This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/KPtch8_0qzZU6CkKEvFkXYq2ViY.roa File: KPtch8_0qzZU6CkKEvFkXYq2ViY.roa (raw, json) Hash identifier: ClU8AEytbQIwHPgMAzbIutrvifBxjGRmu/3pZThvLHI= Subject key identifier: 28:FB:5C:87:CF:F4:AB:36:54:E8:29:0A:12:F1:64:5D:8A:B6:56:26 Certificate issuer: /CN=b5140c5f8e3c7bc24a1ad4c8406415263eb6babf Certificate serial: 019B7CECC9C3A2764033CA48404D72186778 Authority key identifier: B5:14:0C:5F:8E:3C:7B:C2:4A:1A:D4:C8:40:64:15:26:3E:B6:BA:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/KPtch8_0qzZU6CkKEvFkXYq2ViY.roa Signing time: Fri 02 Jan 2026 04:17:31 +0000 ROA not before: Fri 02 Jan 2026 04:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203525 IP address blocks: 185.131.248.0/22 maxlen: 22 2a06:df00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.crl rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:c9:c3:a2:76:40:33:ca:48:40:4d:72:18:67:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5140c5f8e3c7bc24a1ad4c8406415263eb6babf Validity Not Before: Jan 2 04:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=28fb5c87cff4ab3654e8290a12f1645d8ab65626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:6b:f4:6f:e4:1d:ab:3f:aa:c0:22:90:45:28: e7:d3:d4:9c:6c:07:cf:35:bb:3e:2a:c4:27:25:72: 50:a1:13:17:b2:8e:7e:63:0f:60:c7:d6:54:09:79: ea:3f:39:0a:0f:35:83:94:17:52:9d:7c:65:1b:1a: 9d:9f:dc:2f:4e:0e:ec:5c:5e:80:60:11:5a:14:81: b0:57:44:ba:94:22:3d:b1:8a:7a:b5:ba:bd:97:6b: 23:0c:09:aa:8a:b1:40:ce:73:af:16:73:58:1f:a7: 7a:1d:3e:c7:8b:fd:f8:31:de:d3:bb:35:1a:63:2d: a2:69:e2:7e:2d:e5:52:c9:66:a3:af:6f:d4:79:ce: 1e:aa:d8:cc:1c:51:a1:d1:7a:99:39:a6:21:6c:e7: 6a:32:53:97:79:83:c0:3e:fe:d3:fa:7f:3d:d8:ee: df:b6:8e:bc:4a:98:c7:c5:eb:6d:82:3a:d4:c9:e8: cb:76:a6:d2:e1:06:3a:1d:64:d3:6c:bb:e3:36:c5: 50:b8:7d:ee:58:8c:a5:bc:f2:6e:ff:d4:5c:11:9b: 48:5d:b0:73:ff:ea:bb:bd:f4:9b:dd:11:2c:cf:46: 41:18:81:9f:73:1e:cb:f6:d4:69:46:74:bd:a4:70: d1:16:f7:67:ff:1c:66:11:af:d1:ab:73:87:0c:d5: d1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:FB:5C:87:CF:F4:AB:36:54:E8:29:0A:12:F1:64:5D:8A:B6:56:26 X509v3 Authority Key Identifier: keyid:B5:14:0C:5F:8E:3C:7B:C2:4A:1A:D4:C8:40:64:15:26:3E:B6:BA:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/KPtch8_0qzZU6CkKEvFkXYq2ViY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.131.248.0/22 IPv6: 2a06:df00::/29 Signature Algorithm: sha256WithRSAEncryption 4e:6e:71:5c:a8:95:00:f1:60:02:ad:9f:69:66:e7:e8:fa:87: 