This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e61614-ebc5-4731-8560-9d1812999a35/1/KMdcbWWp5MyTzP2tDi5ljSFkPgs.roa File: KMdcbWWp5MyTzP2tDi5ljSFkPgs.roa (raw, json) Hash identifier: rr/RZr6IyiOAVd9654gWzYqEL3pIM32RlUlY8qv46PE= Subject key identifier: 28:C7:5C:6D:65:A9:E4:CC:93:CC:FD:AD:0E:2E:65:8D:21:64:3E:0B Certificate issuer: /CN=b4a90f6896678442afaee1baaaa6b2a2decacd3b Certificate serial: 019B7CEE374C8ADB77400D6E085139D516A5 Authority key identifier: B4:A9:0F:68:96:67:84:42:AF:AE:E1:BA:AA:A6:B2:A2:DE:CA:CD:3B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKkPaJZnhEKvruG6qqayot7KzTs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e61614-ebc5-4731-8560-9d1812999a35/1/KMdcbWWp5MyTzP2tDi5ljSFkPgs.roa Signing time: Fri 02 Jan 2026 04:19:05 +0000 ROA not before: Fri 02 Jan 2026 04:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 185.150.60.0/24 maxlen: 24 185.150.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/e61614-ebc5-4731-8560-9d1812999a35/1/tKkPaJZnhEKvruG6qqayot7KzTs.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/e61614-ebc5-4731-8560-9d1812999a35/1/tKkPaJZnhEKvruG6qqayot7KzTs.mft rsync://rpki.ripe.net/repository/DEFAULT/tKkPaJZnhEKvruG6qqayot7KzTs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:37:4c:8a:db:77:40:0d:6e:08:51:39:d5:16:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4a90f6896678442afaee1baaaa6b2a2decacd3b Validity Not Before: Jan 2 04:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=28c75c6d65a9e4cc93ccfdad0e2e658d21643e0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7e:d2:cd:61:32:d6:be:a0:ea:48:03:21:64: 15:4f:47:4b:d2:3c:c6:81:d7:a9:8c:8c:84:a4:da: ca:88:14:6a:85:3b:33:72:7e:0d:25:31:13:ea:2f: 62:df:77:2c:0a:fe:0c:8a:e3:cf:d1:84:63:fd:e0: f4:8c:70:7d:9f:e1:c7:49:1f:94:08:b1:ca:27:3b: af:0a:85:08:9f:da:05:97:61:e4:59:a5:89:59:5a: 7b:c9:b3:56:59:f0:8d:8c:a0:88:8d:de:11:c5:2d: 41:a7:16:25:f0:26:86:34:ef:12:f6:93:32:10:1a: ff:14:1c:43:c5:c7:6b:0a:a8:d9:1f:7a:81:92:1e: 32:38:7c:1b:f6:39:50:9f:c3:0a:f2:b2:3a:81:9f: e2:84:c4:3c:cf:64:1f:69:17:eb:f1:d0:50:c1:76: ac:be:4d:d1:dd:6f:c2:6a:da:36:b3:93:34:e1:4b: 2c:07:36:5d:64:ae:ee:17:b6:0d:10:a2:5f:cf:03: 61:c0:aa:f0:59:ae:ea:92:02:35:12:81:35:55:29: ba:c6:e7:fb:e3:7b:b8:49:33:0a:62:6a:b7:0b:f8: f6:e6:c5:66:94:4c:c5:7a:51:6a:37:9f:e4:41:6b: 1e:0f:1b:54:1c:d1:7e:93:43:35:c1:84:98:4e:d8: 2a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C7:5C:6D:65:A9:E4:CC:93:CC:FD:AD:0E:2E:65:8D:21:64:3E:0B X509v3 Authority Key Identifier: keyid:B4:A9:0F:68:96:67:84:42:AF:AE:E1:BA:AA:A6:B2:A2:DE:CA:CD:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKkPaJZnhEKvruG6qqayot7KzTs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e61614-ebc5-4731-8560-9d1812999a35/1/KMdcbWWp5MyTzP2tDi5ljSFkPgs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e61614-ebc5-4731-8560-9d1812999a35/1/tKkPaJZnhEKvruG6qqayot7KzTs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.150.60.0/23 