This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/kRm---guYcInSUKq-QookHvNTuM.roa File: kRm---guYcInSUKq-QookHvNTuM.roa (raw, json) Hash identifier: iGZFzrsQlmqEd4hUxjMucE/uvpD/1KA4uLxkKOBPLhA= Subject key identifier: 91:19:BE:FB:E8:2E:61:C2:27:49:42:AA:F9:0A:28:90:7B:CD:4E:E3 Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9 Certificate serial: 019B7C809DC1B7BC5D25CC347E12B4650AF1 Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/kRm---guYcInSUKq-QookHvNTuM.roa Signing time: Fri 02 Jan 2026 02:19:22 +0000 ROA not before: Fri 02 Jan 2026 02:19:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57136 IP address blocks: 89.33.20.0/24 maxlen: 24 89.33.21.0/24 maxlen: 24 89.33.22.0/24 maxlen: 24 89.33.23.0/24 maxlen: 24 89.33.120.0/24 maxlen: 24 89.33.121.0/24 maxlen: 24 89.33.122.0/24 maxlen: 24 89.33.123.0/24 maxlen: 24 89.33.124.0/24 maxlen: 24 89.33.125.0/24 maxlen: 24 89.33.126.0/24 maxlen: 24 89.33.127.0/24 maxlen: 24 2a05:b680:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.mft rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 04:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:9d:c1:b7:bc:5d:25:cc:34:7e:12:b4:65:0a:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9 Validity Not Before: Jan 2 02:19:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9119befbe82e61c2274942aaf90a28907bcd4ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:01:5a:46:70:ee:c0:d5:63:fe:06:94:bd:8e: f1:c8:9d:f2:3b:89:21:d4:8e:c1:d4:af:8a:a2:f4: 9c:7d:3c:84:0a:3c:a4:86:43:60:c5:ea:cb:f4:72: d7:6b:f0:bc:37:af:ad:03:9d:fd:23:40:2b:a5:2c: d2:e5:ec:d7:a5:b7:46:99:f2:71:04:4d:a1:c3:79: e0:37:c1:c0:47:7e:dc:06:84:41:f7:95:7e:05:b4: 41:be:bf:17:7e:56:ec:8b:c1:68:c3:2d:88:f3:8c: 5c:48:85:a1:fd:41:80:7f:44:b9:c3:2b:9b:51:86: 18:04:83:cb:c8:fc:8b:0f:d5:a0:85:34:3f:32:d0: 9c:61:a9:ee:f3:af:15:5e:b1:0e:7e:1c:37:b6:5d: d8:4c:74:a6:4c:e6:a0:bf:bc:4a:a4:31:ce:31:cb: 79:fa:3e:f6:f8:5b:c4:a6:81:ee:42:db:a1:31:a2: 0c:d1:0a:2a:5f:c1:07:0b:ac:84:1a:ef:1c:d7:44: 11:4c:13:7c:4b:a7:e5:40:f5:93:fe:b9:29:0b:d6: d7:e2:d3:84:04:24:e9:e4:fd:1c:2c:57:24:5e:c8: cc:03:f6:a5:88:b4:43:86:c7:dd:bf:0a:15:8b:5f: 47:e6:be:09:77:3d:f3:1d:40:39:8f:d3:23:76:35: f4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:19:BE:FB:E8:2E:61:C2:27:49:42:AA:F9:0A:28:90:7B:CD:4E:E3 X509v3 Authority Key Identifier: keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/kRm---guYcInSUKq-QookHvNTuM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.33.20.0/22 