This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/kCAsSIbvKF55PV7u3rulF5069fE.roa File: kCAsSIbvKF55PV7u3rulF5069fE.roa (raw, json) Hash identifier: baPIhS+1QRBCYazJ9uYyJZTSmKcZ6uEAV6jyZHcT50U= Subject key identifier: 90:20:2C:48:86:EF:28:5E:79:3D:5E:EE:DE:BB:A5:17:9D:3A:F5:F1 Certificate issuer: /CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f Certificate serial: 019B7A5B9693F237B03633D5E43B4623CAF5 Authority key identifier: 96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/kCAsSIbvKF55PV7u3rulF5069fE.roa Signing time: Thu 01 Jan 2026 16:19:41 +0000 ROA not before: Thu 01 Jan 2026 16:19:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213620 IP address blocks: 83.167.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/lub3fL2hAZh9nfyEvpC2-6Zq3J8.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/lub3fL2hAZh9nfyEvpC2-6Zq3J8.mft rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:96:93:f2:37:b0:36:33:d5:e4:3b:46:23:ca:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f Validity Not Before: Jan 1 16:19:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=90202c4886ef285e793d5eeedebba5179d3af5f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3a:b0:45:e9:d3:85:65:ca:d7:e8:cf:b5:73: fb:12:49:0e:8b:ee:b7:f8:8b:d8:99:9c:69:4a:70: cd:04:f9:36:de:8c:7c:8e:b4:80:7f:d3:60:64:21: 37:ab:de:ec:eb:c6:a1:7a:cf:63:7d:44:98:5e:52: 9f:7a:11:50:dc:c7:2d:a9:d5:8f:f7:47:86:de:1f: b1:51:6d:29:3c:ab:b1:be:49:e6:57:7a:04:e9:14: 9d:b1:72:13:9e:de:94:27:8a:e9:bc:59:af:6d:28: 66:7d:b5:56:f0:bd:9d:79:cf:63:5c:d4:e4:15:11: 8b:97:7f:0b:fb:88:b7:70:ef:21:a1:56:ef:f0:85: 8d:af:5b:64:32:8e:b3:21:85:db:a8:bc:bf:9f:8b: 79:dd:d3:7a:4f:4f:fe:42:65:3f:a2:10:18:86:8b: 18:6f:3d:be:7c:b3:5c:b6:47:51:c0:17:7d:23:27: 38:09:e7:c0:44:3a:01:f8:f4:2e:60:49:bd:b2:9e: 8c:df:70:5c:97:55:b5:18:ec:e1:4e:10:05:21:dd: f4:08:25:6d:99:45:d7:2a:4b:c8:2d:0a:50:65:c3: 4d:04:58:aa:ca:c4:77:06:13:86:30:1b:27:d0:27: b6:2b:3d:82:07:56:54:5c:1f:69:94:1c:a2:0a:c9: a7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:20:2C:48:86:EF:28:5E:79:3D:5E:EE:DE:BB:A5:17:9D:3A:F5:F1 X509v3 Authority Key Identifier: keyid:96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/kCAsSIbvKF55PV7u3rulF5069fE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/lub3fL2hAZh9nfyEvpC2-6Zq3J8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.167.188.