This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/3cde9b-3705-4dc3-8d7e-516ffd87376c/1/KKpHDDFH2cfzrNDJZuhoGv_wS_w.roa File: KKpHDDFH2cfzrNDJZuhoGv_wS_w.roa (raw, json) Hash identifier: ATx2mcVJOEtuVh1BU96vsI8Si7Mn1Bxh+fLVIbYJBSM= Subject key identifier: 28:AA:47:0C:31:47:D9:C7:F3:AC:D0:C9:66:E8:68:1A:FF:F0:4B:FC Certificate issuer: /CN=306d618355bd8937f75bb4650bb5c1af70f9a12e Certificate serial: 019B77C6BDF845F23342CBD59189278EC129 Authority key identifier: 30:6D:61:83:55:BD:89:37:F7:5B:B4:65:0B:B5:C1:AF:70:F9:A1:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MG1hg1W9iTf3W7RlC7XBr3D5oS4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/3cde9b-3705-4dc3-8d7e-516ffd87376c/1/KKpHDDFH2cfzrNDJZuhoGv_wS_w.roa Signing time: Thu 01 Jan 2026 04:17:51 +0000 ROA not before: Thu 01 Jan 2026 04:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58128 IP address blocks: 185.155.204.0/24 maxlen: 24 185.155.205.0/24 maxlen: 24 185.155.206.0/24 maxlen: 24 185.186.180.0/24 maxlen: 24 185.186.181.0/24 maxlen: 24 185.186.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/3cde9b-3705-4dc3-8d7e-516ffd87376c/1/MG1hg1W9iTf3W7RlC7XBr3D5oS4.crl rsync://rpki.ripe.net/repository/DEFAULT/02/3cde9b-3705-4dc3-8d7e-516ffd87376c/1/MG1hg1W9iTf3W7RlC7XBr3D5oS4.mft rsync://rpki.ripe.net/repository/DEFAULT/MG1hg1W9iTf3W7RlC7XBr3D5oS4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:bd:f8:45:f2:33:42:cb:d5:91:89:27:8e:c1:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=306d618355bd8937f75bb4650bb5c1af70f9a12e Validity Not Before: Jan 1 04:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=28aa470c3147d9c7f3acd0c966e8681afff04bfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:15:79:07:fd:e3:82:d8:32:ed:6d:2f:de:6c: 69:ab:12:a3:e2:21:45:4b:27:40:cc:36:7d:90:73: c1:ba:3f:69:53:6d:dd:ea:e8:a0:17:97:97:0c:b9: 4f:29:a4:5d:26:5f:5d:7d:e4:44:b0:c1:9e:8c:df: 45:e1:91:d4:60:ff:8a:14:02:b2:49:02:6c:49:1b: a0:3a:44:7e:e8:cf:c8:37:c3:d3:0d:10:55:b4:b8: c8:b4:0d:14:aa:1e:43:b1:22:16:77:82:cd:71:6a: cf:33:e8:dd:6b:d1:43:5d:19:64:84:5d:53:a2:ff: ec:7b:15:2c:dd:d7:66:b4:08:7d:33:70:68:b5:00: cb:34:8d:9c:0e:d0:46:2b:99:6c:46:57:7d:b8:04: e8:20:6f:1c:c6:40:34:e5:98:b9:80:60:87:0f:ef: 08:0c:8a:5b:8c:6e:0f:75:be:f1:a0:d7:26:f1:42: f8:88:89:8b:f9:cd:ed:84:12:4e:d4:c2:38:a6:e5: 2c:79:87:37:c6:ac:d1:dd:c3:48:03:44:8d:00:ce: f1:b4:a8:58:4b:45:6c:1b:65:3e:e2:f6:79:d0:d6: b0:6a:5a:34:49:de:e7:10:d3:79:a3:67:d2:7f:62: b3:44:d6:bd:d6:54:5a:35:ce:a6:ef:7e:30:be:4d: d5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AA:47:0C:31:47:D9:C7:F3:AC:D0:C9:66:E8:68:1A:FF:F0:4B:FC X509v3 Authority Key Identifier: