This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/k3AmJIvZHY_ClAFJvhKjXADmPFM.roa File: k3AmJIvZHY_ClAFJvhKjXADmPFM.roa (raw, json) Hash identifier: 0F1jt0hxP9EndmLaPanlm3eSHOlT459M4AleQeueNhs= Subject key identifier: 93:70:26:24:8B:D9:1D:8F:C2:94:01:49:BE:12:A3:5C:00:E6:3C:53 Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Certificate serial: 019B797E3654E077BF018DD99CA8AD0EAC2D Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/k3AmJIvZHY_ClAFJvhKjXADmPFM.roa Signing time: Thu 01 Jan 2026 12:17:53 +0000 ROA not before: Thu 01 Jan 2026 12:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 140096 IP address blocks: 185.188.5.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.mft rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:36:54:e0:77:bf:01:8d:d9:9c:a8:ad:0e:ac:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Validity Not Before: Jan 1 12:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=937026248bd91d8fc2940149be12a35c00e63c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4d:82:d9:1f:f0:3c:b8:25:3b:78:64:c0:cb: 52:15:14:c6:3f:8d:72:5f:16:7d:8d:c0:af:89:95: a5:26:05:f5:f6:78:12:68:c1:3e:e0:4b:27:87:42: 3b:d4:af:c3:20:35:19:6b:01:b3:29:63:40:ac:72: dc:f0:2b:58:03:8b:63:98:9f:18:9f:39:cf:7a:a2: 76:43:ba:61:df:c9:7d:e9:06:78:21:bf:6f:f0:16: a5:50:87:22:80:3a:80:32:9a:84:64:65:2d:9d:f2: 35:2b:47:56:67:b8:3c:b5:3a:a6:00:c5:42:34:60: 2d:72:1e:9c:a2:0f:3c:35:bb:61:89:14:ab:8a:9b: f9:80:82:54:dc:c2:c2:6f:36:54:40:8a:8e:99:70: b0:a0:d7:e3:e6:98:ff:e2:23:de:9f:97:5c:a8:1b: 9a:af:9f:44:91:08:8d:0a:cf:bf:61:a9:d6:ca:b4: 97:ae:2d:2c:74:33:75:11:ed:1e:82:75:84:7e:58: fb:e6:99:97:9f:ce:61:3b:2a:a3:c6:ec:2a:30:6d: 82:e9:4f:e5:3c:d3:09:45:eb:c3:23:2d:17:18:e9: 05:0d:a0:d4:4a:99:d7:6d:e0:65:c8:e4:02:f4:26: a3:f4:de:60:ed:ef:9d:b1:d5:23:a1:82:ff:6f:23: ea:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:70:26:24:8B:D9:1D:8F:C2:94:01:49:BE:12:A3:5C:00:E6:3C:53 X509v3 Authority Key Identifier: keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/k3AmJIvZHY_ClAFJvhKjXADmPFM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.188.5.0/24 Signature Algorithm: sha256WithRSAEncryption 29:d5:3e:e5:de:ac:4d:dc:40:02:b3:0b:f9:07:43:14:0f:19: b8:60:67:af:c5:a1:09:d9:72:d6:c8:5d:07:2d:3a:40:49:33: 39:44:48:29:63:cf:bd:91:28:a7:77:71:0d:04:48:cf:5c:30: c6:1f:91:64:b7:78:f9:36:1b:3a:4c:83:f5:6d:4a:4d:c1:33: f6:f4:5a:39:48:0e:b6:3c:d3:1c:ef:06:6f:3c:22:a2:5e:5b: a6:34:36:41:c3:2b:9e:db:6c:2d:58:7b:a0:74:86:c1:1a:f2: 52:4c:62:35:51:62:16:14:83:26:b3:10:ca:b1:b9:35:71:f1: 67:6b:bd:7f:66:ab:75:6d:eb:75:63:08:2e:28:39:52:5d:91: 2d:71:43:85:b9:2c:58:e0:d4:b1:e8:cf:46:96:a5:1c:4b:0b: e7:7a:1d:f2:c0:b9:d6:45:7e:9c:00:76:9b:06:7e:53:68:38: 54:69:cd:1a:aa:8c:ab:ff:59:46:21:87:cf:41:38:fe:b8:3f: a7:c4:59:fb:fb:1c:a7:02:0c:f5:8c:1b:e0:be:8a:c4:9e:31: 77:35:1e:a1:94:33:11:54:eb:a0:cc:15:28:d2:9b:b0:ed:f7: 5f:de:a8:30:5c:b5:31:50:6c:07:c6:c8:da:f3:b1:b4:7a:4e: 50:81:09:4c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fjZU4He/AY3ZnKitDqwtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi YTU3NDUwHhcNMjYwMTAxMTIxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MzcwMjYyNDhiZDkxZDhmYzI5NDAxNDliZTEyYTM1YzAwZTYzYzUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0U2C2R/wPLglO3hkwMtSFRTGP41y XxZ9jcCviZWlJgX19ngSaME+4Esnh0I71K/DIDUZawGzKWNArHLc8CtYA4tjmJ8Y nznPeqJ2Q7ph38l96QZ4Ib9v8BalUIcigDqAMpqEZGUtnfI1K0dWZ7g8tTqmAMVC NGAtch6cog88NbthiRSripv5gIJU3MLCbzZUQIqOmXCwoNfj5pj/4iPen5dcqBua r59EkQiNCs+/YanWyrSXri0sdDN1Ee0egnWEflj75pmXn85hOyqjxuwqMG2C6U/l PNMJRevDIy0XGOkFDaDUSpnXbeBlyOQC9Caj9N5g7e+dsdUjoYL/byPq8QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJNwJiSL2R2PwpQBSb4So1wA5jxTMB8GA1UdIwQY MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt ZmVhYzI2ZWFlY2MyLzEvazNBbUpJdlpIWV9DbEFGSnZoS2pYQURtUEZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubwFMA0G CSqGSIb3DQEBCwUAA4IBAQAp1T7l3qxN3EACswv5B0MUDxm4YGevxaEJ2XLWyF0H LTpASTM5REgpY8+9kSind3ENBEjPXDDGH5Fkt3j5Nhs6TIP1bUpNwTP29Fo5SA62 PNMc7wZvPCKiXlumNDZBwyue22wtWHugdIbBGvJSTGI1UWIWFIMmsxDKsbk1cfFn a71/Zqt1bet1YwguKDlSXZEtcUOFuSxY4NSx6M9GlqUcSwvneh3ywLnWRX6cAHab Bn5TaDhUac0aqoyr/1lGIYfPQTj+uD+nxFn7+xynAgz1jBvgvorEnjF3NR6hlDMR VOugzBUo0puw7fdf3qgwXLUxUGwHxsja87G0ek5QgQlM -----END CERTIFICATE-----Generated at Mon Jan 19 20:22:04 2026 by rpki-client