This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/KVan9Pcjft5JIZrcZQHR4i1sEDc.roa File: KVan9Pcjft5JIZrcZQHR4i1sEDc.roa (raw, json) Hash identifier: 7Kj/wx1OYLRBwB8Ljtm8I7zBf7kVbnSHVXIyDdmYFnA= Subject key identifier: 29:56:A7:F4:F7:23:7E:DE:49:21:9A:DC:65:01:D1:E2:2D:6C:10:37 Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318 Certificate serial: 019BE079636162F1EE60DDCD4D133913DD78 Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/KVan9Pcjft5JIZrcZQHR4i1sEDc.roa Signing time: Wed 21 Jan 2026 12:13:30 +0000 ROA not before: Wed 21 Jan 2026 12:13:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210984 IP address blocks: 46.243.52.0/23 maxlen: 23 46.243.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:79:63:61:62:f1:ee:60:dd:cd:4d:13:39:13:dd:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318 Validity Not Before: Jan 21 12:13:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2956a7f4f7237ede49219adc6501d1e22d6c1037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:37:45:ea:4d:81:3e:d4:78:01:47:2b:28:17: 58:53:ae:7b:cb:b6:28:66:aa:78:86:ff:43:da:d4: 30:55:4c:4b:de:f5:d8:a9:74:14:1e:93:06:fb:4a: 92:dc:21:c1:54:19:26:01:2e:af:44:f3:51:4a:21: 61:f4:1c:f5:7e:50:2f:97:c3:d3:0a:fd:7b:ba:a6: bb:79:87:ce:31:c9:38:08:b1:02:71:fb:ec:b0:4c: f6:b2:6b:f3:7a:8a:86:97:fc:8f:4f:6e:e3:7f:9f: e0:c7:3a:88:a4:b6:8d:76:ab:61:96:37:20:1f:18: 4c:b4:a1:97:e4:3c:57:3d:ab:5c:75:b5:d5:92:b7: 52:23:4a:86:21:29:4c:35:9a:be:2c:a4:0d:d5:d7: 6a:eb:1a:12:d1:5f:4e:a1:30:84:3e:30:1b:47:ee: 8e:97:04:fc:bc:e3:20:95:b2:f6:fb:d9:20:37:50: b4:90:7e:93:1c:67:cd:c0:24:93:77:b2:ca:1d:07: 21:29:73:b3:93:7e:6b:a9:76:22:0d:fa:a1:74:2a: 44:67:e5:88:84:f5:7c:72:00:0c:a7:52:e4:25:17: 72:6e:b0:b2:64:d6:64:0e:ac:f4:3d:52:17:c9:a9: cb:dc:14:89:02:01:23:3c:21:6d:07:ca:50:ae:69: 20:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:56:A7:F4:F7:23:7E:DE:49:21:9A:DC:65:01:D1:E2:2D:6C:10:37 X509v3 Authority Key Identifier: keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/KVan9Pcjft5JIZrcZQHR4i1sEDc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.243.52.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:98:2d:e1:fb:dd:fc:f9:21:01:3b:3e:8a:e2:dd:17:95:eb: 49:bd:71:f4:68:eb:1c:7e:6f:aa:03:0f:16:16:e2:0f:c6:38: e8:03:ff:8a:13:6a:a0:ef:85:69:69:f5:08:24:ec:7f:39:0e: 40:bc:3f:68:ed:5a:19:68:9f:ca:9b:b9:c9:dd:1c:b4:57:44: 85:8a:a4:21:f2:1f:47:57:b7:4e:b2:7e:28:02:33:dc:a8:f2: 49:e3:3d:81:4f:aa:e4:c4:44:b3:82:34:18:c0:fe:d5:b4:75: 72:ee:a0:ff:cd:32:ae:3a:7d:bd:2a:c7:42:ae:98:ae:c6:8b: 73:c6:f3:6d:55:f8:8c:c3:7b:1c:82:cc:6c:22:1d:3e:ac:f6: 74:af:c4:e8:d2:53:f4:d3:d4:50:39:9c:8c:b3:22:99:ce:bc: ca:e0:53:c6:e1:83:8c:77:fb:01:ba:98:5d:99:fe:dd:16:7d: 69:6c:e5:29:9c:80:08:c2:0a:81:a9:ac:a5:bc:2c:0c:37:71: dc:10:43:34:ea:30:09:b3:41:12:66:23:00:5d:1a:1d:3d:38: 85:3b:bc:5e:88:f3:20:50:33:12:5a:6d:f7:78:f3:65:55:4f: 70:d5:1f:d4:8d:22:71:1e:4b:27:8f:ee:a0:0d:55:d4:b6:8e: 45:c3:97:4f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZvgeWNhYvHuYN3NTRM5E914MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlNjVkYWIyMzk0MGNiMzk0ZjlhYWE2NjRmZWE0ZDZmOGY0 MmUzMTgwHhcNMjYwMTIxMTIxMzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTU2YTdmNGY3MjM3ZWRlNDkyMTlhZGM2NTAxZDFlMjJkNmMxMDM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhjdF6k2BPtR4AUcrKBdYU657y7Yo Zqp4hv9D2tQwVUxL3vXYqXQUHpMG+0qS3CHBVBkmAS6vRPNRSiFh9Bz1flAvl8PT Cv17uqa7eYfOMck4CLECcfvssEz2smvzeoqGl/yPT27jf5/gxzqIpLaNdqthljcg HxhMtKGX5DxXPatcdbXVkrdSI0qGISlMNZq+LKQN1ddq6xoS0V9OoTCEPjAbR+6O lwT8vOMglbL2+9kgN1C0kH6THGfNwCSTd7LKHQchKXOzk35rqXYiDfqhdCpEZ+WI hPV8cgAMp1LkJRdybrCyZNZkDqz0PVIXyanL3BSJAgEjPCFtB8pQrmkgfQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFClWp/T3I37eSSGa3GUB0eItbBA3MB8GA1UdIwQY MBaAFH5l2rI5QMs5T5qqZk/qTW+PQuMYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC81OGViYjEtZGJlYy00N2Y5LWJiOTYt ODQ5Y2ZjYWJiNjU3LzEvS1ZhbjlQY2pmdDVKSVpyY1pRSFI0aTFzRURjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC81OGViYjEtZGJlYy00N2Y5LWJiOTYtODQ5Y2ZjYWJiNjU3 LzEvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLvM0MA0G CSqGSIb3DQEBCwUAA4IBAQA7mC3h+938+SEBOz6K4t0XletJvXH0aOscfm+qAw8W FuIPxjjoA/+KE2qg74VpafUIJOx/OQ5AvD9o7VoZaJ/Km7nJ3Ry0V0SFiqQh8h9H V7dOsn4oAjPcqPJJ4z2BT6rkxESzgjQYwP7VtHVy7qD/zTKuOn29KsdCrpiuxotz xvNtVfiMw3scgsxsIh0+rPZ0r8To0lP009RQOZyMsyKZzrzK4FPG4YOMd/sBuphd mf7dFn1pbOUpnIAIwgqBqaylvCwMN3HcEEM06jAJs0ESZiMAXRodPTiFO7xeiPMg UDMSWm33ePNlVU9w1R/UjSJxHksnj+6gDVXUto5Fw5dP -----END CERTIFICATE-----Generated at Mon Jan 26 08:37:41 2026 by rpki-client