This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/KsHMO9JEeTHvFMZp-X2meNfM0GM.roa File: KsHMO9JEeTHvFMZp-X2meNfM0GM.roa (raw, json) Hash identifier: O065G0+uYIWj8FVjH2ScF5U5TItQBjrBQ4BjLPtkKMs= Subject key identifier: 2A:C1:CC:3B:D2:44:79:31:EF:14:C6:69:F9:7D:A6:78:D7:CC:D0:63 Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA555D3E80620577A50BCD4C7EA2827 Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/KsHMO9JEeTHvFMZp-X2meNfM0GM.roa Signing time: Thu 01 Jan 2026 22:19:51 +0000 ROA not before: Thu 01 Jan 2026 22:19:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61272 IP address blocks: 45.132.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:55:d3:e8:06:20:57:7a:50:bc:d4:c7:ea:28:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2ac1cc3bd2447931ef14c669f97da678d7ccd063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:84:0a:25:d6:f7:9d:86:a0:a1:bb:32:90:a3: 62:01:06:3f:40:61:56:e1:7e:97:6b:c3:72:a8:ee: 9e:3a:79:c5:9b:3d:a4:8a:f6:29:76:71:e1:e7:57: e3:8e:54:54:1a:04:c1:c5:04:88:8d:d6:ea:43:a8: ea:5a:ae:7e:09:f0:bc:30:62:6d:aa:9a:8c:95:1e: e8:2c:d5:8e:42:ff:3f:81:d5:cd:2a:fd:02:46:38: 08:9b:3c:4a:05:48:9b:a2:b8:e9:6c:7f:1c:94:d0: 1a:0d:ea:9b:15:d5:12:0f:9c:ed:fa:f8:e9:c8:65: 6d:9b:51:c4:a3:34:27:9a:b9:36:b5:9f:40:03:21: f9:ed:5b:47:9b:e6:45:c7:ac:84:ba:69:57:cd:5b: 52:a5:66:94:e5:02:c5:97:f7:e0:32:0b:b2:f4:96: 02:fe:8f:11:9d:02:ad:44:74:12:76:10:79:5a:3c: 93:ea:38:57:1c:e2:26:a6:dd:56:bd:06:73:8f:a6: 0a:ee:23:a8:53:31:8a:90:0f:ae:58:45:3d:6b:1a: 68:d9:65:fe:6a:f2:88:77:a6:48:96:b3:bc:d1:c2: be:1e:53:9d:31:55:6e:15:bf:8f:17:aa:4f:99:00: 91:ef:f2:74:8a:ae:37:13:0e:5e:0f:d2:e1:ba:7d: 46:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C1:CC:3B:D2:44:79:31:EF:14:C6:69:F9:7D:A6:78:D7:CC:D0:63 X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/KsHMO9JEeTHvFMZp-X2meNfM0GM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.132.194.0/24 Signature Algorithm: sha256WithRSAEncryption 31:0c:24:5e:b0:de:2e:4e:b9:cb:97:30:29:40:f9:ea:a5:19: 0b:0d:1d:ba:19:d3:32:a9:1d:76:27:0f:60:58:e9:2a:1d:c0: 7c:ce:11:c5:b5:30:a8:1e:82:ea:1c:0d:e3:4c:5d:7b:5d:d4: e3:c0:79:77:84:11:39:e1:56:5c:80:7f:bd:6d:2c:e2:43:44: 96:4b:d7:93:d7:46:e6:cd:46:68:17:3a:91:dc:ea:a6:41:28: 47:4a:e5:f2:eb:be:08:a9:6d:e8:d3:cf:6c:09:4c:2f:e7:cf: 39:92:11:f6:a4:ac:35:34:3d:b7:11:8c:66:53:76:4e:3b:eb: ba:e5:cc:f8:00:22:fc:43:48:60:11:e5:2f:a8:a6:61:c3:6d: 00:23:9a:b8:27:8a:59:2b:e8:7a:c2:00:da:fb:d5:97:f0:ad: b9:ef:5a:41:04:38:d7:df:90:c0:b3:62:08:d2:38:4d:d4:0b: 82:7f:fc:41:e5:51:e0:f2:67:ff:3c:1e:03:16:40:9c:c3:28: 61:e4:9f:85:bc:3b:93:1a:01:13:43:ab:8e:cb:4d:6c:4b:a2: fa:a4:eb:63:60:86:59:10:f5:9d:ee:1d:2c:53:ab:28:04:6d: 85:fe:26:24:75:e3:b2:25:b9:f7:fc:c3:32:d9:8b:00:3f:0f: 7f:76:b4:8b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pVXT6AYgV3pQvNTH6ignMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYWMxY2MzYmQyNDQ3OTMxZWYxNGM2NjlmOTdkYTY3OGQ3Y2NkMDYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYQKJdb3nYagobsykKNiAQY/QGFW 4X6Xa8NyqO6eOnnFmz2kivYpdnHh51fjjlRUGgTBxQSIjdbqQ6jqWq5+CfC8MGJt qpqMlR7oLNWOQv8/gdXNKv0CRjgImzxKBUiborjpbH8clNAaDeqbFdUSD5zt+vjp yGVtm1HEozQnmrk2tZ9AAyH57VtHm+ZFx6yEumlXzVtSpWaU5QLFl/fgMguy9JYC /o8RnQKtRHQSdhB5WjyT6jhXHOImpt1WvQZzj6YK7iOoUzGKkA+uWEU9axpo2WX+ avKId6ZIlrO80cK+HlOdMVVuFb+PF6pPmQCR7/J0iq43Ew5eD9Lhun1GIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCrBzDvSRHkx7xTGafl9pnjXzNBjMB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEvS3NITU85SkVlVEh2Rk1acC1YMm1lTmZNMEdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYTCMA0G CSqGSIb3DQEBCwUAA4IBAQAxDCResN4uTrnLlzApQPnqpRkLDR26GdMyqR12Jw9g WOkqHcB8zhHFtTCoHoLqHA3jTF17XdTjwHl3hBE54VZcgH+9bSziQ0SWS9eT10bm zUZoFzqR3OqmQShHSuXy674IqW3o089sCUwv5885khH2pKw1ND23EYxmU3ZOO+u6 5cz4ACL8Q0hgEeUvqKZhw20AI5q4J4pZK+h6wgDa+9WX8K2571pBBDjX35DAs2II 0jhN1AuCf/xB5VHg8mf/PB4DFkCcwyhh5J+FvDuTGgETQ6uOy01sS6L6pOtjYIZZ EPWd7h0sU6soBG2F/iYkdeOyJbn3/MMy2YsAPw9/drSL -----END CERTIFICATE-----Generated at Mon Jan 19 19:59:18 2026 by rpki-client