89.33.120.0/21 IPv6: 2a05:b680:9::/48 Signature Algorithm: sha256WithRSAEncryption 32:88:14:9f:8d:a9:42:de:75:b3:18:bd:fd:aa:63:ba:bf:04: ab:eb:04:a8:12:a8:52:4d:7e:e0:3f:86:d1:8f:0a:32:6f:8b: ea:93:6f:86:46:ae:a3:b7:dd:95:e7:21:0c:a0:16:ab:1e:2a: 2d:a0:55:fe:76:94:80:88:0d:d8:6d:21:6a:5d:48:0b:a7:a4: f0:3b:97:80:0b:a7:a2:92:cf:60:d1:74:75:30:8d:bb:d1:83: 0e:2e:10:4e:40:b1:6b:da:2f:61:06:ee:43:0b:6f:8d:20:42: 45:f4:32:1e:76:a1:1e:75:59:a0:67:8a:8e:8d:a9:4b:82:e7: 1a:e1:df:d5:e7:af:ea:a8:c1:7e:a2:c4:76:34:6e:95:e7:88: ac:ed:d8:9b:26:31:33:e3:3d:db:2c:6f:2d:2c:04:10:e4:2f: 12:bb:7d:fd:9b:14:df:16:08:f5:e8:a1:b4:27:bf:95:b3:f3: a1:dc:34:9c:30:9e:ec:ad:b1:87:3c:a1:8c:58:10:bb:36:5b: ad:46:bd:80:eb:ce:72:4f:3c:e2:22:5b:d1:1e:d6:55:fc:b7: 8d:61:e9:99:cf:00:7d:a5:9f:0b:46:59:c6:28:02:ad:30:17: ea:2a:e5:57:23:c9:30:0b:07:cc:0a:fb:e6:46:1b:41:07:fc: 77:70:aa:74 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt8gJ3Bt7xdJcw0fhK0ZQrxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlNTg5NTJkMzkzOTM1ZjBkM2JjZTgxNGZkOTE3OGQwNDY5 M2FlYjkwHhcNMjYwMTAyMDIxOTIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTE5YmVmYmU4MmU2MWMyMjc0OTQyYWFmOTBhMjg5MDdiY2Q0ZWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkwFaRnDuwNVj/gaUvY7xyJ3yO4kh 1I7B1K+KovScfTyECjykhkNgxerL9HLXa/C8N6+tA539I0ArpSzS5ezXpbdGmfJx BE2hw3ngN8HAR37cBoRB95V+BbRBvr8Xflbsi8Fowy2I84xcSIWh/UGAf0S5wyub UYYYBIPLyPyLD9WghTQ/MtCcYanu868VXrEOfhw3tl3YTHSmTOagv7xKpDHOMct5 +j72+FvEpoHuQtuhMaIM0QoqX8EHC6yEGu8c10QRTBN8S6flQPWT/rkpC9bX4tOE BCTp5P0cLFckXsjMA/aliLRDhsfdvwoVi19H5r4Jdz3zHUA5j9MjdjX0dQIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFJEZvvvoLmHCJ0lCqvkKKJB7zU7jMB8GA1UdIwQY MBaAFP5YlS05OTXw07zoFP2ReNBGk665MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUt NWQ0OGI2NWNlNTczLzEva1JtLS0tZ3VZY0luU1VLcS1Rb29rSHZOVHVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUtNWQ0OGI2NWNlNTcz LzEvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQCWSEUAwQD WSF4MA8EAgACMAkDBwAqBbaAAAkwDQYJKoZIhvcNAQELBQADggEBADKIFJ+NqULe dbMYvf2qY7q/BKvrBKgSqFJNfuA/htGPCjJvi+qTb4ZGrqO33ZXnIQygFqseKi2g Vf52lICIDdhtIWpdSAunpPA7l4ALp6KSz2DRdHUwjbvRgw4uEE5AsWvaL2EG7kML b40gQkX0Mh52oR51WaBnio6NqUuC5xrh39Xnr+qowX6ixHY0bpXniKzt2JsmMTPj Pdssby0sBBDkLxK7ff2bFN8WCPXoobQnv5Wz86HcNJwwnuytsYc8oYxYELs2W61G vYDrznJPPOIiW9Ee1lX8t41h6ZnPAH2lnwtGWcYoAq0wF+oq5VcjyTALB8wK++ZG G0EH/HdwqnQ= -----END CERTIFICATE-----Generated at Wed Jan 21 10:47:24 2026 by rpki-client