This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/KkmWSGykoPl9WKIjokmVqUHLE_E.roa File: KkmWSGykoPl9WKIjokmVqUHLE_E.roa (raw, json) Hash identifier: bNMQL1twNCxrJQ7tLIUTLyGCOVMxMviSfN90YHRBRho= Subject key identifier: 2A:49:96:48:6C:A4:A0:F9:7D:58:A2:23:A2:49:95:A9:41:CB:13:F1 Certificate issuer: /CN=259490c5dbcfbf590da33bfbd37970a0763469c9 Certificate serial: 019B7C110C7AC236D712BB074D714E6947A3 Authority key identifier: 25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/KkmWSGykoPl9WKIjokmVqUHLE_E.roa Signing time: Fri 02 Jan 2026 00:17:30 +0000 ROA not before: Fri 02 Jan 2026 00:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52042 IP address blocks: 2a09:be41::/32 maxlen: 48 2a09:be42::/31 maxlen: 48 2a09:be44::/30 maxlen: 48 2a0e:ec00::/30 maxlen: 48 2a0e:ec04::/31 maxlen: 48 2a0e:ec05::/32 maxlen: 48 2a12:49c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.mft rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:0c:7a:c2:36:d7:12:bb:07:4d:71:4e:69:47:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=259490c5dbcfbf590da33bfbd37970a0763469c9 Validity Not Before: Jan 2 00:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2a4996486ca4a0f97d58a223a24995a941cb13f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:da:8f:dd:f1:66:4c:8c:03:ab:bc:bd:78:02: 15:5e:55:56:91:59:a8:8a:e0:b7:85:95:ac:3b:5f: b2:5e:33:2d:03:59:4e:7e:f4:99:59:16:72:f6:cd: 10:f6:99:bd:db:d6:59:19:f2:30:77:75:93:62:87: 4e:f4:b8:1e:d9:c4:2d:8b:68:7f:6c:43:5a:f7:f2: 3c:8c:a1:06:09:81:28:ae:17:2a:7e:11:6c:5b:56: 49:cf:1e:aa:e4:69:1a:04:75:6b:df:2a:a4:37:ac: 12:97:62:88:ec:17:c6:e0:5b:9c:f8:be:ce:b0:de: c5:2c:02:41:38:fd:a9:e8:1d:9a:0e:da:f8:fe:db: f3:72:7c:80:1f:05:00:5e:1b:57:d4:c0:e5:d1:63: 0b:9f:43:89:fc:d1:2b:27:6d:65:27:e7:52:7f:1c: ca:cb:89:d5:3e:69:cf:29:97:7e:a6:16:40:ee:ad: e5:fd:3f:f4:a7:3d:a0:22:b5:01:77:88:cf:fc:b2: e9:ee:23:95:a6:c9:de:aa:7e:4c:ec:59:b4:74:ea: 9f:5a:e7:e2:80:47:94:c9:a3:1e:a4:77:59:c1:dc: e6:bb:28:fe:e0:c1:f9:25:1e:ad:6b:f4:d3:2e:59: ff:ac:7a:cc:7e:f7:f0:f0:94:4a:11:e7:65:57:b5: cf:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:49:96:48:6C:A4:A0:F9:7D:58:A2:23:A2:49:95:A9:41:CB:13:F1 X509v3 Authority Key Identifier: keyid:25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/KkmWSGykoPl9WKIjokmVqUHLE_E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:be41::-2a09:be47:ffff:ffff:ffff:ffff:ffff:ffff 2a0e:ec00::-2a0e:ec05:ffff:ffff:ffff:ffff:ffff:ffff 2a12:49c0::/29 Signature Algorithm: sha256WithRSAEncryption 