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:aa:09:8d:d5:19:ff:8e:dc:1c:17:aa:08:96:e2:af:51:e8: 19:63:67:76:c0:5d:6a:ff:6f:d7:31:64:78:aa:f7:78:66:34: f3:7d:90:6d:96:3b:c2:9c:3c:ee:81:a4:4f:b9:20:d7:1a:5c: a4:59:e8:6c:46:16:19:77:d1:af:51:12:1f:6c:48:2b:a8:c6: 3e:22:32:34:b3:70:4b:63:09:aa:c3:3d:e9:da:57:27:d5:53: c3:8a:4f:d6:19:2c:cc:f2:53:93:b2:00:2e:3d:51:fb:aa:f0: 2c:9e:6d:e9:23:ff:9e:6a:1e:dc:c0:95:9c:0e:aa:26:e3:03: e7:16:d3:9b:b7:61:bc:8a:39:6e:42:7d:5f:f8:93:b0:d6:86: 38:98:01:39:4b:19:fe:12:8f:59:53:f4:d9:50:40:3e:a6:16: 8c:1c:a5:4b:8e:a2:d0:12:fb:9e:87:95:f6:48:7c:bf:3f:e8: 85:3b:ea:9a:e5:15:96:dd:d8:e9:f2:87:c5:5a:fb:d2:95:2e: a2:81:fa:ec:90:83:ae:e0:18:08:16:59:2d:19:65:ab:cc:8d: dc:c2:2b:cc:66:03:2d:03:49:ea:ad:d5:0a:6c:fd:46:af:0d: 23:8b:b9:0f:c3:d6:f4:05:65:61:e4:43:f8:6c:2f:d0:46:2a: 9f:48:e9:96 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W5aT8jewNjPV5DtGI8r1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2ZTZmNzdjYmRhMTAxOTg3ZDlkZmM4NGJlOTBiNmZiYTY2 YWRjOWYwHhcNMjYwMTAxMTYxOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDIwMmM0ODg2ZWYyODVlNzkzZDVlZWVkZWJiYTUxNzlkM2FmNWYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6jqwRenThWXK1+jPtXP7EkkOi+63 +IvYmZxpSnDNBPk23ox8jrSAf9NgZCE3q97s68ahes9jfUSYXlKfehFQ3MctqdWP 90eG3h+xUW0pPKuxvknmV3oE6RSdsXITnt6UJ4rpvFmvbShmfbVW8L2dec9jXNTk FRGLl38L+4i3cO8hoVbv8IWNr1tkMo6zIYXbqLy/n4t53dN6T0/+QmU/ohAYhosY bz2+fLNctkdRwBd9Iyc4CefARDoB+PQuYEm9sp6M33Bcl1W1GOzhThAFId30CCVt mUXXKkvILQpQZcNNBFiqysR3BhOGMBsn0Ce2Kz2CB1ZUXB9plByiCsmn+wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJAgLEiG7yheeT1e7t67pRedOvXxMB8GA1UdIwQY MBaAFJbm93y9oQGYfZ38hL6QtvumatyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHViM2ZMMmhBWmg5bmZ5RXZwQzItNlpxM0o4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8xY2JjMWUtNGQ0Ni00YjViLWIyNDkt MzIwOGRlMzljMDlkLzEva0NBc1NJYnZLRjU1UFY3dTNydWxGNTA2OWZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8xY2JjMWUtNGQ0Ni00YjViLWIyNDktMzIwOGRlMzljMDlk LzEvbHViM2ZMMmhBWmg5bmZ5RXZwQzItNlpxM0o4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBU6e8MA0G CSqGSIb3DQEBCwUAA4IBAQAbqgmN1Rn/jtwcF6oIluKvUegZY2d2wF1q/2/XMWR4 qvd4ZjTzfZBtljvCnDzugaRPuSDXGlykWehsRhYZd9GvURIfbEgrqMY+IjI0s3BL Ywmqwz3p2lcn1VPDik/WGSzM8lOTsgAuPVH7qvAsnm3pI/+eah7cwJWcDqom4wPn FtObt2G8ijluQn1f+JOw1oY4mAE5Sxn+Eo9ZU/TZUEA+phaMHKVLjqLQEvueh5X2 SHy/P+iFO+qa5RWW3djp8ofFWvvSlS6igfrskIOu4BgIFlktGWWrzI3cwivMZgMt A0nqrdUKbP1Grw0ji7kPw9b0BWVh5EP4bC/QRiqfSOmW -----END CERTIFICATE-----Generated at Sun Jan 25 23:03:52 2026 by rpki-client