This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/884e3e-7b53-475c-861f-6acd581d4b0f/1/KdkSplDy4QjMpE4fLCxjhJLFG-A.roa File: KdkSplDy4QjMpE4fLCxjhJLFG-A.roa (raw, json) Hash identifier: GJjKbZNtY1x/kWqwNINR2VUda7Jb8+5oqTMBWfwhVbU= Subject key identifier: 29:D9:12:A6:50:F2:E1:08:CC:A4:4E:1F:2C:2C:63:84:92:C5:1B:E0 Certificate issuer: /CN=e6d17b13653ff1e3e7822eb1e5e0a17f4d4f7881 Certificate serial: 019B79ECF4DB2ED66054DEA35FD01ADBD16C Authority key identifier: E6:D1:7B:13:65:3F:F1:E3:E7:82:2E:B1:E5:E0:A1:7F:4D:4F:78:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5tF7E2U_8ePngi6x5eChf01PeIE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/884e3e-7b53-475c-861f-6acd581d4b0f/1/KdkSplDy4QjMpE4fLCxjhJLFG-A.roa Signing time: Thu 01 Jan 2026 14:18:50 +0000 ROA not before: Thu 01 Jan 2026 14:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57031 IP address blocks: 89.22.0.0/24 maxlen: 24 89.22.2.0/24 maxlen: 24 89.22.3.0/24 maxlen: 24 89.22.4.0/24 maxlen: 24 89.22.5.0/24 maxlen: 24 89.22.6.0/24 maxlen: 24 89.22.7.0/24 maxlen: 24 2001:67c:7c2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/884e3e-7b53-475c-861f-6acd581d4b0f/1/5tF7E2U_8ePngi6x5eChf01PeIE.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/884e3e-7b53-475c-861f-6acd581d4b0f/1/5tF7E2U_8ePngi6x5eChf01PeIE.mft rsync://rpki.ripe.net/repository/DEFAULT/5tF7E2U_8ePngi6x5eChf01PeIE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:f4:db:2e:d6:60:54:de:a3:5f:d0:1a:db:d1:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e6d17b13653ff1e3e7822eb1e5e0a17f4d4f7881 Validity Not Before: Jan 1 14:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29d912a650f2e108cca44e1f2c2c638492c51be0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:74:db:df:50:17:1d:7a:12:50:61:5b:bb:1a: 18:53:6a:7f:80:27:9c:56:00:3f:39:8f:fd:90:f3: 74:34:64:d0:45:02:da:fc:72:45:a5:a2:af:9f:4e: 9d:cc:1d:1d:22:55:ac:a0:df:dc:92:31:66:86:f1: 51:99:79:6f:59:47:86:78:5a:58:29:9f:17:99:24: ee:81:fd:b7:7f:f3:9f:fa:8b:7b:47:f4:99:3e:c5: c7:bd:04:d2:dd:97:7f:f0:e4:56:20:ac:7b:a4:2c: d2:e6:5f:da:9c:7c:e8:3a:d2:73:32:88:b0:d6:a1: f6:83:ee:bf:0a:5f:10:1d:90:e8:7d:d1:f8:c8:39: b0:7b:1f:d0:d7:ad:3d:46:af:4f:c5:7d:b1:d4:ee: 4b:0e:5d:04:0b:87:d5:a4:1b:d8:93:f2:6e:6f:0b: 73:79:cc:83:a5:48:82:df:c3:48:8f:51:01:c3:69: 7a:85:76:f0:fd:10:4a:88:4a:5d:ee:d6:4a:99:54: 2a:96:4c:09:28:0f:45:99:30:18:9a:cb:63:c5:c1: ee:f6:54:82:1c:7b:3c:f1:a1:6c:ef:9e:ba:bf:18: 72:a0:bf:76:4d:4e:3c:d0:c5:e1:15:a2:47:4e:fc: 6f:73:a4:0d:29:25:5a:be:28:61:c6:b5:e7:c2:6b: 26:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D9:12:A6:50:F2:E1:08:CC:A4:4E:1F:2C:2C:63:84:92:C5:1B:E0 X509v3 Authority Key Identifier: