This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/d5d846-9ac8-41f5-8604-eae600a52c01/1/KbWTyRJitPC32LXPQqBi691clT8.roa File: KbWTyRJitPC32LXPQqBi691clT8.roa (raw, json) Hash identifier: mIu7f2xGRcIDk+hlkwsSKHTB5jDl1uwNz6s4KpvqXDI= Subject key identifier: 29:B5:93:C9:12:62:B4:F0:B7:D8:B5:CF:42:A0:62:EB:DD:5C:95:3F Certificate issuer: /CN=dac2845c61dac2ea50cacb83fd09311a30e3a90e Certificate serial: 019B797E5350B33CE4F55F305A05A2A6F291 Authority key identifier: DA:C2:84:5C:61:DA:C2:EA:50:CA:CB:83:FD:09:31:1A:30:E3:A9:0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sKEXGHawupQysuD_QkxGjDjqQ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/d5d846-9ac8-41f5-8604-eae600a52c01/1/KbWTyRJitPC32LXPQqBi691clT8.roa Signing time: Thu 01 Jan 2026 12:18:00 +0000 ROA not before: Thu 01 Jan 2026 12:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197764 IP address blocks: 193.8.61.0/24 maxlen: 24 193.8.182.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/d5d846-9ac8-41f5-8604-eae600a52c01/1/2sKEXGHawupQysuD_QkxGjDjqQ4.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/d5d846-9ac8-41f5-8604-eae600a52c01/1/2sKEXGHawupQysuD_QkxGjDjqQ4.mft rsync://rpki.ripe.net/repository/DEFAULT/2sKEXGHawupQysuD_QkxGjDjqQ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:53:50:b3:3c:e4:f5:5f:30:5a:05:a2:a6:f2:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dac2845c61dac2ea50cacb83fd09311a30e3a90e Validity Not Before: Jan 1 12:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29b593c91262b4f0b7d8b5cf42a062ebdd5c953f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:46:af:35:c7:86:e4:d1:71:3f:e3:50:ca:8e: 94:cd:52:6f:fd:94:e6:1a:bc:3c:90:f4:38:c1:c2: 97:0f:24:5c:d8:de:7a:0c:2b:56:80:02:80:40:77: 21:a2:37:58:1c:11:17:7a:a8:c0:6b:aa:64:49:65: 08:92:76:16:04:34:2d:e9:eb:f6:44:e7:9e:bb:7b: 0a:d8:8e:f6:f2:58:b8:ef:8f:b1:4a:ad:49:be:c9: 97:33:56:78:dc:6c:a2:27:d0:7e:32:91:5f:6a:95: 1d:49:55:3e:cc:c6:ae:d9:29:4b:a0:79:35:b5:b1: da:0e:e9:cd:17:3d:09:11:18:d2:00:e3:f4:1d:0f: b0:5a:dd:b6:f1:23:31:62:fa:4c:36:bc:15:66:65: 6b:58:ce:23:ff:db:8d:a9:3e:d0:64:f8:5a:69:44: 57:09:73:53:20:39:4e:bf:1c:67:12:a3:20:b2:f8: 56:99:6a:c9:95:ee:25:67:e7:84:0a:46:76:d3:67: d9:41:97:31:c1:92:cc:fa:2a:82:59:b7:a0:95:83: 9a:70:90:51:59:3b:b7:38:5e:90:c2:ca:75:b1:28: 06:60:b4:80:17:56:31:61:a0:68:74:d8:6f:58:ad: 4f:68:e2:a1:3a:3f:ab:40:11:ad:b6:6e:e7:ea:aa: a7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B5:93:C9:12:62:B4:F0:B7:D8:B5:CF:42:A0:62:EB:DD:5C:95:3F X509v3 Authority Key Identifier: keyid:DA:C2:84:5C:61:DA:C2:EA:50:CA:CB:83:FD:09:31:1A:30:E3:A9:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sKEXGHawupQysuD_QkxGjDjqQ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/d5d846-9ac8-41f5-8604-eae600a52c01/1/KbWTyRJitPC32LXPQqBi691clT8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/d5d846-9ac8-41f5-8604-eae600a52c01/1/2sKEXGHawupQysuD_QkxGjDjqQ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.8.61.0/24 