This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/kzDbK2QoBVIIp9tqNTtnUJP1NZs.roa File: kzDbK2QoBVIIp9tqNTtnUJP1NZs.roa (raw, json) Hash identifier: X7UOIcXOkpLacmMqPlB5bii5jBSrwu1Tt1zBt5jizCY= Subject key identifier: 93:30:DB:2B:64:28:05:52:08:A7:DB:6A:35:3B:67:50:93:F5:35:9B Certificate issuer: /CN=8c856557c4146a8b50dc4d94424b06680cef755b Certificate serial: 019B77C756F8EFFF4D7B652544FC68F168B1 Authority key identifier: 8C:85:65:57:C4:14:6A:8B:50:DC:4D:94:42:4B:06:68:0C:EF:75:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jIVlV8QUaotQ3E2UQksGaAzvdVs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/kzDbK2QoBVIIp9tqNTtnUJP1NZs.roa Signing time: Thu 01 Jan 2026 04:18:31 +0000 ROA not before: Thu 01 Jan 2026 04:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20679 IP address blocks: 185.75.31.0/24 maxlen: 24 2001:678:418::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/jIVlV8QUaotQ3E2UQksGaAzvdVs.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/jIVlV8QUaotQ3E2UQksGaAzvdVs.mft rsync://rpki.ripe.net/repository/DEFAULT/jIVlV8QUaotQ3E2UQksGaAzvdVs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:56:f8:ef:ff:4d:7b:65:25:44:fc:68:f1:68:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c856557c4146a8b50dc4d94424b06680cef755b Validity Not Before: Jan 1 04:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9330db2b6428055208a7db6a353b675093f5359b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b9:b6:8e:54:34:f8:da:9b:98:75:f2:a3:a5: 5e:75:59:7c:fd:4b:d8:86:58:01:80:90:99:5e:20: 3e:d0:54:f0:8e:a4:94:41:9c:04:14:35:17:58:88: 95:27:ec:0c:89:5f:06:c2:cb:79:79:8e:3b:da:f3: 11:3f:9d:1e:e5:8c:4f:62:8b:41:0f:fa:13:6a:d9: c8:f8:21:49:d4:3c:31:68:b8:ed:89:66:e4:fa:a5: ed:eb:09:f0:c4:2d:bd:d6:a4:d2:a0:42:da:0c:ea: 47:e4:ff:0d:0b:6a:ba:4e:fa:c5:44:ed:ad:3a:90: 9e:00:6c:33:5b:16:df:54:2d:0e:4f:63:0a:05:af: d7:96:0a:44:23:d7:34:37:dc:0c:6e:7d:69:f0:18: 8a:4d:e5:3e:fa:9e:a7:7b:30:c0:f0:3a:4e:39:99: 98:62:41:15:20:a7:8f:18:16:ce:91:7f:1f:23:ff: 89:1b:43:9e:fa:c5:f0:d9:8e:6f:bf:53:9c:80:96: 8d:ce:3a:4d:e0:8e:e2:77:90:51:e2:65:7e:93:71: 6c:f0:7c:9b:81:ea:c5:94:81:36:4f:a3:ff:b4:e8: 89:d5:9b:d5:09:62:84:0e:cf:7f:9a:da:64:43:22: 59:da:dd:4c:ef:69:c3:ff:95:37:13:fc:e0:77:de: 24:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:30:DB:2B:64:28:05:52:08:A7:DB:6A:35:3B:67:50:93:F5:35:9B X509v3 Authority Key Identifier: keyid:8C:85:65:57:C4:14:6A:8B:50:DC:4D:94:42:4B:06:68:0C:EF:75:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jIVlV8QUaotQ3E2UQksGaAzvdVs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/kzDbK2QoBVIIp9tqNTtnUJP1NZs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/jIVlV8QUaotQ3E2UQksGaAzvdVs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.75.31.0/24 