This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1759da-c66e-43c8-881d-6db090214035/1/KNINNJg3cCwRIkadz_iFDjzCAZo.roa File: KNINNJg3cCwRIkadz_iFDjzCAZo.roa (raw, json) Hash identifier: uyBgZTWuxKjfgaFUXeyVL4F1AHNOmaLe474fWdCTqys= Subject key identifier: 28:D2:0D:34:98:37:70:2C:11:22:46:9D:CF:F8:85:0E:3C:C2:01:9A Certificate issuer: /CN=de9f2a927378bd1455da8bdf85bb1ab867e1f528 Certificate serial: 019B797ED9338749586C6BAD2D3EA1F5EEB2 Authority key identifier: DE:9F:2A:92:73:78:BD:14:55:DA:8B:DF:85:BB:1A:B8:67:E1:F5:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3p8qknN4vRRV2ovfhbsauGfh9Sg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1759da-c66e-43c8-881d-6db090214035/1/KNINNJg3cCwRIkadz_iFDjzCAZo.roa Signing time: Thu 01 Jan 2026 12:18:34 +0000 ROA not before: Thu 01 Jan 2026 12:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209122 IP address blocks: 194.35.104.0/22 maxlen: 22 194.35.104.0/23 maxlen: 23 194.35.106.0/23 maxlen: 23 2a0d:f8c0::/42 maxlen: 42 2a0d:f8c0::/43 maxlen: 43 2a0d:f8c0:20::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1759da-c66e-43c8-881d-6db090214035/1/3p8qknN4vRRV2ovfhbsauGfh9Sg.crl rsync://rpki.ripe.net/repository/DEFAULT/59/1759da-c66e-43c8-881d-6db090214035/1/3p8qknN4vRRV2ovfhbsauGfh9Sg.mft rsync://rpki.ripe.net/repository/DEFAULT/3p8qknN4vRRV2ovfhbsauGfh9Sg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:d9:33:87:49:58:6c:6b:ad:2d:3e:a1:f5:ee:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de9f2a927378bd1455da8bdf85bb1ab867e1f528 Validity Not Before: Jan 1 12:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=28d20d349837702c1122469dcff8850e3cc2019a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7d:78:d1:50:1c:7c:ed:3b:61:8b:3e:1d:46: fb:a0:f6:ec:d9:12:0d:29:49:ee:4d:37:4e:33:67: 9d:60:6f:ae:25:74:e0:5b:eb:2a:35:ed:ba:b5:e6: ff:a1:05:a5:76:90:1b:5d:db:23:11:42:71:59:d2: 31:30:6c:63:d0:5d:c1:71:a9:8f:63:aa:c3:6a:d7: 1f:bf:6d:7d:0e:b4:c8:ed:d0:c5:75:a8:c1:50:7b: 77:79:40:aa:56:3e:03:22:b1:5b:d0:4f:13:fc:a6: 6a:63:c6:75:aa:6c:52:16:e3:a2:eb:62:83:d8:d9: d2:92:df:34:d5:f4:ad:10:83:cf:bc:a1:f6:7e:0d: 11:ce:68:c7:a1:e8:66:92:0d:ff:29:bd:30:85:09: a6:14:67:b0:04:17:03:c4:b0:49:80:eb:ce:c2:65: 07:84:23:ce:83:82:6d:ee:6a:18:a4:cb:c6:6d:b7: 73:6f:ed:0b:a6:2f:00:29:a1:32:91:bb:26:8c:6e: 60:5a:8a:23:25:65:ae:ce:ea:04:b4:44:cc:be:77: 5b:53:46:0b:45:4a:67:a8:57:22:69:0a:0a:4a:a5: ac:c4:09:cc:68:dc:00:44:59:8e:0f:97:57:32:cf: 40:5a:92:0e:6d:dd:ce:71:ae:39:22:b0:7a:fc:88: 84:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D2:0D:34:98:37:70:2C:11:22:46:9D:CF:F8:85:0E:3C:C2:01:9A X509v3 Authority Key Identifier: