This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/KiD6ssPlTlxGNfiwbyM4hLM9pzA.roa File: KiD6ssPlTlxGNfiwbyM4hLM9pzA.roa (raw, json) Hash identifier: yAf1scWMjSGjega912ghv6J5AS/+kGn8+3uGUK0y55s= Subject key identifier: 2A:20:FA:B2:C3:E5:4E:5C:46:35:F8:B0:6F:23:38:84:B3:3D:A7:30 Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881 Certificate serial: 019B7B369843E84242EF118636A342E049B8 Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/KiD6ssPlTlxGNfiwbyM4hLM9pzA.roa Signing time: Thu 01 Jan 2026 20:18:54 +0000 ROA not before: Thu 01 Jan 2026 20:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34173 IP address blocks: 78.153.245.0/24 maxlen: 24 85.31.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.mft rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:98:43:e8:42:42:ef:11:86:36:a3:42:e0:49:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881 Validity Not Before: Jan 1 20:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2a20fab2c3e54e5c4635f8b06f233884b33da730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:30:4e:84:c9:7e:52:64:bb:5a:20:ed:65:27: 2e:c4:10:af:8d:99:06:75:7e:ae:99:7e:83:63:65: 27:e3:d0:1f:1b:75:2b:37:7a:16:79:50:1c:d5:f6: cf:87:50:dc:0e:6a:33:25:a5:ae:16:f1:54:a9:31: d4:b4:6f:d6:c8:2a:6b:58:e2:26:18:c4:83:d2:f6: c2:dd:ef:72:b8:77:1e:55:4c:f3:3a:c2:25:3e:2e: 6b:7d:64:25:96:6a:88:97:3a:60:99:c9:cc:ad:96: b4:6e:3a:a3:f4:d1:58:48:70:ef:61:6c:43:95:44: 25:b7:d4:98:69:05:01:2a:69:0f:11:28:e2:70:8e: a0:1f:fe:ab:24:13:73:28:cb:a2:84:b1:3e:d0:06: 87:0b:ad:6a:69:82:76:fd:af:f2:4a:be:a4:7b:b6: 13:17:4c:b4:6f:d3:8a:63:09:9e:45:1e:a1:11:83: 2d:22:57:ec:19:af:1e:78:fb:3a:4a:d6:97:10:2f: 0d:5f:20:b8:8f:b0:36:b6:f5:23:d0:35:99:7e:b5: 78:38:7e:c1:fd:9f:98:f2:b8:5f:9f:5a:7a:bc:05: 96:7e:95:14:a4:4b:07:5f:01:40:1b:8f:74:13:4e: 5f:2c:e6:a3:0e:90:52:21:7d:95:e0:f3:04:cc:2d: 47:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:20:FA:B2:C3:E5:4E:5C:46:35:F8:B0:6F:23:38:84:B3:3D:A7:30 X509v3 Authority Key Identifier: keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/KiD6ssPlTlxGNfiwbyM4hLM9pzA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.153.245.0/24 85.31.215.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:fc:33:31:66:2b:44:eb:28:d4:4e:69:3c:ae:f0:63:b6:3d: 43:f6:85:a0:44:9f:e8:b9:3c:06:70:4f:52:f7:6d:71:df:86: 96:03:47:f2:08:8d:bb:3b:ad:b8:8c:8c:55:87:70:5e:be:80: a2:e1:ba:41:5d:4e:81:55:de:62:b1:f5:0d:2c:b5:5c:e9:83: f4:8d:30:3e:00:0e:e6:d9:18:61:e5:21:6a:48:37:8b:5c:bc: 13:74:e6:9a:38:4b:9b:d0:e2:1a:1d:a6:fe:3d:81:7c:8c:97: 00:50:02:0b:fe:11:9e:a3:71:b9:e4:9c:1a:4c:20:ce:b5:ea: d1:75:7d:02:ff:1e:96:cf:25:f5:da:76:16:da:2d:26:bf:7a: e6:30:ff:6f:7a:14:41:d2:c3:f9:c7:05:5b:8f:4e:31:de:b6: 2d:98:bc:65:ea:fc:28:4d:a4:2b:77:ac:8d:93:99:04:2d:04: ae:17:2e:64:fc:4a:7f:00:a4:3a:76:4d:dc:35:ee:51:ab:6e: 27:a1:3a:ee:db:e7:8b:7d:d0:97:5f:f6:b0:70:2d:b7:4c:20: de:90:36:33:3a:3b:27:dc:b9:86:c7:ae:5d:9b:6a:eb:3f:75: a3:ff:bb:f2:03:cf:75:a4:6c:c7:b3:c9:8b:12:71:e8:6b:5b: e7:f2:4f:5c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NphD6EJC7xGGNqNC4Em4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5MDllZTNkNjE4OTc0ZGEwY2JkODA1YTJkYTgwNDEwYTQ5 ODk4ODEwHhcNMjYwMTAxMjAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYTIwZmFiMmMzZTU0ZTVjNDYzNWY4YjA2ZjIzMzg4NGIzM2RhNzMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzBOhMl+UmS7WiDtZScuxBCvjZkG dX6umX6DY2Un49AfG3UrN3oWeVAc1fbPh1DcDmozJaWuFvFUqTHUtG/WyCprWOIm GMSD0vbC3e9yuHceVUzzOsIlPi5rfWQllmqIlzpgmcnMrZa0bjqj9NFYSHDvYWxD lUQlt9SYaQUBKmkPESjicI6gH/6rJBNzKMuihLE+0AaHC61qaYJ2/a/ySr6ke7YT F0y0b9OKYwmeRR6hEYMtIlfsGa8eePs6StaXEC8NXyC4j7A2tvUj0DWZfrV4OH7B /Z+Y8rhfn1p6vAWWfpUUpEsHXwFAG490E05fLOajDpBSIX2V4PMEzC1H2QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCog+rLD5U5cRjX4sG8jOISzPacwMB8GA1UdIwQY MBaAFOkJ7j1hiXTaDL2AWi2oBBCkmJiBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlFudVBXR0pkTm9NdllCYUxhZ0VFS1NZbUlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8yYjVmNWYtYmI5Ni00YjMxLThhNmEt ZGQxMTVmOWUzMzAxLzEvS2lENnNzUGxUbHhHTmZpd2J5TTRoTE05cHpBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8yYjVmNWYtYmI5Ni00YjMxLThhNmEtZGQxMTVmOWUzMzAx LzEvNlFudVBXR0pkTm9NdllCYUxhZ0VFS1NZbUlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATpn1AwQA VR/XMA0GCSqGSIb3DQEBCwUAA4IBAQCN/DMxZitE6yjUTmk8rvBjtj1D9oWgRJ/o uTwGcE9S921x34aWA0fyCI27O624jIxVh3BevoCi4bpBXU6BVd5isfUNLLVc6YP0 jTA+AA7m2Rhh5SFqSDeLXLwTdOaaOEub0OIaHab+PYF8jJcAUAIL/hGeo3G55Jwa TCDOterRdX0C/x6WzyX12nYW2i0mv3rmMP9vehRB0sP5xwVbj04x3rYtmLxl6vwo TaQrd6yNk5kELQSuFy5k/Ep/AKQ6dk3cNe5Rq24noTru2+eLfdCXX/awcC23TCDe kDYzOjsn3LmGx65dm2rrP3Wj/7vyA891pGzHs8mLEnHoa1vn8k9c -----END CERTIFICATE-----Generated at Sun Jan 25 22:28:41 2026 by rpki-client