This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/KYxy0pnh0MU9rfmWpequqe7xieI.roa File: KYxy0pnh0MU9rfmWpequqe7xieI.roa (raw, json) Hash identifier: T7Cq49LqPDm2mmMjfW8efC96Mjui5XiIDXZg/V5TnlY= Subject key identifier: 29:8C:72:D2:99:E1:D0:C5:3D:AD:F9:96:A5:EA:AE:A9:EE:F1:89:E2 Certificate issuer: /CN=f7742725862b90bda4510a02e804fef3ad1142dc Certificate serial: 019B79111B1C590AFD3D23A67911CE2FFD58 Authority key identifier: F7:74:27:25:86:2B:90:BD:A4:51:0A:02:E8:04:FE:F3:AD:11:42:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93QnJYYrkL2kUQoC6AT-860RQtw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/KYxy0pnh0MU9rfmWpequqe7xieI.roa Signing time: Thu 01 Jan 2026 10:18:42 +0000 ROA not before: Thu 01 Jan 2026 10:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208671 IP address blocks: 5.32.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/93QnJYYrkL2kUQoC6AT-860RQtw.crl rsync://rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/93QnJYYrkL2kUQoC6AT-860RQtw.mft rsync://rpki.ripe.net/repository/DEFAULT/93QnJYYrkL2kUQoC6AT-860RQtw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:1b:1c:59:0a:fd:3d:23:a6:79:11:ce:2f:fd:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7742725862b90bda4510a02e804fef3ad1142dc Validity Not Before: Jan 1 10:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=298c72d299e1d0c53dadf996a5eaaea9eef189e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a5:75:c0:85:2b:bf:78:52:49:34:1e:3d:c1: 21:84:ab:47:1b:9f:9f:dc:93:72:6f:cc:ef:33:43: 6b:c1:90:d3:22:d3:3c:33:df:bf:0d:25:56:6f:8b: b6:82:12:34:28:a9:89:38:5f:ba:f6:e7:8c:c4:92: 16:d6:a9:2c:e7:bd:b9:54:3f:bd:ac:16:8b:a9:a1: 76:ce:aa:76:63:1e:33:0f:f2:35:3b:9c:eb:e6:7b: 4a:01:ce:1e:4e:f2:bd:60:4b:38:12:70:cf:65:c0: 1e:65:92:6e:59:db:42:80:fe:d3:cc:a8:4d:1f:d3: 2a:c3:84:7e:23:46:54:bb:33:b9:9f:f9:7d:84:92: 65:0e:47:eb:7f:2d:cf:ad:28:e6:78:57:d5:3a:03: 11:3e:91:64:26:bb:50:53:b6:8b:ea:3b:a6:6f:d7: 73:86:4e:e3:e1:4d:40:4a:7a:03:6d:0c:b2:32:c9: 43:b2:87:90:4f:3c:34:78:76:fc:96:eb:7e:e8:66: 80:4b:30:b8:d8:00:76:bb:67:a3:fe:c2:89:8f:f7: 86:40:29:65:69:3f:ec:85:1d:e5:80:6a:48:ba:e8: 81:d4:2b:70:fc:73:40:7f:ff:9f:88:9c:a3:d5:33: de:ee:8e:19:d4:89:95:4e:ac:9d:8f:be:cf:4b:bd: 02:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:8C:72:D2:99:E1:D0:C5:3D:AD:F9:96:A5:EA:AE:A9:EE:F1:89:E2 X509v3 Authority Key Identifier: keyid:F7:74:27:25:86:2B:90:BD:A4:51:0A:02:E8:04:FE:F3:AD:11:42:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93QnJYYrkL2kUQoC6AT-860RQtw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/KYxy0pnh0MU9rfmWpequqe7xieI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/93QnJYYrkL2kUQoC6AT-860RQtw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.32.174.0/24 