This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/KQelvFl-0S2BnhTjmwfeewzy0K0.roa File: KQelvFl-0S2BnhTjmwfeewzy0K0.roa (raw, json) Hash identifier: eHfnP6Dgwq60SUqBjtwY/17CbS0N6nRtKkrY1JJPGsI= Subject key identifier: 29:07:A5:BC:59:7E:D1:2D:81:9E:14:E3:9B:07:DE:7B:0C:F2:D0:AD Certificate issuer: /CN=4fc9ae4c50fa0b0382adda5f3c7df418f7925864 Certificate serial: 019B7759636DFDE0942A4E8F9794D2E0B1BF Authority key identifier: 4F:C9:AE:4C:50:FA:0B:03:82:AD:DA:5F:3C:7D:F4:18:F7:92:58:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/KQelvFl-0S2BnhTjmwfeewzy0K0.roa Signing time: Thu 01 Jan 2026 02:18:25 +0000 ROA not before: Thu 01 Jan 2026 02:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13335 IP address blocks: 185.178.196.0/22 maxlen: 22 2a0a:6c80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:63:6d:fd:e0:94:2a:4e:8f:97:94:d2:e0:b1:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc9ae4c50fa0b0382adda5f3c7df418f7925864 Validity Not Before: Jan 1 02:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2907a5bc597ed12d819e14e39b07de7b0cf2d0ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a4:4e:9c:4c:ed:d0:7c:ca:cf:db:24:12:c5: 8f:2e:d9:72:99:06:32:ce:7b:3a:5c:01:c6:95:9b: 8e:19:bf:1e:4b:87:3e:fe:24:84:0d:8d:38:4b:f3: 29:80:63:7a:7b:fe:4a:65:2a:b9:f2:39:4f:9a:a4: d0:bb:b6:d6:8c:ce:f3:8b:7c:d8:dc:a2:d0:cb:05: 66:e9:fd:30:7c:88:e5:b3:d5:e9:ce:ba:9d:46:9b: b2:a0:42:39:56:68:24:54:db:6e:48:dc:dc:47:e6: 03:40:69:25:c5:91:20:91:72:5a:8f:76:3a:10:2f: 6e:75:de:25:df:cf:06:78:bf:a6:e9:ae:1d:b9:a5: 5e:7d:b0:b7:66:be:da:a0:fb:86:ad:dc:80:64:4c: 09:da:da:95:f6:2c:9c:85:64:9b:60:ec:b7:b2:3b: 41:a7:8f:3c:0a:f8:3a:2b:f4:b6:1c:17:35:0d:3c: 3f:01:51:0b:c0:b1:85:c1:94:32:7c:d9:63:81:ae: 11:42:6c:e0:74:60:33:0a:66:e2:b7:4c:a1:66:f1: 37:47:d1:9c:4a:e3:14:83:92:49:14:ce:91:e0:f0: eb:f1:2b:f6:8d:bb:4a:ea:ec:a1:27:28:2f:9b:59: 5c:82:af:a7:8e:1a:1c:83:3e:e6:f0:87:f7:4a:4e: 80:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:07:A5:BC:59:7E:D1:2D:81:9E:14:E3:9B:07:DE:7B:0C:F2:D0:AD X509v3 Authority Key Identifier: keyid:4F:C9:AE:4C:50:FA:0B:03:82:AD:DA:5F:3C:7D:F4:18:F7:92:58:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/KQelvFl-0S2BnhTjmwfeewzy0K0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.178.196.0/22 IPv6: 2a0a:6c80::/29 Signature Algorithm: sha256WithRSAEncryption 0e:5f:46:ea:fb:2d:30:7b:fa:5e:e7:01:71:ca:ed:3d:7e:a3: f9:80:09:87:1b:e0:c2:40:e4:7a:b1:36:77:9d:cf:87:32:a2: 