This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e98a79-249a-4048-9581-f30709d9c379/1/KP-ylf8ytthvJyIxnF220410W_w.roa File: KP-ylf8ytthvJyIxnF220410W_w.roa (raw, json) Hash identifier: C5HlcdAoo1o+AnwI6JDZzjVDacowCGaTh3ddFqxBD4g= Subject key identifier: 28:FF:B2:95:FF:32:B6:D8:6F:27:22:31:9C:5D:B6:D3:8D:74:5B:FC Certificate issuer: /CN=7e02e20abd2203b057686b1cad6cc1253444b8b2 Certificate serial: 019B79EC45BEFB87F79EEE958E2C2974EAD3 Authority key identifier: 7E:02:E2:0A:BD:22:03:B0:57:68:6B:1C:AD:6C:C1:25:34:44:B8:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fgLiCr0iA7BXaGscrWzBJTREuLI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e98a79-249a-4048-9581-f30709d9c379/1/KP-ylf8ytthvJyIxnF220410W_w.roa Signing time: Thu 01 Jan 2026 14:18:06 +0000 ROA not before: Thu 01 Jan 2026 14:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9123 IP address blocks: 85.239.33.0/24 maxlen: 24 85.239.34.0/24 maxlen: 24 85.239.35.0/24 maxlen: 24 85.239.36.0/22 maxlen: 24 85.239.40.0/22 maxlen: 24 85.239.44.0/22 maxlen: 24 85.239.48.0/22 maxlen: 24 85.239.52.0/22 maxlen: 24 85.239.56.0/22 maxlen: 24 85.239.60.0/22 maxlen: 24 185.152.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/e98a79-249a-4048-9581-f30709d9c379/1/fgLiCr0iA7BXaGscrWzBJTREuLI.crl rsync://rpki.ripe.net/repository/DEFAULT/79/e98a79-249a-4048-9581-f30709d9c379/1/fgLiCr0iA7BXaGscrWzBJTREuLI.mft rsync://rpki.ripe.net/repository/DEFAULT/fgLiCr0iA7BXaGscrWzBJTREuLI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 02:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:45:be:fb:87:f7:9e:ee:95:8e:2c:29:74:ea:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e02e20abd2203b057686b1cad6cc1253444b8b2 Validity Not Before: Jan 1 14:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=28ffb295ff32b6d86f2722319c5db6d38d745bfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c3:e5:d9:2c:d9:63:c9:9e:82:d9:52:90:2c: 45:4b:8c:81:40:48:f6:44:51:19:bd:43:4e:d7:cf: 1d:83:86:2e:5c:a0:1e:83:50:8d:00:91:86:85:58: e0:0f:a8:46:45:56:8d:a8:53:49:96:38:16:a3:04: bd:e2:93:f2:f8:b5:55:2d:57:0f:58:f7:59:41:07: 87:af:94:0d:10:f4:ee:45:0b:e2:44:f4:c5:70:63: 63:8a:26:e9:91:ab:c8:9b:47:d8:6c:d5:25:e8:93: c5:be:ee:45:97:6d:54:0e:d0:ef:ac:d8:f2:96:1b: 92:f2:25:e4:e6:8b:04:36:08:b5:e6:9d:1a:a6:d1: 9e:55:10:27:2c:d4:2e:97:06:8d:30:fd:15:ae:11: 4a:9f:2a:18:c7:ff:7a:6e:57:e5:fc:51:d7:46:ba: e2:70:3a:59:2d:b3:95:da:18:7f:69:ac:db:4c:12: 02:06:8b:22:28:04:e2:77:7e:e2:68:a5:99:71:ca: 66:5b:27:12:ae:73:9d:15:a6:6e:8d:83:f3:64:33: 56:1c:92:7f:0b:ce:5c:04:45:f4:3b:86:d3:b5:cf: 04:55:bc:ee:6a:79:43:3c:07:0b:dd:67:09:51:17: 90:6f:4a:e4:0d:39:48:10:e5:3b:60:1d:1c:bb:45: 73:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:FF:B2:95:FF:32:B6:D8:6F:27:22:31:9C:5D:B6:D3:8D:74:5B:FC X509v3 Authority Key Identifier: keyid:7E:02:E2:0A:BD:22:03:B0:57:68:6B:1C:AD:6C:C1:25:34:44:B8:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgLiCr0iA7BXaGscrWzBJTREuLI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e98a79-249a-4048-9581-f30709d9c379/1/KP-ylf8ytthvJyIxnF220410W_w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e98a79-249a-4048-9581-f30709d9c379/1/fgLiCr0iA7BXaGscrWzBJTREuLI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.239.33.0-85.239.63.255 185.152.92.