This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/877e6c-325a-47ea-aa56-1096bfd6bf6d/1/KTLrylbaPZVc2tcqKn9wzCh_kXU.roa File: KTLrylbaPZVc2tcqKn9wzCh_kXU.roa (raw, json) Hash identifier: fYS788ZlufFWPud3/HvTQbZGHC7LPz9v9l4mgngmvqM= Subject key identifier: 29:32:EB:CA:56:DA:3D:95:5C:DA:D7:2A:2A:7F:70:CC:28:7F:91:75 Certificate issuer: /CN=1246f23a048763aa3ad0aede5a489ab8fcd26384 Certificate serial: 019B797F0F4858AEBE8963AC946E04630D15 Authority key identifier: 12:46:F2:3A:04:87:63:AA:3A:D0:AE:DE:5A:48:9A:B8:FC:D2:63:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EkbyOgSHY6o60K7eWkiauPzSY4Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/877e6c-325a-47ea-aa56-1096bfd6bf6d/1/KTLrylbaPZVc2tcqKn9wzCh_kXU.roa Signing time: Thu 01 Jan 2026 12:18:48 +0000 ROA not before: Thu 01 Jan 2026 12:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207553 IP address blocks: 194.9.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/877e6c-325a-47ea-aa56-1096bfd6bf6d/1/EkbyOgSHY6o60K7eWkiauPzSY4Q.crl rsync://rpki.ripe.net/repository/DEFAULT/05/877e6c-325a-47ea-aa56-1096bfd6bf6d/1/EkbyOgSHY6o60K7eWkiauPzSY4Q.mft rsync://rpki.ripe.net/repository/DEFAULT/EkbyOgSHY6o60K7eWkiauPzSY4Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:0f:48:58:ae:be:89:63:ac:94:6e:04:63:0d:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1246f23a048763aa3ad0aede5a489ab8fcd26384 Validity Not Before: Jan 1 12:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2932ebca56da3d955cdad72a2a7f70cc287f9175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:90:81:07:83:33:80:77:20:91:b3:5b:8f:e1: 7f:4a:e7:ed:e8:bd:03:a8:4a:ad:8a:12:1a:99:a2: 62:a8:9b:30:de:16:f3:a9:23:fe:db:51:74:cb:1e: 08:48:b8:81:b5:3d:d5:47:cc:5e:75:13:ac:cd:2f: fb:fb:35:e8:61:1b:7b:d2:60:6a:ad:35:4c:4a:a6: 7b:86:c5:0c:1a:f5:fc:e7:96:7c:55:a0:1c:f1:67: 24:56:9d:8c:57:22:b7:e0:73:da:aa:11:48:57:83: 87:f9:dc:b0:d3:f2:d3:b7:37:e6:22:c3:4f:93:e8: 78:05:a4:2c:ea:81:71:10:88:61:d9:6b:01:a6:f0: c5:69:2e:0e:57:df:8a:f3:7c:5c:77:28:5c:f0:39: e3:ce:b1:0e:1d:a7:cf:34:68:0b:b5:b7:c9:1c:ca: ee:71:ff:7f:b5:64:91:68:9a:2a:4a:bf:fc:8f:09: 01:b3:7c:43:56:26:e5:fa:7e:91:6c:4f:a5:c4:03: 9c:2e:ca:4f:a1:74:d1:5b:b5:e1:ee:d2:d4:d6:7a: 08:64:d6:7c:b1:f6:e7:95:2f:7b:74:ef:82:c5:13: f2:fe:56:ed:c6:79:75:a8:a5:52:05:79:d6:fa:d2: bc:78:b1:64:28:11:26:e7:4d:1c:09:36:df:86:be: 16:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:32:EB:CA:56:DA:3D:95:5C:DA:D7:2A:2A:7F:70:CC:28:7F:91:75 X509v3 Authority Key Identifier: keyid:12:46:F2:3A:04:87:63:AA:3A:D0:AE:DE:5A:48:9A:B8:FC:D2:63:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EkbyOgSHY6o60K7eWkiauPzSY4Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/877e6c-325a-47ea-aa56-1096bfd6bf6d/1/KTLrylbaPZVc2tcqKn9wzCh_kXU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/877e6c-325a-47ea-aa56-1096bfd6bf6d/1/EkbyOgSHY6o60K7eWkiauPzSY4Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.9.191.0/24 