This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/kHP0M6fVan_dV2bdSXbsBdJ27pU.roa File: kHP0M6fVan_dV2bdSXbsBdJ27pU.roa (raw, json) Hash identifier: z5ajzgWdArm34wD+Vi31zXSHcWy5YvyidurL0SZHcbU= Subject key identifier: 90:73:F4:33:A7:D5:6A:7F:DD:57:66:DD:49:76:EC:05:D2:76:EE:95 Certificate issuer: /CN=d588212bf5dace1080dc45e2c55b92ff85c6c192 Certificate serial: 019B76EB68035F397CCF61CE2A226A8C88F2 Authority key identifier: D5:88:21:2B:F5:DA:CE:10:80:DC:45:E2:C5:5B:92:FF:85:C6:C1:92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1YghK_XazhCA3EXixVuS_4XGwZI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/kHP0M6fVan_dV2bdSXbsBdJ27pU.roa Signing time: Thu 01 Jan 2026 00:18:17 +0000 ROA not before: Thu 01 Jan 2026 00:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 40490 IP address blocks: 185.62.165.0/24 maxlen: 24 185.62.167.0/24 maxlen: 24 2a01:8840:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/1YghK_XazhCA3EXixVuS_4XGwZI.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/1YghK_XazhCA3EXixVuS_4XGwZI.mft rsync://rpki.ripe.net/repository/DEFAULT/1YghK_XazhCA3EXixVuS_4XGwZI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:68:03:5f:39:7c:cf:61:ce:2a:22:6a:8c:88:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d588212bf5dace1080dc45e2c55b92ff85c6c192 Validity Not Before: Jan 1 00:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9073f433a7d56a7fdd5766dd4976ec05d276ee95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:00:4f:50:48:0e:7f:0c:54:f2:ee:89:d1:7d: b1:05:ad:f9:a7:0e:ed:3c:70:33:21:15:e3:a8:a6: 8b:a5:fa:ca:fa:40:f8:b7:f3:73:8e:ac:c5:94:19: 5b:81:59:d7:59:da:0f:71:66:e3:e6:fa:59:35:2a: 9b:38:7d:e9:14:da:b5:1a:1c:98:e3:52:0c:5b:22: e6:ac:74:4e:bb:07:5b:b2:59:50:66:98:14:f3:30: a7:62:1d:1f:48:77:02:bb:13:9e:5f:b3:f5:93:a3: 7a:29:e7:e7:56:fe:c9:51:26:9b:26:00:f0:13:64: 00:93:4a:65:68:1f:ce:96:f7:32:e9:66:bf:4a:03: c7:31:1f:25:00:c8:5f:2e:82:41:50:f2:47:f7:bb: 69:d9:26:dd:0f:93:64:fb:b5:fa:a9:1f:c0:fc:04: 5d:fb:49:97:b0:b2:fb:98:89:a7:0a:33:23:a2:36: 1a:59:fb:a8:77:05:ff:9a:aa:d4:a0:88:7d:8e:cc: 88:fe:d2:fa:a6:8b:b7:a6:c7:46:ca:8f:6d:92:17: 56:39:fc:18:b7:67:30:11:95:14:07:e6:38:cc:80: f6:96:8e:d0:d7:b6:32:db:72:92:f6:98:31:f1:e2: 0b:4f:5a:99:39:82:60:14:10:23:81:0a:57:72:9d: 37:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:73:F4:33:A7:D5:6A:7F:DD:57:66:DD:49:76:EC:05:D2:76:EE:95 X509v3 Authority Key Identifier: keyid:D5:88:21:2B:F5:DA:CE:10:80:DC:45:E2:C5:5B:92:FF:85:C6:C1:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1YghK_XazhCA3EXixVuS_4XGwZI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/kHP0M6fVan_dV2bdSXbsBdJ27pU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/1YghK_XazhCA3EXixVuS_4XGwZI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.62.165.0/24 