This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b2c68e-eb3b-4e01-b50a-a86a24655870/1/k_oJvHDBdkcghP_1JMBPzqmqbTk.roa File: k_oJvHDBdkcghP_1JMBPzqmqbTk.roa (raw, json) Hash identifier: TNK8uQBOEOR3wyZ9LMW27yN2zoLPzBis8BAPSJ0G5tg= Subject key identifier: 93:FA:09:BC:70:C1:76:47:20:84:FF:F5:24:C0:4F:CE:A9:AA:6D:39 Certificate issuer: /CN=2d676a61dcf4d222ba66cda19430f61e611d8aae Certificate serial: 019BC02FD5C2269D1BE903DBBED8BFFB3D44 Authority key identifier: 2D:67:6A:61:DC:F4:D2:22:BA:66:CD:A1:94:30:F6:1E:61:1D:8A:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LWdqYdz00iK6Zs2hlDD2HmEdiq4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b2c68e-eb3b-4e01-b50a-a86a24655870/1/k_oJvHDBdkcghP_1JMBPzqmqbTk.roa Signing time: Thu 15 Jan 2026 05:45:18 +0000 ROA not before: Thu 15 Jan 2026 05:45:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 185.235.236.0/22 maxlen: 24 185.235.236.0/24 maxlen: 24 185.235.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/b2c68e-eb3b-4e01-b50a-a86a24655870/1/LWdqYdz00iK6Zs2hlDD2HmEdiq4.crl rsync://rpki.ripe.net/repository/DEFAULT/39/b2c68e-eb3b-4e01-b50a-a86a24655870/1/LWdqYdz00iK6Zs2hlDD2HmEdiq4.mft rsync://rpki.ripe.net/repository/DEFAULT/LWdqYdz00iK6Zs2hlDD2HmEdiq4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c0:2f:d5:c2:26:9d:1b:e9:03:db:be:d8:bf:fb:3d:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d676a61dcf4d222ba66cda19430f61e611d8aae Validity Not Before: Jan 15 05:45:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=93fa09bc70c176472084fff524c04fcea9aa6d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2e:08:45:33:ce:b7:d1:43:f1:da:51:6b:99: f1:b8:18:f7:b2:c9:d4:44:14:66:80:a8:7c:e3:11: 59:58:00:bf:63:97:07:2f:5f:5c:a8:26:76:a5:46: a9:22:a9:fa:a5:46:7a:34:ec:85:20:48:ea:75:02: f2:bf:1d:0d:47:6b:f8:13:f6:47:88:3f:21:b2:42: e1:f7:e0:8f:aa:18:0a:ae:87:ab:3c:e0:89:52:68: 8e:0a:a7:bf:98:87:c3:c0:51:31:e9:61:eb:db:1b: 28:0b:e0:30:73:dd:0c:ac:11:07:01:78:e0:2c:76: 96:af:47:8a:50:16:00:ab:09:b2:44:f5:70:4a:e9: c6:09:1e:0a:ae:d8:22:53:54:c9:3d:71:ae:6e:d3: 60:58:68:50:9c:95:d2:a0:c8:27:96:74:b1:62:be: b2:ad:7d:c6:64:be:32:b4:95:37:f7:03:3d:63:d5: d7:0b:d2:c9:11:95:d8:6d:e1:01:b6:b0:19:fd:a6: 8a:25:64:57:fd:52:22:06:78:55:47:48:b5:65:51: e7:10:e7:f3:37:ab:34:37:78:cc:46:09:8f:36:50: 30:78:78:a6:b0:2d:63:0f:2f:1a:4d:70:0d:0d:ff: f6:1a:77:39:60:e1:77:7f:b7:74:53:fc:c7:ba:e7: 2d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:FA:09:BC:70:C1:76:47:20:84:FF:F5:24:C0:4F:CE:A9:AA:6D:39 X509v3 Authority Key Identifier: keyid:2D:67:6A:61:DC:F4:D2:22:BA:66:CD:A1:94:30:F6:1E:61:1D:8A:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LWdqYdz00iK6Zs2hlDD2HmEdiq4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b2c68e-eb3b-4e01-b50a-a86a24655870/1/k_oJvHDBdkcghP_1JMBPzqmqbTk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b2c68e-eb3b-4e01-b50a-a86a24655870/1/LWdqYdz00iK6Zs2hlDD2HmEdiq4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.235.236.0/22 