This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/96d14f-18c2-43a8-bc58-647289ad5a22/1/KdbDrACu7SHeiWA-TJ0Gd5nmSmM.roa File: KdbDrACu7SHeiWA-TJ0Gd5nmSmM.roa (raw, json) Hash identifier: kgfS9/IVC7NXMOo6Zbhxeb9stsHC0de13w/KTw9Txuc= Subject key identifier: 29:D6:C3:AC:00:AE:ED:21:DE:89:60:3E:4C:9D:06:77:99:E6:4A:63 Certificate issuer: /CN=722f0b33650b7d6498b9f58aac5a297e92614822 Certificate serial: 019B7758B3692A90E3BA10E75BF4045E7E99 Authority key identifier: 72:2F:0B:33:65:0B:7D:64:98:B9:F5:8A:AC:5A:29:7E:92:61:48:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ci8LM2ULfWSYufWKrFopfpJhSCI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/96d14f-18c2-43a8-bc58-647289ad5a22/1/KdbDrACu7SHeiWA-TJ0Gd5nmSmM.roa Signing time: Thu 01 Jan 2026 02:17:40 +0000 ROA not before: Thu 01 Jan 2026 02:17:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56438 IP address blocks: 185.216.9.0/24 maxlen: 24 2a00:d700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/96d14f-18c2-43a8-bc58-647289ad5a22/1/ci8LM2ULfWSYufWKrFopfpJhSCI.crl rsync://rpki.ripe.net/repository/DEFAULT/26/96d14f-18c2-43a8-bc58-647289ad5a22/1/ci8LM2ULfWSYufWKrFopfpJhSCI.mft rsync://rpki.ripe.net/repository/DEFAULT/ci8LM2ULfWSYufWKrFopfpJhSCI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:b3:69:2a:90:e3:ba:10:e7:5b:f4:04:5e:7e:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=722f0b33650b7d6498b9f58aac5a297e92614822 Validity Not Before: Jan 1 02:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29d6c3ac00aeed21de89603e4c9d067799e64a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2c:42:0e:cb:72:cb:82:0e:a3:94:bf:1f:6e: bd:ed:76:af:50:35:70:f7:62:dc:b1:46:cb:40:f4: bb:a1:51:df:0a:54:9b:bb:09:7e:93:43:1e:4e:62: a3:b3:26:89:9d:9d:82:d0:ce:cc:5e:0d:1a:28:bd: 0c:57:df:02:fa:6a:ca:35:a2:31:9a:7c:74:01:a1: ca:d3:19:2b:84:80:33:bb:34:15:7e:22:8a:a9:ff: 77:27:8a:a4:16:57:42:c7:59:df:8b:4d:2f:36:19: 7f:14:76:bb:7a:61:bd:e2:ea:4d:86:2a:0f:0c:a0: b0:b9:b3:b6:1f:52:45:23:dd:5c:85:ec:04:c9:3f: 19:02:d0:de:5b:6d:dd:bd:8f:42:42:8e:2b:3f:a0: fb:fd:7e:f6:c9:da:c1:d0:a3:7b:52:47:de:52:42: d4:66:2f:ea:68:35:1e:f7:29:ad:d3:e4:95:91:74: 8d:0f:de:26:c2:1a:c5:3d:1b:c2:3d:1a:bf:62:07: 0f:d8:96:a6:e8:fb:4b:26:26:9d:d0:b5:3b:e1:0f: 4c:59:ce:5a:56:ab:f0:1e:8d:fd:91:a8:63:49:a4: 92:00:4e:42:ff:c4:f9:ad:1f:1f:7d:89:61:b4:84: c7:f2:b3:29:00:6c:99:41:c6:1a:86:79:0d:d4:7a: 2d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D6:C3:AC:00:AE:ED:21:DE:89:60:3E:4C:9D:06:77:99:E6:4A:63 X509v3 Authority Key Identifier: keyid:72:2F:0B:33:65:0B:7D:64:98:B9:F5:8A:AC:5A:29:7E:92:61:48:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ci8LM2ULfWSYufWKrFopfpJhSCI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/96d14f-18c2-43a8-bc58-647289ad5a22/1/KdbDrACu7SHeiWA-TJ0Gd5nmSmM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/96d14f-18c2-43a8-bc58-647289ad5a22/1/ci8LM2ULfWSYufWKrFopfpJhSCI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.216.9.0/24 