This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e7234c-887e-41e9-ad3c-7ecdd2f64d2d/1/KGmdJojDynuXCO2Kz5Vxd1BvZJQ.roa File: KGmdJojDynuXCO2Kz5Vxd1BvZJQ.roa (raw, json) Hash identifier: 67OBKUEXhz+km8nUmISJwb9v5PxLdH7qxV+fNu26gt4= Subject key identifier: 28:69:9D:26:88:C3:CA:7B:97:08:ED:8A:CF:95:71:77:50:6F:64:94 Certificate issuer: /CN=2fbd908d0c5bd3aacf5280dd81ea20382cd978ea Certificate serial: 019B78A364F58387110FFC13D128ADC54B33 Authority key identifier: 2F:BD:90:8D:0C:5B:D3:AA:CF:52:80:DD:81:EA:20:38:2C:D9:78:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L72QjQxb06rPUoDdgeogOCzZeOo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e7234c-887e-41e9-ad3c-7ecdd2f64d2d/1/KGmdJojDynuXCO2Kz5Vxd1BvZJQ.roa Signing time: Thu 01 Jan 2026 08:18:52 +0000 ROA not before: Thu 01 Jan 2026 08:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39700 IP address blocks: 185.228.196.0/22 maxlen: 24 2a0d:3600::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/e7234c-887e-41e9-ad3c-7ecdd2f64d2d/1/L72QjQxb06rPUoDdgeogOCzZeOo.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/e7234c-887e-41e9-ad3c-7ecdd2f64d2d/1/L72QjQxb06rPUoDdgeogOCzZeOo.mft rsync://rpki.ripe.net/repository/DEFAULT/L72QjQxb06rPUoDdgeogOCzZeOo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:64:f5:83:87:11:0f:fc:13:d1:28:ad:c5:4b:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fbd908d0c5bd3aacf5280dd81ea20382cd978ea Validity Not Before: Jan 1 08:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=28699d2688c3ca7b9708ed8acf957177506f6494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:11:38:d7:f0:0b:fd:18:9a:57:ea:28:f6:d6: 3d:35:01:cc:74:a9:a8:44:20:5a:c2:37:44:0f:2c: 6f:e0:3e:6d:50:ef:cf:03:8b:a5:93:53:85:2c:1f: 4e:4b:2a:c2:43:4d:3e:bd:aa:19:50:f9:21:98:12: 1d:24:3b:8e:03:5e:a7:21:d9:7c:b1:1e:a1:ec:93: b8:c5:d1:a2:86:42:40:60:ba:c9:bd:74:4a:f2:fd: ac:a1:9f:e3:ab:dd:08:31:63:3c:6f:68:09:7c:0d: 27:6d:59:7d:3c:82:3b:7e:ef:b7:ea:33:a6:3c:4c: 74:6e:8b:18:2c:9e:14:ff:e9:80:46:3e:a0:5d:82: e8:d4:dd:b7:6a:9b:6e:a7:a9:01:23:9f:b5:e1:37: 67:32:61:ad:04:db:a8:db:7d:a2:00:89:1e:00:99: bf:18:ae:0c:c5:41:2c:02:4d:e7:a7:8e:46:e8:30: ba:ae:d3:02:57:cf:83:2f:78:54:f6:55:05:0b:94: f3:4e:e5:69:9d:33:43:20:d3:b7:c3:14:77:03:70: e1:1c:f1:c6:69:58:06:24:49:1b:c7:bd:c6:16:af: ad:2e:bb:ce:8d:0b:12:71:5a:6d:65:df:45:b1:37: bb:64:e7:18:d9:d3:18:d4:f3:81:76:6d:a0:a0:ea: 9d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:69:9D:26:88:C3:CA:7B:97:08:ED:8A:CF:95:71:77:50:6F:64:94 X509v3 Authority Key Identifier: keyid:2F:BD:90:8D:0C:5B:D3:AA:CF:52:80:DD:81:EA:20:38:2C:D9:78:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L72QjQxb06rPUoDdgeogOCzZeOo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e7234c-887e-41e9-ad3c-7ecdd2f64d2d/1/KGmdJojDynuXCO2Kz5Vxd1BvZJQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e7234c-887e-41e9-ad3c-7ecdd2f64d2d/1/L72QjQxb06rPUoDdgeogOCzZeOo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.228.196.0/22 