This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/d60fd8-03d5-4aab-9dab-2e20a79f7145/1/kkmKgi6g6HFL37DCnaadKvfK-YA.roa File: kkmKgi6g6HFL37DCnaadKvfK-YA.roa (raw, json) Hash identifier: yjFJ1aHJiDzMEJQJojyjv8H/6rRO5DIEZ/IoW8c9H7I= Subject key identifier: 92:49:8A:82:2E:A0:E8:71:4B:DF:B0:C2:9D:A6:9D:2A:F7:CA:F9:80 Certificate issuer: /CN=7bcb127c7cd778607296b88386e894ae1de385bf Certificate serial: 019B7F8274054D906D430B3977D3E240980A Authority key identifier: 7B:CB:12:7C:7C:D7:78:60:72:96:B8:83:86:E8:94:AE:1D:E3:85:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e8sSfHzXeGBylriDhuiUrh3jhb8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/d60fd8-03d5-4aab-9dab-2e20a79f7145/1/kkmKgi6g6HFL37DCnaadKvfK-YA.roa Signing time: Fri 02 Jan 2026 16:20:14 +0000 ROA not before: Fri 02 Jan 2026 16:20:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198430 IP address blocks: 46.174.168.0/21 maxlen: 24 46.174.170.0/23 maxlen: 23 46.174.170.0/24 maxlen: 24 46.174.171.0/24 maxlen: 24 91.234.252.0/23 maxlen: 24 91.237.172.0/23 maxlen: 24 91.239.28.0/22 maxlen: 24 91.246.168.0/22 maxlen: 24 193.150.50.0/23 maxlen: 24 194.28.228.0/22 maxlen: 24 194.28.228.0/23 maxlen: 23 194.28.228.0/24 maxlen: 24 194.28.229.0/24 maxlen: 24 194.28.230.0/23 maxlen: 23 194.28.230.0/24 maxlen: 24 194.28.231.0/24 maxlen: 24 2001:678:d40::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/d60fd8-03d5-4aab-9dab-2e20a79f7145/1/e8sSfHzXeGBylriDhuiUrh3jhb8.crl rsync://rpki.ripe.net/repository/DEFAULT/93/d60fd8-03d5-4aab-9dab-2e20a79f7145/1/e8sSfHzXeGBylriDhuiUrh3jhb8.mft rsync://rpki.ripe.net/repository/DEFAULT/e8sSfHzXeGBylriDhuiUrh3jhb8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:74:05:4d:90:6d:43:0b:39:77:d3:e2:40:98:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7bcb127c7cd778607296b88386e894ae1de385bf Validity Not Before: Jan 2 16:20:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=92498a822ea0e8714bdfb0c29da69d2af7caf980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d9:2c:5d:13:7e:56:58:9d:c7:80:7f:ce:32: 99:57:1c:8c:54:e3:5c:84:60:58:f5:9e:ba:4c:1b: b5:cc:a3:d0:86:d8:75:d4:57:8a:61:fb:f9:0f:8a: 0e:6a:2b:48:b9:0b:be:00:c3:27:b3:db:04:68:f6: cb:1a:6b:ba:b7:75:16:ab:b3:ba:2c:83:72:4c:32: 93:0b:98:69:2e:fa:cb:4c:1e:94:a0:b3:b4:ab:07: c4:d7:cf:e3:6b:a5:77:5b:3d:0a:f0:d7:56:b4:82: 68:1b:9d:e0:63:15:6e:0a:58:73:aa:c9:bb:ae:0b: db:e4:a9:87:b2:d0:72:4c:ca:81:c1:f8:09:89:cc: 1a:ba:2f:ff:ed:22:21:51:e8:bd:5e:b8:60:fc:04: 86:9f:53:c2:31:eb:36:8a:16:19:c4:8d:fe:a4:43: a7:57:c4:c8:75:cc:ba:5f:8d:87:63:d4:38:25:25: 3b:46:8d:d1:27:6a:1d:d0:02:97:4d:3e:ff:6a:9c: 17:5b:d4:91:ee:d0:3b:72:29:e3:b0:5c:e0:c6:30: 86:d1:6b:62:09:5f:2b:70:61:48:61:cf:5f:8f:b3: e3:d3:ea:07:b1:da:57:94:cd:9f:1c:a0:27:ea:f0: 67:f3:40:4f:1b:a9:f0:e0:77:a0:bb:8d:a3:f5:ad: 53:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:49:8A:82:2E:A0:E8:71:4B:DF:B0:C2:9D:A6:9D:2A:F7:CA:F9:80 X509v3 Authority Key Identifier: