This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/KG8loLuhTcIMjieWs1KfwpWofRk.roa File: KG8loLuhTcIMjieWs1KfwpWofRk.roa (raw, json) Hash identifier: RxfX57Z0L5BZOB9gWwKFQnTlLw89l17p5HkheRVermQ= Subject key identifier: 28:6F:25:A0:BB:A1:4D:C2:0C:8E:27:96:B3:52:9F:C2:95:A8:7D:19 Certificate issuer: /CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40 Certificate serial: 019B7C12270115AA1EA9804CCAD13D94F6AE Authority key identifier: 9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/KG8loLuhTcIMjieWs1KfwpWofRk.roa Signing time: Fri 02 Jan 2026 00:18:42 +0000 ROA not before: Fri 02 Jan 2026 00:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210418 IP address blocks: 94.143.227.0/24 maxlen: 24 2a12:a780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:27:01:15:aa:1e:a9:80:4c:ca:d1:3d:94:f6:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40 Validity Not Before: Jan 2 00:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=286f25a0bba14dc20c8e2796b3529fc295a87d19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5e:68:81:22:75:64:98:ae:86:55:05:c8:6f: a9:a1:70:c2:38:ba:46:dd:7e:70:76:b2:58:a4:b8: 89:a8:d5:26:b4:a0:91:99:91:a6:83:35:5b:98:be: af:95:f6:74:8b:d8:91:47:1b:59:0a:65:94:08:80: ad:a4:83:7f:7f:1a:1c:98:88:3e:b7:43:d3:a4:04: ee:e2:4a:da:7a:0e:4c:15:6d:7d:ca:6a:e9:24:fe: 5d:42:04:42:df:79:fe:2e:cd:0c:af:3e:e4:c1:4f: 38:80:14:64:8b:d6:05:f6:5e:35:95:35:04:9b:80: 43:cb:f0:e0:56:a6:51:de:bd:b0:2d:23:93:dc:42: 7a:fe:76:4c:53:72:68:6c:42:c8:42:d1:6a:59:69: d8:4e:9a:c3:01:ec:b6:d1:dc:c6:97:de:79:0f:a0: 60:c4:30:68:a2:61:4b:63:a4:12:7c:d3:0d:f2:c4: 36:52:6b:f1:bc:b3:fb:b8:8b:7f:1b:eb:d2:5d:72: da:ab:b7:50:28:75:ce:be:03:d8:1f:d3:0b:86:f0: 19:88:2a:42:d3:4f:91:ad:fe:ab:46:0a:f5:88:e0: d0:a9:13:62:62:6a:e9:c1:fc:bb:65:01:1d:bb:48: 92:a5:4f:26:57:82:e9:2e:41:b3:4e:bb:96:1c:3c: c4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:6F:25:A0:BB:A1:4D:C2:0C:8E:27:96:B3:52:9F:C2:95:A8:7D:19 X509v3 Authority Key Identifier: keyid:9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/KG8loLuhTcIMjieWs1KfwpWofRk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.143.227.0/24 IPv6: 2a12:a780::/32 Signature Algorithm: sha256WithRSAEncryption e9:24:58:81:0e:b4:12:49:5e:a9:ca:20:cb:15:6b:44:6d:11: e3:3c:8e:c6:7e:20:47:1b:71:72:cc:ae:1c:58:5e:53:e0:8f: ed:3a:c3:2f:58:2a:ef:0b:c9:32:5d:1c:b9:56:68:2b:89:42: 