This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/KMAEa9OCX7dPwOPc5CJYhNs8ojY.roa File: KMAEa9OCX7dPwOPc5CJYhNs8ojY.roa (raw, json) Hash identifier: f65tXDX3mMjV/mW2SVpRbEGR4feswzLgiQejwHwqVkw= Subject key identifier: 28:C0:04:6B:D3:82:5F:B7:4F:C0:E3:DC:E4:22:58:84:DB:3C:A2:36 Certificate issuer: /CN=5688b42175d6214a31a5407db8b6c95f1ec60d4e Certificate serial: 019B7834D3DEF90B431111BE34B1C35C6D95 Authority key identifier: 56:88:B4:21:75:D6:21:4A:31:A5:40:7D:B8:B6:C9:5F:1E:C6:0D:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Voi0IXXWIUoxpUB9uLbJXx7GDU4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/KMAEa9OCX7dPwOPc5CJYhNs8ojY.roa Signing time: Thu 01 Jan 2026 06:18:06 +0000 ROA not before: Thu 01 Jan 2026 06:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215419 IP address blocks: 2a13:7b40:40::/48 maxlen: 48 2a13:7b40:51::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/Voi0IXXWIUoxpUB9uLbJXx7GDU4.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/Voi0IXXWIUoxpUB9uLbJXx7GDU4.mft rsync://rpki.ripe.net/repository/DEFAULT/Voi0IXXWIUoxpUB9uLbJXx7GDU4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:d3:de:f9:0b:43:11:11:be:34:b1:c3:5c:6d:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5688b42175d6214a31a5407db8b6c95f1ec60d4e Validity Not Before: Jan 1 06:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=28c0046bd3825fb74fc0e3dce4225884db3ca236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:94:fb:0d:69:b6:7f:a8:f5:4c:d1:e7:70:1d: 30:14:7f:ad:1a:b3:a9:67:20:73:d3:c5:a9:35:6c: 25:bd:5f:a0:f3:18:59:8f:32:07:0b:0f:f8:0c:51: e9:37:d9:c6:c8:30:69:b7:51:64:bd:40:65:c2:28: 9e:a6:68:c9:3e:79:27:7c:a4:c8:52:8f:07:d5:a7: 01:f1:69:67:f3:dd:ff:0c:94:2e:b0:49:25:94:8b: c1:e2:89:c5:b2:ae:ec:69:ed:0b:c1:ae:b1:72:41: 0c:9a:59:0e:a9:de:0c:a1:ce:d0:e4:79:b2:b9:b6: 00:17:de:e9:9e:89:8c:4b:cf:41:15:87:f5:df:5a: ec:56:fa:c6:25:d6:91:93:f1:c8:bf:dd:70:1a:76: d0:35:ac:b8:00:15:98:4a:f5:3b:d0:a5:91:3e:8a: 20:ad:f1:0c:2f:d6:1d:12:dd:8a:97:a4:e2:2a:6c: 3a:cf:8e:5c:52:69:0e:d3:50:c0:53:85:27:a2:e8: ec:d5:5f:c7:da:d9:4a:b0:b9:7b:64:85:98:29:3f: 7e:0e:ba:7b:e5:a0:d5:27:ab:c2:31:27:94:da:ca: 21:0c:f8:56:ae:25:90:da:09:9f:b2:31:51:a5:d9: 54:77:59:c1:b1:fc:9a:35:6e:ee:60:2b:c9:6b:88: a2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C0:04:6B:D3:82:5F:B7:4F:C0:E3:DC:E4:22:58:84:DB:3C:A2:36 X509v3 Authority Key Identifier: keyid:56:88:B4:21:75:D6:21:4A:31:A5:40:7D:B8:B6:C9:5F:1E:C6:0D:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Voi0IXXWIUoxpUB9uLbJXx7GDU4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/KMAEa9OCX7dPwOPc5CJYhNs8ojY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/Voi0IXXWIUoxpUB9uLbJXx7GDU4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:7b40:40::/48 