keyid:30:6D:61:83:55:BD:89:37:F7:5B:B4:65:0B:B5:C1:AF:70:F9:A1:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MG1hg1W9iTf3W7RlC7XBr3D5oS4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/3cde9b-3705-4dc3-8d7e-516ffd87376c/1/KKpHDDFH2cfzrNDJZuhoGv_wS_w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/3cde9b-3705-4dc3-8d7e-516ffd87376c/1/MG1hg1W9iTf3W7RlC7XBr3D5oS4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.155.204.0-185.155.206.255 185.186.180.0-185.186.182.255 Signature Algorithm: sha256WithRSAEncryption 50:7a:16:f0:ac:cc:90:d8:ca:fa:dd:33:11:5a:db:15:19:b3: fa:b3:1e:53:6b:3b:0e:27:33:f5:27:31:19:d0:33:79:51:b5: 82:0d:57:34:5d:0a:f7:4f:8d:f8:ff:f0:3f:9d:0f:cf:86:2e: 9d:a3:50:49:21:00:c9:ad:a2:34:53:be:c2:9f:18:54:24:83: cb:ce:8d:5d:20:60:1c:91:b9:97:3d:56:b5:88:8c:81:2c:51: 56:4c:7c:4a:d5:08:03:da:09:28:48:71:6f:d6:c1:59:2a:26: 52:a3:1a:a8:e2:4c:a5:06:28:3b:3c:bc:99:f9:f1:f4:c0:2a: cd:cf:70:1d:10:5b:a7:58:d8:61:43:5a:b0:ec:6b:25:9c:5e: 56:b6:f3:84:b4:ce:fb:c3:ef:e0:db:97:b1:ab:ab:e1:d9:02: 6a:4f:3e:28:02:0b:03:d5:ef:82:bc:3e:dd:1e:6d:91:b3:1e: d6:98:92:1b:14:13:ef:65:15:1f:36:a8:b6:b7:b7:1a:c6:a7: 1c:62:04:fe:ff:9e:56:48:35:d5:bf:7a:59:09:a4:8d:9f:e2: 71:03:1e:a0:ca:68:ed:6b:a0:76:83:5a:6a:d7:36:6a:7c:f1: fe:7e:3b:2b:59:8e:4f:24:31:a3:5c:92:e2:e0:81:0c:87:c5: 2c:b0:32:0e -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgISAZt3xr34RfIzQsvVkYknjsEpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwNmQ2MTgzNTViZDg5MzdmNzViYjQ2NTBiYjVjMWFmNzBm OWExMmUwHhcNMjYwMTAxMDQxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOGFhNDcwYzMxNDdkOWM3ZjNhY2QwYzk2NmU4NjgxYWZmZjA0YmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxRV5B/3jgtgy7W0v3mxpqxKj4iFF SydAzDZ9kHPBuj9pU23d6uigF5eXDLlPKaRdJl9dfeREsMGejN9F4ZHUYP+KFAKy SQJsSRugOkR+6M/IN8PTDRBVtLjItA0Uqh5DsSIWd4LNcWrPM+jda9FDXRlkhF1T ov/sexUs3ddmtAh9M3BotQDLNI2cDtBGK5lsRld9uAToIG8cxkA05Zi5gGCHD+8I DIpbjG4Pdb7xoNcm8UL4iImL+c3thBJO1MI4puUseYc3xqzR3cNIA0SNAM7xtKhY S0VsG2U+4vZ50Nawalo0Sd7nENN5o2fSf2KzRNa91lRaNc6m734wvk3VBQIDAQAB o4ICHzCCAhswHQYDVR0OBBYEFCiqRwwxR9nH86zQyWboaBr/8Ev8MB8GA1UdIwQY MBaAFDBtYYNVvYk391u0ZQu1wa9w+aEuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUcxaGcxVzlpVGYzVzdSbEM3WEJyM0Q1b1M0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8zY2RlOWItMzcwNS00ZGMzLThkN2Ut NTE2ZmZkODczNzZjLzEvS0twSERERkgyY2Z6ck5ESlp1aG9Hdl93U193LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi8zY2RlOWItMzcwNS00ZGMzLThkN2UtNTE2ZmZkODczNzZj LzEvTUcxaGcxVzlpVGYzVzdSbEM3WEJyM0Q1b1M0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAATAcMAwDBAK5m8wD BAC5m84wDAMEArm6tAMEALm6tjANBgkqhkiG9w0BAQsFAAOCAQEAUHoW8KzMkNjK +t0zEVrbFRmz+rMeU2s7Dicz9ScxGdAzeVG1gg1XNF0K90+N+P/wP50Pz4YunaNQ SSEAya2iNFO+wp8YVCSDy86NXSBgHJG5lz1WtYiMgSxRVkx8StUIA9oJKEhxb9bB WSomUqMaqOJMpQYoOzy8mfnx9MAqzc9wHRBbp1jYYUNasOxrJZxeVrbzhLTO+8Pv 4NuXsaur4dkCak8+KAILA9Xvgrw+3R5tkbMe1piSGxQT72UVHzaotre3GsanHGIE /v+eVkg11b96WQmkjZ/icQMeoMpo7WugdoNaatc2anzx/n47K1mOTyQxo1yS4uCB DIfFLLAyDg== -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:38 2026 by rpki-client