This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/KbrXBzB1BgM_1A9x-JUDv8lrSsk.roa File: KbrXBzB1BgM_1A9x-JUDv8lrSsk.roa (raw, json) Hash identifier: Nsz86TtqyWj5Lo+BBb81+XB5/uP+6tXXKhUi47zk2Q4= Subject key identifier: 29:BA:D7:07:30:75:06:03:3F:D4:0F:71:F8:95:03:BF:C9:6B:4A:C9 Certificate issuer: /CN=1662cfd26eccf289757399cc99c17d1cb4357535 Certificate serial: 019B7AC7DAEF3437DBC6B726E804EB7F50B9 Authority key identifier: 16:62:CF:D2:6E:CC:F2:89:75:73:99:CC:99:C1:7D:1C:B4:35:75:35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/KbrXBzB1BgM_1A9x-JUDv8lrSsk.roa Signing time: Thu 01 Jan 2026 18:17:56 +0000 ROA not before: Thu 01 Jan 2026 18:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212522 IP address blocks: 178.132.70.0/24 maxlen: 24 2a03:2380:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.crl rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.mft rsync://rpki.ripe.net/repository/DEFAULT/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:da:ef:34:37:db:c6:b7:26:e8:04:eb:7f:50:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1662cfd26eccf289757399cc99c17d1cb4357535 Validity Not Before: Jan 1 18:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29bad707307506033fd40f71f89503bfc96b4ac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:12:cb:22:86:e9:1d:e0:6a:c8:79:c4:19:bc: c0:92:a7:2d:11:0e:ca:27:d4:69:09:9f:1e:47:9c: 79:13:3c:13:9f:cc:90:6c:03:8f:55:5e:8f:46:14: da:02:7c:30:77:58:8e:a3:e2:e0:b9:38:59:9e:22: 8c:0b:57:99:32:ec:da:9d:27:91:c9:77:79:cc:4c: 2c:ff:bf:1d:37:0a:ed:a6:4b:49:b2:f1:2a:fd:42: 0d:66:4a:62:7e:18:d0:af:e3:01:4b:6f:5c:f3:fe: e3:8f:2d:ba:ee:70:4b:7c:1b:c2:d0:74:5d:2c:19: 43:0c:14:32:89:48:b8:a0:5f:29:b0:91:e0:99:76: 0a:66:aa:cc:31:0b:1e:e3:e7:4d:3b:7d:6e:7c:fe: b3:5d:be:35:ce:7f:04:bb:82:96:87:3a:65:62:f5: c9:8d:85:82:d7:1a:24:77:8a:01:de:f7:66:52:c6: 80:32:77:da:93:86:9e:dc:86:08:ba:43:8c:b0:bf: 55:1f:57:a4:a1:92:ba:a8:b1:52:d2:c8:1c:84:77: b9:3b:7d:81:bc:dc:78:6c:0f:4a:da:f3:79:76:e0: 4e:b2:b6:6c:fa:e0:72:28:12:e6:21:18:28:dc:96: 2b:de:a7:de:b0:c4:de:8a:c5:85:47:1c:27:f6:8a: af:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:BA:D7:07:30:75:06:03:3F:D4:0F:71:F8:95:03:BF:C9:6B:4A:C9 X509v3 Authority Key Identifier: keyid:16:62:CF:D2:6E:CC:F2:89:75:73:99:CC:99:C1:7D:1C:B4:35:75:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/KbrXBzB1BgM_1A9x-JUDv8lrSsk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.132.70.0/24 IPv6: 2a03:2380:5::/48 Signature Algorithm: sha256WithRSAEncryption 