keyid:7B:CB:12:7C:7C:D7:78:60:72:96:B8:83:86:E8:94:AE:1D:E3:85:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8sSfHzXeGBylriDhuiUrh3jhb8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/d60fd8-03d5-4aab-9dab-2e20a79f7145/1/kkmKgi6g6HFL37DCnaadKvfK-YA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/d60fd8-03d5-4aab-9dab-2e20a79f7145/1/e8sSfHzXeGBylriDhuiUrh3jhb8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.174.168.0/21 91.234.252.0/23 91.237.172.0/23 91.239.28.0/22 91.246.168.0/22 193.150.50.0/23 194.28.228.0/22 IPv6: 2001:678:d40::/48 Signature Algorithm: sha256WithRSAEncryption 0a:8d:5b:5c:a4:21:4b:c6:a7:bb:f1:40:f5:b6:61:b1:4b:db: e6:f5:ee:85:88:51:32:0c:52:12:76:41:a8:ce:8a:1f:ed:2b: 33:51:4c:d2:e8:eb:6f:d9:c7:16:8d:23:e7:b5:68:51:21:72: 0e:db:48:cb:a9:3a:21:93:a3:08:8c:a2:6a:4f:f7:9c:a7:cb: 75:62:59:44:6d:31:a2:d5:3c:fb:93:35:31:d5:76:21:37:dd: ad:10:2f:ad:d1:a0:dd:79:b7:28:c5:bf:db:75:86:e5:24:d4: 36:cb:b6:3f:c8:e0:55:f1:8b:b7:2c:0d:7c:ec:9c:c9:f6:e7: e0:4c:f9:ce:c1:03:39:ee:8d:20:65:ca:11:22:58:bd:bf:20: 10:f5:58:ec:66:3c:ba:e5:91:13:f2:80:33:31:66:32:4a:a8: 63:40:2b:a2:88:90:6a:1d:f3:61:9d:b0:6b:4a:f1:0f:54:4b: fa:d6:cf:3b:6e:ae:76:d1:53:b9:00:36:e4:8a:00:cd:c3:9b: 69:9f:8e:59:10:e1:0d:7e:94:1d:1b:ab:91:07:66:ed:54:46: 55:36:d4:6b:8a:e3:c7:64:c7:07:95:e0:dc:ff:58:0e:4e:aa: e8:90:67:66:3c:6f:86:97:c2:9a:07:49:03:c1:53:08:8d:2a: b2:de:10:26 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgISAZt/gnQFTZBtQws5d9PiQJgKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiY2IxMjdjN2NkNzc4NjA3Mjk2Yjg4Mzg2ZTg5NGFlMWRl Mzg1YmYwHhcNMjYwMTAyMTYyMDE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MjQ5OGE4MjJlYTBlODcxNGJkZmIwYzI5ZGE2OWQyYWY3Y2FmOTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdksXRN+Vlidx4B/zjKZVxyMVONc hGBY9Z66TBu1zKPQhth11FeKYfv5D4oOaitIuQu+AMMns9sEaPbLGmu6t3UWq7O6 LINyTDKTC5hpLvrLTB6UoLO0qwfE18/ja6V3Wz0K8NdWtIJoG53gYxVuClhzqsm7 rgvb5KmHstByTMqBwfgJicwaui//7SIhUei9Xrhg/ASGn1PCMes2ihYZxI3+pEOn V8TIdcy6X42HY9Q4JSU7Ro3RJ2od0AKXTT7/apwXW9SR7tA7cinjsFzgxjCG0Wti CV8rcGFIYc9fj7Pj0+oHsdpXlM2fHKAn6vBn80BPG6nw4Hegu42j9a1TFwIDAQAB o4ICPjCCAjowHQYDVR0OBBYEFJJJioIuoOhxS9+wwp2mnSr3yvmAMB8GA1UdIwQY MBaAFHvLEnx813hgcpa4g4bolK4d44W/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZThzU2ZIelhlR0J5bHJpRGh1aVVyaDNqaGI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9kNjBmZDgtMDNkNS00YWFiLTlkYWIt MmUyMGE3OWY3MTQ1LzEva2ttS2dpNmc2SEZMMzdEQ25hYWRLdmZLLVlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9kNjBmZDgtMDNkNS00YWFiLTlkYWItMmUyMGE3OWY3MTQ1 LzEvZThzU2ZIelhlR0J5bHJpRGh1aVVyaDNqaGI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAwBAIAATAqAwQDLq6oAwQB W+r8AwQBW+2sAwQCW+8cAwQCW/aoAwQBwZYyAwQCwhzkMA8EAgACMAkDBwAgAQZ4 DUAwDQYJKoZIhvcNAQELBQADggEBAAqNW1ykIUvGp7vxQPW2YbFL2+b17oWIUTIM UhJ2QajOih/tKzNRTNLo62/ZxxaNI+e1aFEhcg7bSMupOiGTowiMompP95yny3Vi WURtMaLVPPuTNTHVdiE33a0QL63RoN15tyjFv9t1huUk1DbLtj/I4FXxi7csDXzs nMn25+BM+c7BAznujSBlyhEiWL2/IBD1WOxmPLrlkRPygDMxZjJKqGNAK6KIkGod 82GdsGtK8Q9US/rWzzturnbRU7kANuSKAM3Dm2mfjlkQ4Q1+lB0bq5EHZu1URlU2 1GuK48dkxweV4Nz/WA5OquiQZ2Y8b4aXwpoHSQPBUwiNKrLeECY= -----END CERTIFICATE-----Generated at Mon Jan 26 05:49:45 2026 by rpki-client