This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/6c06c9-3f46-4658-ae89-9bf226402fd4/1/kW0WK2IFHNGeUqtoeqP2787mYnk.roa File: kW0WK2IFHNGeUqtoeqP2787mYnk.roa (raw, json) Hash identifier: OoUVW67pQ7OzkcQcCKnAORtBV+T6+mdVc97qhb5jPng= Subject key identifier: 91:6D:16:2B:62:05:1C:D1:9E:52:AB:68:7A:A3:F6:EF:CE:E6:62:79 Certificate issuer: /CN=a91fe2672c8f1c12b27ada0fccbaa7c212cbd71c Certificate serial: 019B7B365DD558C7C93A66839426DB3FF8BE Authority key identifier: A9:1F:E2:67:2C:8F:1C:12:B2:7A:DA:0F:CC:BA:A7:C2:12:CB:D7:1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qR_iZyyPHBKyetoPzLqnwhLL1xw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/6c06c9-3f46-4658-ae89-9bf226402fd4/1/kW0WK2IFHNGeUqtoeqP2787mYnk.roa Signing time: Thu 01 Jan 2026 20:18:39 +0000 ROA not before: Thu 01 Jan 2026 20:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50133 IP address blocks: 109.71.128.0/21 maxlen: 24 185.182.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/6c06c9-3f46-4658-ae89-9bf226402fd4/1/qR_iZyyPHBKyetoPzLqnwhLL1xw.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/6c06c9-3f46-4658-ae89-9bf226402fd4/1/qR_iZyyPHBKyetoPzLqnwhLL1xw.mft rsync://rpki.ripe.net/repository/DEFAULT/qR_iZyyPHBKyetoPzLqnwhLL1xw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:5d:d5:58:c7:c9:3a:66:83:94:26:db:3f:f8:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a91fe2672c8f1c12b27ada0fccbaa7c212cbd71c Validity Not Before: Jan 1 20:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=916d162b62051cd19e52ab687aa3f6efcee66279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:29:50:d9:d2:78:17:3a:8e:d7:26:7a:40:2a: ad:f6:4d:57:35:09:04:75:37:3e:77:21:0f:26:45: 83:a7:22:b9:52:5b:f6:17:46:55:1f:12:f8:83:ec: e0:2a:06:36:f5:22:15:5b:14:75:3d:66:7f:a5:36: 11:d7:f3:db:c5:f7:7c:75:50:f0:0c:c7:d7:f8:dd: 5d:b9:8c:5a:9f:c5:57:db:7f:ff:84:ec:4f:ee:45: 79:6b:f1:aa:c4:33:d0:d4:5a:ab:02:39:4a:ba:7f: 15:29:20:06:cd:b6:95:e4:ec:60:f6:c6:91:9c:0f: 59:df:7e:b4:bf:ce:c8:68:b6:f6:ea:21:4f:57:b5: a6:f8:bf:a4:f2:9b:72:18:80:4e:01:cb:66:ea:94: 44:29:9b:7c:91:5d:ef:81:3b:02:f1:fb:52:71:10: d7:e4:24:4a:1c:12:8a:bc:27:a6:22:c0:19:82:c1: c3:65:76:f2:bd:d4:58:1d:8a:07:21:db:8a:aa:07: 7b:1b:6d:33:79:87:59:7c:31:a3:74:9f:30:4a:2f: 04:28:7a:ad:79:a8:b4:5b:a7:83:eb:94:d3:bc:d5: 11:25:1b:b4:d0:81:b9:91:0a:48:c8:ea:a8:f1:fa: c8:a7:bb:84:3d:89:b6:f0:7f:e1:1b:4a:52:7a:a3: 89:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6D:16:2B:62:05:1C:D1:9E:52:AB:68:7A:A3:F6:EF:CE:E6:62:79 X509v3 Authority Key Identifier: keyid:A9:1F:E2:67:2C:8F:1C:12:B2:7A:DA:0F:CC:BA:A7:C2:12:CB:D7:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qR_iZyyPHBKyetoPzLqnwhLL1xw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6c06c9-3f46-4658-ae89-9bf226402fd4/1/kW0WK2IFHNGeUqtoeqP2787mYnk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6c06c9-3f46-4658-ae89-9bf226402fd4/1/qR_iZyyPHBKyetoPzLqnwhLL1xw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.71.128.0/21 