This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/a0d674-87b6-4318-bed2-267547ea1e35/1/E5pify1OXDiAsSHZ575A3rO94ME.roa File: E5pify1OXDiAsSHZ575A3rO94ME.roa (raw, json) Hash identifier: j8qs/DidOZTlSj0X8OZwnqxIOGwaKtwZi2fTCHavq7Y= Subject key identifier: 13:9A:62:7F:2D:4E:5C:38:80:B1:21:D9:E7:BE:40:DE:B3:BD:E0:C1 Certificate issuer: /CN=28b0ff7998ca8854ce7c475a972ed1d52a5c60cd Certificate serial: 019B7F849AFD495669C3EC88F6C23A4DD130 Authority key identifier: 28:B0:FF:79:98:CA:88:54:CE:7C:47:5A:97:2E:D1:D5:2A:5C:60:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLD_eZjKiFTOfEdaly7R1SpcYM0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/a0d674-87b6-4318-bed2-267547ea1e35/1/E5pify1OXDiAsSHZ575A3rO94ME.roa Signing time: Fri 02 Jan 2026 16:22:35 +0000 ROA not before: Fri 02 Jan 2026 16:22:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 185.119.221.0/24 maxlen: 24 185.119.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/a0d674-87b6-4318-bed2-267547ea1e35/1/KLD_eZjKiFTOfEdaly7R1SpcYM0.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/a0d674-87b6-4318-bed2-267547ea1e35/1/KLD_eZjKiFTOfEdaly7R1SpcYM0.mft rsync://rpki.ripe.net/repository/DEFAULT/KLD_eZjKiFTOfEdaly7R1SpcYM0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 17 Jan 2026 22:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:9a:fd:49:56:69:c3:ec:88:f6:c2:3a:4d:d1:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28b0ff7998ca8854ce7c475a972ed1d52a5c60cd Validity Not Before: Jan 2 16:22:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=139a627f2d4e5c3880b121d9e7be40deb3bde0c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7a:15:5d:79:c9:dc:a8:d8:10:2a:f3:b1:fa: f6:8f:1b:bf:03:5e:0d:5a:59:d3:8e:5a:77:f3:53: 96:58:2b:3c:9a:60:f4:0a:59:b6:eb:2a:c2:de:b8: 56:d1:49:b1:74:53:db:8f:67:cd:74:de:69:85:f1: 02:b8:b2:3e:40:37:b0:96:0f:17:2b:9f:cf:21:6f: 50:20:47:b0:7b:f1:b6:e0:19:a7:b0:1c:67:bf:74: 14:4d:e0:c0:3e:b9:e8:5d:34:b4:f2:c0:ad:7f:c9: 42:3b:6e:b5:05:55:50:30:86:c6:12:c9:d7:3b:a2: a9:49:7f:9d:40:25:01:4f:7e:f3:83:22:23:fd:c2: cd:a9:dc:02:01:fb:4a:81:55:5e:fa:97:2d:09:73: 58:c1:e0:77:b6:9c:ce:95:1a:00:84:a8:c1:13:af: 20:de:cb:ff:19:2c:90:60:3d:65:37:54:48:be:3e: c7:42:7a:cf:ad:ce:f2:e0:80:c6:67:a9:28:a8:0a: 4a:d7:c3:85:3c:b0:a8:e3:2a:1e:d4:86:3a:6e:a3: a6:b4:47:cf:78:04:31:58:b5:b2:ad:d9:23:61:7e: f9:fe:b2:e7:a2:48:b9:5a:1e:8a:2c:29:27:ed:cd: 83:f7:d5:b8:52:73:9e:02:cc:9a:91:9e:ac:89:31: 67:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9A:62:7F:2D:4E:5C:38:80:B1:21:D9:E7:BE:40:DE:B3:BD:E0:C1 X509v3 Authority Key Identifier: keyid:28:B0:FF:79:98:CA:88:54:CE:7C:47:5A:97:2E:D1:D5:2A:5C:60:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLD_eZjKiFTOfEdaly7R1SpcYM0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a0d674-87b6-4318-bed2-267547ea1e35/1/E5pify1OXDiAsSHZ575A3rO94ME.