This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/KQlwkPmpk1DLGUyeI2rVK9lNE7E.roa File: KQlwkPmpk1DLGUyeI2rVK9lNE7E.roa (raw, json) Hash identifier: bwKf8d6A05QgLcfG48aYiSBWbkKSxoVtSdwZtCZpE+U= Subject key identifier: 29:09:70:90:F9:A9:93:50:CB:19:4C:9E:23:6A:D5:2B:D9:4D:13:B1 Certificate issuer: /CN=81fa48f40bc84540c46bd23be9b90897aa184f4d Certificate serial: 019B7F1605799DCD14FF1003DBA27DC7D361 Authority key identifier: 81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/KQlwkPmpk1DLGUyeI2rVK9lNE7E.roa Signing time: Fri 02 Jan 2026 14:21:48 +0000 ROA not before: Fri 02 Jan 2026 14:21:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213198 IP address blocks: 195.64.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.crl rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.mft rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:16:05:79:9d:cd:14:ff:10:03:db:a2:7d:c7:d3:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81fa48f40bc84540c46bd23be9b90897aa184f4d Validity Not Before: Jan 2 14:21:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29097090f9a99350cb194c9e236ad52bd94d13b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f5:70:d9:98:49:ac:30:1e:2f:09:02:16:da: 0a:ce:50:cd:70:f3:58:3c:9c:50:4c:b0:8e:6e:de: 6c:26:3c:5f:b1:ed:96:f4:59:b1:fe:57:ae:bb:a1: 08:c2:c5:18:e0:a8:e6:61:4f:de:9f:e8:7e:a3:9f: 4a:7a:78:b2:79:96:75:1a:6c:0f:f9:bf:09:e1:f8: aa:1d:af:3d:7f:af:aa:04:68:ff:81:01:45:aa:32: 36:32:f1:3e:b6:6c:d0:cc:55:1e:30:31:bd:20:de: e5:97:69:b9:65:b5:78:a6:fc:5d:48:78:7b:06:9c: e9:30:64:0b:2f:9d:4c:c3:bf:9f:ad:e9:30:49:54: ab:44:14:3b:21:87:20:61:3d:64:e0:b2:1c:63:cc: f4:8a:21:03:72:33:c8:ea:17:d3:f5:7c:09:fd:37: 76:3b:78:12:b5:34:49:16:2b:43:ed:95:7b:1c:b6: 67:e1:79:b4:97:e4:26:e2:fc:29:36:89:fd:9e:05: 2d:67:48:07:c5:fb:87:27:ed:45:59:ff:27:07:e5: e1:6f:32:6a:fd:c6:e7:a9:59:2a:03:dd:a3:95:27: e6:af:8f:af:81:ce:c8:f3:5c:a8:f4:fb:94:4d:cb: f1:81:4e:0a:f3:ef:54:a3:a5:15:4a:e7:c3:0f:24: 9e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:09:70:90:F9:A9:93:50:CB:19:4C:9E:23:6A:D5:2B:D9:4D:13:B1 X509v3 Authority Key Identifier: keyid:81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/KQlwkPmpk1DLGUyeI2rVK9lNE7E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.64.238.0/24 Signature Algorithm: sha256WithRSAEncryption a7:af:55:7b:0f:ee:fa:e3:01:ac:a6:d4:25:09:10:5e:b0:a0: 1e:ab:03:e2:32:ce:d0:33:c6:a3:8d:8d:b4:3c:6f:8b:04:0f: 