13:c8:b0:44:59:75:23:a3:5c:3e:68:9f:b4:dd:52:f9:41:1b: b9:0e:93:39:72:41:f9:26:10:70:90:00:93:a5:f8:5c:66:2f: c4:4c:64:cd:86:25:71:ea:6c:0b:e8:02:19:59:44:29:58:1d: 5b:85:1d:cb:73:df:6a:06:ee:b6:60:72:21:e6:ad:4a:c7:e5: 87:c5:62:e4:4a:d9:03:b3:9b:a6:ef:a2:e6:6e:95:08:ea:97: 6e:9b:55:1f:9e:77:94:03:dc:38:96:e5:59:9e:39:dd:ba:0b: 2d:f8:a1:2c:5a:b3:ee:25:f2:a9:26:54:16:f6:67:69:e5:8f: 69:57:bb:08:dd:88:d1:6b:55:50:f5:3b:72:dd:83:ee:7d:7d: 28:bd:fb:82:c3:dd:16:c5:fc:ce:5c:0a:a3:d4:b3:53:eb:d0: aa:fb:28:0c:13:c6:47:d9:a7:0d:80:26:56:f5:f8:24:49:db: 60:5c:2d:92:63:b7:86:40:36:58:b4:cd:ca:2d:6c:de:b5:df: af:db:6d:94:de:c9:55:78:b8:e0:1c:d6:d4:5e:8f:47:7b:3b: 00:9c:35:58:72:b2:fb:51:71:ce:34:a6:26:70:56:5c:aa:1a: 9e:7d:e7:ce -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87MnDonZAM8pIQE1yGGd4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1MTQwYzVmOGUzYzdiYzI0YTFhZDRjODQwNjQxNTI2M2Vi NmJhYmYwHhcNMjYwMTAyMDQxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOGZiNWM4N2NmZjRhYjM2NTRlODI5MGExMmYxNjQ1ZDhhYjY1NjI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Wv0b+Qdqz+qwCKQRSjn09ScbAfP Nbs+KsQnJXJQoRMXso5+Yw9gx9ZUCXnqPzkKDzWDlBdSnXxlGxqdn9wvTg7sXF6A YBFaFIGwV0S6lCI9sYp6tbq9l2sjDAmqirFAznOvFnNYH6d6HT7Hi/34Md7TuzUa Yy2iaeJ+LeVSyWajr2/Uec4eqtjMHFGh0XqZOaYhbOdqMlOXeYPAPv7T+n892O7f to68SpjHxettgjrUyejLdqbS4QY6HWTTbLvjNsVQuH3uWIylvPJu/9RcEZtIXbBz /+q7vfSb3REsz0ZBGIGfcx7L9tRpRnS9pHDRFvdn/xxmEa/Rq3OHDNXRRQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCj7XIfP9Ks2VOgpChLxZF2KtlYmMB8GA1UdIwQY MBaAFLUUDF+OPHvCShrUyEBkFSY+trq/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFJRTVg0NDhlOEpLR3RUSVFHUVZKajYydXI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85NGI3M2EtYTNkNS00MGM0LTkyMjQt Y2RjMjQ5MDM5M2E2LzEvS1B0Y2g4XzBxelpVNkNrS0V2RmtYWXEyVmlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC85NGI3M2EtYTNkNS00MGM0LTkyMjQtY2RjMjQ5MDM5M2E2 LzEvdFJRTVg0NDhlOEpLR3RUSVFHUVZKajYydXI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuYP4MA0E AgACMAcDBQMqBt8AMA0GCSqGSIb3DQEBCwUAA4IBAQBObnFcqJUA8WACrZ9pZufo +ocTyLBEWXUjo1w+aJ+03VL5QRu5DpM5ckH5JhBwkACTpfhcZi/ETGTNhiVx6mwL 6AIZWUQpWB1bhR3Lc99qBu62YHIh5q1Kx+WHxWLkStkDs5um76LmbpUI6pdum1Uf nneUA9w4luVZnjndugst+KEsWrPuJfKpJlQW9mdp5Y9pV7sI3YjRa1VQ9Tty3YPu fX0ovfuCw90WxfzOXAqj1LNT69Cq+ygME8ZH2acNgCZW9fgkSdtgXC2SY7eGQDZY tM3KLWzetd+v222U3slVeLjgHNbUXo9HezsAnDVYcrL7UXHONKYmcFZcqhqefefO -----END CERTIFICATE-----Generated at Mon Feb 9 21:24:09 2026 by rpki-client