IPv6: 2001:678:418::/48 Signature Algorithm: sha256WithRSAEncryption 26:da:6c:fa:6f:c9:99:5f:6c:bd:94:bb:eb:a0:43:26:cc:6a: f2:56:e4:27:bb:53:a4:8c:23:a1:16:83:73:e1:51:7b:71:aa: c3:c7:d4:00:5a:69:68:c3:dd:14:a6:21:b5:e0:86:a5:29:8f: 83:9d:d3:c8:5f:70:9b:4f:a2:32:53:ce:70:12:66:a9:7b:14: 4c:b9:3e:1b:c4:ed:f0:58:12:40:46:35:27:f3:ed:01:a7:1d: 9d:c6:39:71:75:8e:35:64:11:07:5e:76:02:17:95:33:65:a4: e5:51:f2:0a:81:7e:26:9b:a7:96:c5:44:4a:1c:1d:38:d6:5e: d5:a3:c4:5a:cc:34:bf:5d:2e:10:db:a4:64:d7:6b:01:38:29: 6a:4c:83:0b:9e:15:0e:03:ee:ac:c5:a5:09:c8:e0:40:34:b5: 0a:16:df:56:ba:6a:05:18:2e:cd:a0:a0:30:20:17:c5:a9:45: d9:13:83:8f:50:b1:58:55:83:0d:29:00:a3:eb:3d:2a:b4:f4: 1f:81:df:d2:57:43:f9:26:bb:35:40:70:9f:75:00:e1:18:47: 80:f8:13:40:98:5a:01:c0:83:73:0c:7d:3a:34:41:56:84:ef: f1:d3:90:4f:8b:e9:87:b1:5f:64:9e:0c:e9:eb:f1:b4:c7:a2: 5e:74:d3:5d -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3x1b47/9Ne2UlRPxo8WixMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhjODU2NTU3YzQxNDZhOGI1MGRjNGQ5NDQyNGIwNjY4MGNl Zjc1NWIwHhcNMjYwMTAxMDQxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MzMwZGIyYjY0MjgwNTUyMDhhN2RiNmEzNTNiNjc1MDkzZjUzNTliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbm2jlQ0+NqbmHXyo6VedVl8/UvY hlgBgJCZXiA+0FTwjqSUQZwEFDUXWIiVJ+wMiV8Gwst5eY472vMRP50e5YxPYotB D/oTatnI+CFJ1DwxaLjtiWbk+qXt6wnwxC291qTSoELaDOpH5P8NC2q6TvrFRO2t OpCeAGwzWxbfVC0OT2MKBa/XlgpEI9c0N9wMbn1p8BiKTeU++p6nezDA8DpOOZmY YkEVIKePGBbOkX8fI/+JG0Oe+sXw2Y5vv1OcgJaNzjpN4I7id5BR4mV+k3Fs8Hyb gerFlIE2T6P/tOiJ1ZvVCWKEDs9/mtpkQyJZ2t1M72nD/5U3E/zgd94kiQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFJMw2ytkKAVSCKfbajU7Z1CT9TWbMB8GA1UdIwQY MBaAFIyFZVfEFGqLUNxNlEJLBmgM73VbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaklWbFY4UVVhb3RRM0UyVVFrc0dhQXp2ZFZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC8zMDZhZGItN2FhNy00YjgyLWIwNWEt MmE2YjlhMGNjYWJkLzEva3pEYksyUW9CVklJcDl0cU5UdG5VSlAxTlpzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC8zMDZhZGItN2FhNy00YjgyLWIwNWEtMmE2YjlhMGNjYWJk LzEvaklWbFY4UVVhb3RRM0UyVVFrc0dhQXp2ZFZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuUsfMA8E AgACMAkDBwAgAQZ4BBgwDQYJKoZIhvcNAQELBQADggEBACbabPpvyZlfbL2Uu+ug QybMavJW5Ce7U6SMI6EWg3PhUXtxqsPH1ABaaWjD3RSmIbXghqUpj4Od08hfcJtP ojJTznASZql7FEy5PhvE7fBYEkBGNSfz7QGnHZ3GOXF1jjVkEQdedgIXlTNlpOVR 8gqBfiabp5bFREocHTjWXtWjxFrMNL9dLhDbpGTXawE4KWpMgwueFQ4D7qzFpQnI 4EA0tQoW31a6agUYLs2goDAgF8WpRdkTg49QsVhVgw0pAKPrPSq09B+B39JXQ/km uzVAcJ91AOEYR4D4E0CYWgHAg3MMfTo0QVaE7/HTkE+L6YexX2SeDOnr8bTHol50 010= -----END CERTIFICATE-----Generated at Mon Jan 26 09:24:34 2026 by rpki-client