This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/08e2cd-f91a-4025-92ef-e0660d023104/1/KxHEVmH4ZzisTbT08NTktg-60iA.roa File: KxHEVmH4ZzisTbT08NTktg-60iA.roa (raw, json) Hash identifier: b0du6Bjw3gRNHV7fsxqZsIbVFbvqTTXS/uOc0leO4zU= Subject key identifier: 2B:11:C4:56:61:F8:67:38:AC:4D:B4:F4:F0:D4:E4:B6:0F:BA:D2:20 Certificate issuer: /CN=45166fa37c764cdc62a00bca2b2b2c879ff699d9 Certificate serial: 019B7CED8294884D2B7B638D6EC1EC7355C6 Authority key identifier: 45:16:6F:A3:7C:76:4C:DC:62:A0:0B:CA:2B:2B:2C:87:9F:F6:99:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RRZvo3x2TNxioAvKKyssh5_2mdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/08e2cd-f91a-4025-92ef-e0660d023104/1/KxHEVmH4ZzisTbT08NTktg-60iA.roa Signing time: Fri 02 Jan 2026 04:18:18 +0000 ROA not before: Fri 02 Jan 2026 04:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58195 IP address blocks: 91.239.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/08e2cd-f91a-4025-92ef-e0660d023104/1/RRZvo3x2TNxioAvKKyssh5_2mdk.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/08e2cd-f91a-4025-92ef-e0660d023104/1/RRZvo3x2TNxioAvKKyssh5_2mdk.mft rsync://rpki.ripe.net/repository/DEFAULT/RRZvo3x2TNxioAvKKyssh5_2mdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:82:94:88:4d:2b:7b:63:8d:6e:c1:ec:73:55:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45166fa37c764cdc62a00bca2b2b2c879ff699d9 Validity Not Before: Jan 2 04:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2b11c45661f86738ac4db4f4f0d4e4b60fbad220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e5:b2:a7:10:fe:2e:9e:69:32:7e:d4:1b:bd: cd:31:b3:49:30:1c:3d:c7:b9:ec:9d:26:bc:b7:00: 3b:60:55:48:3c:79:c7:d8:61:8b:b1:d7:70:23:76: 59:21:7b:36:5c:74:c5:14:2c:aa:86:db:7c:c8:8d: 62:a9:ae:6e:8c:34:49:58:63:89:6c:a0:82:3c:95: 22:05:28:4c:68:01:75:fb:eb:ba:23:55:90:b1:15: ea:2d:7c:f0:d4:1d:09:d0:ba:cf:c4:02:f9:ed:16: 0c:2f:a9:69:25:6d:a5:fa:a7:5a:9c:68:a1:c9:03: cb:c5:e0:22:74:4b:8c:92:87:87:d6:d3:19:50:db: a4:99:fb:fb:34:00:c0:9e:a7:a4:41:d9:97:a4:fe: 94:5b:e7:c3:7c:c7:85:3b:fd:f8:17:f0:c6:8a:24: 9f:f9:f3:2c:bf:1e:d6:08:1a:96:80:e5:fa:0e:cb: bf:63:e9:2f:65:d9:e4:18:fe:17:5f:90:78:1f:35: 07:97:ac:b9:e7:ae:2b:57:07:25:1b:fe:7b:75:96: 93:39:e2:f3:cd:77:2f:ef:c8:f6:ee:87:b5:a9:2e: 6b:b9:7a:ea:07:3e:8f:be:be:b3:5d:ea:36:86:14: bc:87:37:cd:1e:cf:79:1c:ce:7c:2c:ca:dc:1f:ce: 6e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:11:C4:56:61:F8:67:38:AC:4D:B4:F4:F0:D4:E4:B6:0F:BA:D2:20 X509v3 Authority Key Identifier: keyid:45:16:6F:A3:7C:76:4C:DC:62:A0:0B:CA:2B:2B:2C:87:9F:F6:99:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RRZvo3x2TNxioAvKKyssh5_2mdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/08e2cd-f91a-4025-92ef-e0660d023104/1/KxHEVmH4ZzisTbT08NTktg-60iA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/08e2cd-f91a-4025-92ef-e0660d023104/1/RRZvo3x2TNxioAvKKyssh5_2mdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.239.173.