This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/KltIcrLoq0GLsCjZtmDiTvWsU3U.roa File: KltIcrLoq0GLsCjZtmDiTvWsU3U.roa (raw, json) Hash identifier: Pv9gxE9ZOEDnqoGdSu4yESqDOubki9Au+4zgO5XK53E= Subject key identifier: 2A:5B:48:72:B2:E8:AB:41:8B:B0:28:D9:B6:60:E2:4E:F5:AC:53:75 Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52 Certificate serial: 019B77C67F0B113A68DFE51F6E202F2E67C7 Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/KltIcrLoq0GLsCjZtmDiTvWsU3U.roa Signing time: Thu 01 Jan 2026 04:17:35 +0000 ROA not before: Thu 01 Jan 2026 04:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25485 IP address blocks: 81.19.195.30/32 maxlen: 32 81.19.195.31/32 maxlen: 32 185.100.0.53/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.mft rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:7f:0b:11:3a:68:df:e5:1f:6e:20:2f:2e:67:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52 Validity Not Before: Jan 1 04:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2a5b4872b2e8ab418bb028d9b660e24ef5ac5375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:10:b3:5b:89:c5:19:3a:0c:69:6a:68:10:72: 81:9e:06:52:14:ba:e5:ed:a9:08:b1:73:9d:19:a2: 9d:40:72:8a:bb:2b:78:94:95:50:2e:be:02:b8:bb: 19:6b:8c:9f:13:78:d5:78:11:19:b3:f8:c0:b3:fe: cb:c3:55:61:3c:69:42:a7:cc:86:c5:85:4d:1f:77: 0e:48:49:01:f1:da:f8:de:72:57:46:57:c6:b1:56: f2:4b:15:bb:e4:76:31:e0:08:46:88:ca:62:72:be: cd:03:3c:d7:a0:a7:f5:ae:f3:26:ac:0a:49:0a:7b: 28:ad:d2:32:be:43:0a:af:15:e0:05:19:3e:f2:97: 13:b5:e6:e0:b7:bd:16:ce:ee:1b:10:07:b3:61:cd: 5f:2c:88:1d:96:89:5b:9c:b9:82:46:fd:82:e8:8a: 91:bb:2c:ed:48:09:8b:fa:c3:d7:0d:04:61:63:f1: 7d:e3:52:0b:96:f9:57:e2:1f:88:cf:41:b9:aa:bb: e1:1c:37:2e:16:f3:0c:ca:b2:04:18:fd:18:f4:47: b3:06:4c:bf:dd:ef:f6:d7:00:6d:c2:51:65:c7:db: 68:da:b4:ca:46:ab:1b:64:f2:6c:6a:20:40:ac:a5: cd:b3:62:69:b1:0b:04:e9:5f:1c:61:2a:e1:18:d2: 0b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5B:48:72:B2:E8:AB:41:8B:B0:28:D9:B6:60:E2:4E:F5:AC:53:75 X509v3 Authority Key Identifier: keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/KltIcrLoq0GLsCjZtmDiTvWsU3U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.19.195.30/31 185.100.0.53/32 Signature Algorithm: sha256WithRSAEncryption 70:ac:f0:79:43:29:81:65:9a:6a:90:cb:36:99:22:1a:2a:df: f6:4c:53:52:42:2c:a0:e3:15:d0:3b:a6:6c:76:57:91:ca:a7: 8c:77:95:84:98:fe:00:31:9a:00:72:79:6c:d3:30:29:53:1a: a3:15:9b:88:ff:01:02:bc:0b:8c:53:c8:99:62:72:e8:be:44: 6b:be:f7:77:a3:ed:df:4c:13:b8:e1:9d:52:ba:93:b3:ed:e8: 4d:d4:5f:c7:d6:54:ce:51:c8:8b:c9:27:d1:5c:53:a6:51:f0: 8d:75:eb:51:f4:e4:be:3e:05:18:bd:b6:25:90:ac:00:52:c6: 56:53:a1:7e:e6:18:00:e8:45:7a:fe:70:0c:b6:5f:85:14:f4: 47:f5:41:40:fc:41:f5:49:99:00:c7:86:bd:69:50:c0:8d:da: 3b:7c:24:79:cc:c4:68:18:1f:00:d8:32:7d:a4:60:8a:35:ab: 66:e3:0c:b5:6b:1a:16:d1:50:ce:fc:68:6a:4d:4d:27:4f:86: f5:94:11:44:70:53:e3:b2:b8:72:cb:13:8f:b3:e0:94:a3:e3: 84:18:79:37:c4:3a:ca:21:9a:d7:b4:c9:64:9f:9d:f0:4c:cc: 95:7c:0e:ec:52:5c:75:c9:2a:5b:bf:d9:6f:6a:4e:80:3c:9b: eb:a4:7a:24 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt3xn8LETpo3+UfbiAvLmfHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0MzgwYjliOGMwNzA0NTdlZDU0YmM0NWQxMmRkZGQyNDRl MDZkNTIwHhcNMjYwMTAxMDQxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYTViNDg3MmIyZThhYjQxOGJiMDI4ZDliNjYwZTI0ZWY1YWM1Mzc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxCzW4nFGToMaWpoEHKBngZSFLrl 7akIsXOdGaKdQHKKuyt4lJVQLr4CuLsZa4yfE3jVeBEZs/jAs/7Lw1VhPGlCp8yG xYVNH3cOSEkB8dr43nJXRlfGsVbySxW75HYx4AhGiMpicr7NAzzXoKf1rvMmrApJ CnsordIyvkMKrxXgBRk+8pcTtebgt70Wzu4bEAezYc1fLIgdlolbnLmCRv2C6IqR uyztSAmL+sPXDQRhY/F941ILlvlX4h+Iz0G5qrvhHDcuFvMMyrIEGP0Y9EezBky/ 3e/21wBtwlFlx9to2rTKRqsbZPJsaiBArKXNs2JpsQsE6V8cYSrhGNIL+QIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFCpbSHKy6KtBi7Ao2bZg4k71rFN1MB8GA1UdIwQY MBaAFLQ4C5uMBwRX7VS8RdEt3dJE4G1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2Yt MzZjY2I1YTA2MTk1LzEvS2x0SWNyTG9xMEdMc0NqWnRtRGlUdldzVTNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2YtMzZjY2I1YTA2MTk1 LzEvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOAwUBURPDHgMF ALlkADUwDQYJKoZIhvcNAQELBQADggEBAHCs8HlDKYFlmmqQyzaZIhoq3/ZMU1JC LKDjFdA7pmx2V5HKp4x3lYSY/gAxmgByeWzTMClTGqMVm4j/AQK8C4xTyJlicui+ RGu+93ej7d9ME7jhnVK6k7Pt6E3UX8fWVM5RyIvJJ9FcU6ZR8I1161H05L4+BRi9 tiWQrABSxlZToX7mGADoRXr+cAy2X4UU9Ef1QUD8QfVJmQDHhr1pUMCN2jt8JHnM xGgYHwDYMn2kYIo1q2bjDLVrGhbRUM78aGpNTSdPhvWUEURwU+OyuHLLE4+z4JSj 44QYeTfEOsohmte0yWSfnfBMzJV8DuxSXHXJKlu/2W9qToA8m+ukeiQ= -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:57 2026 by rpki-client