This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/K-9YFdMZIHBBD3IiEfdbfR2ZJLs.roa File: K-9YFdMZIHBBD3IiEfdbfR2ZJLs.roa (raw, json) Hash identifier: 002qfeo9pID+Pk5s2OGOocAZFb8QYboRtwr6byChG6g= Subject key identifier: 2B:EF:58:15:D3:19:20:70:41:0F:72:22:11:F7:5B:7D:1D:99:24:BB Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2 Certificate serial: 019B7910760D63974F24C44AE01C6870C869 Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/K-9YFdMZIHBBD3IiEfdbfR2ZJLs.roa Signing time: Thu 01 Jan 2026 10:18:00 +0000 ROA not before: Thu 01 Jan 2026 10:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215723 IP address blocks: 188.132.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.mft rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:76:0d:63:97:4f:24:c4:4a:e0:1c:68:70:c8:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2 Validity Not Before: Jan 1 10:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2bef5815d3192070410f722211f75b7d1d9924bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b7:d5:c9:85:2f:43:d1:2b:5b:66:a4:1e:0c: 0d:28:34:52:db:14:1f:d3:e3:33:99:fc:a7:96:da: eb:50:ad:aa:e4:77:8f:52:a3:07:21:1b:d0:09:a8: f1:82:57:ba:ab:ec:62:d8:e4:ba:dd:2e:19:b6:62: 1b:12:50:2e:9e:9e:93:3c:93:8b:cb:84:01:94:8c: 80:32:a9:02:70:94:74:94:59:94:20:8a:88:fb:34: a8:65:a8:b7:aa:5b:88:9a:d0:8b:54:e4:96:7b:23: 71:05:d1:38:23:db:c8:19:ec:bd:20:f6:35:d7:28: 4d:39:36:37:55:89:97:16:16:60:f3:44:52:37:f8: 2e:b9:b6:cf:b8:6a:47:1f:82:d0:b5:e9:6f:a6:01: 9d:ff:8c:1d:d8:f6:34:c9:5c:ad:4d:98:3d:51:62: 6f:44:c6:af:be:d5:9e:b4:d6:79:56:50:0c:d4:38: d6:ea:0c:63:c2:10:93:73:9c:de:31:6b:b4:57:a0: dd:12:6a:9c:55:32:5d:b4:68:cb:93:9c:f2:73:0b: e7:d6:7b:66:8e:21:0f:ce:77:e6:fe:d0:fb:3f:b6: 87:2c:a7:f9:3f:f0:46:fd:36:0d:23:fa:79:72:c8: 61:b6:c0:ef:2f:e1:be:15:3f:99:9b:d6:df:a2:2c: 4e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EF:58:15:D3:19:20:70:41:0F:72:22:11:F7:5B:7D:1D:99:24:BB X509v3 Authority Key Identifier: keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/K-9YFdMZIHBBD3IiEfdbfR2ZJLs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.132.233.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:78:d3:e3:11:13:5f:85:99:ea:6a:08:d6:56:e8:d3:7a:56: 66:67:8d:c8:0e:46:d9:bc:2e:6a:d2:03:76:4c:3f:ef:43:89: 80:cc:2e:4a:81:8a:eb:f0:74:31:9b:f3:d9:c3:d7:26:db:fc: 92:9f:92:30:a4:69:1e:3c:7d:12:c7:2c:13:d8:a6:d2:fa:8f: be:a7:00:dd:29:aa:52:36:1b:e6:ba:ee:f5:91:37:32:e4:fa: f9:be:91:68:49:09:1b:f3:7d:7e:63:2e:79:23:b8:9d:9c:e0: 74:39:cb:d7:76:70:3d:2a:c2:d1:b8:8b:c9:6a:14:b6:6e:09: 7a:65:7c:a7:40:f7:85:52:62:08:08:54:08:2e:94:3a:7c:44: 06:b7:89:e5:40:46:6c:04:b7:7e:24:c7:6b:aa:f5:07:79:43: 77:48:7f:9a:77:0c:e8:20:98:04:b2:1c:85:ff:f0:96:8b:3c: 69:1e:8e:60:18:70:c8:41:7b:de:8c:cc:ff:a8:c7:61:09:6b: 0f:9c:f8:ab:d2:30:f0:be:e5:4d:03:27:8e:c7:92:e4:b0:8f: 9a:5b:84:4e:06:72:a1:8c:b5:db:4a:48:1a:57:f1:7e:6f:e6: e6:c0:39:8a:60:2b:3d:9e:f9:7d:e5:f4:90:d4:32:9a:06:de: fb:43:21:bb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EHYNY5dPJMRK4BxocMhpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx OTJjYTIwHhcNMjYwMTAxMTAxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYmVmNTgxNWQzMTkyMDcwNDEwZjcyMjIxMWY3NWI3ZDFkOTkyNGJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7fVyYUvQ9ErW2akHgwNKDRS2xQf 0+MzmfynltrrUK2q5HePUqMHIRvQCajxgle6q+xi2OS63S4ZtmIbElAunp6TPJOL y4QBlIyAMqkCcJR0lFmUIIqI+zSoZai3qluImtCLVOSWeyNxBdE4I9vIGey9IPY1 1yhNOTY3VYmXFhZg80RSN/guubbPuGpHH4LQtelvpgGd/4wd2PY0yVytTZg9UWJv RMavvtWetNZ5VlAM1DjW6gxjwhCTc5zeMWu0V6DdEmqcVTJdtGjLk5zycwvn1ntm jiEPznfm/tD7P7aHLKf5P/BG/TYNI/p5cshhtsDvL+G+FT+Zm9bfoixOXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCvvWBXTGSBwQQ9yIhH3W30dmSS7MB8GA1UdIwQY MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt NGUxOThmMGE2MDEzLzEvSy05WUZkTVpJSEJCRDNJaUVmZGJmUjJaSkxzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvITpMA0G CSqGSIb3DQEBCwUAA4IBAQBNeNPjERNfhZnqagjWVujTelZmZ43IDkbZvC5q0gN2 TD/vQ4mAzC5KgYrr8HQxm/PZw9cm2/ySn5IwpGkePH0SxywT2KbS+o++pwDdKapS Nhvmuu71kTcy5Pr5vpFoSQkb831+Yy55I7idnOB0OcvXdnA9KsLRuIvJahS2bgl6 ZXynQPeFUmIICFQILpQ6fEQGt4nlQEZsBLd+JMdrqvUHeUN3SH+adwzoIJgEshyF //CWizxpHo5gGHDIQXvejMz/qMdhCWsPnPir0jDwvuVNAyeOx5LksI+aW4ROBnKh jLXbSkgaV/F+b+bmwDmKYCs9nvl95fSQ1DKaBt77QyG7 -----END CERTIFICATE-----Generated at Wed Jan 21 13:31:52 2026 by rpki-client