This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e425de-236e-4a34-b41a-42481a62123c/1/kGHJ-8rZWO54aj3tYcGMYD_2TqQ.roa File: kGHJ-8rZWO54aj3tYcGMYD_2TqQ.roa (raw, json) Hash identifier: cYqFt+Ygq2GVWtReyVY63qsFOpbAunakWaQ4n67Z65Y= Subject key identifier: 90:61:C9:FB:CA:D9:58:EE:78:6A:3D:ED:61:C1:8C:60:3F:F6:4E:A4 Certificate issuer: /CN=b8c8f23d0c48c62e18e28f560cc9159893d4e42f Certificate serial: 019B7C8054834E6EDF96E59BAF8606796B65 Authority key identifier: B8:C8:F2:3D:0C:48:C6:2E:18:E2:8F:56:0C:C9:15:98:93:D4:E4:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMjyPQxIxi4Y4o9WDMkVmJPU5C8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e425de-236e-4a34-b41a-42481a62123c/1/kGHJ-8rZWO54aj3tYcGMYD_2TqQ.roa Signing time: Fri 02 Jan 2026 02:19:03 +0000 ROA not before: Fri 02 Jan 2026 02:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203148 IP address blocks: 185.130.148.0/22 maxlen: 22 185.130.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e425de-236e-4a34-b41a-42481a62123c/1/uMjyPQxIxi4Y4o9WDMkVmJPU5C8.crl rsync://rpki.ripe.net/repository/DEFAULT/61/e425de-236e-4a34-b41a-42481a62123c/1/uMjyPQxIxi4Y4o9WDMkVmJPU5C8.mft rsync://rpki.ripe.net/repository/DEFAULT/uMjyPQxIxi4Y4o9WDMkVmJPU5C8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:54:83:4e:6e:df:96:e5:9b:af:86:06:79:6b:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8c8f23d0c48c62e18e28f560cc9159893d4e42f Validity Not Before: Jan 2 02:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9061c9fbcad958ee786a3ded61c18c603ff64ea4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:74:09:b5:cc:b1:b0:ad:70:5b:50:d6:0c:82: 21:6f:0a:2b:2a:f0:0d:81:68:74:e0:00:cb:ef:3f: d9:4a:b0:16:15:b4:2a:f3:83:b4:3e:36:07:71:19: c5:a4:e7:f5:9e:95:bb:72:b4:85:e7:e0:f5:a9:3c: 08:68:61:e0:7f:df:c8:6b:24:4e:eb:94:3c:d8:a3: f9:9c:84:45:35:a1:a4:fd:36:6c:62:56:b2:2c:5b: 22:6f:07:f6:42:15:a6:9d:c5:53:b5:4e:b2:84:1b: b1:9b:01:90:ba:cd:10:90:19:d9:2d:2c:c8:47:e6: ca:c7:a9:a2:f1:3a:2c:ef:92:bc:cb:b4:f0:6a:23: 65:55:48:0d:28:3f:48:38:14:a6:ac:f1:7b:0a:52: 33:cf:a1:12:e2:6c:f4:1e:cd:b6:62:bb:a7:ff:2d: 85:0a:f6:7e:ab:87:a9:7b:af:0e:ed:c3:61:38:bb: d1:3f:9e:f0:4f:07:f3:d2:bb:1d:73:8a:20:d5:5a: 90:ed:f9:1f:aa:5e:4f:11:c4:04:9a:dd:5c:d3:3b: 20:0e:05:30:66:b6:e0:8f:8a:e4:45:3a:1e:75:66: 24:bb:65:77:71:1c:c5:51:4e:df:4d:55:ed:08:b3: ec:86:91:f6:db:a6:77:a4:d5:08:d2:f9:ce:b2:0c: 63:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:61:C9:FB:CA:D9:58:EE:78:6A:3D:ED:61:C1:8C:60:3F:F6:4E:A4 X509v3 Authority Key Identifier: keyid:B8:C8:F2:3D:0C:48:C6:2E:18:E2:8F:56:0C:C9:15:98:93:D4:E4:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMjyPQxIxi4Y4o9WDMkVmJPU5C8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e425de-236e-4a34-b41a-42481a62123c/1/kGHJ-8rZWO54aj3tYcGMYD_2TqQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e425de-236e-4a34-b41a-42481a62123c/1/uMjyPQxIxi4Y4o9WDMkVmJPU5C8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.130.148.0/22 