This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/0cc6b5-5477-490a-a295-15b79b02943e/1/k8z_313Hx8hvd4ufZZCaGYZBw0Y.roa File: k8z_313Hx8hvd4ufZZCaGYZBw0Y.roa (raw, json) Hash identifier: k20SFgFV65J9lEt18uaFg+XOBiT1Sd/tRFmAU9F/loo= Subject key identifier: 93:CC:FF:DF:5D:C7:C7:C8:6F:77:8B:9F:65:90:9A:19:86:41:C3:46 Certificate issuer: /CN=27280cc534516d1c1d9ea024eaafbd01fdc68c97 Certificate serial: 019B7DCAECE21D9C0741E1904A556338E57A Authority key identifier: 27:28:0C:C5:34:51:6D:1C:1D:9E:A0:24:EA:AF:BD:01:FD:C6:8C:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JygMxTRRbRwdnqAk6q-9Af3GjJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/0cc6b5-5477-490a-a295-15b79b02943e/1/k8z_313Hx8hvd4ufZZCaGYZBw0Y.roa Signing time: Fri 02 Jan 2026 08:20:09 +0000 ROA not before: Fri 02 Jan 2026 08:20:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39238 IP address blocks: 79.143.64.0/22 maxlen: 32 79.143.64.0/24 maxlen: 24 79.143.65.0/24 maxlen: 24 79.143.66.0/24 maxlen: 24 79.143.67.0/24 maxlen: 24 79.143.76.0/22 maxlen: 32 79.143.77.0/24 maxlen: 24 79.143.78.0/24 maxlen: 24 79.143.79.0/24 maxlen: 24 185.38.160.0/22 maxlen: 32 185.38.160.0/24 maxlen: 24 185.38.161.0/24 maxlen: 24 185.38.162.0/24 maxlen: 24 185.38.163.0/24 maxlen: 24 194.36.148.0/22 maxlen: 32 194.36.149.0/24 maxlen: 24 194.36.150.0/24 maxlen: 24 194.36.151.0/24 maxlen: 24 217.29.50.0/23 maxlen: 32 217.29.51.0/24 maxlen: 24 217.29.52.0/22 maxlen: 32 217.29.52.0/24 maxlen: 24 217.29.53.0/24 maxlen: 24 217.29.54.0/24 maxlen: 24 217.29.55.0/24 maxlen: 24 217.29.56.0/21 maxlen: 32 217.29.56.0/24 maxlen: 24 217.29.57.0/24 maxlen: 24 217.29.58.0/24 maxlen: 24 217.29.59.0/24 maxlen: 24 217.29.60.0/24 maxlen: 24 217.29.61.0/24 maxlen: 24 217.29.62.0/24 maxlen: 24 217.29.63.0/24 maxlen: 24 2a0c:f540::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/0cc6b5-5477-490a-a295-15b79b02943e/1/JygMxTRRbRwdnqAk6q-9Af3GjJc.crl rsync://rpki.ripe.net/repository/DEFAULT/10/0cc6b5-5477-490a-a295-15b79b02943e/1/JygMxTRRbRwdnqAk6q-9Af3GjJc.mft rsync://rpki.ripe.net/repository/DEFAULT/JygMxTRRbRwdnqAk6q-9Af3GjJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 17:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:ec:e2:1d:9c:07:41:e1:90:4a:55:63:38:e5:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27280cc534516d1c1d9ea024eaafbd01fdc68c97 Validity Not Before: Jan 2 08:20:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=93ccffdf5dc7c7c86f778b9f65909a198641c346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cc:cd:26:bb:dc:d4:9f:3b:12:60:ce:d6:3f: 4a:2e:a9:d6:ab:ba:0b:a7:82:de:77:95:f6:cc:b5: 6b:68:6d:99:88:06:6e:b4:0b:fb:17:ed:a3:d5:34: 87:38:6c:30:d5:c2:c8:d3:32:80:eb:4d:34:17:1f: 83:d7:af:7e:e6:7b:96:d5:4b:d2:1e:2f:51:c6:e4: 85:61:d7:ef:5b:1f:62:65:b0:2b:ee:f7:c3:4e:1e: e6:ca:9f:31:60:83:d0:c6:1a:6c:28:51:1d:9d:0a: 39:ef:82:6d:69:1e:d6:7e:60:b9:b5:16:79:a6:88: 5d:8a:18:1a:5e:14:54:24:be:e5:88:95:d3:d4:7a: df:df:06:77:9b:06:12:fe:d6:1a:f4:09:43:5f:de: 8c:98:93:af:06:6b:4a:e7:be:5b:d3:f3:dc:d8:97: 67:17:b5:49:e2:de:28:6c:1e:a0:ba:69:9a:57:1c: 03:aa:7f:7b:50:90:49:c6:f9:b3:76:c3:4f:f9:00: 69:6d:75:e5:00:2f:3e:7e:ec:79:71:46:b5:b6:65: 9f:52:55:ce:b9:d5:c8:b1:a0:c8:f3:b9:ab:44:98: b1:7c:29:f2:22:6f:db:99:3f:7d:6c:e4:ce:2a:f8: 5b:57:90:ff:54:20:78:43:5f:2d:5c:e1:6f:83:5c: 67:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:CC:FF:DF:5D:C7:C7:C8:6F:77:8B:9F:65:90:9A:19:86:41:C3:46 X509v3 Authority Key Identifier: keyid:27:28:0C:C5:34:51:6D:1C:1D:9E:A0:24:EA:AF:BD:01:FD:C6:8C:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JygMxTRRbRwdnqAk6q-9Af3GjJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0cc6b5-5477-490a-a295-15b79b02943e/1/k8z_313Hx8hvd4ufZZCaGYZBw0Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0cc6b5-5477-490a-a295-15b79b02943e/1/JygMxTRRbRwdnqAk6q-9Af3GjJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.143.64.0/22 79.143.76.0/22 185.38.160.0/22 194.36.148.0/22 217.29.50.0-217.29.63.255 IPv6: 2a0c:f540::/29 Signature Algorithm: sha256WithRSAEncryption 7a:4b:c3:66:33:d4:d5:e3:a1:0f:28:eb:84:90:ea:09:4c:12: cc:eb:de:58:73:14:00:44:9a:2c:eb:36:21:9f:2d:9f:f4:b1: da:9f:ba:38:16:9f:2b:5d:e8:55:47:89:36:4a:bc:7f:3f:b4: 65:13:6f:79:50:dd:42:da:ac:4f:96:e9:02:60:c7:b2:58:3d: 61:fa:03:e5:fa:a3:8b:48:97:b4:ab:c1:57:c7:9a:7c:bc:01: d8:f5:db:8b:7d:52:d5:95:cf:2b:f7:62:6d:f2:52:e4:30:e0: 38:46:c5:00:70:6a:8e:ab:b9:60:4b:dc:b0:be:03:2f:f6:62: 8f:9a:f0:0a:ff:30:ae:3b:05:40:1b:61:1e:f7:36:13:6c:93: 95:91:8f:8d:14:cc:53:84:46:64:9f:8e:e4:0b:84:d6:76:42: 2d:5e:03:7b:f2:d3:ad:11:e2:d0:17:1c:c2:88:d6:27:7c:c0: 80:2c:79:87:65:6e:4b:38:69:4d:e2:f9:3e:7d:b7:7c:75:5e: 6e:b7:94:09:1e:05:ff:b0:cd:53:e0:95:e2:c1:48:71:17:ee: 89:32:b6:81:8a:a6:e6:8e:ad:79:af:2f:d2:80:29:58:df:c7: 4b:c5:a5:15:e7:22:a3:82:ae:ea:41:6f:a6:3f:84:19:b9:66: 54:3d:4b:d1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgISAZt9yuziHZwHQeGQSlVjOOV6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3MjgwY2M1MzQ1MTZkMWMxZDllYTAyNGVhYWZiZDAxZmRj NjhjOTcwHhcNMjYwMTAyMDgyMDA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5M2NjZmZkZjVkYzdjN2M4NmY3NzhiOWY2NTkwOWExOTg2NDFjMzQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuszNJrvc1J87EmDO1j9KLqnWq7oL p4Led5X2zLVraG2ZiAZutAv7F+2j1TSHOGww1cLI0zKA6000Fx+D169+5nuW1UvS Hi9RxuSFYdfvWx9iZbAr7vfDTh7myp8xYIPQxhpsKFEdnQo574JtaR7WfmC5tRZ5 pohdihgaXhRUJL7liJXT1Hrf3wZ3mwYS/tYa9AlDX96MmJOvBmtK575b0/Pc2Jdn F7VJ4t4obB6gummaVxwDqn97UJBJxvmzdsNP+QBpbXXlAC8+fux5cUa1tmWfUlXO udXIsaDI87mrRJixfCnyIm/bmT99bOTOKvhbV5D/VCB4Q18tXOFvg1xnvQIDAQAB o4ICODCCAjQwHQYDVR0OBBYEFJPM/99dx8fIb3eLn2WQmhmGQcNGMB8GA1UdIwQY MBaAFCcoDMU0UW0cHZ6gJOqvvQH9xoyXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSnlnTXhUUlJiUndkbnFBazZxLTlBZjNHakpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8wY2M2YjUtNTQ3Ny00OTBhLWEyOTUt MTViNzliMDI5NDNlLzEvazh6XzMxM0h4OGh2ZDR1ZlpaQ2FHWVpCdzBZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8wY2M2YjUtNTQ3Ny00OTBhLWEyOTUtMTViNzliMDI5NDNl LzEvSnlnTXhUUlJiUndkbnFBazZxLTlBZjNHakpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAsBAIAATAmAwQCT49AAwQC T49MAwQCuSagAwQCwiSUMAwDBAHZHTIDBAbZHQAwDQQCAAIwBwMFAyoM9UAwDQYJ KoZIhvcNAQELBQADggEBAHpLw2Yz1NXjoQ8o64SQ6glMEszr3lhzFABEmizrNiGf LZ/0sdqfujgWnytd6FVHiTZKvH8/tGUTb3lQ3ULarE+W6QJgx7JYPWH6A+X6o4tI l7SrwVfHmny8Adj124t9UtWVzyv3Ym3yUuQw4DhGxQBwao6ruWBL3LC+Ay/2Yo+a 8Ar/MK47BUAbYR73NhNsk5WRj40UzFOERmSfjuQLhNZ2Qi1eA3vy060R4tAXHMKI 1id8wIAseYdlbks4aU3i+T59t3x1Xm63lAkeBf+wzVPgleLBSHEX7okytoGKpuaO rXmvL9KAKVjfx0vFpRXnIqOCrupBb6Y/hBm5ZlQ9S9E= -----END CERTIFICATE-----Generated at Tue Jan 27 02:09:31 2026 by rpki-client