This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/kAZJSgS29MgxZueFo76bZT3RLoo.roa File: kAZJSgS29MgxZueFo76bZT3RLoo.roa (raw, json) Hash identifier: 3PDTIlQgL4yc+u1IAv1XjtSyfqW/Sc3TvGpNsbSmrQM= Subject key identifier: 90:06:49:4A:04:B6:F4:C8:31:66:E7:85:A3:BE:9B:65:3D:D1:2E:8A Certificate issuer: /CN=dc327af32a98492757b200ea040db24ec3136592 Certificate serial: 019B7EA6E3F583691603FE09F6211E070B0B Authority key identifier: DC:32:7A:F3:2A:98:49:27:57:B2:00:EA:04:0D:B2:4E:C3:13:65:92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DJ68yqYSSdXsgDqBA2yTsMTZZI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/kAZJSgS29MgxZueFo76bZT3RLoo.roa Signing time: Fri 02 Jan 2026 12:20:25 +0000 ROA not before: Fri 02 Jan 2026 12:20:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 185.241.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/3DJ68yqYSSdXsgDqBA2yTsMTZZI.crl rsync://rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/3DJ68yqYSSdXsgDqBA2yTsMTZZI.mft rsync://rpki.ripe.net/repository/DEFAULT/3DJ68yqYSSdXsgDqBA2yTsMTZZI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 02:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:e3:f5:83:69:16:03:fe:09:f6:21:1e:07:0b:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc327af32a98492757b200ea040db24ec3136592 Validity Not Before: Jan 2 12:20:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9006494a04b6f4c83166e785a3be9b653dd12e8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:01:00:ec:52:2b:2d:a0:d5:87:a8:02:46:5e: b6:1c:3b:00:81:03:b6:3d:b3:26:e4:f6:09:72:fb: e4:10:eb:b2:e0:15:27:00:3e:24:a7:21:de:84:0a: 57:02:20:25:4f:05:d8:fd:97:1b:d6:8f:09:b7:62: d8:0d:7d:bd:d1:92:ed:f1:fb:1b:21:96:39:b1:95: 89:76:68:1b:4c:89:b4:d1:ce:5c:f5:21:44:62:88: bd:b1:6d:b8:6e:60:eb:3b:56:dd:90:a1:56:78:20: 60:e8:38:76:c8:1f:fb:f1:fc:75:35:8b:a6:2f:8a: 56:9f:d1:33:e3:ae:20:3f:cf:2b:e2:85:33:26:6f: 72:61:fd:8f:8f:2a:6c:c2:7a:55:58:b5:39:69:44: 79:96:80:7c:ac:52:15:50:1f:00:26:f2:44:93:cb: cb:7d:dc:ed:1e:4b:97:29:3c:bd:ad:4d:18:12:d3: d5:4d:ff:4e:ba:a0:3a:d6:ec:38:48:8e:10:b2:28: 81:b1:33:96:ba:44:df:7f:2a:1e:f1:07:c7:d1:11: ab:da:69:84:6f:fc:a9:c5:fa:08:1b:fc:e1:5c:b0: 72:b5:32:e6:93:39:7b:86:76:e3:47:2e:17:8e:47: 94:e7:c1:e2:03:ca:19:86:60:16:c7:de:c3:ae:18: fb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:06:49:4A:04:B6:F4:C8:31:66:E7:85:A3:BE:9B:65:3D:D1:2E:8A X509v3 Authority Key Identifier: keyid:DC:32:7A:F3:2A:98:49:27:57:B2:00:EA:04:0D:B2:4E:C3:13:65:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DJ68yqYSSdXsgDqBA2yTsMTZZI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/kAZJSgS29MgxZueFo76bZT3RLoo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a4f619-4e93-41d6-846c-16219e140fa7/1/3DJ68yqYSSdXsgDqBA2yTsMTZZI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.241.8.0/24 