This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/KGRZtAAx-sknvQQcwhztrA8NJos.roa File: KGRZtAAx-sknvQQcwhztrA8NJos.roa (raw, json) Hash identifier: uYCNY8bnQOpiSbQHGpcKZAraJm0QfOSnQkHdbbBpb7U= Subject key identifier: 28:64:59:B4:00:31:FA:C9:27:BD:04:1C:C2:1C:ED:AC:0F:0D:26:8B Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3 Certificate serial: 019B77C65F42339835558A61A6EF3E4027EE Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/KGRZtAAx-sknvQQcwhztrA8NJos.roa Signing time: Thu 01 Jan 2026 04:17:27 +0000 ROA not before: Thu 01 Jan 2026 04:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41026 IP address blocks: 195.140.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:5f:42:33:98:35:55:8a:61:a6:ef:3e:40:27:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3 Validity Not Before: Jan 1 04:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=286459b40031fac927bd041cc21cedac0f0d268b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4d:26:62:ec:e2:42:4d:b4:c8:e2:ed:c7:fe: b0:1a:80:3b:09:6c:75:0d:3c:10:73:14:19:ec:16: d2:90:14:42:e3:5e:6e:74:78:88:06:cb:57:7a:4d: ca:49:0c:7e:78:5a:f9:e9:77:27:3a:d3:ac:4c:40: 52:bd:7a:c8:a2:fd:92:db:86:18:c4:9f:72:54:40: ed:0c:74:a8:80:b0:3c:cd:82:78:44:bc:9d:14:51: fc:f1:79:0c:0d:a3:ec:d6:74:e4:6d:b8:c8:80:b7: c9:e2:c7:8a:7a:8d:88:ce:83:42:2c:42:1b:e7:57: 0a:1e:5c:65:47:67:6d:72:7e:07:fd:b4:7e:38:d9: e1:67:23:d9:79:79:ea:c3:00:bc:df:cb:e0:b3:7a: 95:1c:d2:17:6a:6e:ad:17:51:41:a8:4a:46:03:62: 41:23:05:21:3a:21:f1:7e:e1:f0:c5:f3:e6:ae:89: 4f:b5:57:e6:21:c0:56:c4:80:e3:4e:20:16:51:58: be:86:34:b4:86:cc:9e:e6:ff:1b:aa:3e:f3:0e:a6: 00:e8:a7:02:d6:07:1c:5b:6c:1b:b7:6c:fb:bd:a9: c4:b4:8d:fe:1c:1c:f0:36:a5:13:3b:15:e8:9a:2f: 0d:06:18:cf:bc:cf:d8:c5:8f:1f:c9:55:58:f1:6d: a0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:64:59:B4:00:31:FA:C9:27:BD:04:1C:C2:1C:ED:AC:0F:0D:26:8B X509v3 Authority Key Identifier: keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/KGRZtAAx-sknvQQcwhztrA8NJos.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.140.152.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:15:79:d5:d4:68:88:9a:a6:61:ea:04:e0:e9:f1:1f:d8:d4: 3f:a2:17:74:91:46:16:58:be:2d:22:27:32:5c:61:e5:cf:90: d7:29:3e:dc:39:dc:56:e9:d9:ed:6f:a2:de:75:83:bb:c0:67: e7:9b:3d:c0:b4:53:de:64:73:87:cf:39:f2:de:5b:dc:18:92: 5b:56:1e:59:b0:e4:2b:35:8b:be:d9:dc:33:b2:aa:0b:0d:7a: e0:2d:c3:8d:45:ea:69:a9:34:b6:f2:00:30:82:d5:ff:80:3d: 5f:47:8b:24:4e:f8:46:e4:a4:78:ce:27:9d:7e:32:63:2d:24: f9:f6:2a:11:09:e3:4f:c3:79:c3:f9:5a:42:d2:56:3f:38:7d: cb:6e:82:cc:e5:89:03:a8:cd:e4:93:8f:0a:4d:62:2a:3d:c0: 85:67:da:0f:30:7c:f1:25:27:0c:1d:5a:3a:b1:a9:5c:fa:92: b7:91:75:99:26:18:56:7c:c0:41:e7:98:90:cf:94:dd:e1:97: 73:7a:4e:39:5a:31:9a:71:a5:17:d2:6c:92:75:02:8c:88:98: 11:56:19:3c:36:1a:da:7a:2b:fc:b6:e6:b7:4d:ff:ef:73:12: 14:fb:d4:99:eb:8c:70:fa:f7:80:97:eb:02:7f:63:d7:d7:da: 2e:98:04:91 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xl9CM5g1VYphpu8+QCfuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNDMzNmRhMWViNzIxNmUyMGVjMDRhN2YwMzFlYjRhMWI2 MzFiYjMwHhcNMjYwMTAxMDQxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyODY0NTliNDAwMzFmYWM5MjdiZDA0MWNjMjFjZWRhYzBmMGQyNjhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm00mYuziQk20yOLtx/6wGoA7CWx1 DTwQcxQZ7BbSkBRC415udHiIBstXek3KSQx+eFr56XcnOtOsTEBSvXrIov2S24YY xJ9yVEDtDHSogLA8zYJ4RLydFFH88XkMDaPs1nTkbbjIgLfJ4seKeo2IzoNCLEIb 51cKHlxlR2dtcn4H/bR+ONnhZyPZeXnqwwC838vgs3qVHNIXam6tF1FBqEpGA2JB IwUhOiHxfuHwxfPmrolPtVfmIcBWxIDjTiAWUVi+hjS0hsye5v8bqj7zDqYA6KcC 1gccW2wbt2z7vanEtI3+HBzwNqUTOxXomi8NBhjPvM/YxY8fyVVY8W2gBQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFChkWbQAMfrJJ70EHMIc7awPDSaLMB8GA1UdIwQY MBaAFJpDNtoetyFuIOwEp/Ax60obYxuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYt ZmE4ODA2YTAyNGM0LzEvS0dSWnRBQXgtc2tudlFRY3doenRyQThOSm9zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYtZmE4ODA2YTAyNGM0 LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw4yYMA0G CSqGSIb3DQEBCwUAA4IBAQBfFXnV1GiImqZh6gTg6fEf2NQ/ohd0kUYWWL4tIicy XGHlz5DXKT7cOdxW6dntb6LedYO7wGfnmz3AtFPeZHOHzzny3lvcGJJbVh5ZsOQr NYu+2dwzsqoLDXrgLcONReppqTS28gAwgtX/gD1fR4skTvhG5KR4ziedfjJjLST5 9ioRCeNPw3nD+VpC0lY/OH3LboLM5YkDqM3kk48KTWIqPcCFZ9oPMHzxJScMHVo6 salc+pK3kXWZJhhWfMBB55iQz5Td4Zdzek45WjGacaUX0mySdQKMiJgRVhk8Nhra eiv8tua3Tf/vcxIU+9SZ64xw+veAl+sCf2PX19oumASR -----END CERTIFICATE-----Generated at Tue Feb 10 00:03:28 2026 by rpki-client