This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/klXMh69HPg_6eKMxQVgx6zhe1QE.roa File: klXMh69HPg_6eKMxQVgx6zhe1QE.roa (raw, json) Hash identifier: vG86oygd0IFm9Rxuz3bX4pixPzbUrSLnke23ygFfpi4= Subject key identifier: 92:55:CC:87:AF:47:3E:0F:FA:78:A3:31:41:58:31:EB:38:5E:D5:01 Certificate issuer: /CN=586b0182105bb27b0c8bcf2842bd3c1a85164bd1 Certificate serial: 019B7C805BE15A7E7452A30116DB03E359AF Authority key identifier: 58:6B:01:82:10:5B:B2:7B:0C:8B:CF:28:42:BD:3C:1A:85:16:4B:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGsBghBbsnsMi88oQr08GoUWS9E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/klXMh69HPg_6eKMxQVgx6zhe1QE.roa Signing time: Fri 02 Jan 2026 02:19:05 +0000 ROA not before: Fri 02 Jan 2026 02:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 401783 IP address blocks: 194.179.152.0/22 maxlen: 24 194.179.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/WGsBghBbsnsMi88oQr08GoUWS9E.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/WGsBghBbsnsMi88oQr08GoUWS9E.mft rsync://rpki.ripe.net/repository/DEFAULT/WGsBghBbsnsMi88oQr08GoUWS9E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:5b:e1:5a:7e:74:52:a3:01:16:db:03:e3:59:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=586b0182105bb27b0c8bcf2842bd3c1a85164bd1 Validity Not Before: Jan 2 02:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9255cc87af473e0ffa78a331415831eb385ed501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:86:cb:78:4a:90:c6:60:21:88:19:12:0e:a3: f8:e1:16:ec:8c:ec:1c:4a:05:eb:0c:e5:aa:4a:38: 85:e2:f2:fd:6c:c5:84:c1:05:af:62:9d:3a:94:b4: b9:41:59:09:a4:62:da:0f:60:2b:8c:0f:d7:40:71: 19:23:cf:a7:fc:23:83:45:b5:cf:92:9b:eb:bf:7e: e5:6f:48:dd:43:c9:50:32:89:b9:4f:0b:36:0f:c6: 48:f3:28:8d:f5:23:1a:b6:69:80:0a:24:ea:09:7c: 10:c9:b2:47:2d:e8:8b:45:23:d0:b2:21:d8:bc:e3: fc:e8:41:2b:56:2a:dc:04:88:14:0c:f0:b4:b5:e3: a9:c2:e7:a0:5e:a4:ab:1a:f6:d3:a8:d4:d4:5b:2d: d6:f3:ab:a4:f2:84:04:44:82:4a:fb:bc:54:19:10: d0:a5:86:63:50:f9:c7:1f:8b:0a:f0:d5:8f:a8:8c: 15:fa:57:29:da:aa:99:32:94:37:43:b1:db:93:50: 34:bf:6b:36:3e:1c:4c:e0:a4:9e:ca:96:75:aa:f7: 50:e7:e6:6a:02:d5:e5:18:61:5d:c9:54:b8:6f:5c: 23:d5:1f:c8:9a:11:0f:e5:65:84:a5:00:53:ba:e8: d7:c2:49:29:c5:30:bf:0c:30:fb:d3:b5:dd:44:02: 8d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:55:CC:87:AF:47:3E:0F:FA:78:A3:31:41:58:31:EB:38:5E:D5:01 X509v3 Authority Key Identifier: keyid:58:6B:01:82:10:5B:B2:7B:0C:8B:CF:28:42:BD:3C:1A:85:16:4B:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGsBghBbsnsMi88oQr08GoUWS9E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/klXMh69HPg_6eKMxQVgx6zhe1QE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/WGsBghBbsnsMi88oQr08GoUWS9E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.179.152.0/21 