This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/KbGZziqCA41JgOpe8AUOSiv8rIM.roa File: KbGZziqCA41JgOpe8AUOSiv8rIM.roa (raw, json) Hash identifier: MBAhT/6sVckMLfrlu1S3S4sTHwbcNuOAQSyBUhp+xNk= Subject key identifier: 29:B1:99:CE:2A:82:03:8D:49:80:EA:5E:F0:05:0E:4A:2B:FC:AC:83 Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75 Certificate serial: 019B7BA4B88B2AA5E1BB05AE2A1C55F70BBB Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/KbGZziqCA41JgOpe8AUOSiv8rIM.roa Signing time: Thu 01 Jan 2026 22:19:11 +0000 ROA not before: Thu 01 Jan 2026 22:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39364 IP address blocks: 46.148.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.mft rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:b8:8b:2a:a5:e1:bb:05:ae:2a:1c:55:f7:0b:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75 Validity Not Before: Jan 1 22:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29b199ce2a82038d4980ea5ef0050e4a2bfcac83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fa:a6:13:05:95:4a:45:81:a0:99:ae:04:e6: 09:0f:0d:0d:6c:64:a6:d3:9e:c1:5a:78:11:d0:dc: e2:93:21:80:0c:c8:00:d0:27:d0:6d:27:8b:9b:c7: 02:2d:f2:6a:6a:c2:ae:36:f3:fd:a6:3a:44:56:99: 6e:9d:f0:f5:c9:25:64:a1:07:19:74:bc:66:6c:a0: 2f:15:19:89:a7:8f:73:a2:2e:a4:68:af:87:30:4e: 95:96:2f:a2:8e:ad:13:9b:44:aa:6c:91:66:81:ba: 4e:05:57:0d:93:69:d0:23:c9:24:04:7d:84:34:a3: 01:f7:62:b2:fe:a0:30:13:ff:9a:c5:35:2b:16:eb: e9:59:8e:3b:dd:4c:77:5f:37:70:d1:7d:0e:5e:4a: 4a:95:c0:70:c9:70:96:93:fc:39:51:ea:3e:50:a7: 10:97:64:28:4d:6f:cf:bb:86:f8:8f:e5:6b:44:ef: 65:3a:52:ee:b9:08:cc:fe:a3:d9:0a:10:35:e2:ed: af:da:2d:9a:78:aa:ad:d8:75:49:ec:fe:62:68:8d: 81:8f:d6:b0:fe:42:5f:3f:f2:8e:8a:b1:e9:c6:ec: bc:3c:62:ca:c1:e3:c2:57:88:97:30:8d:da:08:b2: 2e:35:c4:c4:5c:06:1c:d9:ea:70:6a:75:c7:49:07: f1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B1:99:CE:2A:82:03:8D:49:80:EA:5E:F0:05:0E:4A:2B:FC:AC:83 X509v3 Authority Key Identifier: keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/KbGZziqCA41JgOpe8AUOSiv8rIM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.148.39.0/24 Signature Algorithm: sha256WithRSAEncryption 40:b8:51:a8:84:29:70:f7:bd:a4:ec:e3:95:d3:1f:a9:72:7a: ed:e2:2a:11:a2:47:05:85:dd:c7:3c:25:2d:72:92:4e:0d:35: ac:50:6b:53:00:47:c9:5f:8c:56:f9:16:92:18:e9:f6:80:5f: fa:d9:67:89:fe:ac:09:15:58:30:f5:18:59:b2:33:25:f1:79: eb:4a:12:86:c8:d5:fb:54:e6:81:fb:1c:ea:50:c2:37:2b:80: 74:a9:e8:f4:b7:cb:7e:39:26:c3:77:8f:6a:86:a4:83:eb:a2: 3d:56:b9:6b:96:f3:3d:bc:4b:76:db:85:1a:f7:b6:a9:63:e3: c5:fd:fe:12:cb:67:63:20:ae:18:f7:8f:44:09:8e:1e:43:73: 51:ad:9d:64:bf:ab:9c:1d:55:5f:18:a9:c7:3b:05:e9:3a:f6: 64:30:66:38:39:2c:57:de:bd:a7:58:ec:a7:c7:3b:7b:c8:04: 2a:3b:e2:90:b5:98:d8:b0:a2:d2:be:22:9f:5c:c2:ae:f7:b0: f2:f9:8e:6b:8f:6a:76:fc:81:87:5b:84:84:83:32:bc:17:83: 49:42:7a:00:2c:c0:4c:8b:81:ab:7e:67:1e:e3:b1:70:1b:1d: 40:b1:a7:5b:01:41:db:6b:2d:30:0c:f7:25:1b:a4:37:38:fd: 87:ba:c9:04 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pLiLKqXhuwWuKhxV9wu7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4OWMyY2M0ODllYmU0OGY0OTA1ODRhYzg2NmZlMzYyYzQx MTdlNzUwHhcNMjYwMTAxMjIxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOWIxOTljZTJhODIwMzhkNDk4MGVhNWVmMDA1MGU0YTJiZmNhYzgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6fqmEwWVSkWBoJmuBOYJDw0NbGSm 057BWngR0NzikyGADMgA0CfQbSeLm8cCLfJqasKuNvP9pjpEVplunfD1ySVkoQcZ dLxmbKAvFRmJp49zoi6kaK+HME6Vli+ijq0Tm0SqbJFmgbpOBVcNk2nQI8kkBH2E NKMB92Ky/qAwE/+axTUrFuvpWY473Ux3Xzdw0X0OXkpKlcBwyXCWk/w5Ueo+UKcQ l2QoTW/Pu4b4j+VrRO9lOlLuuQjM/qPZChA14u2v2i2aeKqt2HVJ7P5iaI2Bj9aw /kJfP/KOirHpxuy8PGLKwePCV4iXMI3aCLIuNcTEXAYc2epwanXHSQfxNQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCmxmc4qggONSYDqXvAFDkor/KyDMB8GA1UdIwQY MBaAFMicLMSJ6+SPSQWErIZv42LEEX51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUp3c3hJbnI1STlKQllTc2htX2pZc1FSZm5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9hMDBiZTItODc3ZC00MGU3LThhOGEt YWYyY2ZhNjIyZDE4LzEvS2JHWnppcUNBNDFKZ09wZThBVU9TaXY4cklNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC9hMDBiZTItODc3ZC00MGU3LThhOGEtYWYyY2ZhNjIyZDE4 LzEveUp3c3hJbnI1STlKQllTc2htX2pZc1FSZm5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALpQnMA0G CSqGSIb3DQEBCwUAA4IBAQBAuFGohClw972k7OOV0x+pcnrt4ioRokcFhd3HPCUt cpJODTWsUGtTAEfJX4xW+RaSGOn2gF/62WeJ/qwJFVgw9RhZsjMl8XnrShKGyNX7 VOaB+xzqUMI3K4B0qej0t8t+OSbDd49qhqSD66I9VrlrlvM9vEt224Ua97apY+PF /f4Sy2djIK4Y949ECY4eQ3NRrZ1kv6ucHVVfGKnHOwXpOvZkMGY4OSxX3r2nWOyn xzt7yAQqO+KQtZjYsKLSviKfXMKu97Dy+Y5rj2p2/IGHW4SEgzK8F4NJQnoALMBM i4Grfmce47FwGx1AsadbAUHbay0wDPclG6Q3OP2HuskE -----END CERTIFICATE-----Generated at Mon Jan 26 03:56:49 2026 by rpki-client