87:8d:d1:b7:0d:3e:45:23:0c:fb:3d:bf:98:84:65:12:a1:d0: e5:d5:8b:44:2f:fb:3f:79:bf:c8:43:c6:b8:8c:c5:4f:18:06: fe:56:30:22:8b:92:fa:6a:55:5b:7c:c1:9c:4d:1f:f1:eb:01: e8:76:06:c7:20:c2:ce:c4:8b:79:cd:d5:3b:8e:46:15:c7:1d: d8:6d:d7:5d:da:59:bb:f0:d5:7a:42:2a:b2:86:81:38:91:ba: 9a:18:4f:f6:01:29:6b:ee:5c:da:82:05:e7:7a:46:6c:fa:97: 4d:34:06:be:05:98:9e:ee:0e:4d:3c:d1:17:cb:50:b0:29:1d: a5:fa:3b:77:91:2d:84:66:ab:29:a5:f1:c5:9a:67:e6:38:a3: 7a:1d:e7:7a:b6:79:a8:3b:70:0b:d7:9d:42:ad:f8:fc:ef:4c: d9:6d:b0:38:55:51:11:32:82:5e:a4:b2:6f:6b:8e:90:90:07: 79:c4:3e:70:55:50:4f:a5:fd:58:98:c7:8e:35:31:20:4c:13: 83:1c:d3:77:cf:6c:1b:bd:b4:9e:e9:53:48:66:45:dc:21:a6: 77:4c:21:51:7c:9a:1e:b5:fd:d9:24:b5:bf:dc:8f:2a:5b:1f: 7b:ca:23:4b:78:b2:38:1a:15:b7:0e:8a:0b:2b:9e:ff:f6:04: 08:18:4d:12 -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZt8EQx6wjbXErsHTXFOaUejMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1OTQ5MGM1ZGJjZmJmNTkwZGEzM2JmYmQzNzk3MGEwNzYz NDY5YzkwHhcNMjYwMTAyMDAxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYTQ5OTY0ODZjYTRhMGY5N2Q1OGEyMjNhMjQ5OTVhOTQxY2IxM2YxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNqP3fFmTIwDq7y9eAIVXlVWkVmo iuC3hZWsO1+yXjMtA1lOfvSZWRZy9s0Q9pm929ZZGfIwd3WTYodO9Lge2cQti2h/ bENa9/I8jKEGCYEorhcqfhFsW1ZJzx6q5GkaBHVr3yqkN6wSl2KI7BfG4Fuc+L7O sN7FLAJBOP2p6B2aDtr4/tvzcnyAHwUAXhtX1MDl0WMLn0OJ/NErJ21lJ+dSfxzK y4nVPmnPKZd+phZA7q3l/T/0pz2gIrUBd4jP/LLp7iOVpsneqn5M7Fm0dOqfWufi gEeUyaMepHdZwdzmuyj+4MH5JR6ta/TTLln/rHrMfvfw8JRKEedlV7XPywIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFCpJlkhspKD5fViiI6JJlalByxPxMB8GA1UdIwQY MBaAFCWUkMXbz79ZDaM7+9N5cKB2NGnJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlpTUXhkdlB2MWtOb3p2NzAzbHdvSFkwYWNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9lZGFkMmQtOTVjYy00OWQwLTg2ZjQt M2NlM2NmOGIxYzQ5LzEvS2ttV1NHeWtvUGw5V0tJam9rbVZxVUhMRV9FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9lZGFkMmQtOTVjYy00OWQwLTg2ZjQtM2NlM2NmOGIxYzQ5 LzEvSlpTUXhkdlB2MWtOb3p2NzAzbHdvSFkwYWNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAAjAmMA4DBQAqCb5B AwUDKgm+QDANAwQCKg7sAwUBKg7sBAMFAyoSScAwDQYJKoZIhvcNAQELBQADggEB AIeN0bcNPkUjDPs9v5iEZRKh0OXVi0Qv+z95v8hDxriMxU8YBv5WMCKLkvpqVVt8 wZxNH/HrAeh2Bscgws7Ei3nN1TuORhXHHdht113aWbvw1XpCKrKGgTiRupoYT/YB KWvuXNqCBed6Rmz6l000Br4FmJ7uDk080RfLULApHaX6O3eRLYRmqyml8cWaZ+Y4 o3od53q2eag7cAvXnUKt+PzvTNltsDhVUREygl6ksm9rjpCQB3nEPnBVUE+l/ViY x441MSBME4Mc03fPbBu9tJ7pU0hmRdwhpndMIVF8mh61/dkktb/cjypbH3vKI0t4 sjgaFbcOigsrnv/2BAgYTRI= -----END CERTIFICATE-----Generated at Sun Jan 18 16:37:26 2026 by rpki-client