Signature Algorithm: sha256WithRSAEncryption d8:79:fb:c8:a9:85:87:f9:4e:d0:5c:9c:44:fb:93:ea:2b:6b: 07:68:1e:1c:a2:55:b2:cc:ad:83:d8:18:7a:97:a1:67:26:ec: 74:a8:b1:f1:e7:90:04:f7:b5:e8:a3:59:bd:8d:9a:0b:ff:37: b3:aa:bc:39:4a:72:65:b0:7c:ad:f0:c0:b0:d0:c3:24:c5:68: ed:c6:50:7d:e4:f9:ac:59:b0:2e:a4:60:67:c8:03:10:c8:01: d6:22:ec:64:12:22:e3:bc:d9:db:de:e0:ee:3c:1b:46:59:5c: 1e:55:21:0c:cb:fd:fd:7e:9c:6a:a5:4f:03:72:72:64:6f:ea: 2b:7c:ec:5b:b3:90:e2:16:40:3a:36:7a:6e:e8:dc:f5:23:13: 07:a5:a3:e5:63:9e:0b:0e:f3:a6:f6:db:18:80:82:bb:26:0f: f9:71:1e:95:cd:a4:e7:3a:46:4a:ed:b8:1c:4d:95:05:23:a1: fd:5f:a0:d4:a4:90:ef:eb:4b:47:cc:32:9a:1a:8b:62:bb:70: d4:a2:7e:ac:83:e1:9d:71:2e:cd:27:cc:c2:5e:4c:5b:09:5f: 1c:df:1c:3a:65:de:50:29:a9:80:12:2f:18:9f:51:58:b0:f2: 69:4e:60:6e:07:53:b2:ee:b2:60:bb:11:6b:2d:f1:ea:d7:53: 80:b3:c2:42 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ERscWQr9PSOmeRHOL/1YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3NzQyNzI1ODYyYjkwYmRhNDUxMGEwMmU4MDRmZWYzYWQx MTQyZGMwHhcNMjYwMTAxMTAxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOThjNzJkMjk5ZTFkMGM1M2RhZGY5OTZhNWVhYWVhOWVlZjE4OWUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArKV1wIUrv3hSSTQePcEhhKtHG5+f 3JNyb8zvM0NrwZDTItM8M9+/DSVWb4u2ghI0KKmJOF+69ueMxJIW1qks5725VD+9 rBaLqaF2zqp2Yx4zD/I1O5zr5ntKAc4eTvK9YEs4EnDPZcAeZZJuWdtCgP7TzKhN H9Mqw4R+I0ZUuzO5n/l9hJJlDkfrfy3PrSjmeFfVOgMRPpFkJrtQU7aL6jumb9dz hk7j4U1ASnoDbQyyMslDsoeQTzw0eHb8lut+6GaASzC42AB2u2ej/sKJj/eGQCll aT/shR3lgGpIuuiB1Ctw/HNAf/+fiJyj1TPe7o4Z1ImVTqydj77PS70ChwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCmMctKZ4dDFPa35lqXqrqnu8YniMB8GA1UdIwQY MBaAFPd0JyWGK5C9pFEKAugE/vOtEULcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTNRbkpZWXJrTDJrVVFvQzZBVC04NjBSUXR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni84ZTdlMzAtYzJiOC00NTkxLThjZmUt N2I4ZTlkMzM1Y2E4LzEvS1l4eTBwbmgwTVU5cmZtV3BlcXVxZTd4aWVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni84ZTdlMzAtYzJiOC00NTkxLThjZmUtN2I4ZTlkMzM1Y2E4 LzEvOTNRbkpZWXJrTDJrVVFvQzZBVC04NjBSUXR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABSCuMA0G CSqGSIb3DQEBCwUAA4IBAQDYefvIqYWH+U7QXJxE+5PqK2sHaB4colWyzK2D2Bh6 l6FnJux0qLHx55AE97Xoo1m9jZoL/zezqrw5SnJlsHyt8MCw0MMkxWjtxlB95Pms WbAupGBnyAMQyAHWIuxkEiLjvNnb3uDuPBtGWVweVSEMy/39fpxqpU8DcnJkb+or fOxbs5DiFkA6Nnpu6Nz1IxMHpaPlY54LDvOm9tsYgIK7Jg/5cR6VzaTnOkZK7bgc TZUFI6H9X6DUpJDv60tHzDKaGotiu3DUon6sg+GdcS7NJ8zCXkxbCV8c3xw6Zd5Q KamAEi8Yn1FYsPJpTmBuB1Oy7rJguxFrLfHq11OAs8JC -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:32 2026 by rpki-client