27:bb:94:0f:a5:6b:0b:9f:99:55:fe:07:f1:58:53:a0:77:f9: 66:d9:2f:00:43:d2:17:68:1f:bf:ee:28:f7:70:35:a0:eb:ef: 03:52:d3:11:20:af:34:ac:2d:98:98:e5:b7:d3:1c:49:13:c8: 15:14:e1:2e:c1:f2:a5:ab:22:6b:dc:34:e8:f5:78:d3:f5:f9: 9f:fb:04:69:04:6e:ab:94:4e:2c:1d:4b:7b:c0:3c:33:46:25: 50:6e:26:f6:68:26:7a:b0:49:b9:74:37:e2:16:e5:e9:d2:05: 11:70:db:b1:d7:08:d2:37:1d:90:5a:8c:92:3c:29:45:a6:4a: e0:ce:6a:d9:6f:82:ef:da:6b:72:d1:ca:36:16:25:d5:ef:fb: ed:67:e4:40:e6:89:24:62:80:74:8a:38:87:f7:fe:35:06:df: 83:fe:e2:98:87:11:70:fd:b7:7e:48:fd:21:9f:0a:55:ec:f2: df:5f:51:84:e4:b3:25:d9:18:fd:ec:2c:77:69:a5:03:83:53: 3d:42:42:15:94:77:34:f4:31:5b:70:20:d9:d3:f3:4c:a3:1c: da:bf:e1:49 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WWNt/eCUKk6Pl5TS4LG/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmYzlhZTRjNTBmYTBiMDM4MmFkZGE1ZjNjN2RmNDE4Zjc5 MjU4NjQwHhcNMjYwMTAxMDIxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTA3YTViYzU5N2VkMTJkODE5ZTE0ZTM5YjA3ZGU3YjBjZjJkMGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6ROnEzt0HzKz9skEsWPLtlymQYy zns6XAHGlZuOGb8eS4c+/iSEDY04S/MpgGN6e/5KZSq58jlPmqTQu7bWjM7zi3zY 3KLQywVm6f0wfIjls9XpzrqdRpuyoEI5VmgkVNtuSNzcR+YDQGklxZEgkXJaj3Y6 EC9udd4l388GeL+m6a4duaVefbC3Zr7aoPuGrdyAZEwJ2tqV9iychWSbYOy3sjtB p488Cvg6K/S2HBc1DTw/AVELwLGFwZQyfNljga4RQmzgdGAzCmbit0yhZvE3R9Gc SuMUg5JJFM6R4PDr8Sv2jbtK6uyhJygvm1lcgq+njhocgz7m8If3Sk6AcwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCkHpbxZftEtgZ4U45sH3nsM8tCtMB8GA1UdIwQY MBaAFE/JrkxQ+gsDgq3aXzx99Bj3klhkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDhtdVRGRDZDd09DcmRwZlBIMzBHUGVTV0dRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy80NDQ1ZDctYWQyZC00NDQ1LThkZGUt MmViZDY0NTdlZjFlLzEvS1FlbHZGbC0wUzJCbmhUam13ZmVld3p5MEswLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy80NDQ1ZDctYWQyZC00NDQ1LThkZGUtMmViZDY0NTdlZjFl LzEvVDhtdVRGRDZDd09DcmRwZlBIMzBHUGVTV0dRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCubLEMA0E AgACMAcDBQMqCmyAMA0GCSqGSIb3DQEBCwUAA4IBAQAOX0bq+y0we/pe5wFxyu09 fqP5gAmHG+DCQOR6sTZ3nc+HMqInu5QPpWsLn5lV/gfxWFOgd/lm2S8AQ9IXaB+/ 7ij3cDWg6+8DUtMRIK80rC2YmOW30xxJE8gVFOEuwfKlqyJr3DTo9XjT9fmf+wRp BG6rlE4sHUt7wDwzRiVQbib2aCZ6sEm5dDfiFuXp0gURcNux1wjSNx2QWoySPClF pkrgzmrZb4Lv2mty0co2FiXV7/vtZ+RA5okkYoB0ijiH9/41Bt+D/uKYhxFw/bd+ SP0hnwpV7PLfX1GE5LMl2Rj97Cx3aaUDg1M9QkIVlHc09DFbcCDZ0/NMoxzav+FJ -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:11 2026 by rpki-client