This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/4d6ffd-1fac-497f-810c-2b34b8433bb5/1/krg0r2wU_k1UtI2XJIebIOIlBlo.roa File: krg0r2wU_k1UtI2XJIebIOIlBlo.roa (raw, json) Hash identifier: egntaPC7sNCVC4f8EmkepYo0ee+r9xw1kBBN3SZR0DY= Subject key identifier: 92:B8:34:AF:6C:14:FE:4D:54:B4:8D:97:24:87:9B:20:E2:25:06:5A Certificate issuer: /CN=1f1e2eaaef0701595ac2754d0121217e7b91d739 Certificate serial: 019BC5C4F8E5370CC3E719E2B2A0954FC791 Authority key identifier: 1F:1E:2E:AA:EF:07:01:59:5A:C2:75:4D:01:21:21:7E:7B:91:D7:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hx4uqu8HAVlawnVNASEhfnuR1zk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/4d6ffd-1fac-497f-810c-2b34b8433bb5/1/krg0r2wU_k1UtI2XJIebIOIlBlo.roa Signing time: Fri 16 Jan 2026 07:46:18 +0000 ROA not before: Fri 16 Jan 2026 07:46:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 834 IP address blocks: 89.18.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/4d6ffd-1fac-497f-810c-2b34b8433bb5/1/Hx4uqu8HAVlawnVNASEhfnuR1zk.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/4d6ffd-1fac-497f-810c-2b34b8433bb5/1/Hx4uqu8HAVlawnVNASEhfnuR1zk.mft rsync://rpki.ripe.net/repository/DEFAULT/Hx4uqu8HAVlawnVNASEhfnuR1zk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c5:c4:f8:e5:37:0c:c3:e7:19:e2:b2:a0:95:4f:c7:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f1e2eaaef0701595ac2754d0121217e7b91d739 Validity Not Before: Jan 16 07:46:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=92b834af6c14fe4d54b48d9724879b20e225065a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cf:91:a8:a5:93:f6:ac:de:67:c2:bd:7a:32: e5:fc:8c:64:63:29:8d:cb:2a:ac:24:4f:bf:e0:34: c7:ed:0e:1c:ea:5d:b2:2e:77:bf:17:25:0a:74:d2: 4e:87:25:87:86:24:ee:8e:5e:68:02:6a:93:43:09: 23:e6:ed:ed:cb:b3:0f:3e:e6:f8:01:32:e8:41:70: f1:fc:06:61:58:79:24:e9:87:9d:ae:24:32:31:63: 8e:b9:23:64:93:a4:24:8f:49:2b:d1:a4:96:48:f5: 4b:b5:35:cb:77:80:c4:3d:0a:99:05:90:49:54:27: 51:b9:c2:8c:22:17:02:79:5a:bd:80:b7:90:13:84: cf:b8:4f:6d:5d:df:13:5c:e2:ab:39:5b:47:97:9d: 09:24:de:97:b5:a7:33:ec:24:f5:11:c1:dc:8f:9a: 00:e3:6f:36:8a:f2:b3:de:59:a1:31:8a:b6:2f:88: a2:a0:96:46:10:05:b5:18:78:d8:f4:1a:43:2e:0f: c7:94:53:fa:77:44:ed:04:d8:33:a2:2f:15:98:1d: eb:51:c1:01:20:6e:71:c5:4a:c7:4a:e7:0d:4f:1c: 22:ec:d4:da:ba:96:14:45:3f:54:e9:13:32:50:4b: a3:6b:5d:07:d2:f8:71:3d:98:0e:bf:77:de:66:36: 66:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B8:34:AF:6C:14:FE:4D:54:B4:8D:97:24:87:9B:20:E2:25:06:5A X509v3 Authority Key Identifier: keyid:1F:1E:2E:AA:EF:07:01:59:5A:C2:75:4D:01:21:21:7E:7B:91:D7:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hx4uqu8HAVlawnVNASEhfnuR1zk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/4d6ffd-1fac-497f-810c-2b34b8433bb5/1/krg0r2wU_k1UtI2XJIebIOIlBlo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/4d6ffd-1fac-497f-810c-2b34b8433bb5/1/Hx4uqu8HAVlawnVNASEhfnuR1zk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.18.52.0/22 