This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/KgkchIsyILOfTwaKeasxpjdcQXs.roa File: KgkchIsyILOfTwaKeasxpjdcQXs.roa (raw, json) Hash identifier: CYbiKMiKuFeSX+s/JGs9HsfLCedULZjZfgzxNtppN/c= Subject key identifier: 2A:09:1C:84:8B:32:20:B3:9F:4F:06:8A:79:AB:31:A6:37:5C:41:7B Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde Certificate serial: 019B7A5A5FCB5F09ACB6F0863072594D4B6D Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/KgkchIsyILOfTwaKeasxpjdcQXs.roa Signing time: Thu 01 Jan 2026 16:18:21 +0000 ROA not before: Thu 01 Jan 2026 16:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48678 IP address blocks: 45.11.96.0/24 maxlen: 24 45.11.97.0/24 maxlen: 24 45.11.98.0/24 maxlen: 24 45.11.99.0/24 maxlen: 24 62.106.94.0/24 maxlen: 24 134.255.199.0/24 maxlen: 24 149.3.171.0/24 maxlen: 24 178.211.130.0/24 maxlen: 24 188.93.141.0/24 maxlen: 24 195.24.232.0/24 maxlen: 24 2a0c:6d40::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 07:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:5f:cb:5f:09:ac:b6:f0:86:30:72:59:4d:4b:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde Validity Not Before: Jan 1 16:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2a091c848b3220b39f4f068a79ab31a6375c417b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:37:ab:ff:c8:4b:27:e8:40:eb:5d:8e:28:08: 51:82:73:55:92:6a:9a:12:56:7b:95:c2:a0:89:85: 4c:3f:3e:d6:05:98:5e:7e:f7:fc:08:7d:05:60:27: 5b:06:fe:aa:8b:f7:78:d7:c0:9d:92:8e:c7:fc:18: c0:22:e4:2b:92:2d:19:64:50:43:5a:dc:2a:36:58: 9f:e3:13:29:77:a2:61:50:e2:d6:22:25:07:39:06: a8:fd:58:0d:f1:eb:16:0f:fd:8d:e7:c2:08:55:ce: 0a:e7:1d:f9:8f:3d:fd:a4:a2:08:df:4c:d4:e4:45: c0:9a:2f:97:85:4e:07:39:24:a2:70:4c:54:b6:a8: bd:84:38:df:1d:e6:e5:df:23:cd:40:51:64:19:1f: 0d:a7:4e:10:b1:8b:8d:40:ab:8a:ad:46:72:66:ed: 8a:55:b6:70:21:05:de:8d:0f:44:59:fc:db:e4:6f: c4:03:3e:a9:d3:b0:bb:d3:14:65:c4:3f:2b:d2:f8: 74:5b:da:78:fd:b5:84:5d:2f:40:38:92:95:08:a5: 76:3f:18:d6:a2:6e:bb:0d:58:2f:10:52:fb:59:25: f8:b1:47:a8:f2:bc:66:9e:39:b3:a1:3f:6a:65:0f: 9e:12:11:80:e8:02:94:cc:64:91:1a:74:32:e8:84: 22:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:09:1C:84:8B:32:20:B3:9F:4F:06:8A:79:AB:31:A6:37:5C:41:7B X509v3 Authority Key Identifier: keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/KgkchIsyILOfTwaKeasxpjdcQXs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.11.96.0/22 62.106.94.0/24 134.255.199.0/24 149.3.171.0/24 178.211.130.0/24 188.93.141.0/24 195.24.232.0/24 IPv6: 2a0c:6d40::/29 Signature Algorithm: sha256WithRSAEncryption 