185.62.167.0/24 IPv6: 2a01:8840:f::/48 Signature Algorithm: sha256WithRSAEncryption de:74:26:cf:0e:d8:d3:4f:1c:62:94:ef:97:d7:e5:12:b8:45: ee:f7:85:46:f2:d5:75:a4:72:6e:2c:62:30:a1:f8:95:0c:37: 5f:46:0b:cc:38:d2:5e:75:10:cb:82:b9:2c:83:f2:e9:7f:49: 4d:d8:c1:e2:bc:38:7d:62:47:3b:40:44:90:a6:d0:56:ef:3d: a8:57:34:06:d7:47:79:48:07:3c:ad:42:0b:e1:e6:4d:53:2b: 74:4d:23:8b:79:b1:ea:ff:75:19:61:a8:5a:13:d2:f1:3b:24: 82:5c:ff:76:18:a5:a5:ff:26:9e:9d:3e:ac:46:cc:63:fc:8f: bd:ef:a1:6c:f3:b1:c3:ec:b2:84:d5:d0:c2:6c:b9:24:d9:34: da:1f:43:f2:d3:0a:14:8e:ad:2f:87:d6:21:54:37:52:20:d7: 75:3e:de:4c:04:9f:7b:b8:41:ba:bb:bb:58:07:57:c0:22:ce: 6d:3e:3a:30:78:0a:11:8d:7b:44:15:94:5f:79:2a:f3:8d:0a: be:03:56:de:48:10:2f:c2:7d:ea:81:ce:5e:8c:3f:24:e4:18: 8a:b5:0c:b6:08:99:2a:fc:17:d7:16:27:c0:4b:ba:9c:f7:2b: 32:fc:11:57:25:47:5b:39:27:33:b3:45:c8:bc:77:95:d6:b9: f2:b7:bd:99 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt262gDXzl8z2HOKiJqjIjyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1ODgyMTJiZjVkYWNlMTA4MGRjNDVlMmM1NWI5MmZmODVj NmMxOTIwHhcNMjYwMTAxMDAxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDczZjQzM2E3ZDU2YTdmZGQ1NzY2ZGQ0OTc2ZWMwNWQyNzZlZTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1wBPUEgOfwxU8u6J0X2xBa35pw7t PHAzIRXjqKaLpfrK+kD4t/NzjqzFlBlbgVnXWdoPcWbj5vpZNSqbOH3pFNq1GhyY 41IMWyLmrHROuwdbsllQZpgU8zCnYh0fSHcCuxOeX7P1k6N6KefnVv7JUSabJgDw E2QAk0plaB/Olvcy6Wa/SgPHMR8lAMhfLoJBUPJH97tp2SbdD5Nk+7X6qR/A/ARd +0mXsLL7mImnCjMjojYaWfuodwX/mqrUoIh9jsyI/tL6pou3psdGyo9tkhdWOfwY t2cwEZUUB+Y4zID2lo7Q17Yy23KS9pgx8eILT1qZOYJgFBAjgQpXcp03qwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFJBz9DOn1Wp/3Vdm3Ul27AXSdu6VMB8GA1UdIwQY MBaAFNWIISv12s4QgNxF4sVbkv+FxsGSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVlnaEtfWGF6aENBM0VYaXhWdVNfNFhHd1pJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi8yMTEzNTQtZWJlNC00Nzk3LTk4ZjMt MWIyYWMzNWMwOWFhLzEva0hQME02ZlZhbl9kVjJiZFNYYnNCZEoyN3BVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi8yMTEzNTQtZWJlNC00Nzk3LTk4ZjMtMWIyYWMzNWMwOWFh LzEvMVlnaEtfWGF6aENBM0VYaXhWdVNfNFhHd1pJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAuT6lAwQA uT6nMA8EAgACMAkDBwAqAYhAAA8wDQYJKoZIhvcNAQELBQADggEBAN50Js8O2NNP HGKU75fX5RK4Re73hUby1XWkcm4sYjCh+JUMN19GC8w40l51EMuCuSyD8ul/SU3Y weK8OH1iRztARJCm0FbvPahXNAbXR3lIBzytQgvh5k1TK3RNI4t5ser/dRlhqFoT 0vE7JIJc/3YYpaX/Jp6dPqxGzGP8j73voWzzscPssoTV0MJsuSTZNNofQ/LTChSO rS+H1iFUN1Ig13U+3kwEn3u4Qbq7u1gHV8Aizm0+OjB4ChGNe0QVlF95KvONCr4D Vt5IEC/CfeqBzl6MPyTkGIq1DLYImSr8F9cWJ8BLupz3KzL8EVclR1s5JzOzRci8 d5XWufK3vZk= -----END CERTIFICATE-----Generated at Sun Jan 25 22:47:07 2026 by rpki-client