This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/EQGugxJGZZhy7ULlXu2xf-8SXLU.roa File: EQGugxJGZZhy7ULlXu2xf-8SXLU.roa (raw, json) Hash identifier: UznnK9y+/YnAzmFCMUsWlBbf7xpLU6GolAvI0bvVwdE= Subject key identifier: 11:01:AE:83:12:46:65:98:72:ED:42:E5:5E:ED:B1:7F:EF:12:5C:B5 Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7 Certificate serial: 019B8DC2E2342A07E0FDCAE3E517E58966D5 Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/EQGugxJGZZhy7ULlXu2xf-8SXLU.roa Signing time: Mon 05 Jan 2026 10:45:17 +0000 ROA not before: Mon 05 Jan 2026 10:45:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203963 IP address blocks: 94.74.137.0/24 maxlen: 24 94.74.156.0/24 maxlen: 24 94.74.159.0/24 maxlen: 24 109.203.163.0/24 maxlen: 24 176.46.136.0/24 maxlen: 24 176.46.142.0/24 maxlen: 24 176.46.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.mft rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:8d:c2:e2:34:2a:07:e0:fd:ca:e3:e5:17:e5:89:66:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7 Validity Not Before: Jan 5 10:45:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1101ae831246659872ed42e55eedb17fef125cb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:db:07:9c:58:8f:ae:d4:fb:ac:a4:d3:04:e1: 6c:f0:07:65:68:83:13:2e:bc:86:79:0b:5e:1d:07: 8c:8f:05:39:d6:74:9b:60:26:b3:0d:ec:6e:16:be: 78:49:dc:33:11:2a:d6:14:47:df:59:b4:41:c6:cc: d7:aa:1c:33:4f:79:00:b4:e9:bb:78:b4:ae:28:ca: dd:51:00:3d:1d:50:df:8a:c8:29:be:0f:3b:26:4e: 4b:28:17:d5:1b:7e:26:cb:77:88:79:e8:7c:ce:a3: cb:62:19:bd:a6:8f:2f:50:0f:33:a6:ff:1d:3a:9b: de:59:58:d8:79:ea:5e:b8:b5:f1:cd:10:84:81:db: a8:6b:54:5d:66:9b:4f:f8:bf:ff:f3:49:ab:f9:2a: 9e:96:07:65:dc:d2:d1:3e:e8:a8:9e:8e:07:0d:4a: c3:8a:2d:63:10:ad:2e:6b:bf:d0:b7:5e:31:7c:eb: ec:b9:58:32:4e:0a:9d:d4:bb:a2:f6:d8:87:3a:e5: 4b:13:92:6a:9d:1d:fa:8a:4f:b8:bf:48:f9:eb:22: b0:5f:d6:e2:64:08:c3:07:62:23:52:cb:26:85:72: 86:fe:e9:55:9e:29:be:35:e9:08:bd:88:dc:15:5d: 18:65:af:36:99:1a:20:76:9c:80:35:f1:42:3f:10: 9e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:01:AE:83:12:46:65:98:72:ED:42:E5:5E:ED:B1:7F:EF:12:5C:B5 X509v3 Authority Key Identifier: keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/EQGugxJGZZhy7ULlXu2xf-8SXLU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.74.137.0/24 94.74.156.0/24 94.74.159.0/24 109.203.163.0/24 176.46.136.0/24 176.46.142.0/24 176.46.150.0/24 Signature Algorithm: