This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/KiViUlRdp1iVIBpAgxyCpxxK3gQ.roa File: KiViUlRdp1iVIBpAgxyCpxxK3gQ.roa (raw, json) Hash identifier: Yk/aBj6tG6In28XxnbyhWgRKpfIGrGy/o9iiuy0VDDg= Subject key identifier: 2A:25:62:52:54:5D:A7:58:95:20:1A:40:83:1C:82:A7:1C:4A:DE:04 Certificate issuer: /CN=31d4ee4afff55e67444d47d49b512a8368bf9ef6 Certificate serial: 019B7B3665D3086813CC7CE7509FDB6A2010 Authority key identifier: 31:D4:EE:4A:FF:F5:5E:67:44:4D:47:D4:9B:51:2A:83:68:BF:9E:F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdTuSv_1XmdETUfUm1Eqg2i_nvY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/KiViUlRdp1iVIBpAgxyCpxxK3gQ.roa Signing time: Thu 01 Jan 2026 20:18:40 +0000 ROA not before: Thu 01 Jan 2026 20:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199786 IP address blocks: 185.50.140.0/22 maxlen: 22 2a01:abe0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/MdTuSv_1XmdETUfUm1Eqg2i_nvY.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/MdTuSv_1XmdETUfUm1Eqg2i_nvY.mft rsync://rpki.ripe.net/repository/DEFAULT/MdTuSv_1XmdETUfUm1Eqg2i_nvY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 08:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:65:d3:08:68:13:cc:7c:e7:50:9f:db:6a:20:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31d4ee4afff55e67444d47d49b512a8368bf9ef6 Validity Not Before: Jan 1 20:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2a256252545da75895201a40831c82a71c4ade04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:28:a8:1d:7b:90:b5:f7:8e:bb:74:ee:3c:f3: d6:0b:90:14:e4:74:02:bd:aa:f7:cd:bb:21:cf:a7: 30:bf:c6:87:36:29:66:1d:a8:8f:16:c8:21:da:3c: 81:2e:dd:07:73:c3:ae:fd:43:83:b6:8d:56:8c:9b: 0e:2d:75:58:3c:45:9b:97:f8:8a:9a:d0:70:3a:85: 6b:dc:74:19:f6:d2:d7:f3:2b:f8:2f:21:93:da:c7: 6d:33:ec:42:e2:4f:ed:db:8d:b8:b4:36:57:b3:3f: 7b:06:e6:12:61:cf:60:14:66:8d:d8:ee:c4:8c:a3: b1:9d:ae:81:fd:9d:0a:70:3e:bb:24:23:ea:74:a2: fa:e1:1d:74:50:48:13:ae:6f:00:f8:c5:c0:0c:a7: 7b:b7:40:d4:e6:90:bb:58:68:89:3a:91:ce:fd:8e: a5:0a:8e:f4:20:a2:1b:49:63:f8:fd:8d:bd:47:da: 85:a8:f8:a4:3c:7b:d8:d9:aa:48:f0:be:e1:fd:d7: a7:22:4f:f8:6c:34:78:56:7c:40:83:33:6f:e6:97: a0:1a:bd:f9:62:da:2f:89:12:f7:b6:34:7f:d4:fa: 43:c0:29:99:6b:2e:0b:27:c6:4a:c4:a3:cc:d7:19: 66:69:ab:ae:df:6b:35:d1:00:16:ae:8e:65:25:e9: 97:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:25:62:52:54:5D:A7:58:95:20:1A:40:83:1C:82:A7:1C:4A:DE:04 X509v3 Authority Key Identifier: keyid:31:D4:EE:4A:FF:F5:5E:67:44:4D:47:D4:9B:51:2A:83:68:BF:9E:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdTuSv_1XmdETUfUm1Eqg2i_nvY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/KiViUlRdp1iVIBpAgxyCpxxK3gQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/MdTuSv_1XmdETUfUm1Eqg2i_nvY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.50.140.0/22 