This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/krbPjQ7dV78artLAJHZH9VRMSb4.roa File: krbPjQ7dV78artLAJHZH9VRMSb4.roa (raw, json) Hash identifier: DfhzBCZr3lEjUY/BpGX15//8G6kbI+qsFYcc/tJsimw= Subject key identifier: 92:B6:CF:8D:0E:DD:57:BF:1A:AE:D2:C0:24:76:47:F5:54:4C:49:BE Certificate issuer: /CN=8ca8a4d42a0196df7cc0e14f597cf5660d63c09f Certificate serial: 019B790FFFFEE38E315D5CC276106965E76F Authority key identifier: 8C:A8:A4:D4:2A:01:96:DF:7C:C0:E1:4F:59:7C:F5:66:0D:63:C0:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jKik1CoBlt98wOFPWXz1Zg1jwJ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/krbPjQ7dV78artLAJHZH9VRMSb4.roa Signing time: Thu 01 Jan 2026 10:17:30 +0000 ROA not before: Thu 01 Jan 2026 10:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 46.29.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/jKik1CoBlt98wOFPWXz1Zg1jwJ8.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/jKik1CoBlt98wOFPWXz1Zg1jwJ8.mft rsync://rpki.ripe.net/repository/DEFAULT/jKik1CoBlt98wOFPWXz1Zg1jwJ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:0f:ff:fe:e3:8e:31:5d:5c:c2:76:10:69:65:e7:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ca8a4d42a0196df7cc0e14f597cf5660d63c09f Validity Not Before: Jan 1 10:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=92b6cf8d0edd57bf1aaed2c0247647f5544c49be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9f:ba:ed:a3:70:34:50:61:8a:fb:32:3c:3b: 77:18:e3:22:c5:b8:cb:ca:4f:f8:30:5e:89:89:56: 4d:32:de:78:b0:09:56:53:16:05:92:c1:29:9a:b7: cf:1e:36:31:31:e1:ca:79:c5:05:a6:57:e0:53:69: 20:7d:7a:88:5a:61:53:3d:cb:ae:f6:8f:f4:77:fe: e3:d8:2b:2f:c0:6d:eb:a1:9c:52:f7:1f:c2:6d:36: 48:90:95:1b:cc:ce:45:32:bf:4f:b0:5c:ae:79:cb: a3:a9:bd:2c:ba:45:a1:d5:2a:53:d2:e1:13:2d:22: e8:34:d3:21:ff:c7:20:fa:02:5b:98:71:8c:66:de: cd:e9:98:90:94:25:59:e2:47:09:2c:c6:9f:46:c8: da:ce:ea:1c:a1:d9:d6:72:79:5b:93:c8:64:d9:74: ea:a4:05:c3:a8:58:1b:ff:5a:01:5e:ba:91:e6:b2: 16:03:42:b8:c9:ad:82:d2:87:ac:e7:f4:96:e0:d1: 9d:e2:ee:03:d7:71:21:91:49:7e:a8:7d:38:76:6d: 79:96:1f:99:9a:d3:82:90:e9:15:6a:d4:15:39:7a: 9d:f0:26:8f:d2:d7:f1:53:c6:ee:69:73:57:e5:78: 36:b8:20:2e:72:af:48:28:58:6d:95:75:27:bd:1c: e3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B6:CF:8D:0E:DD:57:BF:1A:AE:D2:C0:24:76:47:F5:54:4C:49:BE X509v3 Authority Key Identifier: keyid:8C:A8:A4:D4:2A:01:96:DF:7C:C0:E1:4F:59:7C:F5:66:0D:63:C0:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jKik1CoBlt98wOFPWXz1Zg1jwJ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/krbPjQ7dV78artLAJHZH9VRMSb4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/jKik1CoBlt98wOFPWXz1Zg1jwJ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.29.242.0/24 