This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/k1kjtWhfi3liyX8iFQRZl2D24O8.roa File: k1kjtWhfi3liyX8iFQRZl2D24O8.roa (raw, json) Hash identifier: FnHmLVNImgUYL2pZsEuxgg3wkTC9/TTxiO/Pam+ZNU0= Subject key identifier: 93:59:23:B5:68:5F:8B:79:62:C9:7F:22:15:04:59:97:60:F6:E0:EF Certificate issuer: /CN=f8a966664ec96edbd12e8e82e940bfb9faec105e Certificate serial: 019B7A5BA063A0E4B3D4CDFDD2ABDBD17AB7 Authority key identifier: F8:A9:66:66:4E:C9:6E:DB:D1:2E:8E:82:E9:40:BF:B9:FA:EC:10:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/k1kjtWhfi3liyX8iFQRZl2D24O8.roa Signing time: Thu 01 Jan 2026 16:19:43 +0000 ROA not before: Thu 01 Jan 2026 16:19:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 185.1.74.0/24 maxlen: 24 2001:7f8:a5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.crl rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.mft rsync://rpki.ripe.net/repository/DEFAULT/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:a0:63:a0:e4:b3:d4:cd:fd:d2:ab:db:d1:7a:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8a966664ec96edbd12e8e82e940bfb9faec105e Validity Not Before: Jan 1 16:19:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=935923b5685f8b7962c97f221504599760f6e0ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:50:64:94:1a:d0:b7:ac:aa:ce:a6:1c:43:86: 41:47:5e:2d:e7:4a:32:64:73:79:dc:14:63:5f:b1: dd:cb:e8:cf:d2:b2:5c:77:90:8e:3d:bc:1b:c2:24: 38:fc:c9:ab:e5:7f:6a:a7:b0:9f:33:0e:da:9c:c1: f8:99:a6:ae:1d:b6:a4:27:f9:04:39:41:b2:8e:93: 4b:16:3b:30:3e:e4:85:dc:f1:d7:c5:86:6a:53:bd: 3b:49:a7:fa:97:21:42:91:41:85:06:1b:e0:c1:2a: a3:eb:da:5a:2e:59:60:70:5d:9f:8e:84:40:ab:cf: 8f:59:78:22:4b:11:22:2d:74:64:b8:41:1f:72:5e: 86:68:89:3c:51:9f:fb:48:79:ec:6b:52:59:60:10: 4a:e5:69:1e:98:cb:1e:2f:9c:81:70:e6:69:5e:75: 9f:86:8b:95:34:72:f0:1d:a2:b3:84:32:a4:65:6b: bd:99:2b:81:bf:73:40:9a:7c:8d:3a:41:c4:38:84: 79:17:6b:7c:ce:7e:dd:94:dc:ad:43:51:dc:87:12: 5b:84:a5:97:91:d5:28:56:75:b4:e9:f4:54:b0:51: 70:17:b9:b7:a5:4c:74:9d:61:9e:17:79:5e:1b:68: 52:47:53:46:70:a1:f9:70:da:2b:b3:10:e7:e9:2c: 60:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:59:23:B5:68:5F:8B:79:62:C9:7F:22:15:04:59:97:60:F6:E0:EF X509v3 Authority Key Identifier: keyid:F8:A9:66:66:4E:C9:6E:DB:D1:2E:8E:82:E9:40:BF:B9:FA:EC:10:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/k1kjtWhfi3liyX8iFQRZl2D24O8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.74.0/24 IPv6: 2001:7f8:a5::/48 Signature Algorithm: sha256WithRSAEncryption 