Signature Algorithm: sha256WithRSAEncryption 62:6b:e2:b4:4d:93:38:e9:52:32:02:1d:21:a6:2b:66:79:5a: ad:03:d0:e8:17:72:65:b5:32:eb:91:9d:1b:2f:ae:7c:58:25: 67:1c:2e:30:54:ca:44:e0:a5:2a:39:3a:48:17:12:1e:dd:f1: d6:f8:5f:20:f9:d7:bf:a9:08:43:cb:c9:99:1e:62:2b:8e:15: 8e:6b:3b:64:3c:12:0d:10:cd:4e:7d:ba:f0:35:a0:2c:44:14: 4f:b9:ce:7f:be:e5:b0:f1:a6:ea:cf:79:29:70:db:00:07:9e: db:0b:2e:e3:aa:90:ad:eb:81:bc:d8:0d:56:95:a5:7c:40:76: 98:cd:b3:e1:f1:3f:41:c2:0c:3d:b9:0d:23:ec:21:34:a7:64: 1c:20:09:e7:32:a2:6d:9c:9d:a2:65:2b:2a:68:b4:f9:12:6d: c6:45:b9:56:33:bd:fb:76:ba:5f:18:ec:d6:b8:c8:83:38:3f: b2:a5:8b:c1:fe:11:cb:84:08:d1:2c:77:2a:c1:0a:72:7b:eb: 31:14:bc:fd:54:03:9c:f2:56:00:4e:ab:66:36:14:76:f8:03: 96:72:c6:ba:6e:14:4f:29:1b:a1:cd:69:a0:cd:f1:18:56:2a: 05:fa:9c:72:87:26:33:c9:3a:21:59:b7:88:08:ea:65:b3:6c: e6:6f:05:3f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fw9IWK6+iWOslG4EYw0VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyNDZmMjNhMDQ4NzYzYWEzYWQwYWVkZTVhNDg5YWI4ZmNk MjYzODQwHhcNMjYwMTAxMTIxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTMyZWJjYTU2ZGEzZDk1NWNkYWQ3MmEyYTdmNzBjYzI4N2Y5MTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspCBB4MzgHcgkbNbj+F/Suft6L0D qEqtihIamaJiqJsw3hbzqSP+21F0yx4ISLiBtT3VR8xedROszS/7+zXoYRt70mBq rTVMSqZ7hsUMGvX855Z8VaAc8WckVp2MVyK34HPaqhFIV4OH+dyw0/LTtzfmIsNP k+h4BaQs6oFxEIhh2WsBpvDFaS4OV9+K83xcdyhc8DnjzrEOHafPNGgLtbfJHMru cf9/tWSRaJoqSr/8jwkBs3xDVibl+n6RbE+lxAOcLspPoXTRW7Xh7tLU1noIZNZ8 sfbnlS97dO+CxRPy/lbtxnl1qKVSBXnW+tK8eLFkKBEm500cCTbfhr4W4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCky68pW2j2VXNrXKip/cMwof5F1MB8GA1UdIwQY MBaAFBJG8joEh2OqOtCu3lpImrj80mOEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWtieU9nU0hZNm82MEs3ZVdraWF1UHpTWTRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS84NzdlNmMtMzI1YS00N2VhLWFhNTYt MTA5NmJmZDZiZjZkLzEvS1RMcnlsYmFQWlZjMnRjcUtuOXd6Q2hfa1hVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS84NzdlNmMtMzI1YS00N2VhLWFhNTYtMTA5NmJmZDZiZjZk LzEvRWtieU9nU0hZNm82MEs3ZVdraWF1UHpTWTRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgm/MA0G CSqGSIb3DQEBCwUAA4IBAQBia+K0TZM46VIyAh0hpitmeVqtA9DoF3JltTLrkZ0b L658WCVnHC4wVMpE4KUqOTpIFxIe3fHW+F8g+de/qQhDy8mZHmIrjhWOaztkPBIN EM1OfbrwNaAsRBRPuc5/vuWw8abqz3kpcNsAB57bCy7jqpCt64G82A1WlaV8QHaY zbPh8T9Bwgw9uQ0j7CE0p2QcIAnnMqJtnJ2iZSsqaLT5Em3GRblWM737drpfGOzW uMiDOD+ypYvB/hHLhAjRLHcqwQpye+sxFLz9VAOc8lYATqtmNhR2+AOWcsa6bhRP KRuhzWmgzfEYVioF+pxyhyYzyTohWbeICOpls2zmbwU/ -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:10 2026 by rpki-client