Signature Algorithm: sha256WithRSAEncryption 96:72:f9:4d:19:65:2c:b8:30:22:d6:69:48:a4:aa:7d:a5:44: 0b:b8:35:5e:bd:f6:9f:49:54:20:f9:4c:4b:98:83:89:58:b1: fe:a6:79:c4:85:30:5f:c3:23:5a:37:bc:94:ac:ae:b0:8a:b2: 8f:cb:e8:14:aa:af:42:52:3a:cc:0c:6c:f6:4a:ed:58:e8:f9: f9:3e:00:f3:62:bf:c8:de:09:f4:59:00:de:7e:17:e9:c8:53: 46:ff:d3:e0:83:bd:9d:50:92:2b:26:2d:86:1a:9c:0d:dd:fb: 38:01:d7:e1:58:ca:9f:2a:d4:bb:73:72:c6:a4:d5:66:20:c1: 1f:f4:49:53:de:b8:63:94:43:59:5f:76:bb:d5:82:a4:7e:e9: 96:a5:6d:35:15:e5:0b:d9:c6:4d:26:69:06:4a:82:2b:93:f6: e2:2e:80:af:ec:e6:33:08:28:33:46:d1:8e:c2:b1:ee:0e:c7: 9f:aa:1f:ee:ae:7a:ba:96:84:22:17:cf:6c:f0:26:1c:77:b8: 27:b3:c0:c1:3b:92:ec:f1:bf:33:b3:a7:4d:38:a7:26:0f:b9: 03:0f:32:ce:b9:73:2f:49:4d:a0:68:f6:8c:96:c5:4b:23:8e: 8b:f8:9f:cc:4b:81:e8:3a:10:f4:9b:9a:45:85:3f:4a:07:4c: 66:83:93:31 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gFSDTm7fluWbr4YGeWtlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4YzhmMjNkMGM0OGM2MmUxOGUyOGY1NjBjYzkxNTk4OTNk NGU0MmYwHhcNMjYwMTAyMDIxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDYxYzlmYmNhZDk1OGVlNzg2YTNkZWQ2MWMxOGM2MDNmZjY0ZWE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmHQJtcyxsK1wW1DWDIIhbworKvAN gWh04ADL7z/ZSrAWFbQq84O0PjYHcRnFpOf1npW7crSF5+D1qTwIaGHgf9/IayRO 65Q82KP5nIRFNaGk/TZsYlayLFsibwf2QhWmncVTtU6yhBuxmwGQus0QkBnZLSzI R+bKx6mi8Tos75K8y7TwaiNlVUgNKD9IOBSmrPF7ClIzz6ES4mz0Hs22Yrun/y2F CvZ+q4epe68O7cNhOLvRP57wTwfz0rsdc4og1VqQ7fkfql5PEcQEmt1c0zsgDgUw Zrbgj4rkRToedWYku2V3cRzFUU7fTVXtCLPshpH226Z3pNUI0vnOsgxjYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJBhyfvK2VjueGo97WHBjGA/9k6kMB8GA1UdIwQY MBaAFLjI8j0MSMYuGOKPVgzJFZiT1OQvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdU1qeVBReEl4aTRZNG85V0RNa1ZtSlBVNUM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9lNDI1ZGUtMjM2ZS00YTM0LWI0MWEt NDI0ODFhNjIxMjNjLzEva0dISi04clpXTzU0YWozdFljR01ZRF8yVHFRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9lNDI1ZGUtMjM2ZS00YTM0LWI0MWEtNDI0ODFhNjIxMjNj LzEvdU1qeVBReEl4aTRZNG85V0RNa1ZtSlBVNUM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYKUMA0G CSqGSIb3DQEBCwUAA4IBAQCWcvlNGWUsuDAi1mlIpKp9pUQLuDVevfafSVQg+UxL mIOJWLH+pnnEhTBfwyNaN7yUrK6wirKPy+gUqq9CUjrMDGz2Su1Y6Pn5PgDzYr/I 3gn0WQDefhfpyFNG/9Pgg72dUJIrJi2GGpwN3fs4AdfhWMqfKtS7c3LGpNVmIMEf 9ElT3rhjlENZX3a71YKkfumWpW01FeUL2cZNJmkGSoIrk/biLoCv7OYzCCgzRtGO wrHuDsefqh/urnq6loQiF89s8CYcd7gns8DBO5Ls8b8zs6dNOKcmD7kDDzLOuXMv SU2gaPaMlsVLI46L+J/MS4HoOhD0m5pFhT9KB0xmg5Mx -----END CERTIFICATE-----Generated at Tue Feb 10 01:23:38 2026 by rpki-client