This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/KIA2WzCFpFhAYVmhsaCasWeLEgs.roa File: KIA2WzCFpFhAYVmhsaCasWeLEgs.roa (raw, json) Hash identifier: bHsR3m13ij6JjQe95r02pmLFMXEJ+ISL/Sk08qdsGX8= Subject key identifier: 28:80:36:5B:30:85:A4:58:40:61:59:A1:B1:A0:9A:B1:67:8B:12:0B Certificate issuer: /CN=05eb8cbbaaf25a71bf2fcab6e11057ebf91f01e3 Certificate serial: 019B78A31897C664F600326B49C4C821C52C Authority key identifier: 05:EB:8C:BB:AA:F2:5A:71:BF:2F:CA:B6:E1:10:57:EB:F9:1F:01:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BeuMu6ryWnG_L8q24RBX6_kfAeM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/KIA2WzCFpFhAYVmhsaCasWeLEgs.roa Signing time: Thu 01 Jan 2026 08:18:33 +0000 ROA not before: Thu 01 Jan 2026 08:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2119 IP address blocks: 193.241.241.0/24 maxlen: 24 193.241.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/BeuMu6ryWnG_L8q24RBX6_kfAeM.crl rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/BeuMu6ryWnG_L8q24RBX6_kfAeM.mft rsync://rpki.ripe.net/repository/DEFAULT/BeuMu6ryWnG_L8q24RBX6_kfAeM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:18:97:c6:64:f6:00:32:6b:49:c4:c8:21:c5:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05eb8cbbaaf25a71bf2fcab6e11057ebf91f01e3 Validity Not Before: Jan 1 08:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2880365b3085a458406159a1b1a09ab1678b120b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2b:69:23:e4:af:64:83:3f:a2:4b:e6:1a:2e: 62:f6:60:30:1c:88:4d:93:6c:83:88:b5:54:3c:1b: 04:27:0c:56:46:7f:af:4e:f7:e3:22:48:b9:96:9c: e5:0b:d6:b9:f8:a6:e5:6e:64:e4:2c:71:b8:0f:3d: 9d:1e:93:f8:4f:8f:d8:c0:da:fc:6a:09:ff:09:f2: 5b:d0:31:7e:83:95:0c:f5:7b:e4:c7:25:66:19:38: 1e:4a:23:b5:a2:76:47:fd:60:ef:dc:04:c3:bf:3c: 09:1a:53:97:bf:36:df:67:ef:e5:f6:c3:54:1d:2a: 21:a5:33:d0:11:32:74:55:a8:fd:63:78:54:f1:10: 30:b9:86:ff:3a:5a:f8:84:ff:07:8c:14:97:19:28: b6:99:d4:b4:c9:58:09:e1:3f:fe:07:f0:b4:d1:11: 9d:36:c0:57:7b:59:e5:ce:03:fd:73:14:04:0a:88: 73:02:8e:06:ee:86:92:e8:ac:67:b9:bd:5d:a1:fd: 5e:52:1f:a9:cb:4f:b0:70:ab:bc:ad:25:fe:ca:7f: 4f:c4:d7:49:be:64:3c:4a:40:7a:db:96:72:d8:54: fe:93:18:41:d5:fe:8e:4e:fd:28:b9:40:50:a6:42: e4:8a:a5:70:af:64:df:97:63:ce:08:09:12:47:c5: be:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:80:36:5B:30:85:A4:58:40:61:59:A1:B1:A0:9A:B1:67:8B:12:0B X509v3 Authority Key Identifier: keyid:05:EB:8C:BB:AA:F2:5A:71:BF:2F:CA:B6:E1:10:57:EB:F9:1F:01:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BeuMu6ryWnG_L8q24RBX6_kfAeM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/KIA2WzCFpFhAYVmhsaCasWeLEgs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcc86a-5f51-4d12-963d-f27c628b8353/1/BeuMu6ryWnG_L8q24RBX6_kfAeM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.241.241.0/24 