This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/kYVHDkjWpBomTAXvZtm-ybsEw4g.roa File: kYVHDkjWpBomTAXvZtm-ybsEw4g.roa (raw, json) Hash identifier: 6LPY5S+V1vJP40u2fVqFKReWSp6f+FzxIr8cYQv0/dw= Subject key identifier: 91:85:47:0E:48:D6:A4:1A:26:4C:05:EF:66:D9:BE:C9:BB:04:C3:88 Certificate issuer: /CN=327b3420c25013795e822a2ae50d38dc1d382793 Certificate serial: 019B7CECDDAA8AD51128FD0885DA7C216144 Authority key identifier: 32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/kYVHDkjWpBomTAXvZtm-ybsEw4g.roa Signing time: Fri 02 Jan 2026 04:17:36 +0000 ROA not before: Fri 02 Jan 2026 04:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207582 IP address blocks: 91.205.41.0/24 maxlen: 24 185.248.59.0/24 maxlen: 24 2a07:a700::/29 maxlen: 29 2a07:a700::/32 maxlen: 32 2a07:a701::/32 maxlen: 32 2a07:a702::/32 maxlen: 32 2a07:a703::/32 maxlen: 32 2a07:a704::/32 maxlen: 32 2a07:a705::/32 maxlen: 32 2a07:a706::/32 maxlen: 32 2a07:a707::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 07:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:dd:aa:8a:d5:11:28:fd:08:85:da:7c:21:61:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=327b3420c25013795e822a2ae50d38dc1d382793 Validity Not Before: Jan 2 04:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9185470e48d6a41a264c05ef66d9bec9bb04c388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f2:31:d9:db:25:fa:b2:22:68:62:73:a4:2a: da:0a:2f:10:3a:ae:c0:82:4c:c9:16:3b:46:b2:12: ba:48:cd:41:72:53:65:e4:e8:58:87:28:9c:6f:41: 37:97:b9:86:f8:d6:ce:1c:b4:80:9e:43:f3:3a:ec: 9c:4f:72:81:ef:59:ef:04:e9:5d:17:46:d4:eb:a6: b8:b9:53:13:fb:d4:eb:5e:f8:78:fd:f1:ca:78:94: 91:4c:7f:35:4c:07:40:a5:29:b0:d4:73:33:6a:03: e3:57:41:98:5c:d6:8c:d1:32:03:8f:b8:5c:51:84: f3:01:e6:83:9a:a5:5c:02:d8:3a:e3:36:d2:d9:69: 74:4f:b2:cf:39:6b:ea:54:52:14:14:f9:cc:04:a3: ff:71:65:07:fd:4f:ec:aa:ab:8e:37:54:8a:a2:4a: 17:9d:e1:fa:69:3e:ca:42:06:2f:01:51:82:4b:6e: 48:c6:4c:40:3b:cb:5d:39:39:81:48:6b:cb:02:33: f2:13:ca:35:8c:b9:d1:2b:11:c4:08:b4:8d:d3:4c: bd:23:34:cc:7d:19:50:7a:97:d4:cc:14:ad:d5:c0: 03:26:d6:5c:b0:b0:24:fc:f0:67:d2:2a:98:52:f4: e3:f5:0c:ef:a4:78:93:59:bb:c1:7b:9d:e3:f0:24: 55:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:85:47:0E:48:D6:A4:1A:26:4C:05:EF:66:D9:BE:C9:BB:04:C3:88 X509v3 Authority Key Identifier: keyid:32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/kYVHDkjWpBomTAXvZtm-ybsEw4g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.205.41.0/24 185.248.59.0/24 IPv6: 2a07:a700::/29 Signature Algorithm: sha256WithRSAEncryption 