keyid:E6:D1:7B:13:65:3F:F1:E3:E7:82:2E:B1:E5:E0:A1:7F:4D:4F:78:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5tF7E2U_8ePngi6x5eChf01PeIE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/884e3e-7b53-475c-861f-6acd581d4b0f/1/KdkSplDy4QjMpE4fLCxjhJLFG-A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/884e3e-7b53-475c-861f-6acd581d4b0f/1/5tF7E2U_8ePngi6x5eChf01PeIE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.22.0.0/24 89.22.2.0-89.22.7.255 IPv6: 2001:67c:7c2::/48 Signature Algorithm: sha256WithRSAEncryption 03:db:1b:dd:69:b3:24:ed:30:45:8e:9a:24:3b:d9:18:09:42: 13:ee:c1:f8:28:10:6a:13:7e:d9:c3:cc:e0:15:74:8e:b3:bd: 8c:ef:ad:c3:1a:b8:9b:96:49:9a:e1:89:6d:5f:27:42:18:c5: f1:2c:8c:4b:72:f7:2d:19:19:f2:16:55:79:3a:9d:87:a6:83: 6c:29:9a:9c:dd:f0:ca:0b:91:a0:7a:df:02:6f:bd:7d:b6:73: c7:4c:f4:c9:38:cb:b3:99:2d:0b:5c:56:b7:89:e7:3c:14:73: f9:32:11:36:a3:06:10:35:34:a2:8f:6a:14:30:7c:f7:9d:7d: d6:52:0d:d9:e3:09:ee:f3:f8:72:e7:4f:9e:de:dd:ee:79:51: ab:da:10:9e:9e:46:fc:68:e2:3d:d9:58:b9:82:a7:5b:73:c7: 39:9b:b2:6a:de:12:59:7f:4a:67:40:57:aa:31:d0:2b:3b:3d: 92:b5:29:32:77:3d:ee:a2:52:b7:5e:85:08:c4:4d:52:bd:e1: 53:29:d0:ed:e6:f7:64:d8:71:1e:60:13:55:cf:eb:d0:6e:9d: 0d:15:43:a6:30:10:9c:85:61:e4:96:2e:ed:00:9e:1e:53:1f: e6:f7:d5:07:6b:63:27:9b:c4:99:18:f3:7a:e1:e5:de:e1:84: c8:0a:cf:1d -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgISAZt57PTbLtZgVN6jX9Aa29FsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2ZDE3YjEzNjUzZmYxZTNlNzgyMmViMWU1ZTBhMTdmNGQ0 Zjc4ODEwHhcNMjYwMTAxMTQxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOWQ5MTJhNjUwZjJlMTA4Y2NhNDRlMWYyYzJjNjM4NDkyYzUxYmUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlXTb31AXHXoSUGFbuxoYU2p/gCec VgA/OY/9kPN0NGTQRQLa/HJFpaKvn06dzB0dIlWsoN/ckjFmhvFRmXlvWUeGeFpY KZ8XmSTugf23f/Of+ot7R/SZPsXHvQTS3Zd/8ORWIKx7pCzS5l/anHzoOtJzMoiw 1qH2g+6/Cl8QHZDofdH4yDmwex/Q1609Rq9PxX2x1O5LDl0EC4fVpBvYk/Jubwtz ecyDpUiC38NIj1EBw2l6hXbw/RBKiEpd7tZKmVQqlkwJKA9FmTAYmstjxcHu9lSC HHs88aFs7566vxhyoL92TU480MXhFaJHTvxvc6QNKSVavihhxrXnwmsmDwIDAQAB o4ICKDCCAiQwHQYDVR0OBBYEFCnZEqZQ8uEIzKROHywsY4SSxRvgMB8GA1UdIwQY MBaAFObRexNlP/Hj54IuseXgoX9NT3iBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNXRGN0UyVV84ZVBuZ2k2eDVlQ2hmMDFQZUlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ODRlM2UtN2I1My00NzVjLTg2MWYt NmFjZDU4MWQ0YjBmLzEvS2RrU3BsRHk0UWpNcEU0ZkxDeGpoSkxGRy1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84ODRlM2UtN2I1My00NzVjLTg2MWYtNmFjZDU4MWQ0YjBm LzEvNXRGN0UyVV84ZVBuZ2k2eDVlQ2hmMDFQZUlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD4GCCsGAQUFBwEHAQH/BC8wLTAaBAIAATAUAwQAWRYAMAwD BAFZFgIDBANZFgAwDwQCAAIwCQMHACABBnwHwjANBgkqhkiG9w0BAQsFAAOCAQEA A9sb3WmzJO0wRY6aJDvZGAlCE+7B+CgQahN+2cPM4BV0jrO9jO+twxq4m5ZJmuGJ bV8nQhjF8SyMS3L3LRkZ8hZVeTqdh6aDbCmanN3wyguRoHrfAm+9fbZzx0z0yTjL s5ktC1xWt4nnPBRz+TIRNqMGEDU0oo9qFDB895191lIN2eMJ7vP4cudPnt7d7nlR q9oQnp5G/GjiPdlYuYKnW3PHOZuyat4SWX9KZ0BXqjHQKzs9krUpMnc97qJSt16F CMRNUr3hUynQ7eb3ZNhxHmATVc/r0G6dDRVDpjAQnIVh5JYu7QCeHlMf5vfVB2tj J5vEmRjzeuHl3uGEyArPHQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:38:20 2026 by rpki-client