193.8.182.0/23 Signature Algorithm: sha256WithRSAEncryption 85:74:82:58:59:17:7f:3d:8e:61:64:00:6c:0e:94:66:75:ab: ee:fc:5d:39:54:eb:a9:75:fb:c7:1a:95:47:22:d2:90:fc:cf: b5:fe:0e:bc:a5:5d:3d:d4:96:80:01:10:d2:ca:77:45:8e:a9: 19:fe:20:96:93:5c:01:2e:16:2a:64:d6:1d:b6:67:d8:f4:c9: cf:4c:97:2d:22:7b:c3:ce:ee:3d:db:f6:d2:ec:51:77:71:1d: 40:18:27:f1:f7:4c:7e:fa:f5:3c:dd:dc:66:20:ef:5e:49:6a: 7a:a2:0b:0c:cf:52:92:36:e6:08:83:c2:45:54:f8:25:4d:ac: cc:cd:24:7b:65:d4:fc:54:6a:20:d6:d0:c7:24:f6:62:67:e8: 7e:45:0f:88:dd:d6:80:ba:fa:3e:4b:ef:f4:f4:9d:6f:47:48: 3c:9e:1a:80:d3:50:b6:32:f6:eb:3f:26:2f:3d:ea:eb:8d:63: c7:d4:0d:06:ac:35:1e:0d:49:2f:bf:af:93:8e:40:e0:de:f4: b5:27:3c:2d:53:6b:3c:90:9a:e0:58:a4:fc:ae:e3:41:36:c0: 18:10:57:21:0c:dc:e8:ce:77:20:c4:88:b6:69:38:be:71:7d: 38:e7:d9:12:41:b7:28:5e:08:31:dd:12:3f:b3:4d:a5:b6:08: 97:f0:2a:3e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5flNQszzk9V8wWgWipvKRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYzI4NDVjNjFkYWMyZWE1MGNhY2I4M2ZkMDkzMTFhMzBl M2E5MGUwHhcNMjYwMTAxMTIxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOWI1OTNjOTEyNjJiNGYwYjdkOGI1Y2Y0MmEwNjJlYmRkNWM5NTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEavNceG5NFxP+NQyo6UzVJv/ZTm Grw8kPQ4wcKXDyRc2N56DCtWgAKAQHchojdYHBEXeqjAa6pkSWUIknYWBDQt6ev2 ROeeu3sK2I728li474+xSq1JvsmXM1Z43GyiJ9B+MpFfapUdSVU+zMau2SlLoHk1 tbHaDunNFz0JERjSAOP0HQ+wWt228SMxYvpMNrwVZmVrWM4j/9uNqT7QZPhaaURX CXNTIDlOvxxnEqMgsvhWmWrJle4lZ+eECkZ202fZQZcxwZLM+iqCWbeglYOacJBR WTu3OF6Qwsp1sSgGYLSAF1YxYaBodNhvWK1PaOKhOj+rQBGttm7n6qqnewIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCm1k8kSYrTwt9i1z0KgYuvdXJU/MB8GA1UdIwQY MBaAFNrChFxh2sLqUMrLg/0JMRow46kOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnNLRVhHSGF3dXBReXN1RF9Ra3hHakRqcVE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9kNWQ4NDYtOWFjOC00MWY1LTg2MDQt ZWFlNjAwYTUyYzAxLzEvS2JXVHlSSml0UEMzMkxYUFFxQmk2OTFjbFQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy9kNWQ4NDYtOWFjOC00MWY1LTg2MDQtZWFlNjAwYTUyYzAx LzEvMnNLRVhHSGF3dXBReXN1RF9Ra3hHakRqcVE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwQg9AwQB wQi2MA0GCSqGSIb3DQEBCwUAA4IBAQCFdIJYWRd/PY5hZABsDpRmdavu/F05VOup dfvHGpVHItKQ/M+1/g68pV091JaAARDSyndFjqkZ/iCWk1wBLhYqZNYdtmfY9MnP TJctInvDzu492/bS7FF3cR1AGCfx90x++vU83dxmIO9eSWp6ogsMz1KSNuYIg8JF VPglTazMzSR7ZdT8VGog1tDHJPZiZ+h+RQ+I3daAuvo+S+/09J1vR0g8nhqA01C2 MvbrPyYvPerrjWPH1A0GrDUeDUkvv6+TjkDg3vS1JzwtU2s8kJrgWKT8ruNBNsAY EFchDNzozncgxIi2aTi+cX0459kSQbcoXggx3RI/s02ltgiX8Co+ -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:52 2026 by rpki-client