This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/KVqYko6zmqy1pTmx4kOmomDR1eo.roa File: KVqYko6zmqy1pTmx4kOmomDR1eo.roa (raw, json) Hash identifier: FMw/fuHjmtAPyz81jyyZGfPvbXEsbopfOr42moHSoiA= Subject key identifier: 29:5A:98:92:8E:B3:9A:AC:B5:A5:39:B1:E2:43:A6:A2:60:D1:D5:EA Certificate issuer: /CN=4268a4cfb6b1b6447da93833321dd315061193d4 Certificate serial: 019B76EB09E69ED08BA0BF2E3C69691376D3 Authority key identifier: 42:68:A4:CF:B6:B1:B6:44:7D:A9:38:33:32:1D:D3:15:06:11:93:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qmikz7axtkR9qTgzMh3TFQYRk9Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/KVqYko6zmqy1pTmx4kOmomDR1eo.roa Signing time: Thu 01 Jan 2026 00:17:53 +0000 ROA not before: Thu 01 Jan 2026 00:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16097 IP address blocks: 185.105.255.0/24 maxlen: 24 2a06:3a80::/40 maxlen: 40 2a06:3a80:300::/40 maxlen: 40 2a06:3a80:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/Qmikz7axtkR9qTgzMh3TFQYRk9Q.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/Qmikz7axtkR9qTgzMh3TFQYRk9Q.mft rsync://rpki.ripe.net/repository/DEFAULT/Qmikz7axtkR9qTgzMh3TFQYRk9Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:09:e6:9e:d0:8b:a0:bf:2e:3c:69:69:13:76:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4268a4cfb6b1b6447da93833321dd315061193d4 Validity Not Before: Jan 1 00:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=295a98928eb39aacb5a539b1e243a6a260d1d5ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6e:09:d6:1c:e9:e5:c9:84:55:7b:c8:08:d1: f4:9e:99:a2:51:5e:74:69:96:e6:c0:47:f8:63:70: d2:56:60:cf:13:aa:3e:ad:61:1f:85:3a:e0:f6:f1: 38:7f:32:27:bd:2c:82:49:d0:7c:e0:f3:78:ca:b7: 26:96:9e:37:d0:2d:a6:fc:48:a3:19:82:84:0e:fd: 9b:13:11:da:9e:c8:d6:d2:e8:bf:a8:82:fa:1a:d5: b5:e3:a1:3f:31:83:83:b5:d3:0c:d8:43:aa:f1:e9: 7f:13:01:38:59:b2:1a:24:61:7e:48:bd:62:f9:0d: 58:5e:ca:e5:cf:aa:66:13:a3:ce:3e:e2:90:05:67: 40:2e:5a:a6:31:e4:77:2b:e1:f2:a2:63:e6:07:75: 74:77:f0:cc:d6:43:46:ba:c1:10:26:aa:04:dc:d1: 62:eb:21:4b:a6:4b:b3:86:43:ea:93:c0:f9:e8:bd: 3b:1d:36:68:b1:7e:39:dd:02:42:62:48:a0:2b:17: 7a:ae:b6:83:71:65:98:24:65:bb:85:d8:1c:7f:a8: 24:bd:11:fc:ad:c6:cd:e1:bb:8c:88:6c:4f:50:ab: 90:14:c6:fa:97:df:29:7e:6b:7b:0d:cb:2f:3a:9b: ce:05:6e:c2:d8:e7:84:b5:a0:6e:08:62:50:74:d4: b2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:5A:98:92:8E:B3:9A:AC:B5:A5:39:B1:E2:43:A6:A2:60:D1:D5:EA X509v3 Authority Key Identifier: keyid:42:68:A4:CF:B6:B1:B6:44:7D:A9:38:33:32:1D:D3:15:06:11:93:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qmikz7axtkR9qTgzMh3TFQYRk9Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/KVqYko6zmqy1pTmx4kOmomDR1eo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/Qmikz7axtkR9qTgzMh3TFQYRk9Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.105.255.0/24 