IPv6: 2a01:abe0::/32 Signature Algorithm: sha256WithRSAEncryption b2:4a:e2:be:81:12:ce:39:43:52:f4:a7:0f:de:64:43:0c:0a: 8e:27:1d:4d:f3:7d:cb:57:87:32:6f:8f:50:ff:4c:c9:1f:df: 54:fe:4a:76:23:04:13:4b:74:28:4b:5e:0f:94:5b:05:38:9b: ab:c5:8b:60:97:67:95:14:3c:5d:2d:e1:34:6d:03:2c:f0:1d: 9c:6e:41:57:f8:5e:2c:42:b3:b9:d2:41:36:25:68:2d:52:bc: 60:ad:de:7e:dc:5b:fd:c9:71:fd:5c:4e:b8:6f:07:7c:45:1e: cc:b5:bf:18:60:ed:2e:23:46:b8:82:b3:19:75:ad:a0:bd:80: c3:5f:59:c8:f9:1b:e5:dc:72:76:07:9a:8f:be:9d:02:52:8a: 01:e7:53:ab:4a:a7:fa:80:16:e9:9e:ea:93:56:fa:5b:53:a2: 34:c7:62:63:aa:21:b3:73:88:08:b3:08:e8:21:54:e7:79:4d: 01:07:f6:36:77:34:0e:20:e7:e1:29:ba:99:3b:39:04:75:b5: 9b:6e:a9:64:35:fb:0f:0e:40:09:31:70:1a:91:6e:be:37:31: cc:bf:c9:98:ee:65:bd:77:62:e3:70:4f:fe:de:01:09:65:81: 1e:c1:45:12:a0:81:3c:bc:f5:03:1d:2a:86:e9:dd:c3:5c:6c: 5d:e2:5c:86 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7NmXTCGgTzHznUJ/baiAQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxZDRlZTRhZmZmNTVlNjc0NDRkNDdkNDliNTEyYTgzNjhi ZjllZjYwHhcNMjYwMTAxMjAxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYTI1NjI1MjU0NWRhNzU4OTUyMDFhNDA4MzFjODJhNzFjNGFkZTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnyioHXuQtfeOu3TuPPPWC5AU5HQC var3zbshz6cwv8aHNilmHaiPFsgh2jyBLt0Hc8Ou/UODto1WjJsOLXVYPEWbl/iK mtBwOoVr3HQZ9tLX8yv4LyGT2sdtM+xC4k/t2424tDZXsz97BuYSYc9gFGaN2O7E jKOxna6B/Z0KcD67JCPqdKL64R10UEgTrm8A+MXADKd7t0DU5pC7WGiJOpHO/Y6l Co70IKIbSWP4/Y29R9qFqPikPHvY2apI8L7h/denIk/4bDR4VnxAgzNv5pegGr35 YtoviRL3tjR/1PpDwCmZay4LJ8ZKxKPM1xlmaauu32s10QAWro5lJemX1wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFColYlJUXadYlSAaQIMcgqccSt4EMB8GA1UdIwQY MBaAFDHU7kr/9V5nRE1H1JtRKoNov572MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWRUdVN2XzFYbWRFVFVmVW0xRXFnMmlfbnZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9lNDRkZWEtOGQ1MS00NDBhLWJjMDIt YmFiNTc2ZTIwMzkzLzEvS2lWaVVsUmRwMWlWSUJwQWd4eUNweHhLM2dRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS9lNDRkZWEtOGQ1MS00NDBhLWJjMDItYmFiNTc2ZTIwMzkz LzEvTWRUdVN2XzFYbWRFVFVmVW0xRXFnMmlfbnZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTKMMA0E AgACMAcDBQAqAavgMA0GCSqGSIb3DQEBCwUAA4IBAQCySuK+gRLOOUNS9KcP3mRD DAqOJx1N833LV4cyb49Q/0zJH99U/kp2IwQTS3QoS14PlFsFOJurxYtgl2eVFDxd LeE0bQMs8B2cbkFX+F4sQrO50kE2JWgtUrxgrd5+3Fv9yXH9XE64bwd8RR7Mtb8Y YO0uI0a4grMZda2gvYDDX1nI+Rvl3HJ2B5qPvp0CUooB51OrSqf6gBbpnuqTVvpb U6I0x2JjqiGzc4gIswjoIVTneU0BB/Y2dzQOIOfhKbqZOzkEdbWbbqlkNfsPDkAJ MXAakW6+NzHMv8mY7mW9d2LjcE/+3gEJZYEewUUSoIE8vPUDHSqG6d3DXGxd4lyG -----END CERTIFICATE-----Generated at Fri Jan 9 18:08:36 2026 by rpki-client