49:42:09:8b:8d:5d:c1:d7:83:0c:a5:36:86:5d:7a:03:3a:f6: 32:4e:5a:75:e7:14:3d:e2:36:f2:b6:9f:84:fc:5e:3a:34:71: b3:ce:e2:0d:7d:79:b1:9d:f5:b2:7e:1c:da:05:6d:d1:1f:df: 5c:5f:c7:6f:07:5b:36:55:93:26:8f:ac:2f:79:1c:e5:24:39: 04:f0:45:ca:18:c4:65:9a:2f:9b:1e:e2:8d:4a:72:09:1d:9d: d0:99:53:9c:dd:2c:8e:3c:25:68:52:22:a4:a7:c8:1d:fd:91: d7:ce:0a:9e:13:fc:08:8d:c9:6c:5a:05:91:c1:f2:51:17:b4: dd:20:d3:b4:74:a9:c4:a9:d2:a9:09:e5:07:b3:1c:8e:df:04: 2f:b3:0d:38:a4:b7:5c:af:e2:2a:73:f4:a7:a7:e8:71:61:0e: 23:eb:b7:38:59:de:23:d5:32:09:4c:65:b3:42:33:83:80:eb: 3f:47:31:50:d7:a9:37:68:76:2a:19:bd:a6:03:86:4f:be:dd: 0a:4c:cd:a1:d0:f6:4f:a4:73:86:b1:33:f9:20:33:a6:e9:5d: d8:e1:fc:4f:17:38:61:0b:39:65:84:7a:11:db:55:ef:56:1f: f6:b5:3a:42:c9:79:32:09:88:b9:6a:b2:8c:7d:64:9d:59:f6: 8b:11:b6:9e -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt87N2qitURKP0Ihdp8IWFEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyN2IzNDIwYzI1MDEzNzk1ZTgyMmEyYWU1MGQzOGRjMWQz ODI3OTMwHhcNMjYwMTAyMDQxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTg1NDcwZTQ4ZDZhNDFhMjY0YzA1ZWY2NmQ5YmVjOWJiMDRjMzg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfIx2dsl+rIiaGJzpCraCi8QOq7A gkzJFjtGshK6SM1BclNl5OhYhyicb0E3l7mG+NbOHLSAnkPzOuycT3KB71nvBOld F0bU66a4uVMT+9TrXvh4/fHKeJSRTH81TAdApSmw1HMzagPjV0GYXNaM0TIDj7hc UYTzAeaDmqVcAtg64zbS2Wl0T7LPOWvqVFIUFPnMBKP/cWUH/U/sqquON1SKokoX neH6aT7KQgYvAVGCS25IxkxAO8tdOTmBSGvLAjPyE8o1jLnRKxHECLSN00y9IzTM fRlQepfUzBSt1cADJtZcsLAk/PBn0iqYUvTj9QzvpHiTWbvBe53j8CRVNwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFJGFRw5I1qQaJkwF72bZvsm7BMOIMB8GA1UdIwQY MBaAFDJ7NCDCUBN5XoIqKuUNONwdOCeTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTW5zMElNSlFFM2xlZ2lvcTVRMDQzQjA0SjVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8zNjMxZTAtNTZkNy00YzI5LTk1YzQt NjY4MmIwN2ZhOTQ3LzEva1lWSERraldwQm9tVEFYdlp0bS15YnNFdzRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My8zNjMxZTAtNTZkNy00YzI5LTk1YzQtNjY4MmIwN2ZhOTQ3 LzEvTW5zMElNSlFFM2xlZ2lvcTVRMDQzQjA0SjVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAW80pAwQA ufg7MA0EAgACMAcDBQMqB6cAMA0GCSqGSIb3DQEBCwUAA4IBAQBJQgmLjV3B14MM pTaGXXoDOvYyTlp15xQ94jbytp+E/F46NHGzzuINfXmxnfWyfhzaBW3RH99cX8dv B1s2VZMmj6wveRzlJDkE8EXKGMRlmi+bHuKNSnIJHZ3QmVOc3SyOPCVoUiKkp8gd /ZHXzgqeE/wIjclsWgWRwfJRF7TdINO0dKnEqdKpCeUHsxyO3wQvsw04pLdcr+Iq c/Snp+hxYQ4j67c4Wd4j1TIJTGWzQjODgOs/RzFQ16k3aHYqGb2mA4ZPvt0KTM2h 0PZPpHOGsTP5IDOm6V3Y4fxPFzhhCzllhHoR21XvVh/2tTpCyXkyCYi5arKMfWSd WfaLEbae -----END CERTIFICATE-----Generated at Wed Jan 21 17:17:46 2026 by rpki-client