This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ktGWBH_rz8CZASP_zJHcbXXlp7Y.roa File: ktGWBH_rz8CZASP_zJHcbXXlp7Y.roa (raw, json) Hash identifier: WQj8sJ8bysuFkPbFG5oVPz6oUf8fVBbz+1mkOQXAzAY= Subject key identifier: 92:D1:96:04:7F:EB:CF:C0:99:01:23:FF:CC:91:DC:6D:75:E5:A7:B6 Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a Certificate serial: 019B7B36D9F9340D4BF0B7E37CA2CC6041C8 Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ktGWBH_rz8CZASP_zJHcbXXlp7Y.roa Signing time: Thu 01 Jan 2026 20:19:10 +0000 ROA not before: Thu 01 Jan 2026 20:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59458 IP address blocks: 5.149.96.0/24 maxlen: 24 5.149.97.0/24 maxlen: 24 5.149.98.0/24 maxlen: 24 5.149.99.0/24 maxlen: 24 5.149.100.0/24 maxlen: 24 5.149.101.0/24 maxlen: 24 5.149.102.0/24 maxlen: 24 5.149.103.0/24 maxlen: 24 5.149.104.0/24 maxlen: 24 5.149.105.0/24 maxlen: 24 5.149.109.0/24 maxlen: 24 5.149.110.0/24 maxlen: 24 5.149.111.0/24 maxlen: 24 2a12:2340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:d9:f9:34:0d:4b:f0:b7:e3:7c:a2:cc:60:41:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a Validity Not Before: Jan 1 20:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=92d196047febcfc0990123ffcc91dc6d75e5a7b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:43:67:51:90:93:38:e8:05:fd:39:99:6a:9e: 93:12:2f:27:b9:e1:86:ac:6b:d9:36:53:46:ac:93: 4b:70:57:b2:ef:fa:f1:12:30:6e:29:6f:86:75:38: ae:43:53:ea:f2:be:40:dd:64:ee:d0:04:45:bc:ba: 39:4e:63:4e:d4:55:36:ff:5c:da:83:cc:31:92:32: c0:7e:06:b7:04:17:aa:94:4f:64:f5:46:df:8c:c4: cd:6d:25:d5:3b:25:9f:d6:9d:72:41:8a:2d:f9:ae: 43:2a:a5:72:d1:a3:a7:08:26:a1:39:0c:8b:f7:b0: 0b:93:87:0b:d8:90:0f:8c:d8:00:de:15:07:62:2a: db:7e:8a:20:1b:31:02:ca:c9:43:06:52:1c:9c:fd: 34:af:e4:89:04:6d:b9:f5:e1:19:be:5c:cf:5a:e6: 88:3c:a5:b7:63:64:55:f8:81:ff:05:71:c9:44:c1: 49:11:c3:c8:92:d9:0d:04:2f:15:ca:51:51:35:30: 1c:94:78:38:18:4f:fd:ba:36:ab:3a:45:43:0a:b7: d3:d7:3e:ff:5a:e6:b2:02:dd:d0:28:f4:40:e6:58: 17:45:fe:67:3a:c6:3b:e7:46:6c:2b:da:9b:bc:e0: c7:7b:18:f7:aa:df:4b:72:dd:4c:38:17:c1:ab:2f: a2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:D1:96:04:7F:EB:CF:C0:99:01:23:FF:CC:91:DC:6D:75:E5:A7:B6 X509v3 Authority Key Identifier: keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ktGWBH_rz8CZASP_zJHcbXXlp7Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.149.96.0-5.149.105.255 5.149.109.0-5.149.111.255 IPv6: 2a12:2340::/48 Signature Algorithm: