This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/300195-7e7b-4e99-a52d-caf4fa072682/1/KCeDYKcbeE9UWfctYxdAU1BZ1s0.roa File: KCeDYKcbeE9UWfctYxdAU1BZ1s0.roa (raw, json) Hash identifier: YDX/bv7OMO0VUSqXGoDYDOy5fKvBcU1O+oeXxOMbVws= Subject key identifier: 28:27:83:60:A7:1B:78:4F:54:59:F7:2D:63:17:40:53:50:59:D6:CD Certificate issuer: /CN=159ba29a75ae1325c0382fb484b321d68d154384 Certificate serial: 019B7EA53A597CE04521C86B4639A3C59A43 Authority key identifier: 15:9B:A2:9A:75:AE:13:25:C0:38:2F:B4:84:B3:21:D6:8D:15:43:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZuimnWuEyXAOC-0hLMh1o0VQ4Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/300195-7e7b-4e99-a52d-caf4fa072682/1/KCeDYKcbeE9UWfctYxdAU1BZ1s0.roa Signing time: Fri 02 Jan 2026 12:18:36 +0000 ROA not before: Fri 02 Jan 2026 12:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199334 IP address blocks: 159.255.146.0/24 maxlen: 24 185.176.132.0/24 maxlen: 24 2a13:c680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/300195-7e7b-4e99-a52d-caf4fa072682/1/FZuimnWuEyXAOC-0hLMh1o0VQ4Q.crl rsync://rpki.ripe.net/repository/DEFAULT/51/300195-7e7b-4e99-a52d-caf4fa072682/1/FZuimnWuEyXAOC-0hLMh1o0VQ4Q.mft rsync://rpki.ripe.net/repository/DEFAULT/FZuimnWuEyXAOC-0hLMh1o0VQ4Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:3a:59:7c:e0:45:21:c8:6b:46:39:a3:c5:9a:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=159ba29a75ae1325c0382fb484b321d68d154384 Validity Not Before: Jan 2 12:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=28278360a71b784f5459f72d631740535059d6cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2e:b0:c2:15:2a:6e:87:30:27:05:4e:07:df: ca:c0:7e:e5:da:cf:54:1b:7f:c0:84:8b:83:b0:02: 07:67:84:94:dd:ea:aa:55:7a:ef:1d:f2:73:93:f5: 55:be:8b:1a:25:d3:51:2d:05:d0:9f:47:88:12:c0: f2:cb:27:25:d8:81:d2:1e:fa:28:69:8a:2e:8b:14: 62:ca:af:69:6b:68:02:05:86:24:cb:25:8a:27:4e: e3:54:02:e8:1f:5b:4d:a0:b7:dd:7c:99:09:be:49: 50:2e:5d:e0:4c:e2:f5:14:7d:96:9b:8d:b5:95:56: e7:f1:46:4a:50:94:62:21:4b:92:ac:81:c0:85:7c: 64:13:7b:4a:11:41:ec:0a:08:4d:f8:40:9a:9f:d5: 2e:95:3d:b6:17:f9:e1:e4:c4:89:bc:ed:1d:59:93: 96:2d:88:07:22:d7:bd:c8:9d:18:31:1a:82:9a:1e: 33:31:2e:9e:0d:01:1d:d8:0f:12:1b:f3:ce:52:be: 1e:3f:af:73:f9:47:fe:f5:ac:69:a3:c5:ab:70:a1: 68:b4:7b:bf:01:0b:a2:ba:95:45:c5:cb:c6:ad:b7: 52:1b:22:ec:8b:25:32:49:a8:43:3e:80:1b:fe:52: 4d:c6:32:bb:4d:da:ea:a1:ea:b6:80:fd:ac:3b:1c: d6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:27:83:60:A7:1B:78:4F:54:59:F7:2D:63:17:40:53:50:59:D6:CD X509v3 Authority Key Identifier: keyid:15:9B:A2:9A:75:AE:13:25:C0:38:2F:B4:84:B3:21:D6:8D:15:43:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZuimnWuEyXAOC-0hLMh1o0VQ4Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/300195-7e7b-4e99-a52d-caf4fa072682/1/KCeDYKcbeE9UWfctYxdAU1BZ1s0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/300195-7e7b-4e99-a52d-caf4fa072682/1/FZuimnWuEyXAOC-0hLMh1o0VQ4Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.255.146.0/24 