keyid:DE:9F:2A:92:73:78:BD:14:55:DA:8B:DF:85:BB:1A:B8:67:E1:F5:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3p8qknN4vRRV2ovfhbsauGfh9Sg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1759da-c66e-43c8-881d-6db090214035/1/KNINNJg3cCwRIkadz_iFDjzCAZo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1759da-c66e-43c8-881d-6db090214035/1/3p8qknN4vRRV2ovfhbsauGfh9Sg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.35.104.0/22 IPv6: 2a0d:f8c0::/42 Signature Algorithm: sha256WithRSAEncryption 86:72:59:22:0a:49:ec:75:7b:fa:0c:4f:2f:fa:28:8b:9c:56: 18:04:dd:4a:ce:fa:1c:87:9c:1b:44:93:a0:35:d3:46:43:ac: 52:4d:48:8d:e9:12:06:f5:b2:b0:31:d4:bc:66:ea:4e:e9:0e: a7:56:d7:e9:36:fa:d0:7f:a9:37:76:c4:fd:72:0d:8a:ea:15: 14:fa:97:ba:75:d7:44:c7:11:79:e5:2e:4d:5f:c8:48:01:3f: 87:d6:d4:f8:73:f6:d7:24:e8:99:b8:3f:18:09:67:60:14:4f: f4:fb:79:b7:63:30:90:ed:ce:d8:38:41:5c:5d:4e:fd:c8:32: 39:48:ee:93:6c:68:f5:ac:79:ab:75:20:4d:6d:a4:3a:47:5e: ae:94:c8:ca:57:84:8f:74:55:80:87:8d:74:31:61:92:fb:86: cd:63:e8:3f:fd:fa:b7:df:3b:ea:06:20:ff:9b:9a:c3:f0:0c: 7c:38:42:68:59:92:ed:61:5a:8f:1e:16:b7:f1:37:08:87:e7: f5:7f:34:a0:17:4b:58:03:53:93:6f:ca:dc:68:94:fb:85:ea: 8d:43:c4:34:c6:30:a9:9e:6e:43:4d:94:0a:57:ee:e1:61:f6: 1a:93:3a:23:af:a5:41:fc:d4:31:5e:d8:4f:83:28:75:30:85: 2d:59:d2:78 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt5ftkzh0lYbGutLT6h9e6yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlOWYyYTkyNzM3OGJkMTQ1NWRhOGJkZjg1YmIxYWI4Njdl MWY1MjgwHhcNMjYwMTAxMTIxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOGQyMGQzNDk4Mzc3MDJjMTEyMjQ2OWRjZmY4ODUwZTNjYzIwMTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAon140VAcfO07YYs+HUb7oPbs2RIN KUnuTTdOM2edYG+uJXTgW+sqNe26teb/oQWldpAbXdsjEUJxWdIxMGxj0F3BcamP Y6rDatcfv219DrTI7dDFdajBUHt3eUCqVj4DIrFb0E8T/KZqY8Z1qmxSFuOi62KD 2NnSkt801fStEIPPvKH2fg0RzmjHoehmkg3/Kb0whQmmFGewBBcDxLBJgOvOwmUH hCPOg4Jt7moYpMvGbbdzb+0Lpi8AKaEykbsmjG5gWoojJWWuzuoEtETMvndbU0YL RUpnqFciaQoKSqWsxAnMaNwARFmOD5dXMs9AWpIObd3Oca45IrB6/IiEbwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFCjSDTSYN3AsESJGnc/4hQ48wgGaMB8GA1UdIwQY MBaAFN6fKpJzeL0UVdqL34W7Grhn4fUoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM3A4cWtuTjR2UlJWMm92Zmhic2F1R2ZoOVNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS8xNzU5ZGEtYzY2ZS00M2M4LTg4MWQt NmRiMDkwMjE0MDM1LzEvS05JTk5KZzNjQ3dSSWthZHpfaUZEanpDQVpvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS8xNzU5ZGEtYzY2ZS00M2M4LTg4MWQtNmRiMDkwMjE0MDM1 LzEvM3A4cWtuTjR2UlJWMm92Zmhic2F1R2ZoOVNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCwiNoMA8E AgACMAkDBwYqDfjAAAAwDQYJKoZIhvcNAQELBQADggEBAIZyWSIKSex1e/oMTy/6 KIucVhgE3UrO+hyHnBtEk6A100ZDrFJNSI3pEgb1srAx1Lxm6k7pDqdW1+k2+tB/ qTd2xP1yDYrqFRT6l7p110THEXnlLk1fyEgBP4fW1Phz9tck6Jm4PxgJZ2AUT/T7 ebdjMJDtztg4QVxdTv3IMjlI7pNsaPWseat1IE1tpDpHXq6UyMpXhI90VYCHjXQx YZL7hs1j6D/9+rffO+oGIP+bmsPwDHw4QmhZku1hWo8eFrfxNwiH5/V/NKAXS1gD U5NvytxolPuF6o1DxDTGMKmebkNNlApX7uFh9hqTOiOvpUH81DFe2E+DKHUwhS1Z 0ng= -----END CERTIFICATE-----Generated at Tue Feb 10 00:14:36 2026 by rpki-client