Signature Algorithm: sha256WithRSAEncryption 56:50:ea:72:e3:71:67:f4:1f:02:70:51:8c:83:2d:06:ee:f7: 70:77:46:9d:87:78:57:de:8d:2f:6a:a1:74:d4:35:4c:82:4d: d7:d1:43:70:38:80:4c:db:f0:37:53:f7:51:cc:02:97:ca:08: 5f:9d:59:23:56:be:98:dc:04:cd:74:20:b1:c2:57:5e:21:d6: ec:68:6f:aa:20:dc:c3:db:ac:e6:09:00:ab:40:91:c4:fa:86: 6b:73:9e:fc:f0:3e:fd:be:b9:86:c5:c7:2f:7c:bf:65:38:15: ff:70:09:e6:c4:84:7e:6b:3b:76:24:65:7f:96:32:12:60:7a: 6d:b0:ed:d4:40:27:e7:02:df:a1:4f:74:53:19:fa:2b:48:a5: 14:29:ba:4e:a2:56:3d:3c:b1:bc:05:50:42:29:55:2f:56:4b: 79:78:0c:61:aa:5a:19:3d:e5:64:5a:13:af:50:69:d1:80:20: c8:57:d0:f2:a6:6e:79:86:28:ef:20:fa:4a:47:6a:54:bc:8a: 4a:3d:ed:52:c9:48:d0:d2:56:f0:14:0a:f0:6f:06:f2:c4:29: 3a:8c:d1:99:6d:6b:fa:24:a5:83:18:b9:01:7d:f9:bc:d1:49: a1:c4:73:21:cc:49:7b:0b:8d:f5:13:47:56:90:8a:9f:dd:a7: f2:e0:9f:39 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+puP1g2kWA/4J9iEeBwsLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjMzI3YWYzMmE5ODQ5Mjc1N2IyMDBlYTA0MGRiMjRlYzMx MzY1OTIwHhcNMjYwMTAyMTIyMDI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDA2NDk0YTA0YjZmNGM4MzE2NmU3ODVhM2JlOWI2NTNkZDEyZThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQEA7FIrLaDVh6gCRl62HDsAgQO2 PbMm5PYJcvvkEOuy4BUnAD4kpyHehApXAiAlTwXY/Zcb1o8Jt2LYDX290ZLt8fsb IZY5sZWJdmgbTIm00c5c9SFEYoi9sW24bmDrO1bdkKFWeCBg6Dh2yB/78fx1NYum L4pWn9Ez464gP88r4oUzJm9yYf2PjypswnpVWLU5aUR5loB8rFIVUB8AJvJEk8vL fdztHkuXKTy9rU0YEtPVTf9OuqA61uw4SI4QsiiBsTOWukTffyoe8QfH0RGr2mmE b/ypxfoIG/zhXLBytTLmkzl7hnbjRy4XjkeU58HiA8oZhmAWx97Drhj7JwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJAGSUoEtvTIMWbnhaO+m2U90S6KMB8GA1UdIwQY MBaAFNwyevMqmEknV7IA6gQNsk7DE2WSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0RKNjh5cVlTU2RYc2dEcUJBMnlUc01UWlpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9hNGY2MTktNGU5My00MWQ2LTg0NmMt MTYyMTllMTQwZmE3LzEva0FaSlNnUzI5TWd4WnVlRm83NmJaVDNSTG9vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC9hNGY2MTktNGU5My00MWQ2LTg0NmMtMTYyMTllMTQwZmE3 LzEvM0RKNjh5cVlTU2RYc2dEcUJBMnlUc01UWlpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufEIMA0G CSqGSIb3DQEBCwUAA4IBAQBWUOpy43Fn9B8CcFGMgy0G7vdwd0adh3hX3o0vaqF0 1DVMgk3X0UNwOIBM2/A3U/dRzAKXyghfnVkjVr6Y3ATNdCCxwldeIdbsaG+qINzD 26zmCQCrQJHE+oZrc5788D79vrmGxccvfL9lOBX/cAnmxIR+azt2JGV/ljISYHpt sO3UQCfnAt+hT3RTGforSKUUKbpOolY9PLG8BVBCKVUvVkt5eAxhqloZPeVkWhOv UGnRgCDIV9Dypm55hijvIPpKR2pUvIpKPe1SyUjQ0lbwFArwbwbyxCk6jNGZbWv6 JKWDGLkBffm80UmhxHMhzEl7C431E0dWkIqf3afy4J85 -----END CERTIFICATE-----Generated at Sat Jan 17 06:44:36 2026 by rpki-client