This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/kShLwcpEG-xDlutEYOu4gaXLaxE.roa File: kShLwcpEG-xDlutEYOu4gaXLaxE.roa (raw, json) Hash identifier: y0hIe6W4Fs+IclDDpp16X+4Jy2wk/QuTCXtbp/OkSZg= Subject key identifier: 91:28:4B:C1:CA:44:1B:EC:43:96:EB:44:60:EB:B8:81:A5:CB:6B:11 Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2 Certificate serial: 019B78344CD7803D9A7F74644F0BBC1241CE Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/kShLwcpEG-xDlutEYOu4gaXLaxE.roa Signing time: Thu 01 Jan 2026 06:17:32 +0000 ROA not before: Thu 01 Jan 2026 06:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41717 IP address blocks: 2.58.244.0/24 maxlen: 24 2.58.245.0/24 maxlen: 24 2.58.246.0/24 maxlen: 24 2.58.247.0/24 maxlen: 24 2.58.248.0/24 maxlen: 24 2.58.249.0/24 maxlen: 24 2.58.250.0/24 maxlen: 24 2.58.251.0/24 maxlen: 24 5.183.116.0/23 maxlen: 23 5.183.116.0/24 maxlen: 24 5.183.117.0/24 maxlen: 24 5.183.118.0/24 maxlen: 24 5.183.119.0/24 maxlen: 24 5.183.120.0/22 maxlen: 24 5.183.120.0/23 maxlen: 23 5.183.120.0/24 maxlen: 24 5.183.121.0/24 maxlen: 24 5.183.122.0/24 maxlen: 24 5.183.123.0/24 maxlen: 24 45.8.32.0/24 maxlen: 24 45.8.34.0/24 maxlen: 24 45.8.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.mft rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:4c:d7:80:3d:9a:7f:74:64:4f:0b:bc:12:41:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2 Validity Not Before: Jan 1 06:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=91284bc1ca441bec4396eb4460ebb881a5cb6b11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9e:9a:c1:e4:7e:93:60:4e:ac:a9:86:a2:fd: f8:ac:d3:06:02:14:e0:1c:f7:d5:50:32:e3:e3:dd: af:73:a6:64:44:cd:f9:a7:26:09:39:b0:03:21:af: 6d:ba:ab:0d:9b:70:a6:7c:b1:06:f4:6e:06:9f:71: 90:8c:37:d8:97:3d:05:38:98:75:33:80:74:dd:f6: b8:41:1e:5e:58:81:2d:9a:36:aa:f3:23:d7:51:77: c9:bd:6c:08:a8:06:1b:ab:a7:ca:8b:72:68:c2:0d: ba:d9:11:06:ac:0e:96:2d:49:56:f9:0e:19:e5:b2: 4f:de:b2:b9:ec:53:91:07:e7:33:ab:36:ac:57:7e: e5:e9:18:e9:e1:ea:bf:ea:1b:f1:cc:2c:28:0a:18: 49:2c:cc:25:3b:0f:15:9e:2e:30:26:c5:d3:97:c0: 4b:4b:b4:f4:79:d5:d4:60:aa:c6:73:eb:1c:70:aa: 46:6a:16:ef:f8:62:a5:82:75:be:41:d3:92:94:6f: aa:eb:50:24:6b:a3:b8:dc:44:37:2c:96:22:09:df: 08:4f:b0:ea:c0:02:64:0a:c9:fd:83:f4:76:67:3d: 3a:09:a4:56:df:ec:75:e2:19:40:fd:8e:3e:1e:97: c9:db:4e:26:98:1f:a2:75:c6:f1:b1:ee:da:54:67: 69:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:28:4B:C1:CA:44:1B:EC:43:96:EB:44:60:EB:B8:81:A5:CB:6B:11 X509v3 Authority Key Identifier: keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/kShLwcpEG-xDlutEYOu4gaXLaxE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.244.0-2.58.251.255 5.183.116.0-5.183.123.255 45.8.32.0/24 45.8.34.0/23 Signature Algorithm: sha256WithRSAEncryption 67:22:07:ae:7d:27:76:b2:23:6b:c8:34:d1:c1:13:66:92:4c: c5:9c:07:c2:83:d5:ba:4a:82:66:72:63:7d:e9:15:dc:77:24: 5b:01:d8:9b:2d:6a:37:a2:b4:a8:a1:f8:63:b9:2c:1f:b4:ec: 6b:1b:d0:d6:63:b1:ea:44:3e:9f:be:b9:ed:71:80:ab:a8:3e: a6:0b:0d:02:9d:4a:31:ef:d8:a6:a0:8c:bb:3d:90:58:84:bb: 78:b7:79:47:51:85:75:e2:9a:51:96:ce:c4:77:6f:6f:0f:41: 66:68:8e:4f:3d:e9:11:7a:00:48:22:b1:12:cb:34:e4:c0:b4: fa:b2:57:71:7f:a9:9d:e3:cb:23:0d:e5:0c:48:77:b3:7f:6e: ea:75:28:a2:91:c6:79:41:bb:77:49:c9:85:e7:7a:37:67:9a: 15:19:be:ed:d6:c1:93:46:93:6d:13:54:0a:0c:34:36:44:38: 02:63:c3:5b:bb:56:2d:73:c0:78:0d:9b:d3:94:21:4d:d1:30: 6c:de:49:6e:a5:2b:90:e6:6a:b7:ef:97:59:8d:90:0f:20:ca: 20:a2:f7:c4:9c:72:9b:e0:a2:c2:b8:5f:23:45:ba:c8:70:9c: 6c:01:43:dd:58:26:b9:a6:1a:1c:dd:91:a3:ec:b3:b9:bb:33: 3b:f3:19:59 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt4NEzXgD2af3RkTwu8EkHOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NzZlYjJjYzQ2MmU2ZTRiZjBkZTY5YjlmNjM0ODc1ZGVi YmFhZTIwHhcNMjYwMTAxMDYxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTI4NGJjMWNhNDQxYmVjNDM5NmViNDQ2MGViYjg4MWE1Y2I2YjExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Z6aweR+k2BOrKmGov34rNMGAhTg HPfVUDLj492vc6ZkRM35pyYJObADIa9tuqsNm3CmfLEG9G4Gn3GQjDfYlz0FOJh1 M4B03fa4QR5eWIEtmjaq8yPXUXfJvWwIqAYbq6fKi3Jowg262REGrA6WLUlW+Q4Z 5bJP3rK57FORB+czqzasV37l6Rjp4eq/6hvxzCwoChhJLMwlOw8Vni4wJsXTl8BL S7T0edXUYKrGc+sccKpGahbv+GKlgnW+QdOSlG+q61Aka6O43EQ3LJYiCd8IT7Dq wAJkCsn9g/R2Zz06CaRW3+x14hlA/Y4+HpfJ204mmB+idcbxse7aVGdptQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFJEoS8HKRBvsQ5brRGDruIGly2sRMB8GA1UdIwQY MBaAFKV26yzEYubkvw3mm59jSHXeu6riMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEt MjU0YWNkOTJiNGUxLzEva1NoTHdjcEVHLXhEbHV0RVlPdTRnYVhMYXhFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEtMjU0YWNkOTJiNGUx LzEvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoMAwDBAICOvQD BAICOvgwDAMEAgW3dAMEAgW3eAMEAC0IIAMEAS0IIjANBgkqhkiG9w0BAQsFAAOC AQEAZyIHrn0ndrIja8g00cETZpJMxZwHwoPVukqCZnJjfekV3HckWwHYmy1qN6K0 qKH4Y7ksH7TsaxvQ1mOx6kQ+n7657XGAq6g+pgsNAp1KMe/YpqCMuz2QWIS7eLd5 R1GFdeKaUZbOxHdvbw9BZmiOTz3pEXoASCKxEss05MC0+rJXcX+pnePLIw3lDEh3 s39u6nUoopHGeUG7d0nJhed6N2eaFRm+7dbBk0aTbRNUCgw0NkQ4AmPDW7tWLXPA eA2b05QhTdEwbN5JbqUrkOZqt++XWY2QDyDKIKL3xJxym+CiwrhfI0W6yHCcbAFD 3VgmuaYaHN2Ro+yzubszO/MZWQ== -----END CERTIFICATE-----Generated at Sun Jan 25 18:08:04 2026 by rpki-client