185.176.132.0/24 IPv6: 2a13:c680::/48 Signature Algorithm: sha256WithRSAEncryption 36:86:ca:7d:94:09:71:de:1c:3b:ae:81:5d:76:1f:9d:24:5a: 00:d0:6d:0d:e7:cd:8d:7f:a4:c0:13:6e:42:36:47:eb:73:b2: b2:17:48:c5:08:16:3f:17:c0:cf:c6:6e:d1:fb:c4:d8:34:f9: 77:20:bb:98:18:6a:8b:0b:d1:21:fa:de:80:90:3a:3c:61:26: d9:dd:6d:1c:84:de:ea:c4:c3:a9:d3:f3:cd:57:19:90:48:54: 0c:1c:b5:82:7d:b6:df:32:90:b9:e1:b0:1d:59:30:ef:41:53: 81:ad:23:af:d6:dc:7e:85:6c:66:26:eb:91:ee:2a:3e:99:da: 4d:d8:e0:98:f0:90:c4:5a:27:c0:b5:97:f0:fe:71:e4:5e:f6: 32:98:64:1c:ba:59:cc:91:a2:d9:5f:e3:ca:18:c3:3f:c6:1b: 08:31:49:db:80:cd:f1:8a:ae:97:fb:e3:b1:0a:3c:1c:45:6b: f1:2e:e6:04:eb:3e:0e:0e:c1:ce:bf:08:45:ae:95:f6:48:67: be:33:0d:5b:85:26:72:eb:d3:fc:d4:e8:38:0a:ce:52:d8:17: 5a:0e:60:6a:4f:63:8f:1b:2f:f9:70:d9:48:80:4b:12:0e:ef: 83:1a:0c:d9:db:c3:8a:f1:41:eb:43:bf:53:7a:4f:86:19:ca: bc:bb:73:e7 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt+pTpZfOBFIchrRjmjxZpDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1OWJhMjlhNzVhZTEzMjVjMDM4MmZiNDg0YjMyMWQ2OGQx NTQzODQwHhcNMjYwMTAyMTIxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyODI3ODM2MGE3MWI3ODRmNTQ1OWY3MmQ2MzE3NDA1MzUwNTlkNmNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApy6wwhUqbocwJwVOB9/KwH7l2s9U G3/AhIuDsAIHZ4SU3eqqVXrvHfJzk/VVvosaJdNRLQXQn0eIEsDyyycl2IHSHvoo aYouixRiyq9pa2gCBYYkyyWKJ07jVALoH1tNoLfdfJkJvklQLl3gTOL1FH2Wm421 lVbn8UZKUJRiIUuSrIHAhXxkE3tKEUHsCghN+ECan9UulT22F/nh5MSJvO0dWZOW LYgHIte9yJ0YMRqCmh4zMS6eDQEd2A8SG/POUr4eP69z+Uf+9axpo8WrcKFotHu/ AQuiupVFxcvGrbdSGyLsiyUySahDPoAb/lJNxjK7Tdrqoeq2gP2sOxzWFQIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFCgng2CnG3hPVFn3LWMXQFNQWdbNMB8GA1UdIwQY MBaAFBWbopp1rhMlwDgvtISzIdaNFUOEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlp1aW1uV3VFeVhBT0MtMGhMTWgxbzBWUTRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8zMDAxOTUtN2U3Yi00ZTk5LWE1MmQt Y2FmNGZhMDcyNjgyLzEvS0NlRFlLY2JlRTlVV2ZjdFl4ZEFVMUJaMXMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8zMDAxOTUtN2U3Yi00ZTk5LWE1MmQtY2FmNGZhMDcyNjgy LzEvRlp1aW1uV3VFeVhBT0MtMGhMTWgxbzBWUTRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAn/+SAwQA ubCEMA8EAgACMAkDBwAqE8aAAAAwDQYJKoZIhvcNAQELBQADggEBADaGyn2UCXHe HDuugV12H50kWgDQbQ3nzY1/pMATbkI2R+tzsrIXSMUIFj8XwM/GbtH7xNg0+Xcg u5gYaosL0SH63oCQOjxhJtndbRyE3urEw6nT881XGZBIVAwctYJ9tt8ykLnhsB1Z MO9BU4GtI6/W3H6FbGYm65HuKj6Z2k3Y4JjwkMRaJ8C1l/D+ceRe9jKYZBy6WcyR otlf48oYwz/GGwgxSduAzfGKrpf747EKPBxFa/Eu5gTrPg4Owc6/CEWulfZIZ74z DVuFJnLr0/zU6DgKzlLYF1oOYGpPY48bL/lw2UiASxIO74MaDNnbw4rxQetDv1N6 T4YZyry7c+c= -----END CERTIFICATE-----Generated at Mon Feb 9 22:32:09 2026 by rpki-client