This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/86246a-f033-4e48-b7dd-2f4242a13d00/1/kVHOrLRn8dYHPF-qShmVfrIGZWE.roa File: kVHOrLRn8dYHPF-qShmVfrIGZWE.roa (raw, json) Hash identifier: RBY+pXDY3wuZ3UWMC49u2LOFQA3uX8fBCHLmuTx0kas= Subject key identifier: 91:51:CE:AC:B4:67:F1:D6:07:3C:5F:AA:4A:19:95:7E:B2:06:65:61 Certificate issuer: /CN=749ea3b1e58ba060b41fc2a078f6016264759664 Certificate serial: 019B7C12A492DB3BA42C1ABDBD8E98DE6600 Authority key identifier: 74:9E:A3:B1:E5:8B:A0:60:B4:1F:C2:A0:78:F6:01:62:64:75:96:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJ6jseWLoGC0H8KgePYBYmR1lmQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/86246a-f033-4e48-b7dd-2f4242a13d00/1/kVHOrLRn8dYHPF-qShmVfrIGZWE.roa Signing time: Fri 02 Jan 2026 00:19:15 +0000 ROA not before: Fri 02 Jan 2026 00:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59767 IP address blocks: 185.34.4.0/22 maxlen: 22 2a04:5d40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/86246a-f033-4e48-b7dd-2f4242a13d00/1/dJ6jseWLoGC0H8KgePYBYmR1lmQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/86246a-f033-4e48-b7dd-2f4242a13d00/1/dJ6jseWLoGC0H8KgePYBYmR1lmQ.mft rsync://rpki.ripe.net/repository/DEFAULT/dJ6jseWLoGC0H8KgePYBYmR1lmQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:a4:92:db:3b:a4:2c:1a:bd:bd:8e:98:de:66:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749ea3b1e58ba060b41fc2a078f6016264759664 Validity Not Before: Jan 2 00:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9151ceacb467f1d6073c5faa4a19957eb2066561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:02:6b:53:ea:62:d3:52:de:61:37:e7:fb:0d: af:f3:02:1d:f4:e7:d0:4d:4e:19:ec:5d:60:75:e1: e7:da:3a:32:13:d2:d0:26:0b:d6:1f:64:11:fc:36: 21:65:e0:f6:c8:6d:07:7c:15:33:2e:4a:97:d2:b6: 71:6a:74:a1:85:d2:58:f2:dd:aa:6e:5d:d2:67:cd: 41:f7:18:ec:e7:e5:97:71:96:1b:b1:11:a4:cf:e4: a3:02:8e:f6:cd:34:b0:50:d9:05:78:5b:7c:0c:31: d8:b6:c6:21:c2:f0:6a:7b:e1:6c:85:9d:ec:ee:db: b7:2a:1e:56:1b:09:a2:66:44:ec:94:0f:5e:04:a9: 60:2d:11:ed:ee:d3:64:96:ff:f6:24:90:11:ab:60: 52:aa:d8:fe:0f:d3:5b:2d:7c:25:43:cf:8a:64:27: 6b:17:69:19:d2:8c:be:94:4b:36:d9:56:7f:9d:d2: 6b:3c:17:fe:e6:e6:f7:2a:28:19:2b:6e:03:91:bb: 4f:40:86:ba:e6:b6:4f:56:cf:8e:9b:78:06:a6:38: e5:56:3c:3b:1d:0c:d4:66:aa:20:21:21:fe:65:53: ce:c0:10:d1:5d:09:dc:f1:b0:b8:f6:b5:a9:33:5d: 56:fc:5b:92:8e:37:1e:8d:d0:59:71:b0:05:e3:66: dc:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:51:CE:AC:B4:67:F1:D6:07:3C:5F:AA:4A:19:95:7E:B2:06:65:61 X509v3 Authority Key Identifier: keyid:74:9E:A3:B1:E5:8B:A0:60:B4:1F:C2:A0:78:F6:01:62:64:75:96:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJ6jseWLoGC0H8KgePYBYmR1lmQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/86246a-f033-4e48-b7dd-2f4242a13d00/1/kVHOrLRn8dYHPF-qShmVfrIGZWE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/86246a-f033-4e48-b7dd-2f4242a13d00/1/dJ6jseWLoGC0H8KgePYBYmR1lmQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.34.4.0/22 