sha256WithRSAEncryption 00:ba:3d:da:36:fe:1a:b4:ea:95:a6:62:f4:51:ba:c3:c1:d6: b5:a7:9d:7f:6a:e4:50:ba:99:a1:56:2f:85:4f:15:9a:c2:2f: 1a:16:84:9b:dc:3f:28:57:1f:87:93:0b:63:2b:81:5b:cf:48: 01:35:84:7e:78:75:bc:19:5b:b6:12:46:f2:87:1c:86:17:a4: 75:0a:95:d0:42:23:40:58:cd:b9:99:a8:ca:2e:3f:d4:b1:39: 0c:26:69:8b:37:50:05:e7:69:53:a8:70:c3:ee:55:14:5b:8f: 69:bf:4b:39:9a:fd:22:48:41:13:d7:a1:f2:57:8d:61:a2:f4: 79:d4:73:7f:f6:30:4b:f9:18:a2:30:2b:75:a3:22:4b:8c:35: 2b:a7:33:80:a3:4a:d3:dc:c3:ba:d8:40:34:a6:45:1a:26:4a: 61:80:b8:cd:1b:2e:e6:17:93:0b:2e:e9:b0:6c:15:63:78:3d: 48:db:0b:f9:35:89:2b:71:59:fb:09:8f:42:e8:8b:f7:36:bd: 3a:96:e2:ba:61:76:dc:d1:e7:24:ba:39:d4:03:ae:57:8f:51: 22:6b:73:e7:87:2b:17:f4:b1:44:43:1d:b0:83:2d:d4:28:d6: 59:b5:d3:89:f3:77:19:78:26:a1:ee:00:ac:98:df:86:00:e1: 01:a6:b2:08 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZuNwuI0Kgfg/crj5RfliWbVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2MDQ3NWViZTdmMDdkNzQxNTNjYjFjY2EzMzhjMTZkODAx ZjQ1ZjcwHhcNMjYwMTA1MTA0NTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTAxYWU4MzEyNDY2NTk4NzJlZDQyZTU1ZWVkYjE3ZmVmMTI1Y2I1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdsHnFiPrtT7rKTTBOFs8AdlaIMT LryGeQteHQeMjwU51nSbYCazDexuFr54SdwzESrWFEffWbRBxszXqhwzT3kAtOm7 eLSuKMrdUQA9HVDfisgpvg87Jk5LKBfVG34my3eIeeh8zqPLYhm9po8vUA8zpv8d OpveWVjYeepeuLXxzRCEgduoa1RdZptP+L//80mr+Sqelgdl3NLRPuiono4HDUrD ii1jEK0ua7/Qt14xfOvsuVgyTgqd1Lui9tiHOuVLE5JqnR36ik+4v0j56yKwX9bi ZAjDB2IjUssmhXKG/ulVnim+NekIvYjcFV0YZa82mRogdpyANfFCPxCeTQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFBEBroMSRmWYcu1C5V7tsX/vEly1MB8GA1UdIwQY MBaAFNYEdevn8H10FTyxzKM4wW2AH0X3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2Mt NDk2ZjhlYmIyZDYxLzEvRVFHdWd4SkdaWmh5N1VMbFh1MnhmLThTWExVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2MtNDk2ZjhlYmIyZDYx LzEvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAXkqJAwQA XkqcAwQAXkqfAwQAbcujAwQAsC6IAwQAsC6OAwQAsC6WMA0GCSqGSIb3DQEBCwUA A4IBAQAAuj3aNv4atOqVpmL0UbrDwda1p51/auRQupmhVi+FTxWawi8aFoSb3D8o Vx+HkwtjK4Fbz0gBNYR+eHW8GVu2EkbyhxyGF6R1CpXQQiNAWM25majKLj/UsTkM JmmLN1AF52lTqHDD7lUUW49pv0s5mv0iSEET16HyV41hovR51HN/9jBL+RiiMCt1 oyJLjDUrpzOAo0rT3MO62EA0pkUaJkphgLjNGy7mF5MLLumwbBVjeD1I2wv5NYkr cVn7CY9C6Iv3Nr06luK6YXbc0eckujnUA65Xj1Eia3PnhysX9LFEQx2wgy3UKNZZ tdOJ83cZeCah7gCsmN+GAOEBprII -----END CERTIFICATE-----Generated at Wed Jan 21 22:55:38 2026 by rpki-client