This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Kbt2ensCMwB55-V9cdglDLDLWl0.roa File: Kbt2ensCMwB55-V9cdglDLDLWl0.roa (raw, json) Hash identifier: dWchim30gwatIqBkjYLEhCuBEaE5xPeUUnaUralVga8= Subject key identifier: 29:BB:76:7A:7B:02:33:00:79:E7:E5:7D:71:D8:25:0C:B0:CB:5A:5D Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B7F845387B81549D283CCD5887F898FF9 Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Kbt2ensCMwB55-V9cdglDLDLWl0.roa Signing time: Fri 02 Jan 2026 16:22:17 +0000 ROA not before: Fri 02 Jan 2026 16:22:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16276 IP address blocks: 31.56.52.0/22 maxlen: 22 31.56.112.0/24 maxlen: 24 31.56.219.0/24 maxlen: 24 31.57.161.0/24 maxlen: 24 31.57.199.0/24 maxlen: 24 31.58.88.0/24 maxlen: 24 31.59.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 11:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:53:87:b8:15:49:d2:83:cc:d5:88:7f:89:8f:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Jan 2 16:22:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29bb767a7b02330079e7e57d71d8250cb0cb5a5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:6d:43:02:bb:dc:c4:d6:e7:54:60:8a:10:d1: 35:3e:b1:f5:8d:a7:7c:c9:81:5f:f1:35:9b:f5:1e: 35:da:b6:69:e9:c4:f7:26:35:e3:e0:7f:11:2c:f2: 59:e1:26:40:34:60:a7:c4:2b:db:3d:c9:5a:61:f0: 05:3a:32:01:34:00:64:13:d8:63:6b:9d:77:d9:7f: 1f:82:a8:bc:95:3a:00:59:4d:8f:cf:eb:fd:a4:d3: b7:c0:c7:54:17:38:4d:d9:a6:60:79:9b:5b:5a:bb: 7d:48:32:1f:de:38:db:f0:53:1c:f8:ed:67:e8:70: 8a:a8:1f:a6:7f:c1:d9:41:3d:80:48:51:ac:a5:3a: 84:05:01:f9:5b:7d:5e:25:1f:16:55:4f:c9:1a:05: 3e:7c:7b:92:8e:99:cc:99:e4:21:0c:10:70:fb:94: 53:b5:bf:f0:07:da:ce:7f:a2:df:29:64:88:7d:90: be:5d:7b:ec:94:ee:4c:ed:e9:04:14:df:64:9a:34: d5:08:a2:26:47:b8:72:3a:14:19:de:b6:20:8a:70: da:33:3b:87:03:56:fd:e5:1c:b4:38:00:8b:13:7f: 58:d2:a4:a5:7f:ac:fc:b7:2a:11:2a:b0:74:8a:ae: fa:fc:1b:bf:2e:4b:0b:a9:59:16:88:40:3e:fe:66: b3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:BB:76:7A:7B:02:33:00:79:E7:E5:7D:71:D8:25:0C:B0:CB:5A:5D X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Kbt2ensCMwB55-V9cdglDLDLWl0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.52.0/22 31.56.112.0/24 31.56.219.0/24 31.57.161.0/24 31.57.199.0/24 31.58.88.0/24 31.59.68.0/24 Signature Algorithm: sha256WithRSAEncryption c2:dc:01:12:37:18:27:54:d7:04:48:e2:ec:2a:7f:23:89:af: aa:d6:2e:a6:34:b4:31:09:be:64:82:f7:5a:25:52:14:37:c9: c5:89:f2:bd:8c:4c:32:71:68:f5:2a:fc:fc:9f:87:2c:f7:b6: 00:69:0a:1d:e7:ed:03:cb:1f:37:f7:3d:4c:fc:0f:ae:c5:e7: 7f:3b:2f:ec:69:d1:c9:56:5f:d3:83:d6:2f:f6:66:34:ab:95: b7:4a:7c:02:a1:1c:62:ba:80:ba:e2:6f:7e:6e:b8:da:0d:63: 9a:0f:49:ab:81:0b:cd:cc:6a:24:c1:58:06:85:08:80:6c:cc: 3d:9e:6a:5f:9c:4f:60:3e:09:2d:04:9e:79:0f:7d:e9:fe:f0: 5c:08:c7:dc:f4:ec:74:07:a0:36:e0:06:e4:34:ed:f0:b1:89: e4:51:b6:87:f6:ad:cc:e8:64:d2:03:5f:57:51:e2:08:bc:08: 7a:6f:90:4d:07:09:1f:e2:cf:0c:8a:1d:39:9d:e6:7d:0d:90: d1:a4:63:41:03:22:65:32:a8:ff:5c:39:c8:45:d6:81:4b:f6: eb:de:77:05:34:07:9a:52:17:ea:b1:45:c9:0b:47:a3:b7:9a: 63:0d:d2:a4:53:3c:a0:11:6d:2d:91:84:db:1a:92:74:00:84: dd:af:8d:bc -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt/hFOHuBVJ0oPM1Yh/iY/5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjYwMTAyMTYyMjE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOWJiNzY3YTdiMDIzMzAwNzllN2U1N2Q3MWQ4MjUwY2IwY2I1YTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA821DArvcxNbnVGCKENE1PrH1jad8 yYFf8TWb9R412rZp6cT3JjXj4H8RLPJZ4SZANGCnxCvbPclaYfAFOjIBNABkE9hj a5132X8fgqi8lToAWU2Pz+v9pNO3wMdUFzhN2aZgeZtbWrt9SDIf3jjb8FMc+O1n 6HCKqB+mf8HZQT2ASFGspTqEBQH5W31eJR8WVU/JGgU+fHuSjpnMmeQhDBBw+5RT tb/wB9rOf6LfKWSIfZC+XXvslO5M7ekEFN9kmjTVCKImR7hyOhQZ3rYginDaMzuH A1b95Ry0OACLE39Y0qSlf6z8tyoRKrB0iq76/Bu/LksLqVkWiEA+/mazkwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFCm7dnp7AjMAeeflfXHYJQywy1pdMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvS2J0MmVuc0NNd0I1NS1WOWNkZ2xETERMV2wwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQCHzg0AwQA HzhwAwQAHzjbAwQAHzmhAwQAHznHAwQAHzpYAwQAHztEMA0GCSqGSIb3DQEBCwUA A4IBAQDC3AESNxgnVNcESOLsKn8jia+q1i6mNLQxCb5kgvdaJVIUN8nFifK9jEwy cWj1Kvz8n4cs97YAaQod5+0Dyx839z1M/A+uxed/Oy/sadHJVl/Tg9Yv9mY0q5W3 SnwCoRxiuoC64m9+brjaDWOaD0mrgQvNzGokwVgGhQiAbMw9nmpfnE9gPgktBJ55 D33p/vBcCMfc9Ox0B6A24AbkNO3wsYnkUbaH9q3M6GTSA19XUeIIvAh6b5BNBwkf 4s8Mih05neZ9DZDRpGNBAyJlMqj/XDnIRdaBS/br3ncFNAeaUhfqsUXJC0ejt5pj DdKkUzygEW0tkYTbGpJ0AITdr428 -----END CERTIFICATE-----Generated at Mon Jan 5 14:33:12 2026 by rpki-client