This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/KrWDygO_9DtYqIorptYeROl4N3w.roa File: KrWDygO_9DtYqIorptYeROl4N3w.roa (raw, json) Hash identifier: k5aiBUndGFKp4OHVpYLdcE+xHBzKpPgtYqzqEoZSL4U= Subject key identifier: 2A:B5:83:CA:03:BF:F4:3B:58:A8:8A:2B:A6:D6:1E:44:E9:78:37:7C Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464 Certificate serial: 019AE2E547E5288FC6231F56E6F2F954C1E9 Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/KrWDygO_9DtYqIorptYeROl4N3w.roa Signing time: Wed 03 Dec 2025 06:27:48 +0000 ROA not before: Wed 03 Dec 2025 06:27:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198154 IP address blocks: 5.57.38.0/24 maxlen: 24 37.32.47.0/24 maxlen: 24 178.239.145.0/24 maxlen: 24 178.239.157.0/24 maxlen: 24 185.124.175.0/24 maxlen: 24 185.215.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e2:e5:47:e5:28:8f:c6:23:1f:56:e6:f2:f9:54:c1:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464 Validity Not Before: Dec 3 06:27:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=2ab583ca03bff43b58a88a2ba6d61e44e978377c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:50:28:46:e7:0e:bb:3c:f5:6f:35:b7:5d:f0: ed:f0:49:8e:37:11:85:2f:54:29:6d:df:b5:fc:57: 32:94:24:7c:43:99:33:69:72:b4:1f:ec:78:28:98: 6d:73:a1:48:c4:59:7d:00:c2:0b:ba:49:92:33:6a: 8e:e9:85:86:74:05:47:98:d8:49:e6:d8:8c:ac:e1: 7f:a9:a8:b8:1c:fc:a0:cf:3b:6f:95:76:cd:8f:79: 55:f7:e7:c5:fd:f1:c1:84:cb:0b:66:16:49:c8:80: 07:6a:31:60:62:99:f3:c3:d2:4c:a2:3f:89:ac:96: 52:4f:bb:ef:d9:c9:73:fb:a7:38:d2:46:f3:9c:91: eb:df:e1:6f:4a:d6:b9:11:e9:c8:1d:af:f2:2d:28: 42:7c:e4:cb:b7:d4:8d:1b:7c:8f:af:b4:75:d3:c3: 35:f9:a6:b7:76:ab:13:f8:d7:4e:25:6b:18:8a:37: 42:d3:46:fd:03:52:a2:c6:67:c9:a7:63:95:45:5f: 90:b4:c7:91:2f:f5:d1:eb:ef:bc:7a:8f:e7:06:b4: 59:ef:cb:d1:cd:1f:43:10:ab:ef:7a:8a:06:8c:e6: 73:50:62:b1:6f:6e:02:59:f8:6c:b2:12:71:ca:64: 86:06:c1:b9:91:da:0e:dd:9b:b3:da:d0:15:56:07: 61:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B5:83:CA:03:BF:F4:3B:58:A8:8A:2B:A6:D6:1E:44:E9:78:37:7C X509v3 Authority Key Identifier: keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/KrWDygO_9DtYqIorptYeROl4N3w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.57.38.0/24 37.32.47.0/24 178.239.145.0/24 178.239.157.0/24 185.124.175.0/24 185.215.231.0/24 Signature Algorithm: sha256WithRSAEncryption 92:3e:4a:71:8c:ce:16:6e:c3:96:fb:87:94:dc:39:42:76:f5: 17:ae:f2:c0:b2:47:ae:6c:c1:8d:89:25:0c:6d:36:a8:11:0b: 59:99:2b:d1:2d:09:73:59:20:8b:8b:02:55:4c:74:d9:65:3b: 95:b6:66:c3:0c:11:85:38:71:c3:f9:07:09:9b:21:df:db:1a: cd:81:24:eb:35:4c:c2:b4:da:a0:bf:65:53:e2:7d:a5:5e:40: 17:95:a3:2e:37:ff:54:5d:81:c3:8b:95:9e:b8:03:63:87:3d: d2:d2:a5:20:61:32:d5:10:86:1c:4e:8d:f5:db:67:b5:9b:36: 32:32:b7:98:58:fd:8f:1f:4c:09:c5:1e:66:24:b9:6b:7d:71: 38:a7:62:6f:46:1f:32:2f:10:a6:a1:82:7c:8a:f8:93:cc:46: e8:d2:3b:d0:05:3d:c9:0d:42:dd:a0:2e:31:6e:33:83:7b:67: 3f:e4:ef:07:39:2e:4d:a3:a2:83:6c:0f:b7:03:74:c1:33:66: f0:8b:46:ce:bc:05:1d:ec:4a:b2:11:27:e2:60:cf:e2:be:08: 11:23:f8:a8:fd:fa:8c:94:c6:c3:35:90:4e:1a:a9:32:86:2d: f1:60:76:5c:df:aa:dc:2b:75:ee:8b:3d:1f:96:70:79:98:81: 0e:1d:cd:4d -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZri5UflKI/GIx9W5vL5VMHpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxMzUzMzM5OWY1NWViNTJlNmIyMjAwYzdjYWU0MjcyYjc0 ZDY0NjQwHhcNMjUxMjAzMDYyNzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYWI1ODNjYTAzYmZmNDNiNThhODhhMmJhNmQ2MWU0NGU5NzgzNzdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA01AoRucOuzz1bzW3XfDt8EmONxGF L1Qpbd+1/FcylCR8Q5kzaXK0H+x4KJhtc6FIxFl9AMILukmSM2qO6YWGdAVHmNhJ 5tiMrOF/qai4HPygzztvlXbNj3lV9+fF/fHBhMsLZhZJyIAHajFgYpnzw9JMoj+J rJZST7vv2clz+6c40kbznJHr3+FvSta5EenIHa/yLShCfOTLt9SNG3yPr7R108M1 +aa3dqsT+NdOJWsYijdC00b9A1KixmfJp2OVRV+QtMeRL/XR6++8eo/nBrRZ78vR zR9DEKvveooGjOZzUGKxb24CWfhsshJxymSGBsG5kdoO3Zuz2tAVVgdh0wIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFCq1g8oDv/Q7WKiKK6bWHkTpeDd8MB8GA1UdIwQY MBaAFPE1MzmfVetS5rIgDHyuQnK3TWRkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEt OTg5MTY2ODgxOTY5LzEvS3JXRHlnT185RHRZcUlvcnB0WWVST2w0TjN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEtOTg5MTY2ODgxOTY5 LzEvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQABTkmAwQA JSAvAwQAsu+RAwQAsu+dAwQAuXyvAwQAudfnMA0GCSqGSIb3DQEBCwUAA4IBAQCS PkpxjM4WbsOW+4eU3DlCdvUXrvLAskeubMGNiSUMbTaoEQtZmSvRLQlzWSCLiwJV THTZZTuVtmbDDBGFOHHD+QcJmyHf2xrNgSTrNUzCtNqgv2VT4n2lXkAXlaMuN/9U XYHDi5WeuANjhz3S0qUgYTLVEIYcTo3122e1mzYyMreYWP2PH0wJxR5mJLlrfXE4 p2JvRh8yLxCmoYJ8iviTzEbo0jvQBT3JDULdoC4xbjODe2c/5O8HOS5No6KDbA+3 A3TBM2bwi0bOvAUd7EqyESfiYM/ivggRI/io/fqMlMbDNZBOGqkyhi3xYHZc36rc K3Xuiz0flnB5mIEOHc1N -----END CERTIFICATE-----Generated at Wed Dec 10 10:53:24 2025 by rpki-client