193.241.249.0/24 Signature Algorithm: sha256WithRSAEncryption 33:16:f1:bd:6f:89:d3:bd:9e:49:11:3c:b5:3e:fb:92:cf:b1: eb:69:41:38:42:b1:15:dd:41:bc:b2:bb:95:f1:54:14:ab:16: 19:0c:c0:da:89:f8:5d:66:85:2d:5a:f5:56:83:5a:8e:7d:a9: 13:d7:9b:fc:0e:82:6c:5b:18:8f:c8:ee:d5:3d:68:31:f8:c0: 17:aa:21:dc:70:4f:fe:10:6a:9e:e4:09:04:06:ea:4a:19:f7: f2:be:60:a2:6f:7c:e8:dd:98:47:fc:93:ac:ee:49:e9:45:24: 67:71:77:44:76:36:50:e6:32:ae:37:9f:34:3c:c2:c8:29:8e: b1:88:70:f8:be:dc:8f:f4:4c:3c:a3:13:03:e9:36:cc:ed:65: 78:17:13:8c:2a:34:a4:45:d8:1d:17:27:1e:e7:17:9e:59:6c: 9d:21:bd:6c:b5:51:f2:fe:76:72:39:49:55:53:94:f7:6a:05: c8:ba:b4:a5:cc:2e:79:fc:f9:09:41:e1:2e:a1:08:aa:fa:7a: 83:8c:65:b7:a0:dc:df:33:69:8b:47:b0:6b:db:b9:59:24:5c: 19:e2:a5:e6:5f:ac:c3:af:a5:cd:8f:51:ec:19:b4:aa:80:e2: 06:e7:8c:1f:21:f7:00:d9:01:01:4d:a5:74:d0:65:f6:f6:b9: 8e:f1:22:3c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4oxiXxmT2ADJrScTIIcUsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1ZWI4Y2JiYWFmMjVhNzFiZjJmY2FiNmUxMTA1N2ViZjkx ZjAxZTMwHhcNMjYwMTAxMDgxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyODgwMzY1YjMwODVhNDU4NDA2MTU5YTFiMWEwOWFiMTY3OGIxMjBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ytpI+SvZIM/okvmGi5i9mAwHIhN k2yDiLVUPBsEJwxWRn+vTvfjIki5lpzlC9a5+KblbmTkLHG4Dz2dHpP4T4/YwNr8 agn/CfJb0DF+g5UM9XvkxyVmGTgeSiO1onZH/WDv3ATDvzwJGlOXvzbfZ+/l9sNU HSohpTPQETJ0Vaj9Y3hU8RAwuYb/Olr4hP8HjBSXGSi2mdS0yVgJ4T/+B/C00RGd NsBXe1nlzgP9cxQECohzAo4G7oaS6Kxnub1dof1eUh+py0+wcKu8rSX+yn9PxNdJ vmQ8SkB625Zy2FT+kxhB1f6OTv0ouUBQpkLkiqVwr2Tfl2POCAkSR8W+YwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCiANlswhaRYQGFZobGgmrFnixILMB8GA1UdIwQY MBaAFAXrjLuq8lpxvy/KtuEQV+v5HwHjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmV1TXU2cnlXbkdfTDhxMjRSQlg2X2tmQWVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9kY2M4NmEtNWY1MS00ZDEyLTk2M2Qt ZjI3YzYyOGI4MzUzLzEvS0lBMld6Q0ZwRmhBWVZtaHNhQ2FzV2VMRWdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS9kY2M4NmEtNWY1MS00ZDEyLTk2M2QtZjI3YzYyOGI4MzUz LzEvQmV1TXU2cnlXbkdfTDhxMjRSQlg2X2tmQWVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwfHxAwQA wfH5MA0GCSqGSIb3DQEBCwUAA4IBAQAzFvG9b4nTvZ5JETy1PvuSz7HraUE4QrEV 3UG8sruV8VQUqxYZDMDaifhdZoUtWvVWg1qOfakT15v8DoJsWxiPyO7VPWgx+MAX qiHccE/+EGqe5AkEBupKGffyvmCib3zo3ZhH/JOs7knpRSRncXdEdjZQ5jKuN580 PMLIKY6xiHD4vtyP9Ew8oxMD6TbM7WV4FxOMKjSkRdgdFyce5xeeWWydIb1stVHy /nZyOUlVU5T3agXIurSlzC55/PkJQeEuoQiq+nqDjGW3oNzfM2mLR7Br27lZJFwZ 4qXmX6zDr6XNj1HsGbSqgOIG54wfIfcA2QEBTaV00GX29rmO8SI8 -----END CERTIFICATE-----Generated at Sun Jan 25 19:38:57 2026 by rpki-client