrX3UxfAgHuKiHerDhzZpgcQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:7c:a5:dc:ae:27:92:1a:34:fe:df:ee:c5:78:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be125cad7dd4c5f0201ee2a21deac387366981c4 Validity Not Before: Jan 1 18:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2813362627ef0f6561d9a9098c32e9a984671a2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:79:cb:bf:d3:e5:b7:a7:42:c4:25:60:5d:c7: 1d:c3:16:99:2d:b4:ce:65:59:b2:44:87:e2:03:77: 66:0f:97:21:8d:cb:49:36:f1:35:b1:fe:34:4a:28: 46:cf:76:60:9e:83:1c:92:bb:4a:64:1d:5c:8c:02: 9c:07:81:c3:33:ca:31:2d:03:be:62:ae:06:3a:1c: b7:48:ac:2a:1e:82:a9:f8:c0:84:17:9a:4f:0d:97: 92:e2:cb:1d:89:82:82:4b:87:f7:55:a9:80:74:45: 44:8f:0c:ba:03:2f:0a:74:8b:fc:01:bc:8a:fb:63: 93:c7:0a:b3:65:e7:62:a5:1e:28:a2:24:c5:64:b8: 1e:c3:bd:b2:34:a4:59:e5:1f:b0:d4:32:06:fc:4d: ed:cb:95:3e:a7:fb:ee:f4:90:d1:c2:73:fd:4d:f3: e2:59:6a:31:c0:41:3e:26:f3:cf:68:88:f6:bc:0e: 5f:d1:9c:1c:e1:d9:b2:62:e4:23:43:52:d8:08:d6: 11:04:39:17:8b:5a:9c:22:1b:e8:a8:0a:f4:82:b5: e0:b0:9d:41:a9:24:0a:c7:0e:a5:ea:d7:6e:ed:99: 39:ca:f4:ab:3e:a9:f9:51:ca:84:14:64:8f:c9:a2: 9b:a1:ff:1a:04:27:51:af:23:0f:3a:24:c0:d2:8e: 79:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:13:36:26:27:EF:0F:65:61:D9:A9:09:8C:32:E9:A9:84:67:1A:2B X509v3 Authority Key Identifier: keyid:BE:12:5C:AD:7D:D4:C5:F0:20:1E:E2:A2:1D:EA:C3:87:36:69:81:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhJcrX3UxfAgHuKiHerDhzZpgcQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/55a74f-49ca-4a63-9eda-517eff908975/1/KBM2JifvD2Vh2akJjDLpqYRnGis.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/55a74f-49ca-4a63-9eda-517eff908975/1/vhJcrX3UxfAgHuKiHerDhzZpgcQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.110.208.0/21 185.183.240.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:e0:09:04:a6:bb:21:6f:cf:65:4b:7a:0c:29:48:b5:34:e3: 4b:f1:cc:35:34:eb:4a:28:a2:ac:3d:c5:d6:9a:93:97:a2:33: 4b:35:88:25:12:13:77:25:46:aa:45:53:4e:55:98:d6:52:40: fa:15:5e:5b:f6:42:62:54:34:48:3d:30:8a:84:ba:38:ad:d7: a2:db:e5:d4:0d:d9:43:16:5f:ed:0c:22:fb:fc:8c:b2:b0:05: 43:63:9b:2b:be:33:cb:34:94:3d:57:ea:ff:ec:d1:b3:ec:cd: f5:50:cf:0d:34:d3:78:3c:17:2b:2d:97:ae:0c:7e:5c:98:49: c6:f0:f8:f1:40:95:f2:96:1a:c2:c9:72:6b:45:d9:8c:57:9d: 36:cd:78:9a:38:05:6c:8c:f0:ce:3c:96:2a:26:fb:e7:6c:66: a4:2b:67:a3:ce:f0:c4:de:14:d3:e3:87:83:7f:e4:12:6e:7c: f7:50:5f:f5:08:e3:79:86:fa:ce:85:64:43:3f:a3:61:b2:71: d9:67:95:87:6f:45:5b:13:d2:32:77:a0:31:97:b5:39:57:40: 72:98:7e:b9:fe:42:bf:ba:9f:0b:15:21:33:02:87:61:73:21: e8:63:53:d1:c4:0a:d7:65:df:bb:6c:4a:9b:c6:1b:35:9e:96: ca:fd:3c:11 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yHyl3K4nkho0/t/uxXjNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlMTI1Y2FkN2RkNGM1ZjAyMDFlZTJhMjFkZWFjMzg3MzY2 OTgxYzQwHhcNMjYwMTAxMTgxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyODEzMzYyNjI3ZWYwZjY1NjFkOWE5MDk4YzMyZTlhOTg0NjcxYTJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXnLv9Plt6dCxCVgXccdwxaZLbTO ZVmyRIfiA3dmD5chjctJNvE1sf40SihGz3ZgnoMckrtKZB1cjAKcB4HDM8oxLQO+ Yq4GOhy3SKwqHoKp+MCEF5pPDZeS4ssdiYKCS4f3VamAdEVEjwy6Ay8KdIv8AbyK +2OTxwqzZedipR4ooiTFZLgew72yNKRZ5R+w1DIG/E3ty5U+p/vu9JDRwnP9TfPi WWoxwEE+JvPPaIj2vA5f0Zwc4dmyYuQjQ1LYCNYRBDkXi1qcIhvoqAr0grXgsJ1B qSQKxw6l6tdu7Zk5yvSrPqn5UcqEFGSPyaKbof8aBCdRryMPOiTA0o551QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCgTNiYn7w9lYdmpCYwy6amEZxorMB8GA1UdIwQY MBaAFL4SXK191MXwIB7ioh3qw4c2aYHEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmhKY3JYM1V4ZkFnSHVLaUhlckRoelpwZ2NRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy81NWE3NGYtNDljYS00YTYzLTllZGEt NTE3ZWZmOTA4OTc1LzEvS0JNMkppZnZEMlZoMmFrSmpETHBxWVJuR2lzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy81NWE3NGYtNDljYS00YTYzLTllZGEtNTE3ZWZmOTA4OTc1 LzEvdmhKY3JYM1V4ZkFnSHVLaUhlckRoelpwZ2NRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDJW7QAwQC ubfwMA0GCSqGSIb3DQEBCwUAA4IBAQCa4AkEprshb89lS3oMKUi1NONL8cw1NOtK KKKsPcXWmpOXojNLNYglEhN3JUaqRVNOVZjWUkD6FV5b9kJiVDRIPTCKhLo4rdei 2+XUDdlDFl/tDCL7/IyysAVDY5srvjPLNJQ9V+r/7NGz7M31UM8NNNN4PBcrLZeu DH5cmEnG8PjxQJXylhrCyXJrRdmMV502zXiaOAVsjPDOPJYqJvvnbGakK2ejzvDE 3hTT44eDf+QSbnz3UF/1CON5hvrOhWRDP6NhsnHZZ5WHb0VbE9Iyd6Axl7U5V0By mH65/kK/up8LFSEzAodhcyHoY1PRxArXZd+7bEqbxhs1npbK/TwR -----END CERTIFICATE-----Generated at Sun Jan 11 22:46:50 2026 by rpki-client