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:c1:b4:af:18:bd:f4:c8:1d:66:cc:81:0e:24:de:97:09:ab: 45:49:e3:13:4e:bc:18:5b:a7:57:ad:4e:b8:dc:fb:04:25:cc: 50:d5:f8:6c:0b:ac:69:ef:95:18:fd:ce:99:1c:46:20:bb:97: 42:ed:a8:64:fc:ea:37:b1:6d:ad:fa:3d:8d:50:91:bc:02:09: 37:72:c3:e1:71:e3:0f:b5:f4:13:b3:1f:91:d5:1d:09:3c:36: e7:dc:bd:aa:f0:7f:ee:99:17:15:68:d0:43:a6:f5:84:f5:8b: d7:9d:4a:35:6e:28:10:27:61:3a:7d:f8:7a:ed:b2:ab:05:89: 95:ec:47:43:c3:36:84:33:94:d4:02:c8:82:da:f2:51:3a:ff: 69:86:77:b3:76:35:29:c6:4b:91:2e:a3:24:f6:63:66:a5:f5: 6f:7f:91:d5:d5:7a:14:2b:b2:6f:48:15:07:56:5a:d9:83:eb: a7:c1:09:d7:99:a7:50:5f:f0:2b:0e:fe:f5:57:79:ac:34:03: b5:2c:35:69:1c:7c:16:54:f7:3c:61:04:c2:03:6e:55:16:74: a7:20:87:78:7a:bc:c3:57:73:5c:ea:e0:8d:b3:56:38:a9:b7: 14:ab:77:e1:e6:11:47:78:be:38:73:fa:c3:f5:3e:24:71:c9: d6:4b:c0:53 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt57EW++4f3nu6VjiwpdOrTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMDJlMjBhYmQyMjAzYjA1NzY4NmIxY2FkNmNjMTI1MzQ0 NGI4YjIwHhcNMjYwMTAxMTQxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOGZmYjI5NWZmMzJiNmQ4NmYyNzIyMzE5YzVkYjZkMzhkNzQ1YmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMPl2SzZY8megtlSkCxFS4yBQEj2 RFEZvUNO188dg4YuXKAeg1CNAJGGhVjgD6hGRVaNqFNJljgWowS94pPy+LVVLVcP WPdZQQeHr5QNEPTuRQviRPTFcGNjiibpkavIm0fYbNUl6JPFvu5Fl21UDtDvrNjy lhuS8iXk5osENgi15p0aptGeVRAnLNQulwaNMP0VrhFKnyoYx/96blfl/FHXRrri cDpZLbOV2hh/aazbTBICBosiKATid37iaKWZccpmWycSrnOdFaZujYPzZDNWHJJ/ C85cBEX0O4bTtc8EVbzuanlDPAcL3WcJUReQb0rkDTlIEOU7YB0cu0VzxwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFCj/spX/MrbYbyciMZxdttONdFv8MB8GA1UdIwQY MBaAFH4C4gq9IgOwV2hrHK1swSU0RLiyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmdMaUNyMGlBN0JYYUdzY3JXekJKVFJFdUxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9lOThhNzktMjQ5YS00MDQ4LTk1ODEt ZjMwNzA5ZDljMzc5LzEvS1AteWxmOHl0dGh2SnlJeG5GMjIwNDEwV193LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS9lOThhNzktMjQ5YS00MDQ4LTk1ODEtZjMwNzA5ZDljMzc5 LzEvZmdMaUNyMGlBN0JYYUdzY3JXekJKVFJFdUxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBABV7yED BAZV7wADBAK5mFwwDQYJKoZIhvcNAQELBQADggEBAD3BtK8YvfTIHWbMgQ4k3pcJ q0VJ4xNOvBhbp1etTrjc+wQlzFDV+GwLrGnvlRj9zpkcRiC7l0LtqGT86jexba36 PY1QkbwCCTdyw+Fx4w+19BOzH5HVHQk8Nufcvarwf+6ZFxVo0EOm9YT1i9edSjVu KBAnYTp9+HrtsqsFiZXsR0PDNoQzlNQCyILa8lE6/2mGd7N2NSnGS5EuoyT2Y2al 9W9/kdXVehQrsm9IFQdWWtmD66fBCdeZp1Bf8CsO/vVXeaw0A7UsNWkcfBZU9zxh BMIDblUWdKcgh3h6vMNXc1zq4I2zVjiptxSrd+HmEUd4vjhz+sP1PiRxydZLwFM= -----END CERTIFICATE-----Generated at Wed Jan 21 11:16:09 2026 by rpki-client