This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/kyiZYLBaKIrj5tT8RkwqZracJC8.roa File: kyiZYLBaKIrj5tT8RkwqZracJC8.roa (raw, json) Hash identifier: vKqajVq23PYVXFkY+10uAWZKmF5NFtLP9M4UhXMBcyg= Subject key identifier: 93:28:99:60:B0:5A:28:8A:E3:E6:D4:FC:46:4C:2A:66:B6:9C:24:2F Certificate issuer: /CN=e8d878aa53081893ba528524ef143ea9271392b8 Certificate serial: 019B797E15E07BFEFAE4ED65F4A6EC43DC88 Authority key identifier: E8:D8:78:AA:53:08:18:93:BA:52:85:24:EF:14:3E:A9:27:13:92:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/kyiZYLBaKIrj5tT8RkwqZracJC8.roa Signing time: Thu 01 Jan 2026 12:17:44 +0000 ROA not before: Thu 01 Jan 2026 12:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64431 IP address blocks: 185.165.128.0/22 maxlen: 24 2a0a:600::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:15:e0:7b:fe:fa:e4:ed:65:f4:a6:ec:43:dc:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8d878aa53081893ba528524ef143ea9271392b8 Validity Not Before: Jan 1 12:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=93289960b05a288ae3e6d4fc464c2a66b69c242f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5e:8f:2c:a1:e8:ee:97:0c:02:3e:1d:fd:5a: 22:6b:b6:63:14:8d:89:d2:fa:05:2b:ff:a7:2c:5b: 7c:00:b4:00:09:88:9f:04:0d:ab:3f:80:9f:f8:7a: 19:33:ff:a2:bb:8a:76:f8:5b:78:6a:1f:75:4a:8e: a8:51:1d:b7:1e:a8:43:b8:bb:7b:c6:f1:16:e0:cb: d9:d0:ea:53:c8:d6:cb:7f:d1:6e:81:fd:be:4a:17: c1:cf:08:f8:fa:17:60:06:9c:a2:d8:43:b4:64:ba: a5:3f:e5:e4:25:f9:0a:f4:f6:62:1d:4a:ce:7d:08: 93:28:c9:0d:95:45:49:ff:e0:22:5f:6f:d2:53:cf: bb:5d:a6:61:ee:17:f6:b8:91:65:e1:f7:c5:3f:84: 62:81:30:b2:3a:6d:2a:2c:3c:85:54:df:33:6f:f0: 13:1d:c1:5b:a7:a1:30:aa:b5:25:9f:6e:66:18:68: f0:e8:ca:b7:8b:12:fc:d8:d1:15:1c:aa:62:6c:04: 59:12:90:c5:13:c1:46:d9:ad:53:1d:0c:b7:46:47: 63:53:88:dc:e1:a9:4a:41:f2:6c:c1:b6:f7:79:99: e0:26:61:f8:5f:6e:73:06:5e:23:3f:4f:2c:57:03: 2b:37:0e:97:35:71:1e:18:c8:99:81:72:0f:d4:26: 4c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:28:99:60:B0:5A:28:8A:E3:E6:D4:FC:46:4C:2A:66:B6:9C:24:2F X509v3 Authority Key Identifier: keyid:E8:D8:78:AA:53:08:18:93:BA:52:85:24:EF:14:3E:A9:27:13:92:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/kyiZYLBaKIrj5tT8RkwqZracJC8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.165.128.0/22 IPv6: 2a0a:600::/29 Signature Algorithm: sha256WithRSAEncryption 90:ce:f3:bb:3a:a0:3f:a5:d0:03:b3:59:85:f3:d9:95:c3:33: 01:a8:b4:af:50:cd:b6:65:0e:87:38:75:30:44:ed:67:1d:14: 