2a13:7b40:51::/48 Signature Algorithm: sha256WithRSAEncryption 39:8e:78:d0:c0:b2:06:80:c5:79:6c:0f:ac:4e:01:7d:ab:af: c9:49:28:ed:2f:40:a7:9b:84:c6:b2:8d:91:5b:bb:92:ed:0d: 2f:c7:5a:b2:22:75:09:e5:ed:a1:e6:3e:8e:02:89:b5:78:40: 80:06:2f:ba:0f:7c:bd:e5:15:37:f2:de:73:8b:7d:71:df:2f: 8d:81:44:4d:f3:78:9a:51:2b:a5:aa:0e:8e:80:82:9c:35:ce: 0a:b9:9f:08:78:8c:ea:6b:fd:9b:fb:8c:87:cc:a7:2b:0c:a0: 11:04:26:55:8a:86:bf:3f:8f:73:7a:9b:87:a7:54:f2:c2:59: 8d:a2:24:d4:46:74:d7:a9:13:e9:42:d5:0b:22:62:d0:91:5e: c0:1f:8f:b5:5e:d6:df:01:f4:95:dc:30:d9:63:f5:19:6f:65: e1:41:de:70:85:f4:2d:d8:cf:2d:4c:6f:3e:8d:2d:9a:36:e3: d0:35:64:65:d0:50:10:e1:08:89:18:d4:3c:ce:9a:6e:9f:91: 79:30:78:9c:c9:9f:5d:3f:cc:de:6e:4b:5b:68:60:8f:a1:d9: d8:7c:10:19:df:b5:2a:a1:9a:65:a1:2e:d3:1a:84:be:77:5b: 99:8a:02:07:b0:1e:62:cb:ff:c4:13:b6:09:d6:c4:0c:06:96: 5e:c0:8f:1d -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt4NNPe+QtDERG+NLHDXG2VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2ODhiNDIxNzVkNjIxNGEzMWE1NDA3ZGI4YjZjOTVmMWVj NjBkNGUwHhcNMjYwMTAxMDYxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOGMwMDQ2YmQzODI1ZmI3NGZjMGUzZGNlNDIyNTg4NGRiM2NhMjM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJT7DWm2f6j1TNHncB0wFH+tGrOp ZyBz08WpNWwlvV+g8xhZjzIHCw/4DFHpN9nGyDBpt1FkvUBlwiiepmjJPnknfKTI Uo8H1acB8Wln893/DJQusEkllIvB4onFsq7sae0Lwa6xckEMmlkOqd4Moc7Q5Hmy ubYAF97pnomMS89BFYf131rsVvrGJdaRk/HIv91wGnbQNay4ABWYSvU70KWRPoog rfEML9YdEt2Kl6TiKmw6z45cUmkO01DAU4Unoujs1V/H2tlKsLl7ZIWYKT9+Drp7 5aDVJ6vCMSeU2sohDPhWriWQ2gmfsjFRpdlUd1nBsfyaNW7uYCvJa4iiVQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFCjABGvTgl+3T8Dj3OQiWITbPKI2MB8GA1UdIwQY MBaAFFaItCF11iFKMaVAfbi2yV8exg1OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVm9pMElYWFdJVW94cFVCOXVMYkpYeDdHRFU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS84M2Q2ZmEtNDYxZC00YTU2LWE4NDQt OWY5NDJiYzEyYTdlLzEvS01BRWE5T0NYN2RQd09QYzVDSlloTnM4b2pZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS84M2Q2ZmEtNDYxZC00YTU2LWE4NDQtOWY5NDJiYzEyYTdl LzEvVm9pMElYWFdJVW94cFVCOXVMYkpYeDdHRFU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKhN7QABA AwcAKhN7QABRMA0GCSqGSIb3DQEBCwUAA4IBAQA5jnjQwLIGgMV5bA+sTgF9q6/J SSjtL0Cnm4TGso2RW7uS7Q0vx1qyInUJ5e2h5j6OAom1eECABi+6D3y95RU38t5z i31x3y+NgURN83iaUSulqg6OgIKcNc4KuZ8IeIzqa/2b+4yHzKcrDKARBCZVioa/ P49zepuHp1TywlmNoiTURnTXqRPpQtULImLQkV7AH4+1XtbfAfSV3DDZY/UZb2Xh Qd5whfQt2M8tTG8+jS2aNuPQNWRl0FAQ4QiJGNQ8zppun5F5MHicyZ9dP8zebktb aGCPodnYfBAZ37UqoZploS7TGoS+d1uZigIHsB5iy//EE7YJ1sQMBpZewI8d -----END CERTIFICATE-----Generated at Sun Jan 25 19:37:04 2026 by rpki-client