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:a2:ff:c5:16:99:01:1a:7f:24:52:70:aa:33:cd:30:aa:85: b5:0b:35:90:9e:a0:e2:a8:d6:01:ea:66:97:28:09:aa:af:3d: 76:f6:89:69:9a:48:60:c8:92:87:92:0a:9d:7a:2a:f0:14:6c: 31:df:51:b6:0c:86:ce:56:38:d9:13:88:82:51:ea:36:e4:e7: af:ea:6e:aa:9c:50:72:2a:2a:10:38:af:7f:3e:40:2a:73:bf: 1e:e7:99:3b:cb:38:95:5a:24:19:39:9d:07:ab:09:c4:66:a0: 8b:c4:c7:11:10:37:9c:e0:29:a6:c7:4a:4c:4a:0a:bd:c3:f7: c3:6e:4d:73:b1:f2:1b:85:fc:46:d5:85:20:15:49:a0:c3:54: 99:68:68:96:39:cd:17:c5:a9:50:14:33:3c:67:6f:79:6f:45: 99:6e:56:f8:bc:30:e6:78:3c:14:59:4b:c3:ba:ea:1f:20:41: 52:54:83:dd:e8:7f:12:4c:9a:e7:61:13:78:0a:f5:ae:ed:5e: 82:f9:6c:5e:b1:fc:97:0f:a0:77:25:c8:5a:89:56:26:b6:55: ed:8e:b3:81:74:82:12:66:88:63:11:df:9f:7e:9d:64:9b:64: f8:93:0c:f5:c2:91:a4:89:da:ae:01:ec:6d:eb:13:85:44:0b: cf:0f:bd:f2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87YKUiE0re2ONbsHsc1XGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1MTY2ZmEzN2M3NjRjZGM2MmEwMGJjYTJiMmIyYzg3OWZm Njk5ZDkwHhcNMjYwMTAyMDQxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYjExYzQ1NjYxZjg2NzM4YWM0ZGI0ZjRmMGQ0ZTRiNjBmYmFkMjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+WypxD+Lp5pMn7UG73NMbNJMBw9 x7nsnSa8twA7YFVIPHnH2GGLsddwI3ZZIXs2XHTFFCyqhtt8yI1iqa5ujDRJWGOJ bKCCPJUiBShMaAF1++u6I1WQsRXqLXzw1B0J0LrPxAL57RYML6lpJW2l+qdanGih yQPLxeAidEuMkoeH1tMZUNukmfv7NADAnqekQdmXpP6UW+fDfMeFO/34F/DGiiSf +fMsvx7WCBqWgOX6Dsu/Y+kvZdnkGP4XX5B4HzUHl6y5564rVwclG/57dZaTOeLz zXcv78j27oe1qS5ruXrqBz6Pvr6zXeo2hhS8hzfNHs95HM58LMrcH85ujwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCsRxFZh+Gc4rE209PDU5LYPutIgMB8GA1UdIwQY MBaAFEUWb6N8dkzcYqALyisrLIef9pnZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlJadm8zeDJUTnhpb0F2S0t5c3NoNV8ybWRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8wOGUyY2QtZjkxYS00MDI1LTkyZWYt ZTA2NjBkMDIzMTA0LzEvS3hIRVZtSDRaemlzVGJUMDhOVGt0Zy02MGlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS8wOGUyY2QtZjkxYS00MDI1LTkyZWYtZTA2NjBkMDIzMTA0 LzEvUlJadm8zeDJUTnhpb0F2S0t5c3NoNV8ybWRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW++tMA0G CSqGSIb3DQEBCwUAA4IBAQBrov/FFpkBGn8kUnCqM80wqoW1CzWQnqDiqNYB6maX KAmqrz129olpmkhgyJKHkgqdeirwFGwx31G2DIbOVjjZE4iCUeo25Oev6m6qnFBy KioQOK9/PkAqc78e55k7yziVWiQZOZ0HqwnEZqCLxMcREDec4Cmmx0pMSgq9w/fD bk1zsfIbhfxG1YUgFUmgw1SZaGiWOc0XxalQFDM8Z295b0WZblb4vDDmeDwUWUvD uuofIEFSVIPd6H8STJrnYRN4CvWu7V6C+WxesfyXD6B3JchaiVYmtlXtjrOBdIIS ZohjEd+ffp1km2T4kwz1wpGkidquAext6xOFRAvPD73y -----END CERTIFICATE-----Generated at Tue Jan 27 05:32:57 2026 by rpki-client