This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c261eb-c7cd-454d-84a6-afd272dd0fb5/1/kzE8V2n8t4VkwijQkuHTrLSYg_M.roa File: kzE8V2n8t4VkwijQkuHTrLSYg_M.roa (raw, json) Hash identifier: vDJXzEhACcVJt1Zhg/9zbLQmv+eSZCD2dXjNBm17jSo= Subject key identifier: 93:31:3C:57:69:FC:B7:85:64:C2:28:D0:92:E1:D3:AC:B4:98:83:F3 Certificate issuer: /CN=8d8f7eb4d2548f9ccbf3cb38e702a190c11742f5 Certificate serial: 019B78A35365B4BB5A3B120D75E1245BD464 Authority key identifier: 8D:8F:7E:B4:D2:54:8F:9C:CB:F3:CB:38:E7:02:A1:90:C1:17:42:F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jY9-tNJUj5zL88s45wKhkMEXQvU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c261eb-c7cd-454d-84a6-afd272dd0fb5/1/kzE8V2n8t4VkwijQkuHTrLSYg_M.roa Signing time: Thu 01 Jan 2026 08:18:48 +0000 ROA not before: Thu 01 Jan 2026 08:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60574 IP address blocks: 185.28.156.0/22 maxlen: 22 185.231.96.0/22 maxlen: 22 192.162.168.0/22 maxlen: 22 193.138.108.0/24 maxlen: 24 195.140.232.0/22 maxlen: 22 2a00:9e20::/32 maxlen: 32 2a0c:5100::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/c261eb-c7cd-454d-84a6-afd272dd0fb5/1/jY9-tNJUj5zL88s45wKhkMEXQvU.crl rsync://rpki.ripe.net/repository/DEFAULT/79/c261eb-c7cd-454d-84a6-afd272dd0fb5/1/jY9-tNJUj5zL88s45wKhkMEXQvU.mft rsync://rpki.ripe.net/repository/DEFAULT/jY9-tNJUj5zL88s45wKhkMEXQvU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:53:65:b4:bb:5a:3b:12:0d:75:e1:24:5b:d4:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d8f7eb4d2548f9ccbf3cb38e702a190c11742f5 Validity Not Before: Jan 1 08:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=93313c5769fcb78564c228d092e1d3acb49883f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e0:f0:e9:69:cc:88:ba:ca:b4:b0:83:d8:23: 66:ee:5c:61:32:22:7a:bb:4e:64:7a:b2:aa:f3:46: 9d:f0:26:a8:8c:4f:7b:f5:4c:98:65:f9:5d:22:43: 19:4c:f4:d1:31:a5:eb:3a:4e:e2:86:df:04:24:d3: ab:1b:9b:5a:51:f3:27:3a:2d:76:dc:de:f7:05:ee: bc:f0:83:bb:ea:a2:18:69:d2:d2:ef:57:0e:a4:63: 36:18:84:04:74:26:ea:91:29:58:48:48:8e:a2:f6: 14:ef:97:d0:9b:c6:75:69:d6:71:cf:db:b4:7d:5e: 7b:70:b5:8a:c1:70:89:63:5a:42:cc:14:1e:0b:4f: e0:4c:95:7c:34:b1:8d:10:e4:e1:6e:b9:41:77:99: 76:5f:63:e5:67:ef:ea:d8:6c:35:ec:bf:6c:81:b4: ab:f4:3e:4a:8d:a9:d4:85:ad:0e:6f:3d:f2:1e:21: 29:fd:bd:7f:55:30:a3:5e:46:d8:61:c0:95:c7:a6: 61:32:93:6b:ea:7e:a8:5b:ef:b8:b6:bd:9b:72:ee: 83:f0:37:fa:b7:1c:03:63:04:46:f6:07:a0:85:6a: 81:0a:34:b1:f0:93:5a:c5:a1:6a:48:cc:61:ce:18: bc:1f:9f:e4:55:79:58:bc:fa:28:6a:1f:99:6a:da: a6:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:31:3C:57:69:FC:B7:85:64:C2:28:D0:92:E1:D3:AC:B4:98:83:F3 X509v3 Authority Key Identifier: keyid:8D:8F:7E:B4:D2:54:8F:9C:CB:F3:CB:38:E7:02:A1:90:C1:17:42:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jY9-tNJUj5zL88s45wKhkMEXQvU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c261eb-c7cd-454d-84a6-afd272dd0fb5/1/kzE8V2n8t4VkwijQkuHTrLSYg_M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c261eb-c7cd-454d-84a6-afd272dd0fb5/1/jY9-tNJUj5zL88s45wKhkMEXQvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.28.156.0/22 