This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/01000b-aa96-4bc6-8cc1-af07a9e87fc0/1/KUodnXGsFwyNehqN551Z9d54ZJM.roa File: KUodnXGsFwyNehqN551Z9d54ZJM.roa (raw, json) Hash identifier: 6vmbRe0Gw7jdU6fIKbRaOK9xmSJJHl1pGRS+mY2Td7Y= Subject key identifier: 29:4A:1D:9D:71:AC:17:0C:8D:7A:1A:8D:E7:9D:59:F5:DE:78:64:93 Certificate issuer: /CN=e05a2dacf5dd4e9bfa2d2d9b2d3c3f9678745841 Certificate serial: 019B79ECCE2CEA2C5B84CDCF53610B259EA3 Authority key identifier: E0:5A:2D:AC:F5:DD:4E:9B:FA:2D:2D:9B:2D:3C:3F:96:78:74:58:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FotrPXdTpv6LS2bLTw_lnh0WEE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/01000b-aa96-4bc6-8cc1-af07a9e87fc0/1/KUodnXGsFwyNehqN551Z9d54ZJM.roa Signing time: Thu 01 Jan 2026 14:18:41 +0000 ROA not before: Thu 01 Jan 2026 14:18:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3303 IP address blocks: 185.31.180.0/22 maxlen: 23 2a00:bf60::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/01000b-aa96-4bc6-8cc1-af07a9e87fc0/1/4FotrPXdTpv6LS2bLTw_lnh0WEE.crl rsync://rpki.ripe.net/repository/DEFAULT/09/01000b-aa96-4bc6-8cc1-af07a9e87fc0/1/4FotrPXdTpv6LS2bLTw_lnh0WEE.mft rsync://rpki.ripe.net/repository/DEFAULT/4FotrPXdTpv6LS2bLTw_lnh0WEE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:ce:2c:ea:2c:5b:84:cd:cf:53:61:0b:25:9e:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e05a2dacf5dd4e9bfa2d2d9b2d3c3f9678745841 Validity Not Before: Jan 1 14:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=294a1d9d71ac170c8d7a1a8de79d59f5de786493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:cd:3b:ba:87:ef:c5:d4:7d:0e:fc:8f:79:f5: 63:54:04:db:64:20:1c:29:b2:9d:31:a8:a1:70:3f: 8b:b0:ac:32:98:64:be:c3:31:b7:6b:89:90:b3:5f: d5:ed:e2:29:74:d7:13:f5:ee:fa:f6:c0:25:33:38: 5b:9f:9a:fe:fd:40:ba:ad:18:40:69:e2:1a:09:9f: 92:42:39:73:26:01:78:2d:0c:68:71:21:8a:ef:45: 69:ba:d8:15:c1:28:fa:1d:10:8e:9b:db:fe:69:7b: 7b:2f:fb:62:f6:96:d1:8b:2a:ab:fe:4f:96:a6:8b: 05:43:21:87:81:3c:d2:84:39:fe:59:0d:af:17:db: aa:21:1a:01:bb:f8:e6:9a:3a:a8:88:98:a5:31:ae: 29:93:3f:2d:92:95:81:9d:2e:5d:7a:8e:ca:8d:53: cd:2f:1c:7e:90:fc:07:d6:6d:e6:b6:75:96:ac:be: 8a:11:44:e1:ad:7e:13:e3:a4:34:f6:3a:ea:20:c4: a2:8f:a4:5e:11:dd:82:38:af:ba:f9:5a:12:d9:49: 2f:af:2c:06:c2:de:72:11:26:20:3c:99:56:49:e9: 3e:aa:b6:b4:fc:18:ef:78:3b:b5:12:6e:57:b9:5b: b8:84:e9:e3:b6:79:03:16:c4:97:54:e0:a4:d9:88: 0b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:4A:1D:9D:71:AC:17:0C:8D:7A:1A:8D:E7:9D:59:F5:DE:78:64:93 X509v3 Authority Key Identifier: keyid:E0:5A:2D:AC:F5:DD:4E:9B:FA:2D:2D:9B:2D:3C:3F:96:78:74:58:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FotrPXdTpv6LS2bLTw_lnh0WEE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/01000b-aa96-4bc6-8cc1-af07a9e87fc0/1/KUodnXGsFwyNehqN551Z9d54ZJM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/01000b-aa96-4bc6-8cc1-af07a9e87fc0/1/4FotrPXdTpv6LS2bLTw_lnh0WEE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.31.180.0/22 