This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/K5IYR-8yKQNbaVCfxNruHxfgy8M.roa File: K5IYR-8yKQNbaVCfxNruHxfgy8M.roa (raw, json) Hash identifier: k9/AfvQ6thbh49E8qXhYlNeBQ66bqOlH2PyeFk773uY= Subject key identifier: 2B:92:18:47:EF:32:29:03:5B:69:50:9F:C4:DA:EE:1F:17:E0:CB:C3 Certificate issuer: /CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9 Certificate serial: 019B77C7270B3C90B0FA07AC6121055670B3 Authority key identifier: 1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/K5IYR-8yKQNbaVCfxNruHxfgy8M.roa Signing time: Thu 01 Jan 2026 04:18:18 +0000 ROA not before: Thu 01 Jan 2026 04:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41952 IP address blocks: 185.228.206.0/24 maxlen: 24 193.32.192.0/24 maxlen: 24 193.32.193.0/24 maxlen: 24 193.32.194.0/24 maxlen: 24 193.32.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/GstjdqFkjUnVXk17ATcTZ7DcKvk.crl rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/GstjdqFkjUnVXk17ATcTZ7DcKvk.mft rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:27:0b:3c:90:b0:fa:07:ac:61:21:05:56:70:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9 Validity Not Before: Jan 1 04:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2b921847ef3229035b69509fc4daee1f17e0cbc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:81:92:29:5c:dc:26:86:f5:e7:1d:6a:8d:dd: cd:55:06:80:a3:ee:8a:e6:de:87:7f:ad:d6:49:f4: 07:94:d5:62:84:a5:f8:17:ea:64:7d:19:f7:1c:a7: dc:7a:8e:01:4b:4c:d6:01:f9:a6:33:bd:82:f9:86: 2d:ba:e3:57:7f:25:1d:2e:05:d1:c0:e5:cf:85:0a: 84:43:42:e4:ce:dc:34:8b:5c:c2:fa:cd:d1:fe:c3: 83:dd:02:8f:12:d4:fe:6d:5a:f0:09:b7:75:0e:61: d6:d5:b8:f6:40:60:2f:25:1c:7e:98:9d:35:36:24: a5:75:2c:7c:10:a1:50:67:4e:49:c0:8d:2c:37:3e: 9c:cd:96:b3:38:0f:7a:40:d8:3a:0e:ae:2b:78:e9: 3c:f8:1e:a2:79:a8:a5:23:d2:26:e9:7b:62:b0:12: 34:1d:34:0b:ff:35:d4:4f:54:e6:91:b7:e7:ab:10: aa:0f:c0:9e:97:29:01:29:5a:7d:f9:cb:04:54:e0: 70:44:7b:c8:74:22:c1:1f:4f:69:e4:c1:c4:b1:46: a9:68:cf:c9:b6:5f:b9:f6:f3:6a:40:2b:c6:5a:4f: 70:c7:33:ff:e1:b0:b7:32:71:c0:8e:3a:e7:fc:0a: 92:a3:18:ec:a2:db:a9:91:e7:92:28:31:64:43:d1: c7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:92:18:47:EF:32:29:03:5B:69:50:9F:C4:DA:EE:1F:17:E0:CB:C3 X509v3 Authority Key Identifier: keyid:1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/K5IYR-8yKQNbaVCfxNruHxfgy8M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/GstjdqFkjUnVXk17ATcTZ7DcKvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.228.206.0/24 193.32.192.0/22 Signature Algorithm: sha256WithRSAEncryption 70:2f:1d:74:a2:f6:51:95:cb:2c:45:e2:b8:87:56:6e:e0:04: d7:d2:3d:6c:b0:78:9c:c5:79:20:29:26:5e:f2:1f:75:7c:5a: 94:fb:aa:2d:a3:8a:ec:0e:41:19:59:b0:2a:68:1b:85:94:3f: 63:bc:31:0c:6f:ae:f8:be:5c:a6:a9:ca:f5:54:e2:00:b3:e0: 2a:8e:71:2f:58:6b:86:8c:8b:0e:60:97:c4:79:38:b9:3a:79: 04:34:20:46:79:1c:41:01:06:43:70:1b:cc:08:01:de:57:54: 2a:be:8f:ae:77:e9:7f:6c:04:f3:56:73:38:ce:b3:5b:57:be: 5a:16:cf:74:d2:05:b1:27:f0:b4:d1:58:a2:bb:9a:a5:71:7c: b2:c9:7d:51:75:86:68:26:ba:a2:af:ae:df:3e:8b:08:55:f5: 50:2e:01:35:ce:73:0e:4a:0e:19:19:a1:83:a6:4a:da:34:46: e5:3b:77:80:12:92:74:b9:0d:40:48:d8:b3:3a:8a:a1:01:0a: 05:0d:bf:70:53:6d:9e:ea:33:7f:85:bc:9a:da:a3:ec:ed:02: b9:1f:bf:8c:29:8b:e2:6d:c1:03:bb:83:b6:43:08:de:d5:f3: 85:9a:10:50:4d:65:01:a1:62:dd:4f:7f:c3:aa:62:18:cf:ac: 2f:32:52:b0 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xycLPJCw+gesYSEFVnCzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhY2I2Mzc2YTE2NDhkNDlkNTVlNGQ3YjAxMzcxMzY3YjBk YzJhZjkwHhcNMjYwMTAxMDQxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYjkyMTg0N2VmMzIyOTAzNWI2OTUwOWZjNGRhZWUxZjE3ZTBjYmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYGSKVzcJob15x1qjd3NVQaAo+6K 5t6Hf63WSfQHlNVihKX4F+pkfRn3HKfceo4BS0zWAfmmM72C+YYtuuNXfyUdLgXR wOXPhQqEQ0Lkztw0i1zC+s3R/sOD3QKPEtT+bVrwCbd1DmHW1bj2QGAvJRx+mJ01 NiSldSx8EKFQZ05JwI0sNz6czZazOA96QNg6Dq4reOk8+B6ieailI9Im6XtisBI0 HTQL/zXUT1TmkbfnqxCqD8CelykBKVp9+csEVOBwRHvIdCLBH09p5MHEsUapaM/J tl+59vNqQCvGWk9wxzP/4bC3MnHAjjrn/AqSoxjsotupkeeSKDFkQ9HH8wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCuSGEfvMikDW2lQn8Ta7h8X4MvDMB8GA1UdIwQY MBaAFBrLY3ahZI1J1V5NewE3E2ew3Cr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3N0amRxRmtqVW5WWGsxN0FUY1RaN0RjS3ZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS83MjQ3YjAtNDk4OS00M2VhLTkzNTAt N2E5MzY3NTFkYjFiLzEvSzVJWVItOHlLUU5iYVZDZnhOcnVIeGZneThNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS83MjQ3YjAtNDk4OS00M2VhLTkzNTAtN2E5MzY3NTFkYjFi LzEvR3N0amRxRmtqVW5WWGsxN0FUY1RaN0RjS3ZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAueTOAwQC wSDAMA0GCSqGSIb3DQEBCwUAA4IBAQBwLx10ovZRlcssReK4h1Zu4ATX0j1ssHic xXkgKSZe8h91fFqU+6oto4rsDkEZWbAqaBuFlD9jvDEMb674vlymqcr1VOIAs+Aq jnEvWGuGjIsOYJfEeTi5OnkENCBGeRxBAQZDcBvMCAHeV1Qqvo+ud+l/bATzVnM4 zrNbV75aFs900gWxJ/C00Viiu5qlcXyyyX1RdYZoJrqir67fPosIVfVQLgE1znMO Sg4ZGaGDpkraNEblO3eAEpJ0uQ1ASNizOoqhAQoFDb9wU22e6jN/hbya2qPs7QK5 H7+MKYvibcEDu4O2Qwje1fOFmhBQTWUBoWLdT3/DqmIYz6wvMlKw -----END CERTIFICATE-----Generated at Sun Jan 25 17:45:48 2026 by rpki-client