This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/kReZeiKYeK227CwdOt2peWbzn6o.roa File: kReZeiKYeK227CwdOt2peWbzn6o.roa (raw, json) Hash identifier: vijDgPLigLiF+q+U/7SVmc/WWIgze2Hy8w525GeqVG8= Subject key identifier: 91:17:99:7A:22:98:78:AD:B6:EC:2C:1D:3A:DD:A9:79:66:F3:9F:AA Certificate issuer: /CN=c4ff23b1c371352f39b73d39a4e07f8ca98ccd67 Certificate serial: 019B7AC7FF82363471578C3280CA5DD0FFBC Authority key identifier: C4:FF:23:B1:C3:71:35:2F:39:B7:3D:39:A4:E0:7F:8C:A9:8C:CD:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP8jscNxNS85tz05pOB_jKmMzWc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/kReZeiKYeK227CwdOt2peWbzn6o.roa Signing time: Thu 01 Jan 2026 18:18:06 +0000 ROA not before: Thu 01 Jan 2026 18:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47448 IP address blocks: 31.222.60.0/24 maxlen: 24 31.222.61.0/24 maxlen: 24 31.222.62.0/24 maxlen: 24 31.222.63.0/24 maxlen: 24 93.191.192.0/24 maxlen: 24 93.191.193.0/24 maxlen: 24 93.191.196.0/24 maxlen: 24 93.191.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/xP8jscNxNS85tz05pOB_jKmMzWc.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/xP8jscNxNS85tz05pOB_jKmMzWc.mft rsync://rpki.ripe.net/repository/DEFAULT/xP8jscNxNS85tz05pOB_jKmMzWc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:ff:82:36:34:71:57:8c:32:80:ca:5d:d0:ff:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c4ff23b1c371352f39b73d39a4e07f8ca98ccd67 Validity Not Before: Jan 1 18:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9117997a229878adb6ec2c1d3adda97966f39faa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a4:12:13:04:1c:ae:a4:59:d4:5c:40:9c:a4: 38:af:dd:d0:09:cb:02:07:12:7c:15:74:63:32:db: 8c:ea:60:61:98:80:4f:1b:3c:6d:dc:f6:66:a8:bd: 97:73:be:02:c1:de:6e:fe:30:3e:13:9f:5a:55:5e: 34:08:9b:99:24:66:dc:23:39:3a:3a:ac:78:7a:1c: 06:97:33:2f:4d:59:2a:6f:35:3c:bf:d9:47:00:8c: 62:a1:c9:52:cd:06:66:7a:09:3d:ca:55:43:a2:ac: f4:95:eb:9d:3f:fb:b8:c4:7b:74:e4:74:42:ad:95: c8:29:e3:e8:36:29:3e:90:de:1d:8c:58:14:8f:71: 88:c4:9a:16:76:5d:5b:10:cf:54:28:81:3d:ab:38: 86:48:a5:32:03:23:91:27:b7:d5:b0:e0:c6:67:42: 89:d2:55:bc:d7:46:1f:5e:e6:33:89:44:8e:52:25: 91:39:48:ef:92:5c:f0:91:8c:e3:bf:f4:69:94:2a: b7:4a:20:46:8f:89:df:bb:5a:3c:a0:7a:ef:20:31: a2:a5:69:2d:19:a0:e0:18:40:4e:34:e7:18:48:d3: f0:4b:65:64:e1:2f:d8:7e:b7:2d:31:9b:e7:d9:6f: e5:37:24:97:fd:19:ff:6c:ac:df:5d:2a:d1:19:78: aa:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:17:99:7A:22:98:78:AD:B6:EC:2C:1D:3A:DD:A9:79:66:F3:9F:AA X509v3 Authority Key Identifier: keyid:C4:FF:23:B1:C3:71:35:2F:39:B7:3D:39:A4:E0:7F:8C:A9:8C:CD:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP8jscNxNS85tz05pOB_jKmMzWc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/kReZeiKYeK227CwdOt2peWbzn6o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/xP8jscNxNS85tz05pOB_jKmMzWc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.222.60.0/22 