This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/KyZkiVRwovZC3LrfusqaW75r1Kk.roa File: KyZkiVRwovZC3LrfusqaW75r1Kk.roa (raw, json) Hash identifier: Lb1GKS5ZorjNu583mkwjyw6Qxq2DeQxnAy7pzrOkcOM= Subject key identifier: 2B:26:64:89:54:70:A2:F6:42:DC:BA:DF:BA:CA:9A:5B:BE:6B:D4:A9 Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4 Certificate serial: 019B7CEE397365D2C346525ADB36CA27D21B Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/KyZkiVRwovZC3LrfusqaW75r1Kk.roa Signing time: Fri 02 Jan 2026 04:19:05 +0000 ROA not before: Fri 02 Jan 2026 04:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20326 IP address blocks: 82.163.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:39:73:65:d2:c3:46:52:5a:db:36:ca:27:d2:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4 Validity Not Before: Jan 2 04:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2b2664895470a2f642dcbadfbaca9a5bbe6bd4a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5a:ad:8f:14:cc:bd:9b:6f:d0:15:10:75:3b: 27:a3:44:c1:8a:79:83:65:8d:b9:b4:b8:fb:ac:06: 98:21:56:55:ed:4b:de:e7:ad:5c:db:16:41:ae:d5: e2:3d:69:a6:90:9e:a9:5b:39:69:be:28:57:68:82: ef:5d:80:9a:c5:fc:1f:81:92:08:3b:7a:ab:01:c1: e9:0e:f5:7f:2c:c0:59:1b:16:bd:f6:98:3e:c3:b1: 11:fc:fa:b2:54:c4:e4:8d:69:14:75:0c:88:00:5d: 30:1c:2f:7e:f8:18:aa:fe:0a:55:3e:90:35:9f:63: fb:a1:74:70:54:15:64:20:f3:5b:ad:f2:5c:df:59: 6c:f8:a0:90:81:a7:26:64:3e:15:87:21:55:81:b7: 64:42:c7:8c:63:67:cb:00:c4:48:f2:1e:1a:50:65: de:88:99:ea:31:5a:9a:79:3b:44:c6:9a:ca:c1:d4: 40:78:42:d2:d9:21:aa:c5:bb:39:a1:91:26:be:df: 3c:1f:b8:ee:8b:47:80:75:c0:71:38:ca:70:92:e0: 2b:3f:06:d7:73:09:d2:d5:af:61:6c:92:d2:40:f6: 3e:82:cf:56:b5:e9:30:b9:5d:e7:37:41:48:88:41: a9:fb:69:3b:3d:d7:7c:be:30:af:47:95:df:26:b2: cd:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:26:64:89:54:70:A2:F6:42:DC:BA:DF:BA:CA:9A:5B:BE:6B:D4:A9 X509v3 Authority Key Identifier: keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/KyZkiVRwovZC3LrfusqaW75r1Kk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.163.96.0/21 Signature Algorithm: sha256WithRSAEncryption 83:d1:8a:3a:d7:a2:5f:7d:5b:e1:ff:ad:13:e9:65:d1:76:e1: 71:65:14:dd:31:73:2f:ae:5c:24:a8:71:89:64:65:ac:93:94: 77:20:9f:71:b6:5a:86:cf:c1:f6:55:ba:e0:da:8a:7d:b0:fe: e0:12:16:50:91:5c:3a:8b:6a:39:45:30:84:64:83:c1:b5:9f: b2:fd:d6:08:1f:a1:80:08:22:d5:2d:a4:6c:7f:88:bf:6a:32: 0e:7d:67:06:ab:ec:c6:d7:18:ee:41:c6:c7:4b:ed:10:a9:e9: 91:5e:0e:a9:91:3d:4d:82:1c:43:9e:d2:a8:61:fa:78:13:bd: 95:55:e4:bf:22:bc:83:41:f2:12:5a:8e:7e:e4:ec:ee:12:fc: f3:23:1b:8b:b1:43:67:00:05:60:33:58:f9:4a:ef:7d:0c:2c: 17:5a:1f:aa:84:c4:7f:2e:ce:16:36:5d:c1:d1:9d:de:2d:38: 08:dd:21:78:d1:2d:eb:07:5b:3c:1a:bb:9e:20:b9:26:20:b2: 63:e6:37:8c:8f:a4:62:14:ec:3a:04:df:e0:fa:63:fa:5d:50: bb:ff:63:1c:39:e6:bb:f9:1c:37:a2:49:19:5e:39:44:24:75: b0:71:b8:bf:21:55:bc:68:d6:37:7e:be:e8:36:1f:53:59:5b: c9:30:cf:b6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87jlzZdLDRlJa2zbKJ9IbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2 N2IxZTQwHhcNMjYwMTAyMDQxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYjI2NjQ4OTU0NzBhMmY2NDJkY2JhZGZiYWNhOWE1YmJlNmJkNGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolqtjxTMvZtv0BUQdTsno0TBinmD ZY25tLj7rAaYIVZV7Uve561c2xZBrtXiPWmmkJ6pWzlpvihXaILvXYCaxfwfgZII O3qrAcHpDvV/LMBZGxa99pg+w7ER/PqyVMTkjWkUdQyIAF0wHC9++Biq/gpVPpA1 n2P7oXRwVBVkIPNbrfJc31ls+KCQgacmZD4VhyFVgbdkQseMY2fLAMRI8h4aUGXe iJnqMVqaeTtExprKwdRAeELS2SGqxbs5oZEmvt88H7jui0eAdcBxOMpwkuArPwbX cwnS1a9hbJLSQPY+gs9WtekwuV3nN0FIiEGp+2k7Pdd8vjCvR5XfJrLNwwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCsmZIlUcKL2Qty637rKmlu+a9SpMB8GA1UdIwQY MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut ODk3MTRhN2U4ZDU4LzEvS3laa2lWUndvdlpDM0xyZnVzcWFXNzVyMUtrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4 LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDUqNgMA0G CSqGSIb3DQEBCwUAA4IBAQCD0Yo616JffVvh/60T6WXRduFxZRTdMXMvrlwkqHGJ ZGWsk5R3IJ9xtlqGz8H2Vbrg2op9sP7gEhZQkVw6i2o5RTCEZIPBtZ+y/dYIH6GA CCLVLaRsf4i/ajIOfWcGq+zG1xjuQcbHS+0QqemRXg6pkT1NghxDntKoYfp4E72V VeS/IryDQfISWo5+5OzuEvzzIxuLsUNnAAVgM1j5Su99DCwXWh+qhMR/Ls4WNl3B 0Z3eLTgI3SF40S3rB1s8GrueILkmILJj5jeMj6RiFOw6BN/g+mP6XVC7/2McOea7 +Rw3okkZXjlEJHWwcbi/IVW8aNY3fr7oNh9TWVvJMM+2 -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:01 2026 by rpki-client