185.231.96.0/22 192.162.168.0/22 193.138.108.0/24 195.140.232.0/22 IPv6: 2a00:9e20::/32 2a0c:5100::/29 Signature Algorithm: sha256WithRSAEncryption 46:36:59:c7:ff:d1:45:e5:db:e6:1e:5b:a2:e4:31:9a:02:c8: 8a:54:66:30:44:4f:8c:27:db:d1:88:11:94:f0:d1:97:64:07: ab:cc:e6:4c:3d:0b:f2:ca:bf:a3:81:13:82:98:19:07:09:d7: 3a:5c:f1:2e:76:0a:af:87:1a:9c:0a:47:4a:07:d7:c9:3d:63: 38:c0:7d:da:77:d5:d5:da:64:f7:9e:6b:37:54:9c:4e:05:a6: d9:b0:3b:4c:8d:ac:95:0f:01:5d:c2:89:4a:cb:36:ee:29:cd: 89:da:8b:3f:f4:47:9c:0c:b9:f4:3b:b8:c0:41:7a:48:08:1e: d7:98:a0:d0:1b:2b:ec:8a:dc:bc:e5:c5:e9:5d:15:6c:5d:97: 5c:00:85:a0:e8:0e:4a:ba:31:f9:fd:d5:90:d4:88:b3:8b:2a: ac:cd:e9:e0:b8:f2:f9:62:96:58:ae:19:c4:b8:29:bd:81:f7: 88:87:3f:f1:50:ba:26:f9:69:c5:cf:7b:f6:f9:d8:a9:6c:67: fb:fe:54:95:cb:9a:6a:be:1f:a1:f7:94:c7:45:d5:55:1a:10: 9a:e0:b4:39:74:83:00:36:0d:3b:f7:3a:42:99:fc:15:4f:0a: 04:0b:3c:8c:e8:be:a5:ce:18:a1:45:c4:e0:11:52:fc:6c:58: a8:ef:93:d9 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt4o1NltLtaOxINdeEkW9RkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkOGY3ZWI0ZDI1NDhmOWNjYmYzY2IzOGU3MDJhMTkwYzEx NzQyZjUwHhcNMjYwMTAxMDgxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MzMxM2M1NzY5ZmNiNzg1NjRjMjI4ZDA5MmUxZDNhY2I0OTg4M2YzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+Dw6WnMiLrKtLCD2CNm7lxhMiJ6 u05kerKq80ad8CaojE979UyYZfldIkMZTPTRMaXrOk7iht8EJNOrG5taUfMnOi12 3N73Be688IO76qIYadLS71cOpGM2GIQEdCbqkSlYSEiOovYU75fQm8Z1adZxz9u0 fV57cLWKwXCJY1pCzBQeC0/gTJV8NLGNEOThbrlBd5l2X2PlZ+/q2Gw17L9sgbSr 9D5KjanUha0Obz3yHiEp/b1/VTCjXkbYYcCVx6ZhMpNr6n6oW++4tr2bcu6D8Df6 txwDYwRG9geghWqBCjSx8JNaxaFqSMxhzhi8H5/kVXlYvPooah+ZatqmDwIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFJMxPFdp/LeFZMIo0JLh06y0mIPzMB8GA1UdIwQY MBaAFI2PfrTSVI+cy/PLOOcCoZDBF0L1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalk5LXROSlVqNXpMODhzNDV3S2hrTUVYUXZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9jMjYxZWItYzdjZC00NTRkLTg0YTYt YWZkMjcyZGQwZmI1LzEva3pFOFYybjh0NFZrd2lqUWt1SFRyTFNZZ19NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS9jMjYxZWItYzdjZC00NTRkLTg0YTYtYWZkMjcyZGQwZmI1 LzEvalk5LXROSlVqNXpMODhzNDV3S2hrTUVYUXZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAkBAIAATAeAwQCuRycAwQC uedgAwQCwKKoAwQAwYpsAwQCw4zoMBQEAgACMA4DBQAqAJ4gAwUDKgxRADANBgkq hkiG9w0BAQsFAAOCAQEARjZZx//RReXb5h5bouQxmgLIilRmMERPjCfb0YgRlPDR l2QHq8zmTD0L8sq/o4ETgpgZBwnXOlzxLnYKr4canApHSgfXyT1jOMB92nfV1dpk 955rN1ScTgWm2bA7TI2slQ8BXcKJSss27inNidqLP/RHnAy59Du4wEF6SAge15ig 0Bsr7IrcvOXF6V0VbF2XXACFoOgOSrox+f3VkNSIs4sqrM3p4Ljy+WKWWK4ZxLgp vYH3iIc/8VC6Jvlpxc979vnYqWxn+/5Ulcuaar4fofeUx0XVVRoQmuC0OXSDADYN O/c6Qpn8FU8KBAs8jOi+pc4YoUXE4BFS/GxYqO+T2Q== -----END CERTIFICATE-----Generated at Mon Feb 2 08:08:25 2026 by rpki-client