IPv6: 2a04:5d40::/29 Signature Algorithm: sha256WithRSAEncryption 66:77:26:77:6f:f2:7e:d9:05:f9:45:ac:92:2a:29:f6:8c:1c: 66:48:33:80:01:1d:5a:0e:90:40:0e:7a:59:99:65:0c:8e:40: 08:ef:6d:9b:09:c7:25:8c:fc:5d:2d:36:99:41:03:1a:6b:a6: ca:78:65:a4:c5:21:2a:e8:80:2c:3f:51:27:56:75:c7:9d:30: ee:77:19:6d:8d:8f:b1:17:0a:20:09:e1:39:b0:4f:95:71:15: dc:29:10:a1:d2:3f:4d:26:34:98:b0:5b:19:2f:4d:fb:b0:8c: 1f:58:22:2c:05:1c:05:f6:28:6f:f7:ca:4c:6b:b2:f9:7d:77: f5:14:52:c6:6a:3d:74:5c:81:b7:e2:56:62:df:43:3a:b7:23: 8d:36:67:28:09:ce:1e:62:86:bc:1e:9e:e7:45:23:88:a4:ae: 11:5f:d9:37:35:e4:4e:7f:b9:d9:53:5f:f3:40:ac:92:45:82: 72:c2:08:23:11:9a:66:17:49:54:f7:5c:30:6f:6c:54:70:d1: ae:d7:97:10:29:0b:17:ff:98:6c:2a:55:60:60:58:23:30:32: eb:fd:0e:41:5d:74:08:fc:fd:6f:75:a6:98:cc:f0:d3:39:7d: a7:52:dd:7a:bd:1c:1a:36:f3:14:3b:17:7e:ad:18:ef:32:8d: 91:b2:78:e0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8EqSS2zukLBq9vY6Y3mYAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OWVhM2IxZTU4YmEwNjBiNDFmYzJhMDc4ZjYwMTYyNjQ3 NTk2NjQwHhcNMjYwMTAyMDAxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTUxY2VhY2I0NjdmMWQ2MDczYzVmYWE0YTE5OTU3ZWIyMDY2NTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2gJrU+pi01LeYTfn+w2v8wId9OfQ TU4Z7F1gdeHn2joyE9LQJgvWH2QR/DYhZeD2yG0HfBUzLkqX0rZxanShhdJY8t2q bl3SZ81B9xjs5+WXcZYbsRGkz+SjAo72zTSwUNkFeFt8DDHYtsYhwvBqe+FshZ3s 7tu3Kh5WGwmiZkTslA9eBKlgLRHt7tNklv/2JJARq2BSqtj+D9NbLXwlQ8+KZCdr F2kZ0oy+lEs22VZ/ndJrPBf+5ub3KigZK24DkbtPQIa65rZPVs+Om3gGpjjlVjw7 HQzUZqogISH+ZVPOwBDRXQnc8bC49rWpM11W/FuSjjcejdBZcbAF42bcmwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJFRzqy0Z/HWBzxfqkoZlX6yBmVhMB8GA1UdIwQY MBaAFHSeo7Hli6BgtB/CoHj2AWJkdZZkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEo2anNlV0xvR0MwSDhLZ2VQWUJZbVIxbG1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy84NjI0NmEtZjAzMy00ZTQ4LWI3ZGQt MmY0MjQyYTEzZDAwLzEva1ZIT3JMUm44ZFlIUEYtcVNobVZmcklHWldFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy84NjI0NmEtZjAzMy00ZTQ4LWI3ZGQtMmY0MjQyYTEzZDAw LzEvZEo2anNlV0xvR0MwSDhLZ2VQWUJZbVIxbG1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuSIEMA0E AgACMAcDBQMqBF1AMA0GCSqGSIb3DQEBCwUAA4IBAQBmdyZ3b/J+2QX5RaySKin2 jBxmSDOAAR1aDpBADnpZmWUMjkAI722bCccljPxdLTaZQQMaa6bKeGWkxSEq6IAs P1EnVnXHnTDudxltjY+xFwogCeE5sE+VcRXcKRCh0j9NJjSYsFsZL037sIwfWCIs BRwF9ihv98pMa7L5fXf1FFLGaj10XIG34lZi30M6tyONNmcoCc4eYoa8Hp7nRSOI pK4RX9k3NeROf7nZU1/zQKySRYJywggjEZpmF0lU91wwb2xUcNGu15cQKQsX/5hs KlVgYFgjMDLr/Q5BXXQI/P1vdaaYzPDTOX2nUt16vRwaNvMUOxd+rRjvMo2Rsnjg -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:39 2026 by rpki-client