This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/S-s-KrbF6j3sLJbs4p0tEnINwc4.roa File: S-s-KrbF6j3sLJbs4p0tEnINwc4.roa (raw, json) Hash identifier: lbsHHCPLu65Xu8v8V5wooAKg5OLW3IhHzjvdCT203Bc= Subject key identifier: 4B:EB:3E:2A:B6:C5:EA:3D:EC:2C:96:EC:E2:9D:2D:12:72:0D:C1:CE Certificate issuer: /CN=dbc950098436281cee542a1e74546551e1e55283 Certificate serial: 019B7DCA96988B4F4CC6EBCA0D5A891B0200 Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/S-s-KrbF6j3sLJbs4p0tEnINwc4.roa Signing time: Fri 02 Jan 2026 08:19:47 +0000 ROA not before: Fri 02 Jan 2026 08:19:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8315 IP address blocks: 185.116.72.0/22 maxlen: 24 2a0d:5040::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:96:98:8b:4f:4c:c6:eb:ca:0d:5a:89:1b:02:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbc950098436281cee542a1e74546551e1e55283 Validity Not Before: Jan 2 08:19:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4beb3e2ab6c5ea3dec2c96ece29d2d12720dc1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d5:ec:83:04:37:3d:1d:3c:62:64:f9:8c:29: 10:f5:af:48:c3:e0:22:95:45:26:4f:3f:63:c8:ca: 29:1d:27:7b:3a:96:aa:6f:ae:72:d2:76:35:40:27: 51:00:1a:8a:34:e4:2f:33:02:32:8e:09:c8:f4:32: c6:10:53:68:bd:34:df:c8:a5:8e:bc:de:75:47:a6: 63:3a:38:2c:80:4c:24:e5:e7:d7:63:0c:d7:b7:30: fe:c8:c3:0b:92:50:77:a5:35:ec:6b:f4:00:93:72: fb:aa:4d:63:48:ab:58:6b:e1:ad:40:06:ac:be:f0: e0:b7:45:21:49:c2:11:f0:48:25:e3:e8:39:1f:16: 63:af:5f:29:a3:45:c3:ed:6a:f3:99:c5:b8:0a:89: 56:78:6b:87:30:6c:77:da:91:87:a9:14:29:fb:93: 51:75:66:3c:c8:8c:58:27:91:84:06:4e:f7:8c:0c: 58:c1:10:37:b3:bd:f2:27:c8:24:f0:0b:00:1a:c9: 32:ea:71:51:55:ee:7c:f3:d2:ec:20:81:0e:64:04: e8:a1:a1:d5:66:65:fa:ee:18:14:52:02:d2:99:8b: 3e:05:e7:a6:ba:ae:09:45:2b:bb:d6:f2:ff:3e:78: 20:93:30:20:16:8d:eb:3e:c0:8e:f1:99:05:b8:17: 11:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:EB:3E:2A:B6:C5:EA:3D:EC:2C:96:EC:E2:9D:2D:12:72:0D:C1:CE X509v3 Authority Key Identifier: keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/S-s-KrbF6j3sLJbs4p0tEnINwc4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.116.72.0/22 IPv6: 2a0d:5040::/29 Signature Algorithm: sha256WithRSAEncryption 6c:65:30:e1:d4:17:62:2c:12:3b:21:f9:eb:66:aa:cf:f9:4c: a1:3e:21:74:1e:95:d6:33:63:fb:b5:6f:b9:9a:ae:5c:33:c2: aa:b3:14:95:21:32:cd:09:7d:d4:e6:08:e1:f1:65:b4:b5:48: de:3c:59:3f:ad:25:5f:06:89:d7:ef:62:60:f6:90:e0:59:b6: ed:ae:7e:64:90:ab:8e:7a:4e:9d:8c:52:27:f4:62:7b:50:17: ab:c4:35:18:ff:cd:9d:96:d3:59:45:49:80:85:ce:c8:be:85: 8f:1c:f5:0e:07:35:b7:50:a8:f7:e1:80:a1:e8:96:ba:ab:52: da:c6:54:a9:35:ef:82:d5:86:aa:f2:61:82:d4:0f:ce:67:31: 67:15:26:0f:1c:82:07:97:79:d4:a9:1b:d5:ec:e5:54:6c:61: a1:a4:59:bf:fe:c3:ba:6b:fc:42:97:fb:d1:4d:1d:a4:75:88: f3:ce:b2:f6:4c:68:c2:64:45:4e:dc:6e:c6:04:a9:3f:5e:d6: 17:04:54:92:84:e3:b3:8f:60:d4:02:93:f7:c3:33:df:a7:4c: d2:f6:02:20:1c:4a:e2:4b:21:37:33:7f:86:3a:84:ca:77:65: 45:73:3e:2a:7b:48:a7:59:59:86:33:bf:34:07:85:b2:87:ee: 51:de:20:80 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9ypaYi09MxuvKDVqJGwIAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiYzk1MDA5ODQzNjI4MWNlZTU0MmExZTc0NTQ2NTUxZTFl NTUyODMwHhcNMjYwMTAyMDgxOTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YmViM2UyYWI2YzVlYTNkZWMyYzk2ZWNlMjlkMmQxMjcyMGRjMWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNXsgwQ3PR08YmT5jCkQ9a9Iw+Ai lUUmTz9jyMopHSd7Opaqb65y0nY1QCdRABqKNOQvMwIyjgnI9DLGEFNovTTfyKWO vN51R6ZjOjgsgEwk5efXYwzXtzD+yMMLklB3pTXsa/QAk3L7qk1jSKtYa+GtQAas vvDgt0UhScIR8Egl4+g5HxZjr18po0XD7WrzmcW4ColWeGuHMGx32pGHqRQp+5NR dWY8yIxYJ5GEBk73jAxYwRA3s73yJ8gk8AsAGsky6nFRVe5889LsIIEOZATooaHV ZmX67hgUUgLSmYs+Beemuq4JRSu71vL/PnggkzAgFo3rPsCO8ZkFuBcRRQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFEvrPiq2xeo97CyW7OKdLRJyDcHOMB8GA1UdIwQY MBaAFNvJUAmENigc7lQqHnRUZVHh5VKDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDkt ZjQ3ZTE2OTI2NmMyLzEvUy1zLUtyYkY2ajNzTEpiczRwMHRFbklOd2M0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDktZjQ3ZTE2OTI2NmMy LzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXRIMA0E AgACMAcDBQMqDVBAMA0GCSqGSIb3DQEBCwUAA4IBAQBsZTDh1BdiLBI7IfnrZqrP +UyhPiF0HpXWM2P7tW+5mq5cM8KqsxSVITLNCX3U5gjh8WW0tUjePFk/rSVfBonX 72Jg9pDgWbbtrn5kkKuOek6djFIn9GJ7UBerxDUY/82dltNZRUmAhc7IvoWPHPUO BzW3UKj34YCh6Ja6q1LaxlSpNe+C1Yaq8mGC1A/OZzFnFSYPHIIHl3nUqRvV7OVU bGGhpFm//sO6a/xCl/vRTR2kdYjzzrL2TGjCZEVO3G7GBKk/XtYXBFSShOOzj2DU ApP3wzPfp0zS9gIgHEriSyE3M3+GOoTKd2VFcz4qe0inWVmGM780B4Wyh+5R3iCA -----END CERTIFICATE-----Generated at Mon Jan 26 02:43:43 2026 by rpki-client