Signature Algorithm: sha256WithRSAEncryption b7:87:08:9c:23:dc:f0:cf:0f:81:e6:dc:30:ca:35:39:5c:56: ed:1e:9d:16:72:1a:a2:7c:86:a1:d5:37:a0:66:0b:8d:ce:db: 61:fe:72:93:a8:8a:0b:fe:72:37:24:98:f0:86:d3:97:a4:16: 1c:f1:13:9c:02:40:25:a7:e5:ec:61:1a:32:ca:81:ef:11:b7: 48:b7:a5:50:80:50:e5:ba:85:ac:cc:e6:35:10:4a:61:26:5e: bf:18:47:9b:73:cc:7a:a7:1a:bb:73:96:bb:e9:bd:bc:5d:3c: 18:98:fc:9d:41:ae:e8:85:47:47:f7:bc:e0:3d:bc:ca:86:30: 9b:ee:28:af:bd:d7:b9:0c:20:6a:48:40:49:33:02:70:71:31: 54:a9:f4:f2:f9:9f:a9:fa:8f:44:19:8f:c7:f8:f3:68:25:38: 5c:90:da:40:4b:b9:9f:03:7f:d6:8c:8f:07:aa:d9:d6:56:d0: f5:f4:4a:9d:db:db:a2:e3:d2:c8:0e:da:c2:f8:85:ea:aa:21: c3:15:af:41:5e:81:47:6b:fb:22:9e:2b:14:16:07:bd:82:24: c7:57:db:a2:a5:2b:51:87:70:fb:41:f9:1d:67:65:0a:da:e9: 32:07:47:d5:b5:c6:56:b8:d7:3d:57:6a:a6:f8:ef:63:27:27: 7f:57:88:9b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87jdMitt3QA1uCFE51RalMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YTkwZjY4OTY2Nzg0NDJhZmFlZTFiYWFhYTZiMmEyZGVj YWNkM2IwHhcNMjYwMTAyMDQxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOGM3NWM2ZDY1YTllNGNjOTNjY2ZkYWQwZTJlNjU4ZDIxNjQzZTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0H7SzWEy1r6g6kgDIWQVT0dL0jzG gdepjIyEpNrKiBRqhTszcn4NJTET6i9i33csCv4MiuPP0YRj/eD0jHB9n+HHSR+U CLHKJzuvCoUIn9oFl2HkWaWJWVp7ybNWWfCNjKCIjd4RxS1BpxYl8CaGNO8S9pMy EBr/FBxDxcdrCqjZH3qBkh4yOHwb9jlQn8MK8rI6gZ/ihMQ8z2QfaRfr8dBQwXas vk3R3W/Cato2s5M04UssBzZdZK7uF7YNEKJfzwNhwKrwWa7qkgI1EoE1VSm6xuf7 43u4STMKYmq3C/j25sVmlEzFelFqN5/kQWseDxtUHNF+k0M1wYSYTtgqPQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCjHXG1lqeTMk8z9rQ4uZY0hZD4LMB8GA1UdIwQY MBaAFLSpD2iWZ4RCr67huqqmsqLeys07MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEtrUGFKWm5oRUt2cnVHNnFxYXlvdDdLelRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9lNjE2MTQtZWJjNS00NzMxLTg1NjAt OWQxODEyOTk5YTM1LzEvS01kY2JXV3A1TXlUelAydERpNWxqU0ZrUGdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9lNjE2MTQtZWJjNS00NzMxLTg1NjAtOWQxODEyOTk5YTM1 LzEvdEtrUGFKWm5oRUt2cnVHNnFxYXlvdDdLelRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuZY8MA0G CSqGSIb3DQEBCwUAA4IBAQC3hwicI9zwzw+B5twwyjU5XFbtHp0WchqifIah1Teg ZguNztth/nKTqIoL/nI3JJjwhtOXpBYc8ROcAkAlp+XsYRoyyoHvEbdIt6VQgFDl uoWszOY1EEphJl6/GEebc8x6pxq7c5a76b28XTwYmPydQa7ohUdH97zgPbzKhjCb 7iivvde5DCBqSEBJMwJwcTFUqfTy+Z+p+o9EGY/H+PNoJThckNpAS7mfA3/WjI8H qtnWVtD19Eqd29ui49LIDtrC+IXqqiHDFa9BXoFHa/sinisUFge9giTHV9uipStR h3D7QfkdZ2UK2ukyB0fVtcZWuNc9V2qm+O9jJyd/V4ib -----END CERTIFICATE-----Generated at Tue Jan 20 01:22:10 2026 by rpki-client