This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/kyR9zhWIJSzRU9RTzKj6gUl7M0c.roa File: kyR9zhWIJSzRU9RTzKj6gUl7M0c.roa (raw, json) Hash identifier: s/Cs/SfgH9h0PoQLUwPb0sG6rTfpO+jJYKRSvPsSzIo= Subject key identifier: 93:24:7D:CE:15:88:25:2C:D1:53:D4:53:CC:A8:FA:81:49:7B:33:47 Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626 Certificate serial: 019B7BA3D3B9A16470F18D543E6CA6935CEE Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/kyR9zhWIJSzRU9RTzKj6gUl7M0c.roa Signing time: Thu 01 Jan 2026 22:18:12 +0000 ROA not before: Thu 01 Jan 2026 22:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 133150 IP address blocks: 212.100.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 02:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:d3:b9:a1:64:70:f1:8d:54:3e:6c:a6:93:5c:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626 Validity Not Before: Jan 1 22:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=93247dce1588252cd153d453cca8fa81497b3347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:49:c9:8d:70:22:78:ba:4f:ba:4f:ce:62:8a: ac:0b:66:2e:bb:3c:f5:46:0c:de:56:55:26:84:22: f7:4e:68:57:b9:75:ae:dc:43:ce:56:a8:24:ad:78: 97:9c:c7:29:64:2f:6d:a8:bb:1f:17:e5:f2:b5:93: 7b:cf:7e:26:a4:45:92:a5:10:90:a8:da:40:77:3d: ff:2d:90:a2:dc:ca:d7:6a:47:4a:62:a2:82:57:aa: 4d:cd:ea:17:2e:05:9b:19:55:dd:9e:af:10:67:b8: 41:67:32:ad:a1:48:85:19:2d:6a:37:12:db:6e:66: 79:81:85:8f:f6:54:0f:8c:3f:27:74:c4:96:0f:54: 57:6e:6c:15:a9:7a:34:f0:b8:d2:a0:b5:c5:8a:9a: 72:18:d7:d7:ce:bd:7d:b2:7d:bb:55:3d:d3:0f:e3: 68:ac:1e:75:d0:be:45:ee:3e:41:a1:cb:e3:4c:a9: 2e:91:66:80:bf:5f:3a:3d:df:6c:60:61:97:bf:66: cf:24:db:b8:07:ea:34:85:1a:6a:49:b8:44:fb:79: d9:3a:13:91:50:21:1e:f7:7e:a1:1c:a2:b9:4d:1a: 68:bb:6f:b4:4f:82:7b:c9:22:47:0f:1b:f5:70:82: e8:cf:35:e5:a0:41:a9:34:b7:6e:6e:dd:01:4f:b3: 9f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:24:7D:CE:15:88:25:2C:D1:53:D4:53:CC:A8:FA:81:49:7B:33:47 X509v3 Authority Key Identifier: keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/kyR9zhWIJSzRU9RTzKj6gUl7M0c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.100.166.0/24 Signature Algorithm: sha256WithRSAEncryption 57:68:e5:f8:11:9b:db:17:50:e8:29:dd:73:e0:94:0e:f1:f4: de:46:b2:2f:a5:23:0a:d3:84:a9:a9:f1:b2:2c:d1:be:be:22: ae:47:7e:88:6b:73:ce:86:ad:c8:f7:e4:2e:32:f2:12:30:6e: 3b:42:f8:c7:5f:24:a9:4e:c3:6c:04:a4:55:f8:c5:0e:16:7c: dc:fa:56:b2:2f:81:58:48:d2:63:1f:c0:91:84:99:8c:35:47: 12:36:57:2b:44:57:4c:3b:57:f8:59:34:6a:df:aa:c9:12:8b: 9d:32:5d:21:80:b1:9a:27:3e:93:65:10:1f:5a:f4:5a:21:d9: a4:f4:2a:c1:94:46:a2:69:4b:59:37:6d:3a:9f:4c:53:a6:e4: a5:36:1f:9d:87:f4:68:bd:3e:ac:a2:d6:e4:12:c9:e9:d3:c8: 61:1c:0e:88:5c:d4:3a:b8:f0:6a:43:47:78:77:54:43:38:f2: b9:8e:bf:37:a2:d8:cf:b9:15:30:36:5d:dd:e4:57:18:a1:98: 94:e1:b3:85:68:44:d4:24:0c:73:19:bd:45:ea:70:76:73:1d: 0a:17:82:c7:e7:3a:77:3d:7a:6a:75:22:cb:b3:f8:ed:23:bd: 08:9e:7e:2e:af:36:d1:31:bc:f5:b5:e7:03:99:96:7c:14:a9: 9d:e9:b9:5f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o9O5oWRw8Y1UPmymk1zuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxYjQ5YmEwZGQ4NjE1MTI4NjE4ZDUwMTU5Y2IwZjNiNWU5 ZWU2MjYwHhcNMjYwMTAxMjIxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MzI0N2RjZTE1ODgyNTJjZDE1M2Q0NTNjY2E4ZmE4MTQ5N2IzMzQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqknJjXAieLpPuk/OYoqsC2Yuuzz1 RgzeVlUmhCL3TmhXuXWu3EPOVqgkrXiXnMcpZC9tqLsfF+XytZN7z34mpEWSpRCQ qNpAdz3/LZCi3MrXakdKYqKCV6pNzeoXLgWbGVXdnq8QZ7hBZzKtoUiFGS1qNxLb bmZ5gYWP9lQPjD8ndMSWD1RXbmwVqXo08LjSoLXFippyGNfXzr19sn27VT3TD+No rB510L5F7j5BocvjTKkukWaAv186Pd9sYGGXv2bPJNu4B+o0hRpqSbhE+3nZOhOR UCEe936hHKK5TRpou2+0T4J7ySJHDxv1cILozzXloEGpNLdubt0BT7OfsQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJMkfc4ViCUs0VPUU8yo+oFJezNHMB8GA1UdIwQY MBaAFFG0m6DdhhUShhjVAVnLDztenuYmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWJTYm9OMkdGUktHR05VQldjc1BPMTZlNWlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8yNmMwNDktNDdlZS00ODg2LTk4NDQt NGFiOWU4YWEzMjYyLzEva3lSOXpoV0lKU3pSVTlSVHpLajZnVWw3TTBjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS8yNmMwNDktNDdlZS00ODg2LTk4NDQtNGFiOWU4YWEzMjYy LzEvVWJTYm9OMkdGUktHR05VQldjc1BPMTZlNWlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1GSmMA0G CSqGSIb3DQEBCwUAA4IBAQBXaOX4EZvbF1DoKd1z4JQO8fTeRrIvpSMK04SpqfGy LNG+viKuR36Ia3POhq3I9+QuMvISMG47QvjHXySpTsNsBKRV+MUOFnzc+layL4FY SNJjH8CRhJmMNUcSNlcrRFdMO1f4WTRq36rJEoudMl0hgLGaJz6TZRAfWvRaIdmk 9CrBlEaiaUtZN206n0xTpuSlNh+dh/RovT6sotbkEsnp08hhHA6IXNQ6uPBqQ0d4 d1RDOPK5jr83otjPuRUwNl3d5FcYoZiU4bOFaETUJAxzGb1F6nB2cx0KF4LH5zp3 PXpqdSLLs/jtI70Inn4urzbRMbz1tecDmZZ8FKmd6blf -----END CERTIFICATE-----Generated at Tue Jan 20 12:10:09 2026 by rpki-client