This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/KUAPJbdgB7bFTMpgIeI0m91ZeU0.roa File: KUAPJbdgB7bFTMpgIeI0m91ZeU0.roa (raw, json) Hash identifier: QW3H184Zc0T/jdKDA9ND/ZljCo0WBhJC9aqERQkXP2w= Subject key identifier: 29:40:0F:25:B7:60:07:B6:C5:4C:CA:60:21:E2:34:9B:DD:59:79:4D Certificate issuer: /CN=7cd8473e3d9ed423c41e7a858f4c0f0fb80c07ba Certificate serial: 019B7A5AD0FB0EC4AA74E5A49CF14EDE9986 Authority key identifier: 7C:D8:47:3E:3D:9E:D4:23:C4:1E:7A:85:8F:4C:0F:0F:B8:0C:07:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fNhHPj2e1CPEHnqFj0wPD7gMB7o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/KUAPJbdgB7bFTMpgIeI0m91ZeU0.roa Signing time: Thu 01 Jan 2026 16:18:50 +0000 ROA not before: Thu 01 Jan 2026 16:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56596 IP address blocks: 185.172.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/fNhHPj2e1CPEHnqFj0wPD7gMB7o.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/fNhHPj2e1CPEHnqFj0wPD7gMB7o.mft rsync://rpki.ripe.net/repository/DEFAULT/fNhHPj2e1CPEHnqFj0wPD7gMB7o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:d0:fb:0e:c4:aa:74:e5:a4:9c:f1:4e:de:99:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7cd8473e3d9ed423c41e7a858f4c0f0fb80c07ba Validity Not Before: Jan 1 16:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29400f25b76007b6c54cca6021e2349bdd59794d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:95:6d:fa:df:f8:4f:2b:82:3b:69:c0:96:34: 4a:8f:a1:fe:e6:e3:34:6b:90:fc:28:fb:53:cb:82: 62:7c:c7:2b:d0:69:d2:97:d6:e1:f8:73:cc:03:4d: e6:75:fd:23:88:99:f9:92:ab:4e:2c:b2:6d:1f:12: dd:86:6e:49:cb:60:9b:ed:da:51:15:6c:1b:ea:c6: 4e:ad:2f:af:3e:e3:99:bf:02:9c:e8:f8:f2:35:0b: 76:85:99:9f:ae:7d:18:0d:a7:2e:71:b4:aa:a7:af: 9f:33:1e:4a:ea:68:c9:cf:72:7f:19:fa:85:ae:74: e4:47:a6:22:35:ba:8d:16:cb:3a:12:15:42:7e:af: ca:bd:03:14:4e:26:77:c8:12:ff:fd:a2:ab:7b:76: 9e:85:15:37:75:a8:14:c3:a4:2c:8c:3d:3f:c5:8f: 9a:2f:01:b8:08:8b:ce:10:b6:79:ce:80:52:ba:71: 57:79:aa:67:07:dc:1c:ee:66:b2:a9:b4:26:f7:70: 42:6b:b9:9b:8b:77:5b:7b:e6:4e:59:ef:50:6b:71: 01:64:39:79:5e:7e:d9:18:b5:59:20:07:9d:63:39: 47:28:3b:3d:b9:62:18:eb:d5:04:8d:e6:2d:bd:22: 4e:c7:47:8f:38:8a:37:f3:ab:44:d9:81:eb:24:5a: f3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:40:0F:25:B7:60:07:B6:C5:4C:CA:60:21:E2:34:9B:DD:59:79:4D X509v3 Authority Key Identifier: keyid:7C:D8:47:3E:3D:9E:D4:23:C4:1E:7A:85:8F:4C:0F:0F:B8:0C:07:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fNhHPj2e1CPEHnqFj0wPD7gMB7o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/KUAPJbdgB7bFTMpgIeI0m91ZeU0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/fNhHPj2e1CPEHnqFj0wPD7gMB7o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.172.80.0/22 