IPv6: 2a06:3a80::/40 2a06:3a80:300::-2a06:3a80:4ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 27:73:5a:ff:b4:a7:ba:37:a5:38:de:d8:80:1a:9d:34:b1:2d: e5:f3:fb:bc:ad:5e:34:f2:9f:b6:af:5b:d4:42:ae:6e:59:48: 9a:fd:4d:63:9c:8e:b4:d7:63:e2:0c:73:46:6a:5c:5b:a7:cf: f3:76:43:63:a6:46:0a:5c:25:d8:f5:84:d9:1f:77:04:1e:29: 6b:ed:ca:75:e6:31:7e:1f:39:bb:b4:f7:86:7a:7b:bd:80:c9: 81:7c:40:d7:7b:00:b2:9b:14:36:5d:4a:f9:92:cf:f2:4c:44: 47:76:5d:d0:b6:ba:56:65:63:9b:75:df:40:f6:77:3c:b0:10: e0:25:1f:b0:58:6c:37:ec:d1:b7:cc:db:f0:d4:95:84:b9:e9: ef:a0:ca:18:e1:ce:56:ad:e9:44:3f:f3:2b:28:3e:03:0e:61: ea:9f:c7:eb:0f:b1:7c:ca:05:d8:98:0e:db:6d:5d:cd:6d:da: 00:25:da:1e:bf:3e:31:97:09:87:c4:f7:a7:6d:a0:1a:3a:f3: e0:9a:06:c8:56:da:20:25:89:de:c1:31:fa:83:bc:b8:53:e8: 0d:ab:7f:c4:57:71:2b:85:6c:51:94:c1:74:15:3c:20:24:fd: ad:aa:c6:9d:74:46:3c:31:93:0f:6a:c1:77:ff:ce:29:d0:a7: bc:64:df:76 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt26wnmntCLoL8uPGlpE3bTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQyNjhhNGNmYjZiMWI2NDQ3ZGE5MzgzMzMyMWRkMzE1MDYx MTkzZDQwHhcNMjYwMTAxMDAxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTVhOTg5MjhlYjM5YWFjYjVhNTM5YjFlMjQzYTZhMjYwZDFkNWVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvm4J1hzp5cmEVXvICNH0npmiUV50 aZbmwEf4Y3DSVmDPE6o+rWEfhTrg9vE4fzInvSyCSdB84PN4yrcmlp430C2m/Eij GYKEDv2bExHansjW0ui/qIL6GtW146E/MYODtdMM2EOq8el/EwE4WbIaJGF+SL1i +Q1YXsrlz6pmE6POPuKQBWdALlqmMeR3K+HyomPmB3V0d/DM1kNGusEQJqoE3NFi 6yFLpkuzhkPqk8D56L07HTZosX453QJCYkigKxd6rraDcWWYJGW7hdgcf6gkvRH8 rcbN4buMiGxPUKuQFMb6l98pfmt7DcsvOpvOBW7C2OeEtaBuCGJQdNSyywIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFClamJKOs5qstaU5seJDpqJg0dXqMB8GA1UdIwQY MBaAFEJopM+2sbZEfak4MzId0xUGEZPUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUW1pa3o3YXh0a1I5cVRnek1oM1RGUVlSazlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83ZDQzYmItYTFjNi00MDU1LThjNTMt MmZlZThiNjMwOWNiLzEvS1ZxWWtvNnptcXkxcFRteDRrT21vbURSMWVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS83ZDQzYmItYTFjNi00MDU1LThjNTMtMmZlZThiNjMwOWNi LzEvUW1pa3o3YXh0a1I5cVRnek1oM1RGUVlSazlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAMBAIAATAGAwQAuWn/MCAE AgACMBoDBgAqBjqAADAQAwYAKgY6gAMDBgAqBjqABDANBgkqhkiG9w0BAQsFAAOC AQEAJ3Na/7SnujelON7YgBqdNLEt5fP7vK1eNPKftq9b1EKubllImv1NY5yOtNdj 4gxzRmpcW6fP83ZDY6ZGClwl2PWE2R93BB4pa+3KdeYxfh85u7T3hnp7vYDJgXxA 13sAspsUNl1K+ZLP8kxER3Zd0La6VmVjm3XfQPZ3PLAQ4CUfsFhsN+zRt8zb8NSV hLnp76DKGOHOVq3pRD/zKyg+Aw5h6p/H6w+xfMoF2JgO221dzW3aACXaHr8+MZcJ h8T3p22gGjrz4JoGyFbaICWJ3sEx+oO8uFPoDat/xFdxK4VsUZTBdBU8ICT9rarG nXRGPDGTD2rBd//OKdCnvGTfdg== -----END CERTIFICATE-----Generated at Sun Jan 25 18:22:09 2026 by rpki-client