This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/kg9yQk5fK6klZVaEkkCOZMmrbgM.roa File: kg9yQk5fK6klZVaEkkCOZMmrbgM.roa (raw, json) Hash identifier: +QSEoVBC1XwVlxp4/wr5eCNtpWPQhhV9Q0wux80i+go= Subject key identifier: 92:0F:72:42:4E:5F:2B:A9:25:65:56:84:92:40:8E:64:C9:AB:6E:03 Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5 Certificate serial: 019B7C80AA1340212F913F61211E7517EBBA Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/kg9yQk5fK6klZVaEkkCOZMmrbgM.roa Signing time: Fri 02 Jan 2026 02:19:25 +0000 ROA not before: Fri 02 Jan 2026 02:19:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136744 IP address blocks: 84.32.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.mft rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:aa:13:40:21:2f:91:3f:61:21:1e:75:17:eb:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5 Validity Not Before: Jan 2 02:19:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=920f72424e5f2ba92565568492408e64c9ab6e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:61:49:eb:08:bc:7b:19:20:50:f8:7b:fd:7f: 4c:1b:28:13:de:f8:09:b1:d0:94:8a:8a:46:66:8a: db:da:78:57:f5:ef:46:93:65:53:2b:30:e3:6d:3a: bd:2f:95:27:85:38:20:a8:06:4c:40:fe:61:0d:62: c6:b7:bb:5f:c5:5f:44:80:cb:9f:de:9d:d5:df:25: 36:e8:d9:a0:20:2a:84:c1:a8:7c:35:d6:8a:62:7d: 3d:71:38:23:9b:01:5d:9d:1a:83:a5:7b:3f:5e:ab: 75:24:78:03:4e:48:bc:c0:cc:56:06:74:c4:fa:5a: 2c:26:21:d1:69:c7:44:fe:4c:60:5d:1e:3e:01:4f: be:f3:ee:36:8e:2b:cf:ce:9c:bc:b0:30:0d:48:0f: 7f:28:5e:0c:03:27:5a:00:68:57:1a:98:b6:70:f0: d7:18:91:6b:87:2d:aa:43:2b:6d:12:57:7a:e3:04: f8:e6:8f:52:18:f3:69:04:f3:c9:f2:71:0a:9d:1b: 79:ba:77:25:88:82:7f:ff:b3:96:10:2b:dd:d3:76: a9:ce:6d:98:24:7a:cd:43:41:f4:5b:07:d5:89:72: e9:7e:54:b9:db:5f:e0:08:99:62:21:de:12:ef:43: 8c:80:e0:8e:bc:ee:94:45:52:d2:1c:fc:f9:11:78: 1d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:0F:72:42:4E:5F:2B:A9:25:65:56:84:92:40:8E:64:C9:AB:6E:03 X509v3 Authority Key Identifier: keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/kg9yQk5fK6klZVaEkkCOZMmrbgM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.32.66.0/24 Signature Algorithm: sha256WithRSAEncryption 92:f6:97:bf:84:8c:76:af:72:1b:4b:22:62:03:c4:3f:96:f6: 55:51:2f:b6:3b:ee:e7:c0:26:9f:55:49:ee:f0:25:96:f5:a5: 9d:73:1a:4b:82:a0:e9:06:2c:6c:4d:70:07:a0:df:ec:e4:e4: f9:68:78:8e:16:f4:b0:b9:d9:98:2c:36:df:c6:52:30:25:bf: 6f:57:3c:36:8a:4b:2c:d0:32:b9:01:33:72:a8:da:16:e0:c8: c5:63:f0:0a:b5:d7:3e:10:01:55:97:13:99:f7:1e:bb:4f:63: 0c:87:3c:23:64:22:33:db:d8:39:ea:0a:7f:ae:fa:ca:8a:30: 47:3a:7e:b9:bf:e1:26:e8:1f:6a:3b:fe:1e:c8:a7:29:b2:7a: c0:66:56:dd:f2:be:9e:82:ee:70:63:ef:1b:fd:e0:5c:1f:7e: bb:17:6f:5a:8d:13:80:7a:91:fd:22:42:9b:ed:6b:95:bb:b4: cf:7e:88:dc:09:44:81:fa:3b:5c:a8:2d:68:bc:bc:1c:a0:bb: 8b:da:34:02:dc:6c:ce:91:24:4b:9d:52:da:2b:ff:89:dc:86: 42:c3:17:f2:1f:ca:97:75:c3:f4:6f:43:d5:b5:bf:8d:96:49: 85:ab:41:f4:57:34:7e:e7:72:07:e7:a7:49:83:f0:32:ae:97: ee:a2:56:ef -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gKoTQCEvkT9hIR51F+u6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi ZGEzYzUwHhcNMjYwMTAyMDIxOTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MjBmNzI0MjRlNWYyYmE5MjU2NTU2ODQ5MjQwOGU2NGM5YWI2ZTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmFJ6wi8exkgUPh7/X9MGygT3vgJ sdCUiopGZorb2nhX9e9Gk2VTKzDjbTq9L5UnhTggqAZMQP5hDWLGt7tfxV9EgMuf 3p3V3yU26NmgICqEwah8NdaKYn09cTgjmwFdnRqDpXs/Xqt1JHgDTki8wMxWBnTE +losJiHRacdE/kxgXR4+AU++8+42jivPzpy8sDANSA9/KF4MAydaAGhXGpi2cPDX GJFrhy2qQyttEld64wT45o9SGPNpBPPJ8nEKnRt5uncliIJ//7OWECvd03apzm2Y JHrNQ0H0WwfViXLpflS521/gCJliId4S70OMgOCOvO6URVLSHPz5EXgd3QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJIPckJOXyupJWVWhJJAjmTJq24DMB8GA1UdIwQY MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt MjM0ODFiZjA5MWMzLzEva2c5eVFrNWZLNmtsWlZhRWtrQ09aTW1yYmdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCBCMA0G CSqGSIb3DQEBCwUAA4IBAQCS9pe/hIx2r3IbSyJiA8Q/lvZVUS+2O+7nwCafVUnu 8CWW9aWdcxpLgqDpBixsTXAHoN/s5OT5aHiOFvSwudmYLDbfxlIwJb9vVzw2ikss 0DK5ATNyqNoW4MjFY/AKtdc+EAFVlxOZ9x67T2MMhzwjZCIz29g56gp/rvrKijBH On65v+Em6B9qO/4eyKcpsnrAZlbd8r6egu5wY+8b/eBcH367F29ajROAepH9IkKb 7WuVu7TPfojcCUSB+jtcqC1ovLwcoLuL2jQC3GzOkSRLnVLaK/+J3IZCwxfyH8qX dcP0b0PVtb+NlkmFq0H0VzR+53IH56dJg/Ayrpfuolbv -----END CERTIFICATE-----Generated at Mon Jan 19 13:54:13 2026 by rpki-client