185.182.40.0/22 Signature Algorithm: sha256WithRSAEncryption 20:4c:17:35:fe:20:12:a7:da:89:ae:6f:60:f7:76:0a:32:32: e8:89:e0:3a:4a:88:41:f4:2a:0e:db:5a:8e:2d:cc:40:04:4b: 8c:ce:50:4e:6d:ad:26:74:66:43:f2:eb:39:4c:36:28:de:b5: f9:2f:21:1d:99:ac:ef:9c:a3:87:aa:66:7a:9d:ba:cb:40:d2: 16:da:70:50:59:f1:29:88:8d:88:3a:96:b6:6b:e5:02:dd:7b: 68:7b:5e:76:47:f1:5f:fa:1a:43:69:a9:1d:46:8c:e2:89:18: fe:03:50:ed:57:3d:ef:81:f8:5f:84:35:ad:86:f7:4b:66:82: 5a:7f:e1:f6:dc:99:2b:82:e4:5f:fb:31:90:be:47:49:98:06: 72:6c:9e:20:b3:2b:57:0d:f4:57:15:25:24:1c:4e:72:3f:55: b1:36:5c:98:51:e2:9c:18:94:c0:82:36:18:60:07:5d:af:ef: b3:53:7e:c4:c2:48:3d:76:a2:a4:e2:30:8b:04:ce:70:87:ee: 82:45:44:33:92:9a:1e:c2:d8:2b:c0:40:11:4d:fa:5f:e8:b5: ae:86:99:23:65:cf:c7:dd:4f:ac:80:b0:95:dd:46:e6:cb:f5: 51:41:ea:94:5c:21:66:87:5c:52:65:c6:ee:7c:30:d9:f8:a7: 26:2a:f4:d7 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7Nl3VWMfJOmaDlCbbP/i+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5MWZlMjY3MmM4ZjFjMTJiMjdhZGEwZmNjYmFhN2MyMTJj YmQ3MWMwHhcNMjYwMTAxMjAxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTZkMTYyYjYyMDUxY2QxOWU1MmFiNjg3YWEzZjZlZmNlZTY2Mjc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwClQ2dJ4FzqO1yZ6QCqt9k1XNQkE dTc+dyEPJkWDpyK5Ulv2F0ZVHxL4g+zgKgY29SIVWxR1PWZ/pTYR1/Pbxfd8dVDw DMfX+N1duYxan8VX23//hOxP7kV5a/GqxDPQ1FqrAjlKun8VKSAGzbaV5Oxg9saR nA9Z3360v87IaLb26iFPV7Wm+L+k8ptyGIBOActm6pREKZt8kV3vgTsC8ftScRDX 5CRKHBKKvCemIsAZgsHDZXbyvdRYHYoHIduKqgd7G20zeYdZfDGjdJ8wSi8EKHqt eai0W6eD65TTvNURJRu00IG5kQpIyOqo8frIp7uEPYm28H/hG0pSeqOJJQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJFtFitiBRzRnlKraHqj9u/O5mJ5MB8GA1UdIwQY MBaAFKkf4mcsjxwSsnraD8y6p8ISy9ccMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVJfaVp5eVBIQkt5ZXRvUHpMcW53aExMMXh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS82YzA2YzktM2Y0Ni00NjU4LWFlODkt OWJmMjI2NDAyZmQ0LzEva1cwV0sySUZITkdlVXF0b2VxUDI3ODdtWW5rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS82YzA2YzktM2Y0Ni00NjU4LWFlODktOWJmMjI2NDAyZmQ0 LzEvcVJfaVp5eVBIQkt5ZXRvUHpMcW53aExMMXh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDbUeAAwQC ubYoMA0GCSqGSIb3DQEBCwUAA4IBAQAgTBc1/iASp9qJrm9g93YKMjLoieA6SohB 9CoO21qOLcxABEuMzlBOba0mdGZD8us5TDYo3rX5LyEdmazvnKOHqmZ6nbrLQNIW 2nBQWfEpiI2IOpa2a+UC3Xtoe152R/Ff+hpDaakdRoziiRj+A1DtVz3vgfhfhDWt hvdLZoJaf+H23JkrguRf+zGQvkdJmAZybJ4gsytXDfRXFSUkHE5yP1WxNlyYUeKc GJTAgjYYYAddr++zU37Ewkg9dqKk4jCLBM5wh+6CRUQzkpoewtgrwEARTfpf6LWu hpkjZc/H3U+sgLCV3Ubmy/VRQeqUXCFmh1xSZcbufDDZ+KcmKvTX -----END CERTIFICATE-----Generated at Tue Feb 10 00:03:37 2026 by rpki-client