Signature Algorithm: sha256WithRSAEncryption d8:01:06:da:63:61:e1:04:0b:b2:72:48:b3:27:9b:c3:12:fb: 30:93:03:a6:b8:89:37:79:2a:51:24:a0:39:18:43:cf:7a:c5: b4:6b:8c:0f:3e:5e:fa:c1:19:c6:39:79:1b:fc:fd:71:75:39: 11:06:13:14:26:13:da:a4:0a:2b:07:bc:e3:df:ab:c3:ba:dd: bf:9d:ed:c9:dc:09:0a:1f:0e:0e:de:bb:13:62:eb:43:59:5b: 14:1a:7a:6b:7e:42:1e:4a:09:11:0c:bc:b4:bf:43:f2:18:3e: ac:5a:af:b9:c1:7a:8b:a7:3f:17:96:0a:02:e6:42:24:bf:9e: ce:9f:3f:29:d5:58:f4:a5:f6:9d:c7:d8:1c:0b:ca:c6:ce:84: 6c:d9:41:c3:f9:f7:db:a9:f1:d3:b9:9e:1d:05:8a:3d:ca:78: 3d:cf:75:c4:85:bf:d3:18:98:e7:14:dc:88:c8:ab:43:d4:a6: f6:94:63:da:92:90:61:d4:99:c1:70:7f:55:a4:68:c8:e5:69: 52:58:f3:b9:e0:df:a8:a6:a1:68:8d:f7:8b:2a:15:b5:27:55: 79:bb:a9:c6:a4:9f:85:1d:2b:68:01:00:cf:ff:6b:60:48:3d: 1d:c7:83:9e:b6:41:c4:6b:b8:34:be:2e:98:b2:70:f5:2b:38: fc:2f:22:73 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gFvhWn50UqMBFtsD41mvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4NmIwMTgyMTA1YmIyN2IwYzhiY2YyODQyYmQzYzFhODUx NjRiZDEwHhcNMjYwMTAyMDIxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MjU1Y2M4N2FmNDczZTBmZmE3OGEzMzE0MTU4MzFlYjM4NWVkNTAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4bLeEqQxmAhiBkSDqP44RbsjOwc SgXrDOWqSjiF4vL9bMWEwQWvYp06lLS5QVkJpGLaD2ArjA/XQHEZI8+n/CODRbXP kpvrv37lb0jdQ8lQMom5Tws2D8ZI8yiN9SMatmmACiTqCXwQybJHLeiLRSPQsiHY vOP86EErVircBIgUDPC0teOpwuegXqSrGvbTqNTUWy3W86uk8oQERIJK+7xUGRDQ pYZjUPnHH4sK8NWPqIwV+lcp2qqZMpQ3Q7Hbk1A0v2s2PhxM4KSeypZ1qvdQ5+Zq AtXlGGFdyVS4b1wj1R/ImhEP5WWEpQBTuujXwkkpxTC/DDD707XdRAKN+wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJJVzIevRz4P+nijMUFYMes4XtUBMB8GA1UdIwQY MBaAFFhrAYIQW7J7DIvPKEK9PBqFFkvRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0dzQmdoQmJzbnNNaTg4b1FyMDhHb1VXUzlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS81MmI0ODEtZjMwMy00YTk2LTk3ZGQt NzM3MGZkODBkZjZjLzEva2xYTWg2OUhQZ182ZUtNeFFWZ3g2emhlMVFFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS81MmI0ODEtZjMwMy00YTk2LTk3ZGQtNzM3MGZkODBkZjZj LzEvV0dzQmdoQmJzbnNNaTg4b1FyMDhHb1VXUzlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwrOYMA0G CSqGSIb3DQEBCwUAA4IBAQDYAQbaY2HhBAuyckizJ5vDEvswkwOmuIk3eSpRJKA5 GEPPesW0a4wPPl76wRnGOXkb/P1xdTkRBhMUJhPapAorB7zj36vDut2/ne3J3AkK Hw4O3rsTYutDWVsUGnprfkIeSgkRDLy0v0PyGD6sWq+5wXqLpz8XlgoC5kIkv57O nz8p1Vj0pfadx9gcC8rGzoRs2UHD+ffbqfHTuZ4dBYo9yng9z3XEhb/TGJjnFNyI yKtD1Kb2lGPakpBh1JnBcH9VpGjI5WlSWPO54N+opqFojfeLKhW1J1V5u6nGpJ+F HStoAQDP/2tgSD0dx4OetkHEa7g0vi6YsnD1Kzj8LyJz -----END CERTIFICATE-----Generated at Mon Jan 19 11:26:16 2026 by rpki-client