This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/KpyePpi0BQOtPpSVVikAIl2skgo.roa File: KpyePpi0BQOtPpSVVikAIl2skgo.roa (raw, json) Hash identifier: Ukwdvn9MeAWiIbUvrqdNT9WEFPzcoAHZi8Gv9MxSNAs= Subject key identifier: 2A:9C:9E:3E:98:B4:05:03:AD:3E:94:95:56:29:00:22:5D:AC:92:0A Certificate issuer: /CN=8ad240603ec6ebcd62f72d46f1dc00cb7e1f0b2e Certificate serial: 019B7B359FF820990B824876509D8E038557 Authority key identifier: 8A:D2:40:60:3E:C6:EB:CD:62:F7:2D:46:F1:DC:00:CB:7E:1F:0B:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/KpyePpi0BQOtPpSVVikAIl2skgo.roa Signing time: Thu 01 Jan 2026 20:17:50 +0000 ROA not before: Thu 01 Jan 2026 20:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28760 IP address blocks: 62.249.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/itJAYD7G681i9y1G8dwAy34fCy4.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/itJAYD7G681i9y1G8dwAy34fCy4.mft rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:9f:f8:20:99:0b:82:48:76:50:9d:8e:03:85:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ad240603ec6ebcd62f72d46f1dc00cb7e1f0b2e Validity Not Before: Jan 1 20:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2a9c9e3e98b40503ad3e9495562900225dac920a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e5:95:8d:e7:7d:2c:d8:91:b0:bc:42:df:55: c5:80:d5:2e:2c:f5:77:41:9f:05:c9:48:c2:40:ca: ce:49:88:0f:7a:6a:39:6e:42:2b:2a:c3:b2:93:6b: 02:51:1e:b4:e3:04:13:64:57:9e:57:b2:39:50:d1: 3a:1d:8d:09:bd:4e:99:7c:e2:e2:36:b7:b9:ff:d0: 3c:a7:0f:50:78:7c:93:87:8a:3c:8d:07:e4:e5:c4: a7:9f:e8:42:15:a4:ff:7d:2d:4b:8b:9c:0f:7d:a9: 28:64:50:c2:c0:36:3b:3c:28:1f:90:4e:67:df:83: e7:c2:79:e9:c1:77:0d:27:f6:a1:92:c0:75:64:e6: 83:b0:4f:39:1d:da:53:e1:3c:8c:6f:dc:c9:16:c7: c9:aa:4c:fd:60:85:a7:a3:75:6a:bc:aa:54:55:2e: 3c:75:d8:1f:50:9e:ca:70:1e:2c:f5:40:2f:d0:9e: e6:3b:96:78:44:13:9f:e6:f5:9a:79:0f:54:5f:33: 6d:53:57:4b:6b:1a:a4:a7:30:23:91:df:9b:62:48: 20:d5:84:02:84:00:6a:8d:23:40:26:55:be:d5:7e: 06:e6:55:15:8b:6d:f8:e7:0d:25:40:14:39:92:0f: 72:fc:e2:b7:36:b4:8e:67:57:af:cf:0f:fd:11:2a: 38:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:9C:9E:3E:98:B4:05:03:AD:3E:94:95:56:29:00:22:5D:AC:92:0A X509v3 Authority Key Identifier: keyid:8A:D2:40:60:3E:C6:EB:CD:62:F7:2D:46:F1:DC:00:CB:7E:1F:0B:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/KpyePpi0BQOtPpSVVikAIl2skgo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/itJAYD7G681i9y1G8dwAy34fCy4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.249.100.0/22 Signature Algorithm: sha256WithRSAEncryption 06:81:4a:11:f9:b6:43:e6:01:ec:b1:9f:1a:b5:dd:83:2d:a2: 41:18:e2:c3:91:47:12:85:98:27:95:76:4a:b4:37:fd:92:a6: 28:46:c5:7e:75:04:1c:61:3c:2c:f5:8b:40:58:b5:9c:f2:64: 03:3d:5b:11:4d:05:e3:01:c2:6e:70:fc:21:3d:49:5a:25:01: ad:82:f9:88:fa:60:9c:c7:44:d9:9a:7f:be:e0:74:f7:30:ce: 61:68:8d:fa:96:58:d2:36:0f:dd:e7:f8:e8:2f:49:a0:50:30: 73:33:f1:33:40:30:c3:b5:72:4c:43:00:69:8e:82:77:4b:a5: 79:b5:b4:2f:97:89:c4:07:dd:8f:4d:c2:47:a2:84:6c:38:7d: c4:4d:3d:40:08:a5:7a:c3:4b:03:35:98:8d:c4:18:d9:51:48: ee:dc:0f:36:42:d8:c0:7c:ca:52:ea:44:a1:95:1a:13:43:a9: 3f:ad:a2:16:ca:57:4e:fb:12:ea:60:71:d7:9f:87:3b:50:8f: ff:cb:77:39:2d:00:fb:be:29:07:64:6d:c0:d1:cf:b4:39:34: b1:29:8c:78:5b:b0:18:a4:1c:9b:e7:6a:b6:f7:6a:41:59:e1: ea:73:84:ba:25:05:93:53:a8:03:3e:23:90:85:ce:5c:39:38: dc:37:e0:eb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NZ/4IJkLgkh2UJ2OA4VXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZDI0MDYwM2VjNmViY2Q2MmY3MmQ0NmYxZGMwMGNiN2Ux ZjBiMmUwHhcNMjYwMTAxMjAxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYTljOWUzZTk4YjQwNTAzYWQzZTk0OTU1NjI5MDAyMjVkYWM5MjBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+WVjed9LNiRsLxC31XFgNUuLPV3 QZ8FyUjCQMrOSYgPemo5bkIrKsOyk2sCUR604wQTZFeeV7I5UNE6HY0JvU6ZfOLi Nre5/9A8pw9QeHyTh4o8jQfk5cSnn+hCFaT/fS1Li5wPfakoZFDCwDY7PCgfkE5n 34PnwnnpwXcNJ/ahksB1ZOaDsE85HdpT4TyMb9zJFsfJqkz9YIWno3VqvKpUVS48 ddgfUJ7KcB4s9UAv0J7mO5Z4RBOf5vWaeQ9UXzNtU1dLaxqkpzAjkd+bYkgg1YQC hABqjSNAJlW+1X4G5lUVi2345w0lQBQ5kg9y/OK3NrSOZ1evzw/9ESo4LQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCqcnj6YtAUDrT6UlVYpACJdrJIKMB8GA1UdIwQY MBaAFIrSQGA+xuvNYvctRvHcAMt+HwsuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXRKQVlEN0c2ODFpOXkxRzhkd0F5MzRmQ3k0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy80MjUxNDktOWM2OC00MWZiLTgwMzUt ZDc2YzhjNzM5ODYxLzEvS3B5ZVBwaTBCUU90UHBTVlZpa0FJbDJza2dvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy80MjUxNDktOWM2OC00MWZiLTgwMzUtZDc2YzhjNzM5ODYx LzEvaXRKQVlEN0c2ODFpOXkxRzhkd0F5MzRmQ3k0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCPvlkMA0G CSqGSIb3DQEBCwUAA4IBAQAGgUoR+bZD5gHssZ8atd2DLaJBGOLDkUcShZgnlXZK tDf9kqYoRsV+dQQcYTws9YtAWLWc8mQDPVsRTQXjAcJucPwhPUlaJQGtgvmI+mCc x0TZmn++4HT3MM5haI36lljSNg/d5/joL0mgUDBzM/EzQDDDtXJMQwBpjoJ3S6V5 tbQvl4nEB92PTcJHooRsOH3ETT1ACKV6w0sDNZiNxBjZUUju3A82QtjAfMpS6kSh lRoTQ6k/raIWyldO+xLqYHHXn4c7UI//y3c5LQD7vikHZG3A0c+0OTSxKYx4W7AY pByb52q292pBWeHqc4S6JQWTU6gDPiOQhc5cOTjcN+Dr -----END CERTIFICATE-----Generated at Mon Jan 26 22:36:48 2026 by rpki-client