93.191.192.0/23 93.191.196.0/24 93.191.199.0/24 Signature Algorithm: sha256WithRSAEncryption b2:bf:bc:20:3d:e0:43:5c:65:83:6c:4e:43:38:ad:ef:ad:98: a6:22:65:69:55:dc:f7:1e:9f:62:3f:93:4d:a6:d4:4f:4f:f2: e2:45:c8:d2:99:db:15:9f:70:08:12:41:f6:5c:83:20:c8:ec: ef:6f:79:d6:c0:68:58:02:54:4d:a6:97:89:f9:f7:a9:37:9f: 91:f1:29:b2:47:ed:41:bf:34:b9:01:da:3c:a8:9e:57:6c:65: b8:53:22:e8:df:46:7d:7e:7e:e1:52:31:c0:1f:0e:f7:6b:fc: e6:b7:1d:4b:e9:22:90:3b:e3:9e:f9:c6:f1:01:ae:d9:1f:f9: fb:1e:ed:8e:43:71:8d:64:68:ad:2d:8e:57:f8:dc:be:24:bf: 10:66:80:53:8b:77:88:7e:d7:7b:1c:c6:ef:dc:c0:b5:b3:76: 83:44:79:64:e2:e9:f1:7e:8f:36:c5:b6:a4:ba:78:ce:7a:31: e5:a6:58:27:18:00:e1:72:47:b5:86:55:31:5a:db:7f:5a:94: 68:f2:a0:08:dd:cc:da:e3:eb:4d:fe:7b:6f:0c:42:19:55:ee: de:68:ca:f4:70:6a:a0:b5:53:ff:6f:21:73:3d:4b:c7:1e:09: fb:aa:c9:db:36:dd:eb:5a:37:5c:7c:a1:39:5d:74:e0:b6:c2: e5:48:6e:88 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt6x/+CNjRxV4wygMpd0P+8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0ZmYyM2IxYzM3MTM1MmYzOWI3M2QzOWE0ZTA3ZjhjYTk4 Y2NkNjcwHhcNMjYwMTAxMTgxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTE3OTk3YTIyOTg3OGFkYjZlYzJjMWQzYWRkYTk3OTY2ZjM5ZmFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKQSEwQcrqRZ1FxAnKQ4r93QCcsC BxJ8FXRjMtuM6mBhmIBPGzxt3PZmqL2Xc74Cwd5u/jA+E59aVV40CJuZJGbcIzk6 Oqx4ehwGlzMvTVkqbzU8v9lHAIxioclSzQZmegk9ylVDoqz0leudP/u4xHt05HRC rZXIKePoNik+kN4djFgUj3GIxJoWdl1bEM9UKIE9qziGSKUyAyORJ7fVsODGZ0KJ 0lW810YfXuYziUSOUiWROUjvklzwkYzjv/RplCq3SiBGj4nfu1o8oHrvIDGipWkt GaDgGEBONOcYSNPwS2Vk4S/YfrctMZvn2W/lNySX/Rn/bKzfXSrRGXiq6QIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFJEXmXoimHittuwsHTrdqXlm85+qMB8GA1UdIwQY MBaAFMT/I7HDcTUvObc9OaTgf4ypjM1nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFA4anNjTnhOUzg1dHowNXBPQl9qS21NeldjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9jNjVhYWItOGE1Mi00NzZmLTllMzIt MTA5NTlhYWE4YjNlLzEva1JlWmVpS1llSzIyN0N3ZE90MnBlV2J6bjZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9jNjVhYWItOGE1Mi00NzZmLTllMzItMTA5NTlhYWE4YjNl LzEveFA4anNjTnhOUzg1dHowNXBPQl9qS21NeldjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCH948AwQB Xb/AAwQAXb/EAwQAXb/HMA0GCSqGSIb3DQEBCwUAA4IBAQCyv7wgPeBDXGWDbE5D OK3vrZimImVpVdz3Hp9iP5NNptRPT/LiRcjSmdsVn3AIEkH2XIMgyOzvb3nWwGhY AlRNppeJ+fepN5+R8SmyR+1BvzS5Ado8qJ5XbGW4UyLo30Z9fn7hUjHAHw73a/zm tx1L6SKQO+Oe+cbxAa7ZH/n7Hu2OQ3GNZGitLY5X+Ny+JL8QZoBTi3eIftd7HMbv 3MC1s3aDRHlk4unxfo82xbakunjOejHlplgnGADhcke1hlUxWtt/WpRo8qAI3cza 4+tN/ntvDEIZVe7eaMr0cGqgtVP/byFzPUvHHgn7qsnbNt3rWjdcfKE5XXTgtsLl SG6I -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:39 2026 by rpki-client