This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/KceNOn_bCzlpYzkGAtSH71ZEniE.roa File: KceNOn_bCzlpYzkGAtSH71ZEniE.roa (raw, json) Hash identifier: ghG8vlvVhPRN/q5ENiLGfWe2Rdz70LqNWlKQluJ96vs= Subject key identifier: 29:C7:8D:3A:7F:DB:0B:39:69:63:39:06:02:D4:87:EF:56:44:9E:21 Certificate issuer: /CN=5f1a427072b31d44784c375dfae42278e71fa836 Certificate serial: 019B7A5AFE41C075165C220A9695261897E9 Authority key identifier: 5F:1A:42:70:72:B3:1D:44:78:4C:37:5D:FA:E4:22:78:E7:1F:A8:36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XxpCcHKzHUR4TDdd-uQieOcfqDY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/KceNOn_bCzlpYzkGAtSH71ZEniE.roa Signing time: Thu 01 Jan 2026 16:19:02 +0000 ROA not before: Thu 01 Jan 2026 16:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 399382 IP address blocks: 213.173.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/XxpCcHKzHUR4TDdd-uQieOcfqDY.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/XxpCcHKzHUR4TDdd-uQieOcfqDY.mft rsync://rpki.ripe.net/repository/DEFAULT/XxpCcHKzHUR4TDdd-uQieOcfqDY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:fe:41:c0:75:16:5c:22:0a:96:95:26:18:97:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f1a427072b31d44784c375dfae42278e71fa836 Validity Not Before: Jan 1 16:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29c78d3a7fdb0b396963390602d487ef56449e21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:55:26:21:9d:d5:13:95:08:34:60:ea:b0:e8: c2:1a:df:1e:8a:58:1c:d8:c7:20:12:03:49:a5:cd: 9a:07:13:f0:2e:c8:ee:10:4c:12:7d:24:cd:f2:8e: cc:f0:8e:c7:e8:ca:f5:31:bc:95:00:fe:56:ef:e1: ab:03:8a:eb:62:03:f5:2b:42:67:8b:50:aa:0c:65: a5:5d:49:ca:0e:23:c0:ec:a3:ee:55:e7:c8:e5:1b: 00:de:03:2a:6d:f8:7d:70:f8:c4:70:1a:28:6f:02: 86:9f:ca:c8:5e:08:7b:60:c7:ba:96:2d:36:86:3e: 2e:92:73:1d:f6:2f:e9:f6:89:f7:2d:c8:b2:97:5b: ac:05:53:64:66:82:e3:b4:be:42:3c:3a:db:5e:cc: 5e:fe:23:a6:21:e5:ce:47:3f:e3:88:18:d0:67:32: 9e:54:7c:20:c3:09:48:5c:99:5a:89:85:1b:5b:53: 83:26:96:42:49:8c:af:67:d9:50:a8:46:04:70:b1: bd:7f:67:5f:1f:a5:a1:09:5f:c5:41:0f:fe:6d:37: f4:12:70:a8:25:00:14:14:4b:a2:53:24:57:3e:b4: 39:6b:c4:e0:26:d8:e6:c2:e6:36:09:35:e9:da:c3: 80:95:e1:a5:22:76:77:90:4d:62:d4:dd:41:31:b3: 51:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C7:8D:3A:7F:DB:0B:39:69:63:39:06:02:D4:87:EF:56:44:9E:21 X509v3 Authority Key Identifier: keyid:5F:1A:42:70:72:B3:1D:44:78:4C:37:5D:FA:E4:22:78:E7:1F:A8:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XxpCcHKzHUR4TDdd-uQieOcfqDY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/KceNOn_bCzlpYzkGAtSH71ZEniE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/XxpCcHKzHUR4TDdd-uQieOcfqDY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.173.36.