This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/kNJMaiQra48kkAcS5nD8aUCkAUE.roa File: kNJMaiQra48kkAcS5nD8aUCkAUE.roa (raw, json) Hash identifier: 1S7dp0PoTIGw4gY4Z0LJ+wyYCHhInf5Fee8utleWUao= Subject key identifier: 90:D2:4C:6A:24:2B:6B:8F:24:90:07:12:E6:70:FC:69:40:A4:01:41 Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75 Certificate serial: 019B76EB18CA32C9BF5624FDCACC69BB7866 Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/kNJMaiQra48kkAcS5nD8aUCkAUE.roa Signing time: Thu 01 Jan 2026 00:17:57 +0000 ROA not before: Thu 01 Jan 2026 00:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205888 IP address blocks: 79.142.184.0/22 maxlen: 24 185.202.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.mft rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:18:ca:32:c9:bf:56:24:fd:ca:cc:69:bb:78:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75 Validity Not Before: Jan 1 00:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=90d24c6a242b6b8f24900712e670fc6940a40141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:27:2c:4f:78:1b:cb:07:05:34:02:66:81:8e: b6:7c:86:59:8f:17:ba:cc:92:be:56:e2:8c:9d:95: f9:d4:37:52:d0:ea:90:88:3c:10:30:da:23:61:59: 2b:7b:e9:6c:51:80:2f:e4:8b:c6:9a:bc:dc:45:df: a6:be:a3:03:da:7c:f6:93:73:33:42:14:8b:51:29: da:2b:3f:da:c2:91:6b:84:fb:09:f1:af:bc:89:ba: 6e:8d:cc:71:4f:71:d9:8a:3a:fc:c2:84:4e:cf:cb: 4a:82:88:54:d0:e3:0e:5c:5b:88:41:4a:1b:0b:6f: 06:01:16:c8:07:42:b0:46:ea:29:84:e6:6f:f4:48: 3e:ba:11:de:db:db:5a:0c:e7:90:5f:2f:5f:7b:f9: 5d:0e:5a:02:31:44:2e:cb:36:3e:4f:ca:42:48:f9: 8d:a7:2d:b2:9a:a3:1e:4e:7b:25:7d:f1:04:94:fb: 51:f6:ca:ac:23:de:36:3a:3a:84:da:a9:f7:78:a0: 7a:b4:f2:3f:3b:28:4b:2b:6a:e1:e9:57:df:55:0a: 6a:02:0b:49:d1:a1:09:2a:12:13:dd:44:c3:07:18: ee:73:6e:f7:5e:86:0c:04:32:8f:c0:d8:f8:66:85: 07:1d:34:16:ed:38:b5:25:53:84:29:eb:be:95:84: 41:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:D2:4C:6A:24:2B:6B:8F:24:90:07:12:E6:70:FC:69:40:A4:01:41 X509v3 Authority Key Identifier: keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/kNJMaiQra48kkAcS5nD8aUCkAUE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.142.184.0/22 185.202.188.0/22 Signature Algorithm: sha256WithRSAEncryption 96:b3:90:b3:65:7a:54:4b:5d:95:18:92:c5:0e:c1:e1:1c:9d: 22:5f:e6:8a:a6:a3:eb:e0:96:0d:c4:04:38:5c:42:56:0a:c4: 85:1d:c7:11:6c:b9:9b:0f:76:cc:17:45:5f:65:be:43:d1:c4: e0:c7:ea:94:aa:c6:46:c0:e8:d3:ad:e7:c6:56:cc:9a:9a:36: e3:db:51:89:59:ce:cf:24:e6:74:cc:b6:b8:92:58:5c:20:fc: 0a:ec:ec:18:03:18:fa:5c:6f:b9:d1:96:04:47:88:99:c4:d3: cf:4a:95:bf:c0:17:c9:ec:f8:89:6c:18:0d:4e:2d:4d:ae:00: 7e:6d:4d:47:ee:1a:88:c1:a1:95:37:a8:5b:22:f3:1d:ab:f1: e4:47:65:6a:8b:0b:50:20:48:f9:dd:e7:8c:9a:8e:48:b5:41: a8:fd:df:b8:57:7f:f4:d4:0e:2d:23:ea:7f:d3:a6:25:4c:64: 8d:76:0d:4b:15:ef:eb:42:ba:43:4a:88:67:7e:06:22:1a:87: 81:5e:2f:be:f3:03:01:ab:c5:4d:47:ba:cc:e5:a6:63:51:24: 11:9f:78:c8:bc:7c:1a:00:28:71:03:67:7f:e6:e6:2b:dd:c2: 5b:0f:ea:c6:b9:7d:02:97:d5:4c:21:d5:af:95:74:4c:70:50: 0d:c2:31:ec -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26xjKMsm/ViT9ysxpu3hmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4 YjZiNzUwHhcNMjYwMTAxMDAxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MGQyNGM2YTI0MmI2YjhmMjQ5MDA3MTJlNjcwZmM2OTQwYTQwMTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9icsT3gbywcFNAJmgY62fIZZjxe6 zJK+VuKMnZX51DdS0OqQiDwQMNojYVkre+lsUYAv5IvGmrzcRd+mvqMD2nz2k3Mz QhSLUSnaKz/awpFrhPsJ8a+8ibpujcxxT3HZijr8woROz8tKgohU0OMOXFuIQUob C28GARbIB0KwRuophOZv9Eg+uhHe29taDOeQXy9fe/ldDloCMUQuyzY+T8pCSPmN py2ymqMeTnslffEElPtR9sqsI942OjqE2qn3eKB6tPI/OyhLK2rh6VffVQpqAgtJ 0aEJKhIT3UTDBxjuc273XoYMBDKPwNj4ZoUHHTQW7Ti1JVOEKeu+lYRBqQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJDSTGokK2uPJJAHEuZw/GlApAFBMB8GA1UdIwQY MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt Yzc5MTRhYjY0MjczLzEva05KTWFpUXJhNDhra0FjUzVuRDhhVUNrQVVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCT464AwQC ucq8MA0GCSqGSIb3DQEBCwUAA4IBAQCWs5CzZXpUS12VGJLFDsHhHJ0iX+aKpqPr 4JYNxAQ4XEJWCsSFHccRbLmbD3bMF0VfZb5D0cTgx+qUqsZGwOjTrefGVsyamjbj 21GJWc7PJOZ0zLa4klhcIPwK7OwYAxj6XG+50ZYER4iZxNPPSpW/wBfJ7PiJbBgN Ti1NrgB+bU1H7hqIwaGVN6hbIvMdq/HkR2VqiwtQIEj53eeMmo5ItUGo/d+4V3/0 1A4tI+p/06YlTGSNdg1LFe/rQrpDSohnfgYiGoeBXi++8wMBq8VNR7rM5aZjUSQR n3jIvHwaAChxA2d/5uYr3cJbD+rGuX0Cl9VMIdWvlXRMcFANwjHs -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:19 2026 by rpki-client