4e:1b:c9:a6:78:b3:f8:02:d5:a3:b4:1f:28:39:f9:1a:04:fc: 77:fd:a9:4d:ed:5c:fb:e2:18:ac:13:fa:29:b4:18:8a:f1:5e: 94:68:a5:4a:80:ec:4e:73:7a:94:33:21:86:78:68:e4:c7:5e: 2b:a0:c2:e4:ab:77:8f:0a:64:ca:46:64:ea:33:fd:d1:b2:bd: 4e:cb:16:b1:48:4d:ea:24:27:a6:ca:ba:5f:bb:60:1e:82:03: 80:4b:26:c5:ff:58:28:ea:20:66:c8:65:25:c6:cf:bb:41:0f: 19:1d:2b:c9:73:6b:b7:66:2c:55:e3:90:8c:a3:23:4e:14:dd: 50:e2:10:9e:5e:fb:56:d8:89:81:9d:8c:4f:0c:e9:3c:12:df: 35:c6:91:e3:81:5f:f7:55:b7:7e:51:5b:df:18:06:9a:95:9d: 0f:e7:84:7e:c1:5d:c6:ae:46:46:e5:c0:a0:0a:cc:80:17:f4: b8:72:c2:de:19:52:cd:05:8d:64:9f:08:b9:21:05:d3:dd:f1: 88:21:01:b0:2d:e0:6f:43:05:a0:e7:74:66:cd:7e:f6:b3:75: 44:55:af:35 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FgV5nc0U/xAD26J9x9NhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxZmE0OGY0MGJjODQ1NDBjNDZiZDIzYmU5YjkwODk3YWEx ODRmNGQwHhcNMjYwMTAyMTQyMTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTA5NzA5MGY5YTk5MzUwY2IxOTRjOWUyMzZhZDUyYmQ5NGQxM2IxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqPVw2ZhJrDAeLwkCFtoKzlDNcPNY PJxQTLCObt5sJjxfse2W9Fmx/leuu6EIwsUY4KjmYU/en+h+o59KeniyeZZ1GmwP +b8J4fiqHa89f6+qBGj/gQFFqjI2MvE+tmzQzFUeMDG9IN7ll2m5ZbV4pvxdSHh7 BpzpMGQLL51Mw7+frekwSVSrRBQ7IYcgYT1k4LIcY8z0iiEDcjPI6hfT9XwJ/Td2 O3gStTRJFitD7ZV7HLZn4Xm0l+Qm4vwpNon9ngUtZ0gHxfuHJ+1FWf8nB+XhbzJq /cbnqVkqA92jlSfmr4+vgc7I81yo9PuUTcvxgU4K8+9Uo6UVSufDDySegQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCkJcJD5qZNQyxlMniNq1SvZTROxMB8GA1UdIwQY MBaAFIH6SPQLyEVAxGvSO+m5CJeqGE9NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2ZwSTlBdklSVURFYTlJNzZia0lsNm9ZVDAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8xNDYwNzgtZjliMi00MTYzLWFmMWEt OGU5M2NiNWM1MzU1LzEvS1Fsd2tQbXBrMURMR1V5ZUkyclZLOWxORTdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My8xNDYwNzgtZjliMi00MTYzLWFmMWEtOGU5M2NiNWM1MzU1 LzEvZ2ZwSTlBdklSVURFYTlJNzZia0lsNm9ZVDAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0DuMA0G CSqGSIb3DQEBCwUAA4IBAQCnr1V7D+764wGsptQlCRBesKAeqwPiMs7QM8ajjY20 PG+LBA9OG8mmeLP4AtWjtB8oOfkaBPx3/alN7Vz74hisE/optBiK8V6UaKVKgOxO c3qUMyGGeGjkx14roMLkq3ePCmTKRmTqM/3Rsr1OyxaxSE3qJCemyrpfu2AeggOA SybF/1go6iBmyGUlxs+7QQ8ZHSvJc2u3ZixV45CMoyNOFN1Q4hCeXvtW2ImBnYxP DOk8Et81xpHjgV/3Vbd+UVvfGAaalZ0P54R+wV3GrkZG5cCgCsyAF/S4csLeGVLN BY1knwi5IQXT3fGIIQGwLeBvQwWg53RmzX72s3VEVa81 -----END CERTIFICATE-----Generated at Tue Feb 10 04:28:25 2026 by rpki-client