29:64:41:ae:d0:85:2e:f9:7f:5b:5b:82:a9:b1:5d:f9:69:2a: 49:75:43:aa:35:4e:2f:a0:45:3a:24:45:5e:46:28:f5:1b:b6: 9b:26:12:e6:6c:d3:8e:8c:f7:f9:7a:07:b0:ae:4b:df:29:11: 95:5d:1f:d2:7d:f3:e3:a7:eb:1c:31:5a:82:dd:7c:69:01:ce: 77:a5:8b:46:5b:74:f7:04:a1:56:1a:ad:36:d9:52:c7:f9:9c: bb:b3:08:00:ee:b2:cb:2f:de:9d:f2:cf:82:1d:3e:98:4c:31: a0:78:88:f0:7f:39:c3:02:02:58:c6:03:4d:6a:a6:ed:6f:35: 37:74:19:28:34:cb:d3:ee:7e:3a:25:de:f6:07:1b:d4:6b:d2: 17:ab:31:29:4f:ae:b7:03:42:5c:a3:6f:0d:10:2d:b3:c5:1e: 6b:0e:5b:f1:39:37:75:42:df:fa:e9:70:ce:d5:ce:77:6e:e6: 43:a6:ba:08:39:a5:2a:dc:e8:ad:fa:67:ce:4b:3d:d7:96:ba: d0:3f:9b:fe -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8EicBFaoeqYBMytE9lPauMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmYjZkNGQ5ODdkMDA0YTAwZmEyOTdlNjljMjY4ZWI3NWYz ZDlhNDAwHhcNMjYwMTAyMDAxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyODZmMjVhMGJiYTE0ZGMyMGM4ZTI3OTZiMzUyOWZjMjk1YTg3ZDE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt15ogSJ1ZJiuhlUFyG+poXDCOLpG 3X5wdrJYpLiJqNUmtKCRmZGmgzVbmL6vlfZ0i9iRRxtZCmWUCICtpIN/fxocmIg+ t0PTpATu4kraeg5MFW19ymrpJP5dQgRC33n+Ls0Mrz7kwU84gBRki9YF9l41lTUE m4BDy/DgVqZR3r2wLSOT3EJ6/nZMU3JobELIQtFqWWnYTprDAey20dzGl955D6Bg xDBoomFLY6QSfNMN8sQ2UmvxvLP7uIt/G+vSXXLaq7dQKHXOvgPYH9MLhvAZiCpC 00+Rrf6rRgr1iODQqRNiYmrpwfy7ZQEdu0iSpU8mV4LpLkGzTruWHDzEvwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFChvJaC7oU3CDI4nlrNSn8KVqH0ZMB8GA1UdIwQY MBaAFJ+21NmH0ASgD6KX5pwmjrdfPZpAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbjdiVTJZZlFCS0FQb3BmbW5DYU90MTg5bWtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8wMjQwMGYtNzgwMi00NGU3LTg1Mjct OGIyOTFlMjZkMWQ5LzEvS0c4bG9MdWhUY0lNamllV3MxS2Z3cFdvZlJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC8wMjQwMGYtNzgwMi00NGU3LTg1MjctOGIyOTFlMjZkMWQ5 LzEvbjdiVTJZZlFCS0FQb3BmbW5DYU90MTg5bWtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAXo/jMA0E AgACMAcDBQAqEqeAMA0GCSqGSIb3DQEBCwUAA4IBAQDpJFiBDrQSSV6pyiDLFWtE bRHjPI7GfiBHG3FyzK4cWF5T4I/tOsMvWCrvC8kyXRy5VmgriUIpZEGu0IUu+X9b W4KpsV35aSpJdUOqNU4voEU6JEVeRij1G7abJhLmbNOOjPf5egewrkvfKRGVXR/S ffPjp+scMVqC3XxpAc53pYtGW3T3BKFWGq022VLH+Zy7swgA7rLLL96d8s+CHT6Y TDGgeIjwfznDAgJYxgNNaqbtbzU3dBkoNMvT7n46Jd72BxvUa9IXqzEpT663A0Jc o28NEC2zxR5rDlvxOTd1Qt/66XDO1c53buZDproIOaUq3Oit+mfOSz3XlrrQP5v+ -----END CERTIFICATE-----Generated at Mon Feb 9 23:46:48 2026 by rpki-client