This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/KmpvB4KFqw7exBTVxtx7STZBeJI.roa File: KmpvB4KFqw7exBTVxtx7STZBeJI.roa (raw, json) Hash identifier: NGik2gbG57mRcXBv6Y0paUge3Vi9Zz71bAKQOlWvc4g= Subject key identifier: 2A:6A:6F:07:82:85:AB:0E:DE:C4:14:D5:C6:DC:7B:49:36:41:78:92 Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Certificate serial: 019B7D5B22008D952ABBAF85E66A77DCDEA4 Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/KmpvB4KFqw7exBTVxtx7STZBeJI.roa Signing time: Fri 02 Jan 2026 06:18:03 +0000 ROA not before: Fri 02 Jan 2026 06:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206935 IP address blocks: 78.142.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.mft rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:22:00:8d:95:2a:bb:af:85:e6:6a:77:dc:de:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Validity Not Before: Jan 2 06:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2a6a6f078285ab0edec414d5c6dc7b4936417892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:51:1e:bb:4a:2e:01:a0:a2:9b:45:47:fa:ab: 53:da:d4:3a:d3:01:7d:e3:b4:31:65:45:d2:f7:a5: 3b:c7:b5:09:1e:86:19:59:98:7f:da:a6:6d:e3:3b: e0:d0:bc:9b:cb:79:a8:12:92:70:ad:d9:d6:b2:17: d9:05:23:1d:1b:16:cc:3d:60:63:cb:59:90:44:9e: ac:17:bd:83:91:6f:e6:82:2b:0f:71:f8:11:3a:b7: 49:fe:8c:54:62:9b:75:35:ac:cd:48:11:4c:b6:23: bd:c4:57:c0:91:fa:29:6e:e6:c5:9b:18:85:22:d8: 79:30:9d:09:3a:03:84:69:b8:e2:6b:3c:77:ca:28: e2:99:cf:d3:93:e1:23:0b:82:ac:2f:86:25:34:dc: c0:2e:c7:be:db:7f:0b:49:10:22:ae:c2:e7:05:e9: 47:fb:d8:1c:73:d7:f4:84:c6:7d:4a:9a:44:b3:da: d7:56:55:d3:8a:3e:20:7f:3e:85:c6:65:02:bc:70: e7:59:7a:ca:dc:b1:3a:4c:63:8b:29:2c:b2:eb:44: c5:4a:f3:e7:54:aa:ae:0a:94:06:5a:9f:1e:6b:bc: 1a:69:21:d0:28:f4:55:33:85:93:9a:b5:fa:7e:4d: 57:c1:e4:35:dd:fe:fe:ad:b0:bc:16:d0:b0:94:b9: 3e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:6A:6F:07:82:85:AB:0E:DE:C4:14:D5:C6:DC:7B:49:36:41:78:92 X509v3 Authority Key Identifier: keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/KmpvB4KFqw7exBTVxtx7STZBeJI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.142.29.0/24 Signature Algorithm: sha256WithRSAEncryption a8:59:81:09:d5:ad:7b:e8:d7:f8:7f:3b:44:03:ed:8c:ad:11: dd:9f:15:86:45:89:83:7c:28:f5:fd:34:62:8f:12:b9:da:e6: c9:76:72:58:55:36:56:00:05:34:7f:c3:8f:2a:6c:48:68:a5: 84:60:71:b6:fe:eb:10:f7:24:39:c5:7c:c7:b3:9d:80:33:94: fb:10:bf:3a:60:3b:76:c0:1b:e5:ac:ef:02:9a:82:2d:08:ae: f7:21:f9:7d:10:0c:78:5e:5b:74:e8:2f:a8:f3:e8:8b:3c:5f: f8:43:03:96:2e:c9:5c:63:23:9f:31:60:d5:cb:00:77:da:cb: 5e:3b:4d:d6:c3:85:5b:59:f0:85:bf:aa:dc:e2:0a:6d:91:02: 9a:c4:a9:f0:0f:1d:d7:13:25:9d:89:d0:95:b4:90:5b:38:d7: 2c:16:b5:52:29:1e:0b:e9:b9:3d:3e:52:35:33:09:b3:3b:a5: 93:9a:19:e8:0e:88:a7:5f:b4:f1:43:17:3f:55:f6:d0:8e:e5: d5:0f:e6:ae:b0:eb:df:88:4b:c8:38:35:47:b5:9d:75:d9:a3: 0b:88:12:eb:5b:91:45:db:7a:ac:27:30:b9:3d:19:cc:e5:a0: aa:39:8e:fa:e9:15:71:5c:61:dc:17:07:c4:1c:28:79:8d:95: b7:58:4e:c8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9WyIAjZUqu6+F5mp33N6kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1 Y2IyYWEwHhcNMjYwMTAyMDYxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYTZhNmYwNzgyODVhYjBlZGVjNDE0ZDVjNmRjN2I0OTM2NDE3ODkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFEeu0ouAaCim0VH+qtT2tQ60wF9 47QxZUXS96U7x7UJHoYZWZh/2qZt4zvg0Lyby3moEpJwrdnWshfZBSMdGxbMPWBj y1mQRJ6sF72DkW/mgisPcfgROrdJ/oxUYpt1NazNSBFMtiO9xFfAkfopbubFmxiF Ith5MJ0JOgOEabjiazx3yijimc/Tk+EjC4KsL4YlNNzALse+238LSRAirsLnBelH +9gcc9f0hMZ9SppEs9rXVlXTij4gfz6FxmUCvHDnWXrK3LE6TGOLKSyy60TFSvPn VKquCpQGWp8ea7waaSHQKPRVM4WTmrX6fk1XweQ13f7+rbC8FtCwlLk+OQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCpqbweChasO3sQU1cbce0k2QXiSMB8GA1UdIwQY MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt ZGFjYjVmMzU2ZWEzLzEvS21wdkI0S0ZxdzdleEJUVnh0eDdTVFpCZUpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATo4dMA0G CSqGSIb3DQEBCwUAA4IBAQCoWYEJ1a176Nf4fztEA+2MrRHdnxWGRYmDfCj1/TRi jxK52ubJdnJYVTZWAAU0f8OPKmxIaKWEYHG2/usQ9yQ5xXzHs52AM5T7EL86YDt2 wBvlrO8CmoItCK73Ifl9EAx4Xlt06C+o8+iLPF/4QwOWLslcYyOfMWDVywB32ste O03Ww4VbWfCFv6rc4gptkQKaxKnwDx3XEyWdidCVtJBbONcsFrVSKR4L6bk9PlI1 MwmzO6WTmhnoDoinX7TxQxc/VfbQjuXVD+ausOvfiEvIODVHtZ112aMLiBLrW5FF 23qsJzC5PRnM5aCqOY766RVxXGHcFwfEHCh5jZW3WE7I -----END CERTIFICATE-----Generated at Fri Jan 23 18:49:36 2026 by rpki-client