1f:79:be:88:e0:44:1e:e1:57:c5:d0:f4:9a:f2:89:f0:92:ec: 0e:79:cf:4a:2a:fc:94:80:1b:24:9e:cb:5b:14:86:0c:9c:85: 12:36:ac:ee:82:41:89:d9:ca:d9:bb:a5:db:28:8a:ca:e7:ee: 42:4a:2e:1b:4c:8d:cf:c9:c2:d6:9c:46:bc:24:42:45:2c:01: 4d:9d:a2:e2:ea:4c:b4:e1:62:fd:1d:ac:b4:f3:fa:21:36:35: 5f:33:25:11:93:0b:96:b3:6e:24:bc:0f:f9:f3:d7:c0:9c:d5: 3a:6b:7c:b5:6b:93:db:f6:66:93:82:cf:8d:a6:0b:02:01:7f: ed:12:44:0f:b0:79:99:69:62:d4:09:f7:c7:48:74:01:79:e6: 21:5f:91:9f:ee:86:26:a6:3a:06:0d:cb:7b:48:f1:dd:82:e4: e8:2b:b9:dd:ea:d8:7a:85:be:40:55:93:67:f4:f7:e6:47:d7: 52:66:85:da:df:72:52:e2:3f:75:00:46:b5:ff:08:64:70:92: 25:1f:84:97:db:a9:83:78:38:83:75:65:8a:3c:19:de:91:fa: fb:9d:fb:41 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5fhXge/765O1l9KbsQ9yIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4ZDg3OGFhNTMwODE4OTNiYTUyODUyNGVmMTQzZWE5Mjcx MzkyYjgwHhcNMjYwMTAxMTIxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MzI4OTk2MGIwNWEyODhhZTNlNmQ0ZmM0NjRjMmE2NmI2OWMyNDJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwV6PLKHo7pcMAj4d/Voia7ZjFI2J 0voFK/+nLFt8ALQACYifBA2rP4Cf+HoZM/+iu4p2+Ft4ah91So6oUR23HqhDuLt7 xvEW4MvZ0OpTyNbLf9Fugf2+ShfBzwj4+hdgBpyi2EO0ZLqlP+XkJfkK9PZiHUrO fQiTKMkNlUVJ/+AiX2/SU8+7XaZh7hf2uJFl4ffFP4RigTCyOm0qLDyFVN8zb/AT HcFbp6EwqrUln25mGGjw6Mq3ixL82NEVHKpibARZEpDFE8FG2a1THQy3RkdjU4jc 4alKQfJswbb3eZngJmH4X25zBl4jP08sVwMrNw6XNXEeGMiZgXIP1CZMxQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJMomWCwWiiK4+bU/EZMKma2nCQvMB8GA1UdIwQY MBaAFOjYeKpTCBiTulKFJO8UPqknE5K4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNk5oNHFsTUlHSk82VW9Vazd4US1xU2NUa3JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9hZDY0YmItZDUzOS00YThlLWIwZTYt NWY4OWI4ODVmNzI5LzEva3lpWllMQmFLSXJqNXRUOFJrd3FacmFjSkM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC9hZDY0YmItZDUzOS00YThlLWIwZTYtNWY4OWI4ODVmNzI5 LzEvNk5oNHFsTUlHSk82VW9Vazd4US1xU2NUa3JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuaWAMA0E AgACMAcDBQMqCgYAMA0GCSqGSIb3DQEBCwUAA4IBAQCQzvO7OqA/pdADs1mF89mV wzMBqLSvUM22ZQ6HOHUwRO1nHRQfeb6I4EQe4VfF0PSa8onwkuwOec9KKvyUgBsk nstbFIYMnIUSNqzugkGJ2crZu6XbKIrK5+5CSi4bTI3PycLWnEa8JEJFLAFNnaLi 6ky04WL9Hay08/ohNjVfMyURkwuWs24kvA/589fAnNU6a3y1a5Pb9maTgs+NpgsC AX/tEkQPsHmZaWLUCffHSHQBeeYhX5Gf7oYmpjoGDct7SPHdguToK7nd6th6hb5A VZNn9PfmR9dSZoXa33JS4j91AEa1/whkcJIlH4SX26mDeDiDdWWKPBnekfr7nftB -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:59 2026 by rpki-client