Signature Algorithm: sha256WithRSAEncryption 64:25:66:9a:21:59:fc:e1:10:b8:cf:2f:ca:d8:33:bb:04:e4: 04:75:3c:e9:9a:29:78:f2:cb:b4:61:08:5e:fe:5d:ba:64:87: 90:40:0e:b3:57:58:c9:d0:d1:61:1f:fe:49:5a:63:8d:fa:67: e0:7b:d6:a2:00:96:c6:f0:27:b4:15:50:64:e9:0f:9a:14:a8: 8f:85:f6:0e:90:84:39:a8:84:7b:25:c7:d5:64:5a:30:13:10: 63:4d:57:27:81:9b:03:bf:2f:54:da:96:17:e9:1b:cd:1f:66: e4:0d:16:66:a7:84:de:4b:6e:57:a1:de:8e:e9:7a:dd:ac:c8: 63:86:f9:6e:4c:e0:07:ea:2c:87:1d:af:67:f6:43:07:0f:7e: 6f:90:41:3c:77:47:f1:14:1a:2e:c0:51:98:06:54:14:51:90: 65:aa:6a:9b:16:4e:36:d7:80:c8:b9:f2:8d:ba:a0:73:ce:a8: 20:0c:46:8f:23:17:f0:70:7a:1e:b3:56:e1:c6:e9:8e:05:c6: 0e:bc:0e:01:fe:30:b2:9e:0c:b9:98:b0:01:e0:cf:72:66:70: 91:5d:ed:1a:ad:58:31:4c:74:59:a2:7f:6d:f7:f0:0a:a9:42: da:0d:71:8b:bf:0e:42:c5:fc:b3:ee:10:53:28:46:d1:ff:8c: e9:06:62:2b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZvFxPjlNwzD5xnisqCVT8eRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmMWUyZWFhZWYwNzAxNTk1YWMyNzU0ZDAxMjEyMTdlN2I5 MWQ3MzkwHhcNMjYwMTE2MDc0NjE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MmI4MzRhZjZjMTRmZTRkNTRiNDhkOTcyNDg3OWIyMGUyMjUwNjVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxc+RqKWT9qzeZ8K9ejLl/IxkYymN yyqsJE+/4DTH7Q4c6l2yLne/FyUKdNJOhyWHhiTujl5oAmqTQwkj5u3ty7MPPub4 ATLoQXDx/AZhWHkk6YedriQyMWOOuSNkk6Qkj0kr0aSWSPVLtTXLd4DEPQqZBZBJ VCdRucKMIhcCeVq9gLeQE4TPuE9tXd8TXOKrOVtHl50JJN6Xtacz7CT1EcHcj5oA 4282ivKz3lmhMYq2L4iioJZGEAW1GHjY9BpDLg/HlFP6d0TtBNgzoi8VmB3rUcEB IG5xxUrHSucNTxwi7NTaupYURT9U6RMyUEuja10H0vhxPZgOv3feZjZmmQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJK4NK9sFP5NVLSNlySHmyDiJQZaMB8GA1UdIwQY MBaAFB8eLqrvBwFZWsJ1TQEhIX57kdc5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHg0dXF1OEhBVmxhd25WTkFTRWhmbnVSMXprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS80ZDZmZmQtMWZhYy00OTdmLTgxMGMt MmIzNGI4NDMzYmI1LzEva3JnMHIyd1VfazFVdEkyWEpJZWJJT0lsQmxvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS80ZDZmZmQtMWZhYy00OTdmLTgxMGMtMmIzNGI4NDMzYmI1 LzEvSHg0dXF1OEhBVmxhd25WTkFTRWhmbnVSMXprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCWRI0MA0G CSqGSIb3DQEBCwUAA4IBAQBkJWaaIVn84RC4zy/K2DO7BOQEdTzpmil48su0YQhe /l26ZIeQQA6zV1jJ0NFhH/5JWmON+mfge9aiAJbG8Ce0FVBk6Q+aFKiPhfYOkIQ5 qIR7JcfVZFowExBjTVcngZsDvy9U2pYX6RvNH2bkDRZmp4TeS25Xod6O6XrdrMhj hvluTOAH6iyHHa9n9kMHD35vkEE8d0fxFBouwFGYBlQUUZBlqmqbFk4214DIufKN uqBzzqggDEaPIxfwcHoes1bhxumOBcYOvA4B/jCyngy5mLAB4M9yZnCRXe0arVgx THRZon9t9/AKqULaDXGLvw5Cxfyz7hBTKEbR/4zpBmIr -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:56 2026 by rpki-client