This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/KYDa8Gcz0xrdGXmq1vscgoupE2I.roa File: KYDa8Gcz0xrdGXmq1vscgoupE2I.roa (raw, json) Hash identifier: RUv8ZlwcULhzfmtUoC9a55CjhR8nmpicJUilOEAH8Ms= Subject key identifier: 29:80:DA:F0:67:33:D3:1A:DD:19:79:AA:D6:FB:1C:82:8B:A9:13:62 Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B7F8458249CDFE40FAF739B96E6FE50E1 Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/KYDa8Gcz0xrdGXmq1vscgoupE2I.roa Signing time: Fri 02 Jan 2026 16:22:18 +0000 ROA not before: Fri 02 Jan 2026 16:22:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21840 IP address blocks: 31.57.229.0/24 maxlen: 24 31.58.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 11:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:58:24:9c:df:e4:0f:af:73:9b:96:e6:fe:50:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Jan 2 16:22:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2980daf06733d31add1979aad6fb1c828ba91362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8b:65:81:79:45:de:81:f9:2d:2b:85:9c:03: d8:c8:dc:7d:a6:c7:78:d0:af:09:a7:98:c4:e4:cb: 12:1f:cc:62:5d:a4:ef:20:47:ec:a3:02:c8:e7:cd: dc:2a:52:99:30:eb:bb:8a:48:a9:8e:6e:1d:0e:13: 65:fe:c0:a7:58:cd:ac:e4:c5:6b:e5:47:55:87:e4: 03:c9:4a:f6:88:7b:11:b4:29:49:c8:91:c5:bc:bc: ec:d7:9e:8f:c2:be:bf:94:19:dd:2b:e1:86:31:7c: f9:30:21:7c:09:41:04:11:9f:5c:eb:ca:f5:54:62: c3:22:e1:44:bd:26:f9:cb:0f:75:68:03:c2:c4:00: e7:d3:19:ce:41:36:83:df:59:34:b0:6f:9d:0b:f7: 04:05:2c:c5:68:cc:b0:58:a6:49:3b:2e:e6:20:31: ba:78:93:25:7f:97:56:3c:e8:e1:97:c3:22:01:66: 26:24:74:81:5a:44:fa:84:cc:2f:2a:ae:24:3f:3a: 41:e2:ca:1c:c1:32:97:54:5b:b3:d2:e7:69:09:f8: c1:34:09:90:22:2f:56:15:48:a8:46:ff:64:d2:4e: 1c:9f:63:06:86:10:e5:70:cf:b4:1a:dc:e2:62:7e: 91:b1:10:2d:db:06:f4:1a:b2:48:c4:60:7b:90:bd: 69:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:80:DA:F0:67:33:D3:1A:DD:19:79:AA:D6:FB:1C:82:8B:A9:13:62 X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/KYDa8Gcz0xrdGXmq1vscgoupE2I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.57.229.0/24 31.58.101.0/24 Signature Algorithm: sha256WithRSAEncryption 82:92:2d:61:6f:1b:70:8e:8d:cd:ee:a7:38:ee:a9:7f:63:c6: 88:ad:cf:3d:2a:70:96:4d:ea:87:22:bf:da:44:30:86:5e:4c: 40:61:95:c7:7d:7d:26:71:ec:01:e8:ef:bd:14:3a:6b:f8:57: 4c:fe:64:92:6b:f5:bc:14:d6:f1:68:43:ff:49:8b:25:1f:54: 1f:c3:37:40:73:a2:01:16:2f:7a:4b:aa:35:f9:29:9e:c6:35: 92:27:1f:b7:83:92:3e:19:07:a4:10:67:d1:12:06:4d:0c:46: 28:a2:24:e9:5c:45:42:2f:63:59:c2:5d:73:e6:86:4f:6c:0c: 9c:3c:d3:ee:55:7b:cc:71:e7:28:0e:27:b0:d1:07:ab:c7:7e: d6:72:e8:68:3f:b5:1d:ff:ad:23:f1:26:47:a9:09:e7:c0:81: 86:95:f2:52:97:a6:9c:bf:4e:1e:ca:51:c4:69:65:03:d3:e0: 59:6e:46:c4:24:98:46:d6:f1:e1:72:14:cc:5c:ec:b5:a2:b8: 9b:30:1f:96:8d:10:3e:9d:16:02:4c:53:21:7f:84:1a:25:95: 7a:86:52:c3:87:41:89:e5:b9:07:f8:53:cb:71:07:b5:e2:8a: fe:d7:8f:17:6a:d3:af:1e:53:d1:3d:9d:39:a4:ae:49:26:f9: f7:9f:fe:24 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hFgknN/kD69zm5bm/lDhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjYwMTAyMTYyMjE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTgwZGFmMDY3MzNkMzFhZGQxOTc5YWFkNmZiMWM4MjhiYTkxMzYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnItlgXlF3oH5LSuFnAPYyNx9psd4 0K8Jp5jE5MsSH8xiXaTvIEfsowLI583cKlKZMOu7ikipjm4dDhNl/sCnWM2s5MVr 5UdVh+QDyUr2iHsRtClJyJHFvLzs156Pwr6/lBndK+GGMXz5MCF8CUEEEZ9c68r1 VGLDIuFEvSb5yw91aAPCxADn0xnOQTaD31k0sG+dC/cEBSzFaMywWKZJOy7mIDG6 eJMlf5dWPOjhl8MiAWYmJHSBWkT6hMwvKq4kPzpB4socwTKXVFuz0udpCfjBNAmQ Ii9WFUioRv9k0k4cn2MGhhDlcM+0GtziYn6RsRAt2wb0GrJIxGB7kL1pHwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCmA2vBnM9Ma3Rl5qtb7HIKLqRNiMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvS1lEYThHY3oweHJkR1htcTF2c2Nnb3VwRTJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHznlAwQA HzplMA0GCSqGSIb3DQEBCwUAA4IBAQCCki1hbxtwjo3N7qc47ql/Y8aIrc89KnCW TeqHIr/aRDCGXkxAYZXHfX0mcewB6O+9FDpr+FdM/mSSa/W8FNbxaEP/SYslH1Qf wzdAc6IBFi96S6o1+SmexjWSJx+3g5I+GQekEGfREgZNDEYooiTpXEVCL2NZwl1z 5oZPbAycPNPuVXvMcecoDiew0Qerx37WcuhoP7Ud/60j8SZHqQnnwIGGlfJSl6ac v04eylHEaWUD0+BZbkbEJJhG1vHhchTMXOy1oribMB+WjRA+nRYCTFMhf4QaJZV6 hlLDh0GJ5bkH+FPLcQe14or+148XatOvHlPRPZ05pK5JJvn3n/4k -----END CERTIFICATE-----Generated at Mon Jan 5 14:39:16 2026 by rpki-client