79:6b:9f:8a:24:e3:69:78:7b:59:4e:3b:e8:fd:b7:36:6b:1f: e0:fd:6d:ba:9b:9d:bb:1c:e2:fd:3d:bf:22:5c:b4:1c:01:a4: 82:15:04:a9:ed:3a:b7:a5:dd:0d:05:d5:f3:d4:6b:c6:42:5f: ec:bb:05:85:e2:46:96:00:fa:7b:9b:7a:77:b6:49:25:a8:84: ed:42:47:cb:30:c3:50:48:b0:84:f6:7f:d6:db:bb:6b:51:48: 59:04:7a:32:23:94:48:a6:1c:da:8b:1b:fe:6e:5f:19:9a:38: 9d:e1:58:14:cc:a2:fd:b8:69:1e:6d:a4:0f:9f:54:08:f3:8a: ae:eb:02:61:c4:23:3c:67:a6:b4:0e:66:6a:23:46:ce:bd:b0: 44:14:54:ab:b8:df:c5:ac:e0:cc:c2:1e:71:d8:e2:08:e9:ab: ea:9d:a8:3e:99:1f:c9:04:6f:a8:5c:3d:2c:81:47:81:0a:a7: a0:da:1d:e0:83:bd:f3:aa:9f:c9:25:39:af:11:4d:f0:c3:01: 5b:fa:b3:ae:df:e9:ee:74:ec:66:cf:a4:93:44:e4:20:7e:62: b9:2a:49:2f:41:f8:8a:6e:4c:01:ae:40:e9:c2:a1:80:8d:33: 83:0a:21:36:89:e3:41:4e:37:05:eb:49:a9:aa:35:00:52:08: 2a:d1:d7:db -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt6x9rvNDfbxrcm6ATrf1C5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2NjJjZmQyNmVjY2YyODk3NTczOTljYzk5YzE3ZDFjYjQz NTc1MzUwHhcNMjYwMTAxMTgxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOWJhZDcwNzMwNzUwNjAzM2ZkNDBmNzFmODk1MDNiZmM5NmI0YWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRLLIobpHeBqyHnEGbzAkqctEQ7K J9RpCZ8eR5x5EzwTn8yQbAOPVV6PRhTaAnwwd1iOo+LguThZniKMC1eZMuzanSeR yXd5zEws/78dNwrtpktJsvEq/UINZkpifhjQr+MBS29c8/7jjy267nBLfBvC0HRd LBlDDBQyiUi4oF8psJHgmXYKZqrMMQse4+dNO31ufP6zXb41zn8Eu4KWhzplYvXJ jYWC1xokd4oB3vdmUsaAMnfak4ae3IYIukOMsL9VH1ekoZK6qLFS0sgchHe5O32B vNx4bA9K2vN5duBOsrZs+uByKBLmIRgo3JYr3qfesMTeisWFRxwn9oqvtwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFCm61wcwdQYDP9QPcfiVA7/Ja0rJMB8GA1UdIwQY MBaAFBZiz9JuzPKJdXOZzJnBfRy0NXU1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRm1MUDBtN004b2wxYzVuTW1jRjlITFExZFRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My81Yjk4NzgtMjA4MC00MzU0LTk1OTIt YjcyMzE5NDFmYzNhLzEvS2JyWEJ6QjFCZ01fMUE5eC1KVUR2OGxyU3NrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My81Yjk4NzgtMjA4MC00MzU0LTk1OTItYjcyMzE5NDFmYzNh LzEvRm1MUDBtN004b2wxYzVuTW1jRjlITFExZFRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAsoRGMA8E AgACMAkDBwAqAyOAAAUwDQYJKoZIhvcNAQELBQADggEBAHlrn4ok42l4e1lOO+j9 tzZrH+D9bbqbnbsc4v09vyJctBwBpIIVBKntOrel3Q0F1fPUa8ZCX+y7BYXiRpYA +nubene2SSWohO1CR8sww1BIsIT2f9bbu2tRSFkEejIjlEimHNqLG/5uXxmaOJ3h WBTMov24aR5tpA+fVAjziq7rAmHEIzxnprQOZmojRs69sEQUVKu438Ws4MzCHnHY 4gjpq+qdqD6ZH8kEb6hcPSyBR4EKp6DaHeCDvfOqn8klOa8RTfDDAVv6s67f6e50 7GbPpJNE5CB+YrkqSS9B+IpuTAGuQOnCoYCNM4MKITaJ40FONwXrSamqNQBSCCrR 19s= -----END CERTIFICATE-----Generated at Mon Jan 26 07:09:37 2026 by rpki-client