This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/KQn12ky7VJ-tAtskwp7iCPXzI1k.roa File: KQn12ky7VJ-tAtskwp7iCPXzI1k.roa (raw, json) Hash identifier: zGzNyPJigVx6eOde+xN7bw20k8KV75kMtISB9OstCUU= Subject key identifier: 29:09:F5:DA:4C:BB:54:9F:AD:02:DB:24:C2:9E:E2:08:F5:F3:23:59 Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97 Certificate serial: 019B7758BB04818416CB8BC7906C19979714 Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/KQn12ky7VJ-tAtskwp7iCPXzI1k.roa Signing time: Thu 01 Jan 2026 02:17:42 +0000 ROA not before: Thu 01 Jan 2026 02:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 152586 IP address blocks: 178.239.174.0/24 maxlen: 24 193.176.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.mft rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:bb:04:81:84:16:cb:8b:c7:90:6c:19:97:97:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97 Validity Not Before: Jan 1 02:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2909f5da4cbb549fad02db24c29ee208f5f32359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4e:16:4d:7c:de:1d:de:51:a2:14:d7:88:52: 17:48:c0:07:5f:25:ca:e4:fd:d2:df:b8:a2:ee:10: af:99:a1:64:76:8a:68:21:e8:4e:3e:64:95:c5:d3: f4:50:a5:18:bf:54:2d:55:cc:0f:09:2c:2e:89:2f: 4a:e7:c8:de:38:9f:26:91:67:6f:8b:44:e9:fa:32: 38:b3:c9:6d:a4:d9:1d:1d:02:80:fe:8b:bd:1c:dd: a3:bb:da:17:73:73:af:53:68:85:b2:e3:d4:10:b2: 83:fa:96:9c:51:af:1f:f2:b8:57:33:7f:d5:84:49: 34:e0:63:de:20:7a:5c:79:25:b2:82:f8:fe:bd:05: 00:10:c4:cc:cf:9e:77:95:ef:60:42:8d:c9:e7:1b: 04:c6:65:c6:2c:6b:8e:7a:94:bc:c6:8b:8f:37:2c: e7:56:b7:36:1a:a9:27:61:1c:8f:5a:cc:42:63:19: 91:89:e0:8e:00:d9:6e:5b:33:e5:67:6a:96:fa:1f: 9a:cd:c0:a4:6d:d2:44:79:a6:eb:93:63:2a:b5:53: fc:15:b0:f3:11:fc:1d:47:0a:dd:d5:8c:7d:c7:3e: 4e:86:4f:90:2e:b0:d7:15:46:b6:ef:5a:69:f2:13: 75:84:61:a9:e6:63:93:8c:4e:be:c6:e1:7e:7c:99: 88:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:09:F5:DA:4C:BB:54:9F:AD:02:DB:24:C2:9E:E2:08:F5:F3:23:59 X509v3 Authority Key Identifier: keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/KQn12ky7VJ-tAtskwp7iCPXzI1k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.239.174.0/24 193.176.28.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:a8:d8:44:66:6d:e6:31:74:2b:56:ce:77:ef:50:a9:70:13: e4:ba:9b:3e:8d:d2:70:b2:fd:ef:39:82:1c:b9:54:11:4e:6a: 22:8c:36:ca:ac:d7:41:a9:91:91:d3:d9:f8:65:0f:3f:36:2c: e0:d4:bd:f6:dc:a5:9d:a3:3b:11:14:ed:42:65:1e:e3:9b:68: ba:3c:d6:83:26:d9:38:c9:6f:a3:b1:a9:87:62:3d:66:6b:32: f2:13:7c:1d:08:79:f3:a0:ef:70:75:c0:73:b7:e7:15:4b:c9: 6a:de:44:94:ca:db:4d:13:70:79:2e:96:e7:0f:4b:32:6e:4a: fa:4e:84:99:b5:25:a6:d6:20:02:b8:67:ab:e7:50:d9:c9:c2: af:01:02:0b:63:33:76:41:2d:cd:1d:20:a7:95:d1:fa:8c:7b: c9:6f:e0:68:48:94:91:8b:f7:89:42:1a:68:ae:a3:e4:e8:6c: cd:d2:ca:d9:bb:1a:af:01:b8:d9:2e:af:5a:d9:0f:87:85:ad: 3b:d5:81:48:86:f4:8f:18:fb:d8:47:26:47:5c:05:63:3d:3e: 16:b3:f3:12:2c:0a:37:62:3f:7e:a6:71:dc:a1:87:4b:c3:3f: 18:6d:af:1e:b1:d1:90:99:72:48:67:db:77:9b:61:68:e0:56: d1:e1:43:4f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WLsEgYQWy4vHkGwZl5cUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkMzdjYzhmMTZiM2M2Y2JkMzM0NmFhM2VkNjE3NzFmM2U4 M2FjOTcwHhcNMjYwMTAxMDIxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTA5ZjVkYTRjYmI1NDlmYWQwMmRiMjRjMjllZTIwOGY1ZjMyMzU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqk4WTXzeHd5RohTXiFIXSMAHXyXK 5P3S37ii7hCvmaFkdopoIehOPmSVxdP0UKUYv1QtVcwPCSwuiS9K58jeOJ8mkWdv i0Tp+jI4s8ltpNkdHQKA/ou9HN2ju9oXc3OvU2iFsuPUELKD+pacUa8f8rhXM3/V hEk04GPeIHpceSWygvj+vQUAEMTMz553le9gQo3J5xsExmXGLGuOepS8xouPNyzn Vrc2GqknYRyPWsxCYxmRieCOANluWzPlZ2qW+h+azcCkbdJEeabrk2MqtVP8FbDz EfwdRwrd1Yx9xz5Ohk+QLrDXFUa271pp8hN1hGGp5mOTjE6+xuF+fJmI0QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCkJ9dpMu1SfrQLbJMKe4gj18yNZMB8GA1UdIwQY MBaAFP03zI8Ws8bL0zRqo+1hdx8+g6yXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1RmTWp4YXp4c3ZUTkdxajdXRjNIejZEckpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8wNWUxN2YtZDMxZi00MzFmLWE4YmMt N2UwNWFiNDFiNmU0LzEvS1FuMTJreTdWSi10QXRza3dwN2lDUFh6STFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8wNWUxN2YtZDMxZi00MzFmLWE4YmMtN2UwNWFiNDFiNmU0 LzEvX1RmTWp4YXp4c3ZUTkdxajdXRjNIejZEckpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsu+uAwQA wbAcMA0GCSqGSIb3DQEBCwUAA4IBAQAuqNhEZm3mMXQrVs5371CpcBPkups+jdJw sv3vOYIcuVQRTmoijDbKrNdBqZGR09n4ZQ8/Nizg1L323KWdozsRFO1CZR7jm2i6 PNaDJtk4yW+jsamHYj1mazLyE3wdCHnzoO9wdcBzt+cVS8lq3kSUyttNE3B5Lpbn D0sybkr6ToSZtSWm1iACuGer51DZycKvAQILYzN2QS3NHSCnldH6jHvJb+BoSJSR i/eJQhporqPk6GzN0srZuxqvAbjZLq9a2Q+Hha071YFIhvSPGPvYRyZHXAVjPT4W s/MSLAo3Yj9+pnHcoYdLwz8Yba8esdGQmXJIZ9t3m2Fo4FbR4UNP -----END CERTIFICATE-----Generated at Mon Jan 19 17:30:00 2026 by rpki-client