This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/KIWGoOwTd_0to3ZfSp61C8HKyu8.roa File: KIWGoOwTd_0to3ZfSp61C8HKyu8.roa (raw, json) Hash identifier: zO+QGlqWRre1WYpcK0kFybtzqC8LgSXdzrWLa3l1LOU= Subject key identifier: 28:85:86:A0:EC:13:77:FD:2D:A3:76:5F:4A:9E:B5:0B:C1:CA:CA:EF Certificate issuer: /CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc Certificate serial: 019B797EF9279E2F3103B1BCEB25BE9A9DD9 Authority key identifier: 9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/KIWGoOwTd_0to3ZfSp61C8HKyu8.roa Signing time: Thu 01 Jan 2026 12:18:43 +0000 ROA not before: Thu 01 Jan 2026 12:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215805 IP address blocks: 2001:67c:2404::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:f9:27:9e:2f:31:03:b1:bc:eb:25:be:9a:9d:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc Validity Not Before: Jan 1 12:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=288586a0ec1377fd2da3765f4a9eb50bc1cacaef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:12:87:10:4f:ab:13:dc:3d:e3:b0:c3:1f:00: 55:44:3c:58:89:cd:3c:ca:cf:69:c5:47:7b:3a:32: 71:7a:e0:f7:a2:a7:a0:e3:d3:b5:db:35:08:86:f2: ff:4b:f1:d1:aa:a3:5b:46:32:56:aa:86:16:a7:9d: 76:c5:a0:53:22:89:2f:e6:4f:87:81:1f:41:8a:36: 0e:a6:40:f9:06:19:97:c7:f4:74:c6:3f:e7:b2:1a: d5:27:85:fb:d0:dc:b6:af:4b:ce:7b:03:63:34:e8: 10:f5:9e:e5:82:39:9f:6b:8b:d8:17:84:97:1c:44: ac:35:b4:9f:a2:49:d9:d7:2e:dc:0f:96:33:33:42: 95:2a:87:aa:95:24:28:5c:f9:2e:0f:99:f3:56:cf: 9e:76:c1:d6:94:7c:ae:21:36:60:4a:48:f1:a3:a5: 5d:62:51:a0:7f:83:37:a1:81:d2:2f:61:3b:c0:fa: 97:97:6d:c3:c8:f4:4c:c5:19:c2:27:b9:b0:21:7e: 63:f5:8d:ec:d1:98:af:77:b5:bd:c1:28:af:dc:0e: df:0d:94:83:97:50:ae:80:78:90:51:4a:02:3e:ef: 81:31:8c:43:48:01:bc:5e:4a:a2:37:a9:64:b4:7d: 6d:0e:1c:64:f6:3e:ad:64:7d:98:2b:07:84:c0:bf: c1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:85:86:A0:EC:13:77:FD:2D:A3:76:5F:4A:9E:B5:0B:C1:CA:CA:EF X509v3 Authority Key Identifier: keyid:9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/KIWGoOwTd_0to3ZfSp61C8HKyu8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2404::/48 Signature Algorithm: sha256WithRSAEncryption 53:1e:42:64:65:04:4e:e4:b3:cf:04:ac:85:9c:80:f2:9d:fc: 66:f6:28:32:99:85:21:32:df:d4:73:e7:82:6b:a4:3f:c0:52: 48:79:fc:03:d7:b6:f1:76:9c:c0:61:db:f2:8d:9f:2d:1d:0a: 46:6b:b3:85:ae:78:e1:1f:77:5f:1c:ea:e3:61:bf:bc:5f:a2: 8f:83:bf:75:d2:5d:08:01:48:ba:a8:8d:c5:9c:38:c1:2b:58: 21:aa:25:e0:ef:fe:b2:9b:7d:21:d9:3c:49:36:f6:79:7b:59: 76:ac:db:9c:06:96:4e:c3:3f:5b:ff:e6:fc:9a:60:38:0f:36: b7:e4:ed:37:84:dd:4e:6f:05:98:3e:b2:03:31:3a:65:a9:77: ff:1e:63:7e:7e:cb:e2:92:e9:b7:af:e0:f0:65:5e:01:cc:52: 4e:cc:bc:f6:6d:43:b3:72:89:57:0c:d0:ee:4f:3d:5a:3e:8c: 05:da:ee:51:ab:ac:0e:cb:db:8b:bb:23:e3:09:78:fa:19:0a: 0b:ad:65:15:12:a6:68:6e:be:c6:00:10:36:2f:59:cc:c2:46: 3c:e2:1c:c1:f0:aa:58:30:c6:98:b8:af:3c:67:e8:77:12:50: 10:36:a2:5f:b5:dd:11:a4:a9:a4:b6:4e:1f:dc:5d:15:4a:44: 0a:7a:0f:34 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5fvknni8xA7G86yW+mp3ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNGRhYTRmNmFjMGU2YmMxMDJiNjg4NDBhMmFjNmJiNTQx YjQwZmMwHhcNMjYwMTAxMTIxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyODg1ODZhMGVjMTM3N2ZkMmRhMzc2NWY0YTllYjUwYmMxY2FjYWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoxKHEE+rE9w947DDHwBVRDxYic08 ys9pxUd7OjJxeuD3oqeg49O12zUIhvL/S/HRqqNbRjJWqoYWp512xaBTIokv5k+H gR9BijYOpkD5BhmXx/R0xj/nshrVJ4X70Ny2r0vOewNjNOgQ9Z7lgjmfa4vYF4SX HESsNbSfoknZ1y7cD5YzM0KVKoeqlSQoXPkuD5nzVs+edsHWlHyuITZgSkjxo6Vd YlGgf4M3oYHSL2E7wPqXl23DyPRMxRnCJ7mwIX5j9Y3s0Zivd7W9wSiv3A7fDZSD l1CugHiQUUoCPu+BMYxDSAG8XkqiN6lktH1tDhxk9j6tZH2YKweEwL/BiwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFCiFhqDsE3f9LaN2X0qetQvBysrvMB8GA1UdIwQY MBaAFJpNqk9qwOa8ECtohAoqxrtUG0D8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9jZDQ2MjQtNjIwYS00Y2IyLWE0MTYt NmJlOTJiMWFhOGIzLzEvS0lXR29Pd1RkXzB0bzNaZlNwNjFDOEhLeXU4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9jZDQ2MjQtNjIwYS00Y2IyLWE0MTYtNmJlOTJiMWFhOGIz LzEvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCQE MA0GCSqGSIb3DQEBCwUAA4IBAQBTHkJkZQRO5LPPBKyFnIDynfxm9igymYUhMt/U c+eCa6Q/wFJIefwD17bxdpzAYdvyjZ8tHQpGa7OFrnjhH3dfHOrjYb+8X6KPg791 0l0IAUi6qI3FnDjBK1ghqiXg7/6ym30h2TxJNvZ5e1l2rNucBpZOwz9b/+b8mmA4 Dza35O03hN1ObwWYPrIDMTplqXf/HmN+fsvikum3r+DwZV4BzFJOzLz2bUOzcolX DNDuTz1aPowF2u5Rq6wOy9uLuyPjCXj6GQoLrWUVEqZobr7GABA2L1nMwkY84hzB 8KpYMMaYuK88Z+h3ElAQNqJftd0RpKmktk4f3F0VSkQKeg80 -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:16 2026 by rpki-client