This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/KvgeqJVMtBERBgaWeQ7l2q_TyyI.roa File: KvgeqJVMtBERBgaWeQ7l2q_TyyI.roa (raw, json) Hash identifier: NJUE6bdAubYbnAUIE6s0c5Wi5PY+ros78NmtfNQmGAk= Subject key identifier: 2A:F8:1E:A8:95:4C:B4:11:11:06:06:96:79:0E:E5:DA:AF:D3:CB:22 Certificate issuer: /CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06 Certificate serial: 019B79ECDE269FDC8CD2E64198A05C774922 Authority key identifier: B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/KvgeqJVMtBERBgaWeQ7l2q_TyyI.roa Signing time: Thu 01 Jan 2026 14:18:45 +0000 ROA not before: Thu 01 Jan 2026 14:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34254 IP address blocks: 37.26.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.mft rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:de:26:9f:dc:8c:d2:e6:41:98:a0:5c:77:49:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06 Validity Not Before: Jan 1 14:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2af81ea8954cb41111060696790ee5daafd3cb22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2a:e0:1e:b7:53:39:ff:7b:4c:f7:a7:d1:52: 6d:17:cc:b2:f4:c3:68:05:eb:4c:e9:e1:21:4c:4d: 63:ac:fc:9b:ee:73:61:28:65:a9:cc:a9:99:79:ad: 6f:b8:a7:9a:08:ee:8f:aa:d7:c4:a0:a4:14:46:da: c9:6a:62:b7:c7:00:5e:aa:34:d5:9d:e7:58:28:a9: bb:ff:2b:16:19:5f:85:7e:05:a4:9b:a7:c4:38:d0: a0:b0:a8:61:37:4e:00:0b:c1:4d:67:87:96:b3:f3: b7:57:75:51:d4:8d:af:d9:9b:3f:2e:6b:57:e2:38: c1:39:ce:80:e9:39:ba:44:bf:4f:d1:d8:74:43:cf: 64:f2:a1:5e:bf:d5:5e:6f:72:20:6c:5a:be:18:d2: 14:04:8f:0a:af:f6:95:bb:4e:ec:b4:96:a7:34:77: 10:c4:25:ea:3c:a3:be:fc:05:bd:58:d1:88:d9:29: 52:6c:9b:1e:42:30:53:59:15:6a:cf:52:57:6f:08: 14:8e:5c:57:60:28:7d:9e:f9:d4:6f:17:35:4c:cf: 35:aa:b5:a4:aa:ba:88:10:9d:c8:01:19:b1:06:8b: 2a:0a:fe:f0:bb:2d:93:35:9d:e3:3b:0d:30:b2:8b: 0a:d9:95:3e:9f:2b:8c:c5:9a:fc:d2:62:ef:cc:a9: 80:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F8:1E:A8:95:4C:B4:11:11:06:06:96:79:0E:E5:DA:AF:D3:CB:22 X509v3 Authority Key Identifier: keyid:B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/KvgeqJVMtBERBgaWeQ7l2q_TyyI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.26.72.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:9f:77:4e:ee:09:ab:b7:20:82:08:e4:19:3a:fc:aa:3b:ba: 87:d4:90:b7:a6:38:3a:c0:ef:20:65:01:7d:8e:f6:c0:38:b7: 3c:f9:ca:75:47:61:31:49:fa:5a:7a:3d:39:12:db:52:12:ec: 3d:68:c0:c9:b3:64:96:10:22:a8:72:be:7a:cf:5c:61:68:47: c2:17:13:64:bf:41:a9:db:90:b2:34:2f:31:3f:34:98:2e:92: 27:f2:ae:18:7b:c3:40:b2:bb:5f:23:62:93:e6:a1:6c:e8:1f: 62:e0:20:e0:0a:98:c1:3b:77:e5:a9:a1:d3:e2:f8:6a:8a:68: 2a:0f:92:04:1a:8d:de:05:8a:0a:be:ac:a1:c1:1e:74:1d:5e: 11:dd:44:a2:c7:4b:b9:5d:68:cc:9a:8b:31:30:1b:0c:4f:b4: 30:b1:d9:a0:96:19:e8:de:42:a6:7d:c6:75:ea:79:98:fc:a9: 68:9a:ba:91:fc:2d:90:26:e2:de:74:28:b6:1a:de:13:7c:cf: 0d:65:af:d7:fb:02:05:6f:fd:e9:9c:89:40:ca:ca:12:e1:89: 7d:c9:2a:c1:24:18:98:66:42:06:f3:48:fe:b8:48:24:57:e9: c2:f6:fb:af:03:2a:2c:a9:21:f0:20:19:6a:f2:9e:d3:20:cb: 87:0a:88:a9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57N4mn9yM0uZBmKBcd0kiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzOGJiNjJhNDdiMWEyYWVkYjcwZjMyZjU4Yzk3OWJhMGM3 NzdmMDYwHhcNMjYwMTAxMTQxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYWY4MWVhODk1NGNiNDExMTEwNjA2OTY3OTBlZTVkYWFmZDNjYjIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnirgHrdTOf97TPen0VJtF8yy9MNo BetM6eEhTE1jrPyb7nNhKGWpzKmZea1vuKeaCO6PqtfEoKQURtrJamK3xwBeqjTV nedYKKm7/ysWGV+FfgWkm6fEONCgsKhhN04AC8FNZ4eWs/O3V3VR1I2v2Zs/LmtX 4jjBOc6A6Tm6RL9P0dh0Q89k8qFev9Veb3IgbFq+GNIUBI8Kr/aVu07stJanNHcQ xCXqPKO+/AW9WNGI2SlSbJseQjBTWRVqz1JXbwgUjlxXYCh9nvnUbxc1TM81qrWk qrqIEJ3IARmxBosqCv7wuy2TNZ3jOw0wsosK2ZU+nyuMxZr80mLvzKmA6wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCr4HqiVTLQREQYGlnkO5dqv08siMB8GA1UdIwQY MBaAFLOLtipHsaKu23DzL1jJeboMd38GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczR1MktrZXhvcTdiY1BNdldNbDV1Z3gzZndZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85ZjY4MmMtMWM1Ny00Y2U1LWJiOTgt MDYwNWMwODlmYzM4LzEvS3ZnZXFKVk10QkVSQmdhV2VRN2wycV9UeXlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi85ZjY4MmMtMWM1Ny00Y2U1LWJiOTgtMDYwNWMwODlmYzM4 LzEvczR1MktrZXhvcTdiY1BNdldNbDV1Z3gzZndZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBJRpIMA0G CSqGSIb3DQEBCwUAA4IBAQBfn3dO7gmrtyCCCOQZOvyqO7qH1JC3pjg6wO8gZQF9 jvbAOLc8+cp1R2ExSfpaej05EttSEuw9aMDJs2SWECKocr56z1xhaEfCFxNkv0Gp 25CyNC8xPzSYLpIn8q4Ye8NAsrtfI2KT5qFs6B9i4CDgCpjBO3flqaHT4vhqimgq D5IEGo3eBYoKvqyhwR50HV4R3USix0u5XWjMmosxMBsMT7Qwsdmglhno3kKmfcZ1 6nmY/KlomrqR/C2QJuLedCi2Gt4TfM8NZa/X+wIFb/3pnIlAysoS4Yl9ySrBJBiY ZkIG80j+uEgkV+nC9vuvAyosqSHwIBlq8p7TIMuHCoip -----END CERTIFICATE-----Generated at Mon Jan 26 18:54:51 2026 by rpki-client