Signature Algorithm: sha256WithRSAEncryption 13:85:a7:2a:b1:7b:d3:86:6c:a0:ab:9a:af:e9:5a:ca:e3:e4: ee:75:1a:b2:45:81:39:18:d1:48:85:0b:8e:59:85:4c:03:36: ad:22:d2:88:b0:4a:60:b2:89:dd:fd:1e:3e:23:9b:55:c1:af: 69:28:82:a8:6a:3e:5d:68:82:cd:5a:d7:46:4c:0b:8f:e3:5c: 8d:7e:f4:18:1a:31:6f:5c:af:ad:7e:88:18:e3:21:02:71:ca: a2:12:a7:59:a4:7e:88:0a:25:80:a9:8f:ac:13:f2:79:05:7f: cd:3c:be:ca:eb:c3:dc:93:ec:be:5d:fd:26:99:b7:02:bf:4e: 3a:cc:01:b2:32:e4:85:76:38:18:be:5c:ea:7d:05:56:4d:52: be:4b:e4:47:68:48:27:f7:d4:79:cd:cd:a8:a4:b8:e7:51:57: 71:5e:9c:03:00:eb:03:3e:e4:0a:8a:43:af:7d:97:47:fa:ac: d1:e0:1f:ec:ee:1f:bc:ba:ea:5d:23:29:42:c7:78:4f:11:39: 1c:ee:8b:77:77:da:f2:b9:b3:4a:e7:b7:01:b3:ae:b9:ca:9c: d9:f7:81:89:a7:ed:e3:b8:97:2c:fd:df:d0:3b:18:0d:a1:4b: 9e:70:d6:2e:cd:44:74:bd:d1:a6:0e:33:c0:17:51:0e:0c:7e: 9a:68:8e:4c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WtD7DsSqdOWknPFO3pmGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjZDg0NzNlM2Q5ZWQ0MjNjNDFlN2E4NThmNGMwZjBmYjgw YzA3YmEwHhcNMjYwMTAxMTYxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTQwMGYyNWI3NjAwN2I2YzU0Y2NhNjAyMWUyMzQ5YmRkNTk3OTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5Vt+t/4TyuCO2nAljRKj6H+5uM0 a5D8KPtTy4JifMcr0GnSl9bh+HPMA03mdf0jiJn5kqtOLLJtHxLdhm5Jy2Cb7dpR FWwb6sZOrS+vPuOZvwKc6PjyNQt2hZmfrn0YDacucbSqp6+fMx5K6mjJz3J/GfqF rnTkR6YiNbqNFss6EhVCfq/KvQMUTiZ3yBL//aKre3aehRU3dagUw6QsjD0/xY+a LwG4CIvOELZ5zoBSunFXeapnB9wc7mayqbQm93BCa7mbi3dbe+ZOWe9Qa3EBZDl5 Xn7ZGLVZIAedYzlHKDs9uWIY69UEjeYtvSJOx0ePOIo386tE2YHrJFrz+wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFClADyW3YAe2xUzKYCHiNJvdWXlNMB8GA1UdIwQY MBaAFHzYRz49ntQjxB56hY9MDw+4DAe6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZk5oSFBqMmUxQ1BFSG5xRmowd1BEN2dNQjdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS84ZWZjMmUtOWQ5Ni00MWEwLWIyODct OTc1NzY5NGQyOTFkLzEvS1VBUEpiZGdCN2JGVE1wZ0llSTBtOTFaZVUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS84ZWZjMmUtOWQ5Ni00MWEwLWIyODctOTc1NzY5NGQyOTFk LzEvZk5oSFBqMmUxQ1BFSG5xRmowd1BEN2dNQjdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaxQMA0G CSqGSIb3DQEBCwUAA4IBAQAThacqsXvThmygq5qv6VrK4+TudRqyRYE5GNFIhQuO WYVMAzatItKIsEpgsond/R4+I5tVwa9pKIKoaj5daILNWtdGTAuP41yNfvQYGjFv XK+tfogY4yECccqiEqdZpH6ICiWAqY+sE/J5BX/NPL7K68Pck+y+Xf0mmbcCv046 zAGyMuSFdjgYvlzqfQVWTVK+S+RHaEgn99R5zc2opLjnUVdxXpwDAOsDPuQKikOv fZdH+qzR4B/s7h+8uupdIylCx3hPETkc7ot3d9ryubNK57cBs665ypzZ94GJp+3j uJcs/d/QOxgNoUuecNYuzUR0vdGmDjPAF1EODH6aaI5M -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:42 2026 by rpki-client