This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/elsZw5UNevu557FyOOG6KkiDXvo.roa File: elsZw5UNevu557FyOOG6KkiDXvo.roa (raw, json) Hash identifier: wwwI1l79Xb0xd2Rit5arjgRX/v4vZ5blhrn/NtgU0g0= Subject key identifier: 7A:5B:19:C3:95:0D:7A:FB:B9:E7:B1:72:38:E1:BA:2A:48:83:5E:FA Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Certificate serial: 019B7AC7D383F0227DCF27E6FBE11ECC0D2A Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/elsZw5UNevu557FyOOG6KkiDXvo.roa Signing time: Thu 01 Jan 2026 18:17:54 +0000 ROA not before: Thu 01 Jan 2026 18:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56938 IP address blocks: 85.254.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:d3:83:f0:22:7d:cf:27:e6:fb:e1:1e:cc:0d:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Validity Not Before: Jan 1 18:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7a5b19c3950d7afbb9e7b17238e1ba2a48835efa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:17:67:2a:03:4b:c7:72:7d:aa:89:c6:4c:55: 2c:c7:62:94:7c:71:4a:79:96:a9:9a:67:84:5d:c6: 38:bd:f7:cd:42:7f:5d:50:50:c0:7c:b0:c1:ce:96: 93:12:38:74:60:f7:ca:ac:a4:d9:36:c7:94:c0:01: 22:9b:af:59:8e:45:b4:2e:a4:c1:98:1b:34:33:b8: a5:ef:4c:58:36:fc:d9:ad:54:71:37:70:a8:57:94: c2:52:fc:51:27:bd:2b:9a:3d:0a:9f:15:f9:35:7d: 8f:63:ec:74:54:d6:a9:9a:86:02:7e:68:90:b6:01: 7d:88:dd:18:1f:e9:a5:0e:ea:5b:4b:84:1e:2d:ad: a4:a6:fe:d8:66:70:4d:d4:6d:e9:f8:5d:90:80:d8: 97:9d:19:46:ef:41:5f:1c:c4:5b:8a:b0:9a:70:80: fe:08:ce:fc:c8:2f:5f:4b:81:49:bb:98:1e:86:4e: 9d:7c:1d:76:d5:b0:2d:20:52:ae:8c:fd:1a:42:8b: c0:b0:02:e8:ab:19:7a:a7:c3:26:0f:4b:30:a4:61: 50:5f:34:25:a3:5e:7b:c0:23:ce:10:bf:13:f6:09: db:3f:32:0c:0c:0c:ad:1b:77:56:7e:11:f7:7e:fa: e8:49:67:12:be:d3:7f:e2:f1:37:29:55:f8:92:4c: 95:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:5B:19:C3:95:0D:7A:FB:B9:E7:B1:72:38:E1:BA:2A:48:83:5E:FA X509v3 Authority Key Identifier: keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/elsZw5UNevu557FyOOG6KkiDXvo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.254.158.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:b4:32:e0:d3:74:bc:93:35:f5:87:40:14:2a:12:39:c6:bb: 1e:4b:74:6c:f6:37:34:74:42:c3:73:22:fb:02:18:05:f0:52: 6c:9a:02:9f:db:a7:e8:cb:a8:ef:87:f4:3e:f2:a0:3b:b6:07: 8c:c8:50:cb:3a:8e:d9:c0:72:89:d9:da:9b:c5:f8:38:99:dd: 61:0f:7c:bc:78:d0:22:8f:7c:1f:96:de:4c:d5:5d:cf:93:11: a5:52:b6:6c:10:54:e2:18:cf:15:ca:c0:82:41:bc:7c:3e:c4: 66:fd:cf:96:59:4a:92:5f:a4:9f:31:99:32:d1:3f:77:b3:17: 8b:08:8f:97:72:03:40:b5:45:6e:64:c3:50:51:5c:cf:9a:df: 09:bf:15:db:ea:81:f4:40:2a:ec:32:83:d8:7a:a7:86:c3:36: 3f:32:82:f6:91:ca:27:95:b3:60:49:a2:f5:38:2a:4c:88:e1: 1e:a8:40:be:c2:ce:cf:7e:5c:31:97:89:71:dc:9d:65:7d:2d: 1d:66:4b:9b:98:9e:43:41:e4:06:9a:42:db:9c:db:2f:8d:6b: 78:ac:76:97:cc:e6:3a:b3:af:ae:d4:12:6c:8c:f9:64:c0:1d: 1c:57:69:6d:f9:ad:cd:94:4e:54:35:66:ad:51:bc:d7:08:b4: ec:3b:6f:90 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x9OD8CJ9zyfm++EezA0qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm YzQxZWMwHhcNMjYwMTAxMTgxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YTViMTljMzk1MGQ3YWZiYjllN2IxNzIzOGUxYmEyYTQ4ODM1ZWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoxdnKgNLx3J9qonGTFUsx2KUfHFK eZapmmeEXcY4vffNQn9dUFDAfLDBzpaTEjh0YPfKrKTZNseUwAEim69ZjkW0LqTB mBs0M7il70xYNvzZrVRxN3CoV5TCUvxRJ70rmj0KnxX5NX2PY+x0VNapmoYCfmiQ tgF9iN0YH+mlDupbS4QeLa2kpv7YZnBN1G3p+F2QgNiXnRlG70FfHMRbirCacID+ CM78yC9fS4FJu5gehk6dfB121bAtIFKujP0aQovAsALoqxl6p8MmD0swpGFQXzQl o157wCPOEL8T9gnbPzIMDAytG3dWfhH3fvroSWcSvtN/4vE3KVX4kkyVYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHpbGcOVDXr7ueexcjjhuipIg176MB8GA1UdIwQY MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt NTU1NGQ2ZTE2ODZmLzEvZWxzWnc1VU5ldnU1NTdGeU9PRzZLa2lEWHZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVf6eMA0G CSqGSIb3DQEBCwUAA4IBAQAqtDLg03S8kzX1h0AUKhI5xrseS3Rs9jc0dELDcyL7 AhgF8FJsmgKf26foy6jvh/Q+8qA7tgeMyFDLOo7ZwHKJ2dqbxfg4md1hD3y8eNAi j3wflt5M1V3PkxGlUrZsEFTiGM8VysCCQbx8PsRm/c+WWUqSX6SfMZky0T93sxeL CI+XcgNAtUVuZMNQUVzPmt8JvxXb6oH0QCrsMoPYeqeGwzY/MoL2kconlbNgSaL1 OCpMiOEeqEC+ws7Pflwxl4lx3J1lfS0dZkubmJ5DQeQGmkLbnNsvjWt4rHaXzOY6 s6+u1BJsjPlkwB0cV2lt+a3NlE5UNWatUbzXCLTsO2+Q -----END CERTIFICATE-----Generated at Mon Jan 19 19:59:29 2026 by rpki-client