74:ed:a5:51:03:36:25:52:ff:a1:4e:dd:85:54:58:eb:53:3d: 07:a4:33:bc:82:3b:e5:23:40:bb:e9:85:25:c1:8b:6a:0d:df: 83:e9:19:45:36:fb:23:c8:b7:2c:66:7b:21:cd:5b:46:c4:81: 3f:94:0c:bf:77:10:d8:88:8b:16:57:c0:b7:3b:97:54:62:bd: 71:cb:c1:da:81:cb:d4:0e:1a:e4:f6:61:c9:bf:a0:70:4b:f3: 57:b4:9c:82:a8:1a:19:eb:fe:4f:15:24:29:b6:bf:a5:21:47: 39:ce:bb:e3:81:00:a2:e5:2d:d4:5d:79:97:8b:42:d3:7e:08: 08:bc:a6:5a:db:ef:94:e9:64:ed:90:9e:2f:2c:05:a3:2e:72: 43:de:b0:4c:af:0f:00:93:c6:8f:05:d6:52:b7:cc:64:4a:6c: 71:56:39:9c:de:dd:6d:b9:b7:58:d0:a6:3e:8f:cf:38:78:52: bb:f4:19:b4:0a:70:63:56:0b:42:f4:91:08:33:52:9b:63:e2: 00:07:c5:ac:33:3e:2f:82:89:96:d2:6f:a4:d2:a3:d9:f4:91: 77:24:ed:ee:be:a2:75:9a:80:c4:9e:88:78:46:02:e4:40:f8: c3:a3:af:4b:eb:54:fb:85:49:d0:96:70:6a:c4:cd:69:ae:df: fd:21:58:71 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt6Wl/LXwmstvCGMHJZTUttMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwNDI2NWZiMTFjMmEyMjBiYzM1MDcxODY3M2UwNzA0ZDFl ZGFkZGUwHhcNMjYwMTAxMTYxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYTA5MWM4NDhiMzIyMGIzOWY0ZjA2OGE3OWFiMzFhNjM3NWM0MTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwDer/8hLJ+hA612OKAhRgnNVkmqa ElZ7lcKgiYVMPz7WBZhefvf8CH0FYCdbBv6qi/d418Cdko7H/BjAIuQrki0ZZFBD WtwqNlif4xMpd6JhUOLWIiUHOQao/VgN8esWD/2N58IIVc4K5x35jz39pKII30zU 5EXAmi+XhU4HOSSicExUtqi9hDjfHebl3yPNQFFkGR8Np04QsYuNQKuKrUZyZu2K VbZwIQXejQ9EWfzb5G/EAz6p07C70xRlxD8r0vh0W9p4/bWEXS9AOJKVCKV2PxjW om67DVgvEFL7WSX4sUeo8rxmnjmzoT9qZQ+eEhGA6AKUzGSRGnQy6IQiiQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFCoJHISLMiCzn08GinmrMaY3XEF7MB8GA1UdIwQY MBaAFNBCZfsRwqIgvDUHGGc+BwTR7a3eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEVKbC14SENvaUM4TlFjWVp6NEhCTkh0cmQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9mYTczZjgtMzNlMC00MDMyLTg0ZWMt YTk2ZWY2ZjY0MzVjLzEvS2drY2hJc3lJTE9mVHdhS2Vhc3hwamRjUVhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9mYTczZjgtMzNlMC00MDMyLTg0ZWMtYTk2ZWY2ZjY0MzVj LzEvMEVKbC14SENvaUM4TlFjWVp6NEhCTkh0cmQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQCLQtgAwQA PmpeAwQAhv/HAwQAlQOrAwQAstOCAwQAvF2NAwQAwxjoMA0EAgACMAcDBQMqDG1A MA0GCSqGSIb3DQEBCwUAA4IBAQB07aVRAzYlUv+hTt2FVFjrUz0HpDO8gjvlI0C7 6YUlwYtqDd+D6RlFNvsjyLcsZnshzVtGxIE/lAy/dxDYiIsWV8C3O5dUYr1xy8Ha gcvUDhrk9mHJv6BwS/NXtJyCqBoZ6/5PFSQptr+lIUc5zrvjgQCi5S3UXXmXi0LT fggIvKZa2++U6WTtkJ4vLAWjLnJD3rBMrw8Ak8aPBdZSt8xkSmxxVjmc3t1tubdY 0KY+j884eFK79Bm0CnBjVgtC9JEIM1KbY+IAB8WsMz4vgomW0m+k0qPZ9JF3JO3u vqJ1moDEnoh4RgLkQPjDo69L61T7hUnQlnBqxM1prt/9IVhx -----END CERTIFICATE-----Generated at Mon Jan 19 16:51:41 2026 by rpki-client