IPv6: 2a0d:3600::/29 Signature Algorithm: sha256WithRSAEncryption 38:15:50:59:f9:a3:ba:a8:98:49:75:7e:d0:8d:dc:8f:3d:19: 56:c5:f0:28:8a:b8:a6:b9:1d:fe:10:1b:83:2a:d6:62:4c:74: 6f:14:22:1b:45:32:19:5b:22:e0:4c:4f:ea:58:3e:50:f0:4b: 4c:79:2f:d5:0a:7f:25:f9:e1:40:29:56:ca:9e:b3:51:b5:74: bf:86:71:26:40:44:f6:c7:c0:f2:90:b9:fe:47:57:e3:66:e2: 59:a7:e2:5a:ad:d1:e7:5e:6d:b6:2a:dd:5a:6c:d3:8c:f4:cf: 64:57:38:f2:f4:8b:b3:67:f5:eb:95:96:48:36:72:62:c0:10: df:7b:90:ee:3c:8e:fe:f4:4c:6e:9d:f0:39:ff:0c:c1:df:79: 97:66:86:64:0a:a7:88:21:33:e0:12:4b:25:a2:44:c6:e0:b7: 01:d6:c5:3a:46:4b:1d:ba:66:36:97:2e:f7:64:9e:34:17:ca: 5d:b5:af:f5:3d:dd:7c:5f:27:2c:4b:46:6d:01:32:ef:ab:8e: 1e:b6:23:b2:05:86:80:d0:37:2d:05:6d:f7:c4:0f:94:48:e9: c6:8a:b6:dd:c7:a9:08:f1:3e:4e:30:b9:7a:10:d2:1b:92:92: f5:c7:f4:49:45:56:70:0d:b6:6e:52:b2:bc:91:aa:61:a1:1b: be:20:33:32 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4o2T1g4cRD/wT0SitxUszMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmYmQ5MDhkMGM1YmQzYWFjZjUyODBkZDgxZWEyMDM4MmNk OTc4ZWEwHhcNMjYwMTAxMDgxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyODY5OWQyNjg4YzNjYTdiOTcwOGVkOGFjZjk1NzE3NzUwNmY2NDk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhE41/AL/RiaV+oo9tY9NQHMdKmo RCBawjdEDyxv4D5tUO/PA4ulk1OFLB9OSyrCQ00+vaoZUPkhmBIdJDuOA16nIdl8 sR6h7JO4xdGihkJAYLrJvXRK8v2soZ/jq90IMWM8b2gJfA0nbVl9PII7fu+36jOm PEx0bosYLJ4U/+mARj6gXYLo1N23aptup6kBI5+14TdnMmGtBNuo232iAIkeAJm/ GK4MxUEsAk3np45G6DC6rtMCV8+DL3hU9lUFC5TzTuVpnTNDINO3wxR3A3DhHPHG aVgGJEkbx73GFq+tLrvOjQsScVptZd9FsTe7ZOcY2dMY1POBdm2goOqdZQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFChpnSaIw8p7lwjtis+VcXdQb2SUMB8GA1UdIwQY MBaAFC+9kI0MW9Oqz1KA3YHqIDgs2XjqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDcyUWpReGIwNnJQVW9EZGdlb2dPQ3paZU9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9lNzIzNGMtODg3ZS00MWU5LWFkM2Mt N2VjZGQyZjY0ZDJkLzEvS0dtZEpvakR5bnVYQ08yS3o1VnhkMUJ2WkpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC9lNzIzNGMtODg3ZS00MWU5LWFkM2MtN2VjZGQyZjY0ZDJk LzEvTDcyUWpReGIwNnJQVW9EZGdlb2dPQ3paZU9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCueTEMA0E AgACMAcDBQMqDTYAMA0GCSqGSIb3DQEBCwUAA4IBAQA4FVBZ+aO6qJhJdX7QjdyP PRlWxfAoirimuR3+EBuDKtZiTHRvFCIbRTIZWyLgTE/qWD5Q8EtMeS/VCn8l+eFA KVbKnrNRtXS/hnEmQET2x8DykLn+R1fjZuJZp+JardHnXm22Kt1abNOM9M9kVzjy 9IuzZ/XrlZZINnJiwBDfe5DuPI7+9ExunfA5/wzB33mXZoZkCqeIITPgEkslokTG 4LcB1sU6RksdumY2ly73ZJ40F8pdta/1Pd18XycsS0ZtATLvq44etiOyBYaA0Dct BW33xA+USOnGirbdx6kI8T5OMLl6ENIbkpL1x/RJRVZwDbZuUrK8kaphoRu+IDMy -----END CERTIFICATE-----Generated at Mon Jan 26 06:19:09 2026 by rpki-client