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a0d674-87b6-4318-bed2-267547ea1e35/1/KLD_eZjKiFTOfEdaly7R1SpcYM0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.119.221.0/24 185.119.223.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:47:12:9e:0c:4d:8b:55:48:b5:f1:8c:32:16:05:31:24:ef: b5:bf:1b:d4:8a:db:f5:71:7f:d9:02:ea:71:52:89:2a:15:55: 1f:23:ee:28:46:2f:ed:df:b8:08:14:b9:35:47:6e:f7:e2:4b: 01:08:f9:41:07:27:ee:0e:8b:00:6c:56:cc:c3:3d:78:ab:b0: 1c:7e:a7:ab:78:83:e2:23:88:e3:f3:92:c3:b8:34:43:06:e8: c8:31:c1:e0:b6:01:87:09:57:14:c5:71:c8:7a:5e:d7:cd:55: f5:f8:72:a4:12:75:2f:2e:09:66:8d:a5:c6:6d:f2:c2:50:c3: 48:b0:8f:b3:d3:84:3e:db:49:9a:33:e8:be:65:d4:a8:de:bd: 6e:e3:27:22:1a:90:c4:bc:27:af:b4:61:29:e6:e3:d8:32:90: f8:8f:d2:22:33:a6:64:dd:f6:29:90:3b:1b:55:6f:c0:69:ac: e5:b5:69:3b:f1:c1:67:d4:f8:56:4d:64:30:06:14:e6:f5:48: 24:fc:0c:b3:93:2a:24:71:70:48:8f:dc:5c:df:7c:d4:33:7e: 75:3f:d8:25:87:38:97:6d:a3:7f:52:74:20:3d:77:b1:9c:e3: 56:94:77:a2:80:e7:00:38:64:0e:9d:1a:41:f7:21:76:b9:bc: 88:50:ef:2f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hJr9SVZpw+yI9sI6TdEwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4YjBmZjc5OThjYTg4NTRjZTdjNDc1YTk3MmVkMWQ1MmE1 YzYwY2QwHhcNMjYwMTAyMTYyMjM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzlhNjI3ZjJkNGU1YzM4ODBiMTIxZDllN2JlNDBkZWIzYmRlMGMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnoVXXnJ3KjYECrzsfr2jxu/A14N WlnTjlp381OWWCs8mmD0Clm26yrC3rhW0UmxdFPbj2fNdN5phfECuLI+QDewlg8X K5/PIW9QIEewe/G24BmnsBxnv3QUTeDAPrnoXTS08sCtf8lCO261BVVQMIbGEsnX O6KpSX+dQCUBT37zgyIj/cLNqdwCAftKgVVe+pctCXNYweB3tpzOlRoAhKjBE68g 3sv/GSyQYD1lN1RIvj7HQnrPrc7y4IDGZ6koqApK18OFPLCo4yoe1IY6bqOmtEfP eAQxWLWyrdkjYX75/rLnoki5Wh6KLCkn7c2D99W4UnOeAsyakZ6siTFn4wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBOaYn8tTlw4gLEh2ee+QN6zveDBMB8GA1UdIwQY MBaAFCiw/3mYyohUznxHWpcu0dUqXGDNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0xEX2VaaktpRlRPZkVkYWx5N1IxU3BjWU0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9hMGQ2NzQtODdiNi00MzE4LWJlZDIt MjY3NTQ3ZWExZTM1LzEvRTVwaWZ5MU9YRGlBc1NIWjU3NUEzck85NE1FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9hMGQ2NzQtODdiNi00MzE4LWJlZDItMjY3NTQ3ZWExZTM1 LzEvS0xEX2VaaktpRlRPZkVkYWx5N1IxU3BjWU0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuXfdAwQA uXffMA0GCSqGSIb3DQEBCwUAA4IBAQAsRxKeDE2LVUi18YwyFgUxJO+1vxvUitv1 cX/ZAupxUokqFVUfI+4oRi/t37gIFLk1R2734ksBCPlBByfuDosAbFbMwz14q7Ac fqereIPiI4jj85LDuDRDBujIMcHgtgGHCVcUxXHIel7XzVX1+HKkEnUvLglmjaXG bfLCUMNIsI+z04Q+20maM+i+ZdSo3r1u4yciGpDEvCevtGEp5uPYMpD4j9IiM6Zk 3fYpkDsbVW/AaazltWk78cFn1PhWTWQwBhTm9Ugk/AyzkyokcXBIj9xc33zUM351 P9glhziXbaN/UnQgPXexnONWlHeigOcAOGQOnRpB9yF2ubyIUO8v -----END CERTIFICATE-----Generated at Sat Jan 17 06:46:24 2026 by rpki-client