95:34:5e:30:f7:f8:ee:36:cd:9e:9d:16:13:38:bd:90:11:55: 55:1d:29:4a:75:e0:49:0d:c0:d7:2d:2d:00:3c:f9:6b:4c:c4: 3f:5e:51:70:a1:a9:83:8b:cf:21:fa:4e:ac:88:9d:65:f4:68: b0:de:4c:f0:b1:a2:f4:7e:d3:8d:4c:15:7f:09:b3:10:1b:12: d5:d9:66:e4:21:9b:56:46:e3:69:88:32:a7:3b:f7:58:1e:32: fa:14:30:21:d4:18:da:f7:f1:4d:6e:af:2f:0b:bd:90:1e:7a: 25:c8:e6:28:cc:60:4b:c0:5d:07:b7:a2:2d:a2:5e:0d:2b:6b: a0:0f:9c:31:d8:9d:42:a6:74:3a:42:fc:0a:ee:e5:72:26:9c: c7:49:21:7c:96:f2:ec:32:3a:31:70:e8:62:a8:01:5d:58:fd: 6c:bd:66:47:86:43:d0:80:8b:83:2d:e8:4f:a0:a4:74:e5:bd: 86:36:b3:05:47:a3:4c:f6:47:d7:2b:20:fb:c1:a7:36:f2:82: 33:d5:84:88:b1:d7:23:9f:50:e0:3a:0c:96:91:34:32:7b:cf: a8:6b:dd:f3:de:72:0f:89:39:40:1c:3b:05:33:75:30:a0:7a: c1:f5:99:e6:5a:fa:f3:c5:1d:a6:09:e1:08:7d:c8:ae:38:64: 64:38:db:c5 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgISAZt6W6BjoOSz1M390qvb0Xq3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4YTk2NjY2NGVjOTZlZGJkMTJlOGU4MmU5NDBiZmI5ZmFl YzEwNWUwHhcNMjYwMTAxMTYxOTQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MzU5MjNiNTY4NWY4Yjc5NjJjOTdmMjIxNTA0NTk5NzYwZjZlMGVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzlBklBrQt6yqzqYcQ4ZBR14t50oy ZHN53BRjX7Hdy+jP0rJcd5COPbwbwiQ4/Mmr5X9qp7CfMw7anMH4maauHbakJ/kE OUGyjpNLFjswPuSF3PHXxYZqU707Saf6lyFCkUGFBhvgwSqj69paLllgcF2fjoRA q8+PWXgiSxEiLXRkuEEfcl6GaIk8UZ/7SHnsa1JZYBBK5WkemMseL5yBcOZpXnWf houVNHLwHaKzhDKkZWu9mSuBv3NAmnyNOkHEOIR5F2t8zn7dlNytQ1HchxJbhKWX kdUoVnW06fRUsFFwF7m3pUx0nWGeF3leG2hSR1NGcKH5cNorsxDn6SxgFQIDAQAB o4ICHDCCAhgwHQYDVR0OBBYEFJNZI7VoX4t5Ysl/IhUEWZdg9uDvMB8GA1UdIwQY MBaAFPipZmZOyW7b0S6OgulAv7n67BBeMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1LbG1aazdKYnR2UkxvNkM2VUNfdWZyc0VGNC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDUvNjRhYjk5LTQ5YWEtNGFhZS04ZGQ1 LTM4MjM1NWZjMmZmMS8xL2sxa2p0V2hmaTNsaXlYOGlGUVJabDJEMjRPOC5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNDUvNjRhYjk5LTQ5YWEtNGFhZS04ZGQ1LTM4MjM1NWZjMmZm MS8xLzEtS2xtWms3SmJ0dlJMbzZDNlVDX3VmcnNFRjQuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYDBAC5AUow DwQCAAIwCQMHACABB/gApTANBgkqhkiG9w0BAQsFAAOCAQEAlTReMPf47jbNnp0W Ezi9kBFVVR0pSnXgSQ3A1y0tADz5a0zEP15RcKGpg4vPIfpOrIidZfRosN5M8LGi 9H7TjUwVfwmzEBsS1dlm5CGbVkbjaYgypzv3WB4y+hQwIdQY2vfxTW6vLwu9kB56 JcjmKMxgS8BdB7eiLaJeDStroA+cMdidQqZ0OkL8Cu7lciacx0khfJby7DI6MXDo YqgBXVj9bL1mR4ZD0ICLgy3oT6CkdOW9hjazBUejTPZH1ysg+8GnNvKCM9WEiLHX I59Q4DoMlpE0MnvPqGvd895yD4k5QBw7BTN1MKB6wfWZ5lr688UdpgnhCH3Irjhk ZDjbxQ== -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:00 2026 by rpki-client