This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/KSert21IyVLdzTzI3FZycKPooac.roa File: KSert21IyVLdzTzI3FZycKPooac.roa (raw, json) Hash identifier: enNDLKMhC0/+6E/ssv2WFmJ1HNQhuj49stCcOOz9a3U= Subject key identifier: 29:27:AB:B7:6D:48:C9:52:DD:CD:3C:C8:DC:56:72:70:A3:E8:A1:A7 Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9 Certificate serial: 019B7F8243F402DC137A5700B87E20F381BF Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/KSert21IyVLdzTzI3FZycKPooac.roa Signing time: Fri 02 Jan 2026 16:20:01 +0000 ROA not before: Fri 02 Jan 2026 16:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14148 IP address blocks: 31.186.254.0/24 maxlen: 24 95.172.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.mft rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:43:f4:02:dc:13:7a:57:00:b8:7e:20:f3:81:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9 Validity Not Before: Jan 2 16:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2927abb76d48c952ddcd3cc8dc567270a3e8a1a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:07:37:ec:d5:9b:6b:36:7f:8a:32:d1:c3:1b: 1e:58:da:52:c0:1e:71:f8:c8:55:ef:2a:81:65:75: a8:4e:e4:8a:b2:aa:bc:18:5d:a4:be:65:14:5c:c2: 76:37:83:65:a5:c7:e1:e4:eb:a4:6c:8b:7f:98:31: c6:10:a4:c7:65:c9:e0:48:3e:89:a8:b3:18:71:75: a6:5b:2e:18:d9:5e:2c:99:88:91:e2:ff:25:36:70: 2d:39:97:f4:42:7b:df:a1:85:db:7d:27:6a:de:c2: b7:f2:ea:88:dd:be:85:75:c5:44:c3:70:5b:bd:40: ce:6b:e9:d2:6b:3e:11:fe:30:be:62:02:7e:d9:7e: 46:37:6d:c6:c7:61:9f:d3:f7:cd:99:00:41:0a:8b: 22:1f:dd:db:e1:9e:f5:ef:6d:c5:9a:03:80:18:c2: d9:b8:54:2f:4a:72:93:54:d8:88:ec:00:f4:03:80: 56:d7:9e:28:1d:70:fc:fb:c6:ba:c3:a6:64:13:c8: 83:76:35:70:0c:42:30:be:b5:49:9d:40:22:ad:5c: 60:4e:48:94:42:c2:ee:d2:e0:4c:b4:e5:8b:64:e2: 38:42:9c:78:ba:69:d2:eb:80:a0:87:5a:89:e7:8e: 08:8c:26:c3:08:75:2a:83:55:84:8a:1f:e2:d0:1c: 7a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:27:AB:B7:6D:48:C9:52:DD:CD:3C:C8:DC:56:72:70:A3:E8:A1:A7 X509v3 Authority Key Identifier: keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/KSert21IyVLdzTzI3FZycKPooac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.186.254.0/24 95.172.90.0/24 Signature Algorithm: sha256WithRSAEncryption 41:8b:e2:37:a8:09:62:19:a0:7b:65:ba:87:45:90:01:03:23: 6e:91:4e:4e:fa:c4:53:9d:a0:30:cf:8a:aa:0f:f3:cd:8d:90: ea:4a:54:11:46:af:e4:a9:c9:be:c8:0e:9a:98:1b:d8:7f:43: 51:e4:0f:e8:9c:bb:18:ce:35:78:ca:ce:f2:1b:26:50:33:81: 21:0d:a8:50:4e:61:27:cf:a0:0a:ce:51:3d:02:35:fb:02:ea: 0c:73:e7:5b:22:35:cf:f1:95:1e:7d:fa:18:8c:05:c8:cc:10: ae:a6:b1:8b:77:c2:6e:f3:61:dc:a5:75:d2:16:c0:a5:92:cf: 73:5a:88:1c:4c:f4:06:74:fc:48:66:ac:21:a5:95:bb:a8:af: 6b:0c:d8:94:1b:bb:3d:69:47:24:3d:fc:54:7e:16:97:cd:5d: b1:23:3b:75:1c:85:f3:3f:2b:b5:ec:76:5b:42:2c:87:42:54: 2c:1c:78:74:a1:2f:5f:b3:2a:59:e8:85:d8:48:04:23:7d:c4: 59:66:12:38:7a:40:d1:a3:f1:0c:2b:d4:77:12:1d:16:f6:eb: 83:ac:7d:ce:61:79:44:de:36:eb:4f:52:12:9d:41:61:13:e1: b6:fd:25:a8:5a:5b:02:58:3f:b5:a9:9e:63:66:ba:53:37:da: 4d:46:ff:6a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/gkP0AtwTelcAuH4g84G/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlZGFlZWE5MTE3YTFkNWNjYzMyMDIyMjk1NWEwOWZhYTA3 OThmZDkwHhcNMjYwMTAyMTYyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTI3YWJiNzZkNDhjOTUyZGRjZDNjYzhkYzU2NzI3MGEzZThhMWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwc37NWbazZ/ijLRwxseWNpSwB5x +MhV7yqBZXWoTuSKsqq8GF2kvmUUXMJ2N4Nlpcfh5OukbIt/mDHGEKTHZcngSD6J qLMYcXWmWy4Y2V4smYiR4v8lNnAtOZf0QnvfoYXbfSdq3sK38uqI3b6FdcVEw3Bb vUDOa+nSaz4R/jC+YgJ+2X5GN23Gx2Gf0/fNmQBBCosiH93b4Z71723FmgOAGMLZ uFQvSnKTVNiI7AD0A4BW154oHXD8+8a6w6ZkE8iDdjVwDEIwvrVJnUAirVxgTkiU QsLu0uBMtOWLZOI4Qpx4umnS64Cgh1qJ544IjCbDCHUqg1WEih/i0Bx6pwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCknq7dtSMlS3c08yNxWcnCj6KGnMB8GA1UdIwQY MBaAFK7a7qkReh1czDICIpVaCfqgeY/ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnRydXFSRjZIVnpNTWdJaWxWb0otcUI1ajlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9hMTNiMDEtNDE1My00ZWE1LWJmMjEt OTk4NjhjNTEzMjlhLzEvS1NlcnQyMUl5VkxkelR6STNGWnljS1Bvb2FjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi9hMTNiMDEtNDE1My00ZWE1LWJmMjEtOTk4NjhjNTEzMjlh LzEvcnRydXFSRjZIVnpNTWdJaWxWb0otcUI1ajlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAH7r+AwQA X6xaMA0GCSqGSIb3DQEBCwUAA4IBAQBBi+I3qAliGaB7ZbqHRZABAyNukU5O+sRT naAwz4qqD/PNjZDqSlQRRq/kqcm+yA6amBvYf0NR5A/onLsYzjV4ys7yGyZQM4Eh DahQTmEnz6AKzlE9AjX7AuoMc+dbIjXP8ZUeffoYjAXIzBCuprGLd8Ju82HcpXXS FsClks9zWogcTPQGdPxIZqwhpZW7qK9rDNiUG7s9aUckPfxUfhaXzV2xIzt1HIXz Pyu17HZbQiyHQlQsHHh0oS9fsypZ6IXYSAQjfcRZZhI4ekDRo/EMK9R3Eh0W9uuD rH3OYXlE3jbrT1ISnUFhE+G2/SWoWlsCWD+1qZ5jZrpTN9pNRv9q -----END CERTIFICATE-----Generated at Sun Jan 25 17:45:49 2026 by rpki-client