Signature Algorithm: sha256WithRSAEncryption 66:6b:93:08:ff:e7:b5:32:ed:a8:16:b7:f8:5b:32:ed:34:ce: 66:b6:2f:0e:4b:b4:fe:5e:6f:9f:47:71:ae:54:e8:31:f3:c5: c4:62:fd:e6:f9:da:ed:b5:94:c2:75:9b:c1:ac:3f:99:aa:66: 03:6c:33:4a:5b:e9:6b:5f:a3:4c:29:4d:54:53:fd:ff:56:96: ad:db:15:04:06:86:f6:e2:d8:a6:74:28:14:25:19:14:55:3b: bf:84:e6:b2:a1:be:5a:a8:1a:10:e1:90:bc:e0:f3:25:65:ba: 46:71:28:e3:9d:89:fa:a5:f5:e9:63:56:a6:3f:13:76:1c:90: 14:cc:24:8d:d5:ee:55:29:5b:97:fe:17:ab:0e:69:a4:a1:78: 35:53:3a:31:44:96:c4:4b:54:ac:23:fd:03:64:a1:e7:33:b3: 75:92:38:fc:de:82:1b:ee:08:46:4d:9b:50:cc:1f:02:4f:41: a8:7d:75:8b:68:e3:3a:a4:f4:de:fa:94:aa:4d:5e:bf:57:36: 66:24:f5:10:09:b7:b2:f1:69:4f:bd:c5:15:f2:56:1a:80:54: 1c:1e:21:5e:2d:f1:f0:99:04:33:f9:d9:0c:3e:38:38:4f:9d: a7:3d:63:26:2d:46:44:9c:d6:42:e2:a8:5c:08:aa:8f:e1:57: f0:2a:a7:e7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5D//+444xXVzCdhBpZedvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhjYThhNGQ0MmEwMTk2ZGY3Y2MwZTE0ZjU5N2NmNTY2MGQ2 M2MwOWYwHhcNMjYwMTAxMTAxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MmI2Y2Y4ZDBlZGQ1N2JmMWFhZWQyYzAyNDc2NDdmNTU0NGM0OWJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJ+67aNwNFBhivsyPDt3GOMixbjL yk/4MF6JiVZNMt54sAlWUxYFksEpmrfPHjYxMeHKecUFplfgU2kgfXqIWmFTPcuu 9o/0d/7j2CsvwG3roZxS9x/CbTZIkJUbzM5FMr9PsFyuecujqb0sukWh1SpT0uET LSLoNNMh/8cg+gJbmHGMZt7N6ZiQlCVZ4kcJLMafRsjazuocodnWcnlbk8hk2XTq pAXDqFgb/1oBXrqR5rIWA0K4ya2C0oes5/SW4NGd4u4D13EhkUl+qH04dm15lh+Z mtOCkOkVatQVOXqd8CaP0tfxU8buaXNX5Xg2uCAucq9IKFhtlXUnvRzjywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJK2z40O3Ve/Gq7SwCR2R/VUTEm+MB8GA1UdIwQY MBaAFIyopNQqAZbffMDhT1l89WYNY8CfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaktpazFDb0JsdDk4d09GUFdYejFaZzFqd0o4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9iYjA0ODAtNjZhZC00Mjg4LWI4ZDMt MTAwNGMxZTUwZGZlLzEva3JiUGpRN2RWNzhhcnRMQUpIWkg5VlJNU2I0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC9iYjA0ODAtNjZhZC00Mjg4LWI4ZDMtMTAwNGMxZTUwZGZl LzEvaktpazFDb0JsdDk4d09GUFdYejFaZzFqd0o4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALh3yMA0G CSqGSIb3DQEBCwUAA4IBAQBma5MI/+e1Mu2oFrf4WzLtNM5mti8OS7T+Xm+fR3Gu VOgx88XEYv3m+drttZTCdZvBrD+ZqmYDbDNKW+lrX6NMKU1UU/3/Vpat2xUEBob2 4timdCgUJRkUVTu/hOayob5aqBoQ4ZC84PMlZbpGcSjjnYn6pfXpY1amPxN2HJAU zCSN1e5VKVuX/herDmmkoXg1UzoxRJbES1SsI/0DZKHnM7N1kjj83oIb7ghGTZtQ zB8CT0GofXWLaOM6pPTe+pSqTV6/VzZmJPUQCbey8WlPvcUV8lYagFQcHiFeLfHw mQQz+dkMPjg4T52nPWMmLUZEnNZC4qhcCKqP4VfwKqfn -----END CERTIFICATE-----Generated at Sun Jan 18 16:37:48 2026 by rpki-client