IPv6: 2a00:d700::/32 Signature Algorithm: sha256WithRSAEncryption 18:fa:59:68:17:52:11:57:05:c9:78:7d:5a:33:38:18:79:d9: 72:91:f3:88:8e:11:75:91:b9:12:9b:7f:32:6d:b9:e9:26:67: 9a:88:da:78:f5:97:fd:69:fe:00:d6:39:9e:6c:c4:0d:63:8f: 3b:6b:cf:d3:ae:b3:2d:f1:f4:9e:0a:a1:cb:53:12:56:c3:8e: 90:78:c8:53:8d:48:8e:fd:95:5d:86:c4:cd:8b:82:38:96:73: 47:cb:22:23:ed:66:8d:cb:19:ca:73:11:07:e2:bf:4c:52:38: 4d:4f:3e:f8:6b:19:fe:6c:4b:41:94:f7:27:e8:f6:40:4a:67: c7:b8:73:5b:da:9e:3d:da:5d:3a:85:ae:18:9a:87:06:a6:3c: d4:72:3c:4c:80:32:f7:6a:31:f2:80:31:1a:be:b6:52:cf:16: 52:a7:ce:97:91:b2:43:cb:47:e2:72:2c:a2:b0:2a:aa:2e:30: c6:bf:01:a7:dd:6f:4a:85:1f:c4:12:4d:27:31:58:53:28:db: 78:4d:78:d2:bd:af:84:ab:8a:70:73:f4:47:cc:23:5a:28:97: 02:84:33:e3:80:6d:43:8a:37:bc:09:ba:4c:2d:74:bd:35:2b: 50:5b:3a:24:59:c0:49:5c:3b:ca:90:84:77:3c:fb:72:d0:dc: 04:3f:18:c2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WLNpKpDjuhDnW/QEXn6ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyMmYwYjMzNjUwYjdkNjQ5OGI5ZjU4YWFjNWEyOTdlOTI2 MTQ4MjIwHhcNMjYwMTAxMDIxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOWQ2YzNhYzAwYWVlZDIxZGU4OTYwM2U0YzlkMDY3Nzk5ZTY0YTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSxCDstyy4IOo5S/H2697XavUDVw 92LcsUbLQPS7oVHfClSbuwl+k0MeTmKjsyaJnZ2C0M7MXg0aKL0MV98C+mrKNaIx mnx0AaHK0xkrhIAzuzQVfiKKqf93J4qkFldCx1nfi00vNhl/FHa7emG94upNhioP DKCwubO2H1JFI91chewEyT8ZAtDeW23dvY9CQo4rP6D7/X72ydrB0KN7UkfeUkLU Zi/qaDUe9ymt0+SVkXSND94mwhrFPRvCPRq/YgcP2Jam6PtLJiad0LU74Q9MWc5a VqvwHo39kahjSaSSAE5C/8T5rR8ffYlhtITH8rMpAGyZQcYahnkN1HotLwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCnWw6wAru0h3olgPkydBneZ5kpjMB8GA1UdIwQY MBaAFHIvCzNlC31kmLn1iqxaKX6SYUgiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2k4TE0yVUxmV1NZdWZXS3JGb3BmcEpoU0NJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi85NmQxNGYtMThjMi00M2E4LWJjNTgt NjQ3Mjg5YWQ1YTIyLzEvS2RiRHJBQ3U3U0hlaVdBLVRKMEdkNW5tU21NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi85NmQxNGYtMThjMi00M2E4LWJjNTgtNjQ3Mjg5YWQ1YTIy LzEvY2k4TE0yVUxmV1NZdWZXS3JGb3BmcEpoU0NJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAudgJMA0E AgACMAcDBQAqANcAMA0GCSqGSIb3DQEBCwUAA4IBAQAY+lloF1IRVwXJeH1aMzgY edlykfOIjhF1kbkSm38ybbnpJmeaiNp49Zf9af4A1jmebMQNY487a8/TrrMt8fSe CqHLUxJWw46QeMhTjUiO/ZVdhsTNi4I4lnNHyyIj7WaNyxnKcxEH4r9MUjhNTz74 axn+bEtBlPcn6PZASmfHuHNb2p492l06ha4YmocGpjzUcjxMgDL3ajHygDEavrZS zxZSp86XkbJDy0ficiyisCqqLjDGvwGn3W9KhR/EEk0nMVhTKNt4TXjSva+Eq4pw c/RHzCNaKJcChDPjgG1Dije8CbpMLXS9NStQWzokWcBJXDvKkIR3PPty0NwEPxjC -----END CERTIFICATE-----Generated at Tue Feb 10 07:30:59 2026 by rpki-client