sha256WithRSAEncryption 18:ae:c7:92:37:b0:78:ce:57:01:9e:ab:03:72:66:cf:cd:4f: b4:79:8d:42:f8:55:fe:17:cc:9c:11:28:c1:26:e4:70:bd:92: 98:5c:4b:bf:33:eb:31:23:a9:65:a9:2f:b0:8c:5b:1d:3e:f2: 17:78:30:7c:24:ea:f7:30:f6:05:1c:2b:3a:e5:50:33:75:9c: f9:87:34:22:28:26:1a:23:89:5a:53:01:ad:be:1d:98:d3:c8: e6:24:ea:fe:4e:c4:e1:88:3a:95:70:e1:fd:2a:1b:5f:c9:e8: e4:ef:96:65:de:ba:96:62:b2:a7:9b:44:ca:49:06:3d:4b:2e: 80:fc:56:bc:c9:07:96:2a:cb:a7:3e:a4:53:5f:e1:b4:90:e7: 93:a7:dd:08:eb:5f:7d:99:f6:3a:f5:70:57:62:6b:e8:77:7e: 40:ec:b1:73:f4:a7:ca:2d:24:32:76:59:45:a5:01:46:17:35: e0:b2:b2:9d:f0:17:47:26:cb:66:a8:b9:1b:90:d7:d5:a9:67: 1d:e3:db:16:58:98:05:b6:65:9a:38:a3:3e:c3:a0:dd:7f:04: 5f:ed:3b:44:01:06:68:81:04:99:a8:e2:82:33:93:fd:88:ef: 73:4e:aa:49:d2:72:b0:0c:2b:6d:ca:59:3d:33:89:25:2b:49: b2:fe:32:80 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt7Ntn5NA1L8LfjfKLMYEHIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlZTA4ZDkzMzZmMmU2Y2QxNjVlYjczMDI5N2ZlNmQyMGM4 M2MzOWEwHhcNMjYwMTAxMjAxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MmQxOTYwNDdmZWJjZmMwOTkwMTIzZmZjYzkxZGM2ZDc1ZTVhN2I2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0NnUZCTOOgF/TmZap6TEi8nueGG rGvZNlNGrJNLcFey7/rxEjBuKW+GdTiuQ1Pq8r5A3WTu0ARFvLo5TmNO1FU2/1za g8wxkjLAfga3BBeqlE9k9UbfjMTNbSXVOyWf1p1yQYot+a5DKqVy0aOnCCahOQyL 97ALk4cL2JAPjNgA3hUHYirbfoogGzECyslDBlIcnP00r+SJBG259eEZvlzPWuaI PKW3Y2RV+IH/BXHJRMFJEcPIktkNBC8VylFRNTAclHg4GE/9ujarOkVDCrfT1z7/ WuayAt3QKPRA5lgXRf5nOsY750ZsK9qbvODHexj3qt9Lct1MOBfBqy+irwIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFJLRlgR/68/AmQEj/8yR3G115ae2MB8GA1UdIwQY MBaAFK7gjZM28ubNFl63MCl/5tIMg8OaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9mODUzZjgtMjA3MS00OWRlLWI2YTAt NDk3YmVkZDcxZWI5LzEva3RHV0JIX3J6OENaQVNQX3pKSGNiWFhscDdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9mODUzZjgtMjA3MS00OWRlLWI2YTAtNDk3YmVkZDcxZWI5 LzEvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAiBAIAATAcMAwDBAUFlWAD BAEFlWgwDAMEAAWVbQMEBAWVYDAPBAIAAjAJAwcAKhIjQAAAMA0GCSqGSIb3DQEB CwUAA4IBAQAYrseSN7B4zlcBnqsDcmbPzU+0eY1C+FX+F8ycESjBJuRwvZKYXEu/ M+sxI6llqS+wjFsdPvIXeDB8JOr3MPYFHCs65VAzdZz5hzQiKCYaI4laUwGtvh2Y 08jmJOr+TsThiDqVcOH9Khtfyejk75Zl3rqWYrKnm0TKSQY9Sy6A/Fa8yQeWKsun PqRTX+G0kOeTp90I6199mfY69XBXYmvod35A7LFz9KfKLSQydllFpQFGFzXgsrKd 8BdHJstmqLkbkNfVqWcd49sWWJgFtmWaOKM+w6DdfwRf7TtEAQZogQSZqOKCM5P9 iO9zTqpJ0nKwDCttylk9M4klK0my/jKA -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:49 2026 by rpki-client