This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/KViFsa9YRaLKA4GWafGn1yNMV_U.roa File: KViFsa9YRaLKA4GWafGn1yNMV_U.roa (raw, json) Hash identifier: B0mTA1OlEJ3ztWIPorFTiSWLF6mCqTxIFSfVTWL1JmE= Subject key identifier: 29:58:85:B1:AF:58:45:A2:CA:03:81:96:69:F1:A7:D7:23:4C:57:F5 Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933 Certificate serial: 019B7D5D05D50E704BEEBE55F8EA6AEE8A4A Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/KViFsa9YRaLKA4GWafGn1yNMV_U.roa Signing time: Fri 02 Jan 2026 06:20:06 +0000 ROA not before: Fri 02 Jan 2026 06:20:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198216 IP address blocks: 157.25.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.mft rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:05:d5:0e:70:4b:ee:be:55:f8:ea:6a:ee:8a:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933 Validity Not Before: Jan 2 06:20:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=295885b1af5845a2ca03819669f1a7d7234c57f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bc:ab:66:de:ec:90:83:12:52:4b:d5:6c:f5: 07:50:15:dd:77:36:7f:b4:0d:6b:37:66:30:92:cf: 8f:54:c0:63:84:a3:99:77:89:56:3e:43:17:6b:a8: d4:31:63:36:f9:8a:71:1d:67:2f:dc:c6:e4:6a:e7: 25:6f:0d:12:7f:48:f3:32:ba:a0:05:ee:36:08:e3: 6e:b2:32:bc:d8:ff:6b:d7:86:81:c4:c3:d4:5f:18: 97:72:2b:e6:d0:18:ea:b7:7d:bb:7e:42:1e:b2:0e: 5e:0f:fd:1b:cd:71:a6:57:ba:77:c4:8c:7b:66:8a: 48:95:a6:55:e2:b5:93:7e:42:78:7e:f0:5e:9d:b1: ef:69:0f:44:c6:0a:93:a1:7d:2e:c1:32:be:8a:a5: 0e:4d:b5:50:97:ec:ab:72:c4:ca:54:0f:78:45:8c: 84:15:af:03:b9:42:33:af:12:85:59:3f:d1:3b:c2: 01:de:93:50:ca:d5:f9:d2:46:27:9b:29:65:fb:02: bd:19:8a:a8:8b:97:91:08:bc:53:02:80:80:cb:57: a4:d2:73:18:fb:a2:d6:00:0d:51:d8:d4:b6:c5:e4: 2b:9a:a2:9b:f9:e9:01:b4:47:41:70:1a:da:34:b8: f2:fc:54:a9:bf:1a:c3:96:f7:ff:c3:a0:d4:ef:26: b9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:58:85:B1:AF:58:45:A2:CA:03:81:96:69:F1:A7:D7:23:4C:57:F5 X509v3 Authority Key Identifier: keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/KViFsa9YRaLKA4GWafGn1yNMV_U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.25.68.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:f4:0e:3c:da:b3:a9:01:0a:97:87:dc:9c:26:e8:6d:17:3a: 05:95:e0:61:4a:9c:c6:ac:f4:39:bf:bf:8b:e7:53:de:10:eb: 0c:a0:98:d0:6d:e3:88:8b:48:28:ed:cb:f1:4c:e7:3d:74:2d: 19:25:fc:51:90:5e:9c:65:a8:f8:34:1f:2c:0d:2c:80:37:b6: 75:94:5b:32:6c:72:47:6f:66:94:ba:22:81:14:d1:f8:94:40: 40:5f:87:45:af:92:46:82:82:1b:c4:7d:3b:ce:c2:72:d6:b5: 38:13:f3:16:63:05:52:3d:be:c6:63:d8:69:14:3b:fe:19:8a: 83:b1:fe:b3:89:51:5a:7c:15:ca:78:26:db:4a:05:eb:e3:74: 3e:e9:3e:df:e3:3c:ea:b5:f5:a9:c0:eb:50:00:ed:42:60:8d: 64:6d:35:a3:76:98:2f:fc:c9:99:de:26:ff:2a:38:d5:9b:8b: f2:1a:8c:60:79:04:0a:fe:c2:21:57:aa:77:36:be:35:0e:95: 47:2d:db:00:29:c8:09:6f:4b:1d:2c:54:3a:59:04:0b:40:47: a2:e5:3f:38:a3:ec:4b:82:e6:d3:72:dc:af:9f:e8:85:b8:2f: 05:8f:f5:10:92:2e:94:4f:8c:eb:f6:7f:19:e8:02:37:c2:58: e0:c0:d4:02 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XQXVDnBL7r5V+Opq7opKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhY2E2M2RmMjQ4YjdhZGYzZGRkMDdlOGMyZDNlZWRkMDJj ZWY5MzMwHhcNMjYwMTAyMDYyMDA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTU4ODViMWFmNTg0NWEyY2EwMzgxOTY2OWYxYTdkNzIzNGM1N2Y1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzryrZt7skIMSUkvVbPUHUBXddzZ/ tA1rN2Ywks+PVMBjhKOZd4lWPkMXa6jUMWM2+YpxHWcv3Mbkauclbw0Sf0jzMrqg Be42CONusjK82P9r14aBxMPUXxiXcivm0Bjqt327fkIesg5eD/0bzXGmV7p3xIx7 ZopIlaZV4rWTfkJ4fvBenbHvaQ9ExgqToX0uwTK+iqUOTbVQl+yrcsTKVA94RYyE Fa8DuUIzrxKFWT/RO8IB3pNQytX50kYnmyll+wK9GYqoi5eRCLxTAoCAy1ek0nMY +6LWAA1R2NS2xeQrmqKb+ekBtEdBcBraNLjy/FSpvxrDlvf/w6DU7ya5YwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFClYhbGvWEWiygOBlmnxp9cjTFf1MB8GA1UdIwQY MBaAFBrKY98ki3rfPd0H6MLT7t0CzvkzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzIt OTFlMzE4NGJiMGFiLzEvS1ZpRnNhOVlSYUxLQTRHV2FmR24xeU5NVl9VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzItOTFlMzE4NGJiMGFi LzEvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRlEMA0G CSqGSIb3DQEBCwUAA4IBAQCa9A482rOpAQqXh9ycJuhtFzoFleBhSpzGrPQ5v7+L 51PeEOsMoJjQbeOIi0go7cvxTOc9dC0ZJfxRkF6cZaj4NB8sDSyAN7Z1lFsybHJH b2aUuiKBFNH4lEBAX4dFr5JGgoIbxH07zsJy1rU4E/MWYwVSPb7GY9hpFDv+GYqD sf6ziVFafBXKeCbbSgXr43Q+6T7f4zzqtfWpwOtQAO1CYI1kbTWjdpgv/MmZ3ib/ KjjVm4vyGoxgeQQK/sIhV6p3Nr41DpVHLdsAKcgJb0sdLFQ6WQQLQEei5T84o+xL gubTctyvn+iFuC8Fj/UQki6UT4zr9n8Z6AI3wljgwNQC -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:09 2026 by rpki-client