Signature Algorithm: sha256WithRSAEncryption 93:71:1f:33:86:82:65:6e:6e:ac:07:1b:c2:71:07:73:ff:b2: 76:31:63:45:c8:10:e4:c4:ab:0a:3f:85:a2:73:0a:c3:94:ce: 40:e5:1a:e1:b2:32:7b:d6:9b:b9:61:8b:2b:55:f0:b0:6f:eb: 45:25:69:9f:4b:6d:25:91:de:fa:78:0a:66:2a:fa:cd:59:ee: 55:7a:da:3b:80:da:0f:5c:b8:7b:48:34:65:ed:ff:18:b8:0d: 5f:c3:21:2e:c2:5d:5a:67:76:fa:58:5b:ce:4a:74:ce:e2:ad: 97:68:66:f1:d6:95:75:21:3f:52:3c:2f:2b:6b:e5:81:3f:17: 42:e6:de:cf:56:6c:a5:1e:7a:1c:93:77:67:ca:86:aa:02:5b: 16:c6:86:72:b6:25:28:ac:39:a1:10:7b:e9:97:c8:e1:e7:23: 96:4b:8e:62:85:c5:b8:46:3b:5e:f0:b8:d1:a7:58:6b:62:cb: da:d1:14:c8:ec:e2:3d:d0:eb:8b:9a:a3:25:f6:37:0f:40:42: 19:b1:04:93:3c:03:a4:d8:d7:a4:3e:64:87:97:b6:7a:23:9b: e8:d9:1c:0f:7c:ed:6d:1b:16:99:85:5d:a6:f5:43:d8:50:2f: 45:f9:d5:6f:b9:cf:21:2a:6a:16:cc:f5:61:f1:6f:f7:ea:4a: 25:30:f2:cb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZvAL9XCJp0b6QPbvti/+z1EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkNjc2YTYxZGNmNGQyMjJiYTY2Y2RhMTk0MzBmNjFlNjEx ZDhhYWUwHhcNMjYwMTE1MDU0NTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5M2ZhMDliYzcwYzE3NjQ3MjA4NGZmZjUyNGMwNGZjZWE5YWE2ZDM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoC4IRTPOt9FD8dpRa5nxuBj3ssnU RBRmgKh84xFZWAC/Y5cHL19cqCZ2pUapIqn6pUZ6NOyFIEjqdQLyvx0NR2v4E/ZH iD8hskLh9+CPqhgKroerPOCJUmiOCqe/mIfDwFEx6WHr2xsoC+Awc90MrBEHAXjg LHaWr0eKUBYAqwmyRPVwSunGCR4KrtgiU1TJPXGubtNgWGhQnJXSoMgnlnSxYr6y rX3GZL4ytJU39wM9Y9XXC9LJEZXYbeEBtrAZ/aaKJWRX/VIiBnhVR0i1ZVHnEOfz N6s0N3jMRgmPNlAweHimsC1jDy8aTXANDf/2Gnc5YOF3f7d0U/zHuuct7wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJP6CbxwwXZHIIT/9STAT86pqm05MB8GA1UdIwQY MBaAFC1namHc9NIiumbNoZQw9h5hHYquMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFdkcVlkejAwaUs2WnMyaGxERDJIbUVkaXE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9iMmM2OGUtZWIzYi00ZTAxLWI1MGEt YTg2YTI0NjU1ODcwLzEva19vSnZIREJka2NnaFBfMUpNQlB6cW1xYlRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS9iMmM2OGUtZWIzYi00ZTAxLWI1MGEtYTg2YTI0NjU1ODcw LzEvTFdkcVlkejAwaUs2WnMyaGxERDJIbUVkaXE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuevsMA0G CSqGSIb3DQEBCwUAA4IBAQCTcR8zhoJlbm6sBxvCcQdz/7J2MWNFyBDkxKsKP4Wi cwrDlM5A5RrhsjJ71pu5YYsrVfCwb+tFJWmfS20lkd76eApmKvrNWe5Veto7gNoP XLh7SDRl7f8YuA1fwyEuwl1aZ3b6WFvOSnTO4q2XaGbx1pV1IT9SPC8ra+WBPxdC 5t7PVmylHnock3dnyoaqAlsWxoZytiUorDmhEHvpl8jh5yOWS45ihcW4Rjte8LjR p1hrYsva0RTI7OI90OuLmqMl9jcPQEIZsQSTPAOk2NekPmSHl7Z6I5vo2RwPfO1t GxaZhV2m9UPYUC9F+dVvuc8hKmoWzPVh8W/36kolMPLL -----END CERTIFICATE-----Generated at Sun Jan 25 13:31:32 2026 by rpki-client