IPv6: 2a00:bf60::/32 Signature Algorithm: sha256WithRSAEncryption 30:cd:7d:78:76:be:db:08:19:29:dc:b1:c7:ec:19:ab:2c:97: c4:44:42:31:1d:7c:88:9e:ff:fd:cd:c8:63:bf:e8:8f:f3:4f: b8:06:e0:30:04:78:28:e0:f8:a5:ef:4d:38:77:8d:a2:0e:3e: ea:9a:69:7c:e5:2b:d1:2b:11:c9:47:fc:f4:c6:9e:e7:4a:f7: da:52:0c:3c:c7:4c:5c:22:cf:c7:53:4e:46:6a:4e:2d:41:f4: 54:74:22:91:d6:1e:28:f3:e1:cc:69:06:18:b1:ba:39:50:68: 69:dd:e2:a0:eb:55:e2:83:2c:db:a6:2f:dd:dc:e3:f1:d7:fd: 4f:23:c8:ea:d6:a7:c4:d9:5e:af:a3:48:60:40:b1:da:ae:44: e7:3f:d5:c4:f0:76:5f:12:ad:8a:d9:f8:13:c3:01:5a:4f:1e: 16:14:64:5a:65:a4:42:89:28:4c:9a:73:b9:ab:f9:65:55:91: 3a:76:3d:47:0e:53:09:64:59:96:9d:1d:46:ee:70:1c:0e:d0: ae:3b:ec:da:d4:b6:e9:df:00:b5:71:37:81:b6:e4:7b:fe:da: a0:76:ee:56:3f:8d:a6:49:23:12:0f:29:22:ea:f5:16:8e:cd: 47:f2:d9:28:70:4b:1e:c8:24:dd:3d:34:0b:4c:1f:02:ad:6f: 7f:77:0a:2f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57M4s6ixbhM3PU2ELJZ6jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwNWEyZGFjZjVkZDRlOWJmYTJkMmQ5YjJkM2MzZjk2Nzg3 NDU4NDEwHhcNMjYwMTAxMTQxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTRhMWQ5ZDcxYWMxNzBjOGQ3YTFhOGRlNzlkNTlmNWRlNzg2NDkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhs07uofvxdR9DvyPefVjVATbZCAc KbKdMaihcD+LsKwymGS+wzG3a4mQs1/V7eIpdNcT9e769sAlMzhbn5r+/UC6rRhA aeIaCZ+SQjlzJgF4LQxocSGK70VputgVwSj6HRCOm9v+aXt7L/ti9pbRiyqr/k+W posFQyGHgTzShDn+WQ2vF9uqIRoBu/jmmjqoiJilMa4pkz8tkpWBnS5deo7KjVPN Lxx+kPwH1m3mtnWWrL6KEUThrX4T46Q09jrqIMSij6ReEd2COK+6+VoS2UkvrywG wt5yESYgPJlWSek+qra0/BjveDu1Em5XuVu4hOnjtnkDFsSXVOCk2YgL8wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFClKHZ1xrBcMjXoajeedWfXeeGSTMB8GA1UdIwQY MBaAFOBaLaz13U6b+i0tmy08P5Z4dFhBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEZvdHJQWGRUcHY2TFMyYkxUd19sbmgwV0VFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS8wMTAwMGItYWE5Ni00YmM2LThjYzEt YWYwN2E5ZTg3ZmMwLzEvS1VvZG5YR3NGd3lOZWhxTjU1MVo5ZDU0WkpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS8wMTAwMGItYWE5Ni00YmM2LThjYzEtYWYwN2E5ZTg3ZmMw LzEvNEZvdHJQWGRUcHY2TFMyYkxUd19sbmgwV0VFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuR+0MA0E AgACMAcDBQAqAL9gMA0GCSqGSIb3DQEBCwUAA4IBAQAwzX14dr7bCBkp3LHH7Bmr LJfEREIxHXyInv/9zchjv+iP80+4BuAwBHgo4Pil7004d42iDj7qmml85SvRKxHJ R/z0xp7nSvfaUgw8x0xcIs/HU05Gak4tQfRUdCKR1h4o8+HMaQYYsbo5UGhp3eKg 61Xigyzbpi/d3OPx1/1PI8jq1qfE2V6vo0hgQLHarkTnP9XE8HZfEq2K2fgTwwFa Tx4WFGRaZaRCiShMmnO5q/llVZE6dj1HDlMJZFmWnR1G7nAcDtCuO+za1Lbp3wC1 cTeBtuR7/tqgdu5WP42mSSMSDyki6vUWjs1H8tkocEseyCTdPTQLTB8CrW9/dwov -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:26 2026 by rpki-client