This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/2kkM-Y1oeDm04wY-B4Ml04duWlg.roa File: 2kkM-Y1oeDm04wY-B4Ml04duWlg.roa (raw, json) Hash identifier: MnJVJ4NyKNUCeBGsbiD72vxTrQHy4p8bo+xWfr40jXY= Subject key identifier: DA:49:0C:F9:8D:68:78:39:B4:E3:06:3E:07:83:25:D3:87:6E:5A:58 Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4 Certificate serial: 019B7B35C8F313A1430B198284487FCED86F Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/2kkM-Y1oeDm04wY-B4Ml04duWlg.roa Signing time: Thu 01 Jan 2026 20:18:00 +0000 ROA not before: Thu 01 Jan 2026 20:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198394 IP address blocks: 141.105.164.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:c8:f3:13:a1:43:0b:19:82:84:48:7f:ce:d8:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4 Validity Not Before: Jan 1 20:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=da490cf98d687839b4e3063e078325d3876e5a58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:04:94:9c:7b:ca:6b:96:73:60:d1:ef:77:bd: fe:f1:44:c4:41:65:cd:ee:ca:fa:6d:84:56:0b:2f: 65:ad:8a:0e:1d:c1:11:db:ae:0e:b4:e6:0e:b2:b2: c6:0d:9c:da:13:a5:d1:dd:ac:96:be:ee:3c:05:e8: e2:c3:aa:4f:6c:27:db:44:b5:01:0c:14:14:fc:68: b9:3f:90:e5:64:a2:e6:bc:e4:44:fb:7c:78:6c:63: 79:0e:ed:05:92:26:7a:b0:4d:5d:2c:02:b0:ce:6b: 61:69:8d:4b:62:d4:be:b7:b0:68:f0:68:ab:2a:48: 95:a4:3e:88:a4:7c:97:a7:2d:e5:4e:d9:73:04:bf: 3b:5e:c3:cb:26:fb:76:28:da:54:f3:b1:2b:50:fd: 4b:4a:50:0b:bf:de:81:a4:f2:a7:8e:40:cd:70:36: bd:58:ba:98:6a:d5:07:ad:d2:d5:7b:f1:63:10:3f: 5e:9c:c4:9f:4f:7a:c3:24:f6:4f:7a:80:3b:c2:47: 99:c7:3a:1e:fc:be:bd:6e:0a:54:fd:1b:69:dd:0f: bf:9c:64:fd:b5:1a:d1:cd:6c:a0:3c:45:74:04:05: 75:9d:82:a7:00:98:1d:1b:e7:cc:50:14:69:46:06: b8:2f:8f:4c:b0:d9:79:71:96:b8:1a:c3:28:6d:54: 7d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:49:0C:F9:8D:68:78:39:B4:E3:06:3E:07:83:25:D3:87:6E:5A:58 X509v3 Authority Key Identifier: keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/2kkM-Y1oeDm04wY-B4Ml04duWlg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.105.164.0/23 Signature Algorithm: sha256WithRSAEncryption b4:de:52:66:58:90:d2:84:57:d8:53:32:45:82:9b:df:31:5d: e7:0d:5e:4c:22:17:dd:db:64:7d:ba:61:ba:ff:3c:a8:01:75: 4c:14:4e:84:a2:13:45:40:21:a1:de:ca:ba:0f:a5:33:46:b8: d7:4f:e2:fb:96:6c:bd:9a:58:02:e5:95:34:18:60:42:ee:d7: 4d:b8:b6:e4:b5:0d:52:ca:ce:11:83:36:ef:81:86:9f:09:1a: 6a:6d:be:1d:b5:5b:6a:06:78:15:ef:bc:a8:dd:3d:d6:28:59: 55:6a:78:3e:c1:84:74:31:5a:51:ba:04:9e:38:81:98:3e:93: f2:8b:c5:f7:97:df:0c:2d:f6:13:ba:6b:17:a8:13:79:28:5e: 5f:df:fc:b9:ad:3b:4f:a1:b7:b0:ba:59:bc:d7:11:cc:8a:b3: 39:8f:fd:b0:f4:18:d4:63:27:7c:1d:8d:9d:61:2a:d4:26:a7: fd:7b:42:34:fc:24:1b:3a:9e:5a:bb:5f:9c:a5:9d:af:e6:99: 1f:51:27:83:0a:32:4c:c4:c4:86:f5:eb:32:b8:3a:03:6f:51: ce:e8:17:78:3b:c0:82:86:1d:81:c0:c5:73:a3:e2:77:ac:74: 4e:70:e0:be:1b:08:f4:de:18:96:ad:51:4b:e9:eb:86:4c:72: 97:d2:49:dd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NcjzE6FDCxmChEh/zthvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NzM2NGY1MDI1MzRlODc3MWEwYzYyNTk3OTRjMjZlMjZk NGJjYTQwHhcNMjYwMTAxMjAxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTQ5MGNmOThkNjg3ODM5YjRlMzA2M2UwNzgzMjVkMzg3NmU1YTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwSUnHvKa5ZzYNHvd73+8UTEQWXN 7sr6bYRWCy9lrYoOHcER264OtOYOsrLGDZzaE6XR3ayWvu48Bejiw6pPbCfbRLUB DBQU/Gi5P5DlZKLmvORE+3x4bGN5Du0FkiZ6sE1dLAKwzmthaY1LYtS+t7Bo8Gir KkiVpD6IpHyXpy3lTtlzBL87XsPLJvt2KNpU87ErUP1LSlALv96BpPKnjkDNcDa9 WLqYatUHrdLVe/FjED9enMSfT3rDJPZPeoA7wkeZxzoe/L69bgpU/Rtp3Q+/nGT9 tRrRzWygPEV0BAV1nYKnAJgdG+fMUBRpRga4L49MsNl5cZa4GsMobVR9gwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNpJDPmNaHg5tOMGPgeDJdOHblpYMB8GA1UdIwQY MBaAFClzZPUCU06HcaDGJZeUwm4m1LykMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1hOazlRSlRUb2R4b01ZbGw1VENiaWJVdktRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wNDU4MjAtMzU0Ni00MDdjLTgzYTUt MGEwZjNlNzhhNDkzLzEvMmtrTS1ZMW9lRG0wNHdZLUI0TWwwNGR1V2xnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8wNDU4MjAtMzU0Ni00MDdjLTgzYTUtMGEwZjNlNzhhNDkz LzEvS1hOazlRSlRUb2R4b01ZbGw1VENiaWJVdktRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBjWmkMA0G CSqGSIb3DQEBCwUAA4IBAQC03lJmWJDShFfYUzJFgpvfMV3nDV5MIhfd22R9umG6 /zyoAXVMFE6EohNFQCGh3sq6D6UzRrjXT+L7lmy9mlgC5ZU0GGBC7tdNuLbktQ1S ys4RgzbvgYafCRpqbb4dtVtqBngV77yo3T3WKFlVang+wYR0MVpRugSeOIGYPpPy i8X3l98MLfYTumsXqBN5KF5f3/y5rTtPobewulm81xHMirM5j/2w9BjUYyd8HY2d YSrUJqf9e0I0/CQbOp5au1+cpZ2v5pkfUSeDCjJMxMSG9esyuDoDb1HO6Bd4O8CC hh2BwMVzo+J3rHROcOC+Gwj03hiWrVFL6euGTHKX0knd -----END CERTIFICATE-----Generated at Mon Jan 26 03:08:07 2026 by rpki-client