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:81:9b:48:dd:5a:fe:1b:af:17:6d:50:ae:fb:30:63:bb:19: ea:b4:41:72:c3:65:98:88:be:d9:ca:be:69:ac:02:19:4f:0e: 5c:80:c6:81:b5:e5:40:b4:e9:bf:c5:40:dd:86:c8:85:84:4a: b0:74:3d:b0:21:36:05:79:69:17:a3:5f:24:ee:ec:0c:c0:6f: dc:74:93:f1:0e:2c:3c:77:81:c3:70:85:71:ed:f9:ca:e0:e1: 26:b2:74:a0:8f:0a:03:73:3c:36:14:37:c5:2d:6f:33:f1:4d: 25:8d:4f:11:a0:d7:f5:16:81:cf:73:ee:76:14:6b:b5:38:6d: 9d:1b:79:b4:55:ac:a2:db:1a:4f:28:3a:72:5e:d5:7f:27:34: dc:ad:fb:d4:b0:68:28:0e:72:e4:37:59:9b:4d:16:35:8a:55: ee:70:8d:1d:41:80:e1:70:c4:69:c0:3e:24:0f:0c:f9:21:99: 70:05:4f:f3:f4:1e:3d:c8:81:d0:27:3d:38:52:8c:6a:8e:be: fb:c6:82:de:8d:32:da:1b:4b:92:21:07:f8:dc:34:3f:dd:36: 38:9c:ab:df:ad:90:59:38:0a:fc:07:e1:91:2a:39:6d:8e:37: 2b:0c:d6:20:16:a3:ed:07:4f:9b:99:8d:8b:80:59:52:b9:97: 64:9e:89:db -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6Wv5BwHUWXCIKlpUmGJfpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmMWE0MjcwNzJiMzFkNDQ3ODRjMzc1ZGZhZTQyMjc4ZTcx ZmE4MzYwHhcNMjYwMTAxMTYxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOWM3OGQzYTdmZGIwYjM5Njk2MzM5MDYwMmQ0ODdlZjU2NDQ5ZTIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwlUmIZ3VE5UINGDqsOjCGt8eilgc 2McgEgNJpc2aBxPwLsjuEEwSfSTN8o7M8I7H6Mr1MbyVAP5W7+GrA4rrYgP1K0Jn i1CqDGWlXUnKDiPA7KPuVefI5RsA3gMqbfh9cPjEcBoobwKGn8rIXgh7YMe6li02 hj4uknMd9i/p9on3Lciyl1usBVNkZoLjtL5CPDrbXsxe/iOmIeXORz/jiBjQZzKe VHwgwwlIXJlaiYUbW1ODJpZCSYyvZ9lQqEYEcLG9f2dfH6WhCV/FQQ/+bTf0EnCo JQAUFEuiUyRXPrQ5a8TgJtjmwuY2CTXp2sOAleGlInZ3kE1i1N1BMbNRtwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCnHjTp/2ws5aWM5BgLUh+9WRJ4hMB8GA1UdIwQY MBaAFF8aQnBysx1EeEw3XfrkInjnH6g2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHhwQ2NIS3pIVVI0VERkZC11UWllT2NmcURZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS8wNzdmNjQtYjg0My00NjlmLTg1NDct ZGQyMGJiMjA4YmJhLzEvS2NlTk9uX2JDemxwWXprR0F0U0g3MVpFbmlFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS8wNzdmNjQtYjg0My00NjlmLTg1NDctZGQyMGJiMjA4YmJh LzEvWHhwQ2NIS3pIVVI0VERkZC11UWllT2NmcURZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1a0kMA0G CSqGSIb3DQEBCwUAA4IBAQBNgZtI3Vr+G68XbVCu+zBjuxnqtEFyw2WYiL7Zyr5p rAIZTw5cgMaBteVAtOm/xUDdhsiFhEqwdD2wITYFeWkXo18k7uwMwG/cdJPxDiw8 d4HDcIVx7fnK4OEmsnSgjwoDczw2FDfFLW8z8U0ljU8RoNf1FoHPc+52FGu1OG2d G3m0Vayi2xpPKDpyXtV/JzTcrfvUsGgoDnLkN1mbTRY1ilXucI0dQYDhcMRpwD4k Dwz5IZlwBU/z9B49yIHQJz04Uoxqjr77xoLejTLaG0uSIQf43DQ/3TY4nKvfrZBZ OAr8B+GRKjltjjcrDNYgFqPtB0+bmY2LgFlSuZdknonb -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:04 2026 by rpki-client