This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/EScHO_hZczomCnoprBz9oYDooAM.roa File: EScHO_hZczomCnoprBz9oYDooAM.roa (raw, json) Hash identifier: 4MTuC1uLMwXcp3WrNDw8r2lfD4JCPG95ZOo//y7/h8o= Subject key identifier: 11:27:07:3B:F8:59:73:3A:26:0A:7A:29:AC:1C:FD:A1:80:E8:A0:03 Certificate issuer: /CN=5f96676cf398d3994c4dd4a296594614dff586c7 Certificate serial: 019BBB6C5A069E50A4E1B11DA870DAE04A5E Authority key identifier: 5F:96:67:6C:F3:98:D3:99:4C:4D:D4:A2:96:59:46:14:DF:F5:86:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5ZnbPOY05lMTdSilllGFN_1hsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/EScHO_hZczomCnoprBz9oYDooAM.roa Signing time: Wed 14 Jan 2026 07:33:18 +0000 ROA not before: Wed 14 Jan 2026 07:33:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9121 IP address blocks: 89.39.151.0/24 maxlen: 24 89.40.131.0/24 maxlen: 24 89.42.34.0/24 maxlen: 24 92.114.34.0/24 maxlen: 24 94.177.64.0/24 maxlen: 24 188.208.18.0/24 maxlen: 24 188.240.16.0/24 maxlen: 24 188.240.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/X5ZnbPOY05lMTdSilllGFN_1hsc.crl rsync://rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/X5ZnbPOY05lMTdSilllGFN_1hsc.mft rsync://rpki.ripe.net/repository/DEFAULT/X5ZnbPOY05lMTdSilllGFN_1hsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:bb:6c:5a:06:9e:50:a4:e1:b1:1d:a8:70:da:e0:4a:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f96676cf398d3994c4dd4a296594614dff586c7 Validity Not Before: Jan 14 07:33:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1127073bf859733a260a7a29ac1cfda180e8a003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ac:24:e8:1d:19:74:7e:64:79:51:c8:19:c3: 30:ce:91:4e:ed:5c:da:c6:86:7b:4b:32:c0:15:42: 96:4a:bc:49:02:d0:8e:30:63:89:24:01:b5:da:8e: 9c:8c:3c:68:1b:c8:b6:fd:ba:4f:0f:6a:24:fa:c7: f1:8d:4a:e0:c2:4e:80:61:ae:b9:dd:9f:3b:70:3b: 8d:8c:00:29:01:2e:43:73:30:ce:d7:95:e8:ac:17: 18:98:2c:28:26:49:7e:50:3c:59:d8:27:f8:a9:95: 4b:52:31:10:88:c5:4d:ab:21:3a:61:71:74:53:fe: 7a:87:96:b2:56:5a:a2:a8:d3:6b:63:aa:b9:e3:ff: 71:3b:cb:2a:60:7a:61:1b:a3:31:65:40:99:79:37: 29:04:ff:a4:c6:f6:7e:ed:ec:f7:0a:3a:f1:2a:1d: af:ca:07:78:3d:ba:7e:ba:84:8b:de:1d:12:c7:8d: 0d:8e:a0:99:a4:98:b3:3f:7d:79:bd:cf:41:9d:a3: 0d:95:30:e5:35:fb:33:5e:c7:60:d3:12:b7:3c:75: ea:d4:28:d6:43:a3:2b:4c:19:e0:19:9a:3b:62:99: 36:4b:e3:ff:6e:22:27:64:0c:c5:ba:c3:5e:11:39: e5:38:f1:e3:fe:5f:53:a1:88:22:37:64:73:b7:db: a3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:27:07:3B:F8:59:73:3A:26:0A:7A:29:AC:1C:FD:A1:80:E8:A0:03 X509v3 Authority Key Identifier: keyid:5F:96:67:6C:F3:98:D3:99:4C:4D:D4:A2:96:59:46:14:DF:F5:86:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5ZnbPOY05lMTdSilllGFN_1hsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/EScHO_hZczomCnoprBz9oYDooAM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/X5ZnbPOY05lMTdSilllGFN_1hsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.39.151.0/24 89.40.131.0/24 89.42.34.0/24 92.114.34.0/24 94.177.64.0/24 188.208.18.0/24 188.240.16.0/24 188.240.46.0/24 Signature Algorithm: sha256WithRSAEncryption cf:15:44:14:49:26:69:5e:6b:53:55:d7:b2:bc:d3:f6:e8:82: 99:8f:df:d5:ad:60:a6:28:77:a4:26:fc:30:9f:bf:c4:bd:66: a3:b6:f8:e5:e0:76:5e:0e:8f:64:b8:c5:72:b2:eb:bf:3c:ed: 46:71:6f:1a:62:9f:bd:98:1e:1b:f0:41:d6:89:4f:f3:e3:5d: fe:ea:77:ec:fe:4b:c2:c8:a9:c7:cb:75:fe:d0:e1:76:35:c1: d6:30:06:85:11:46:29:5e:e6:a2:8d:5c:a2:e5:ab:f4:a0:a0: 22:71:21:88:9c:2b:54:d1:0e:46:57:48:5e:d7:67:49:06:ca: bb:a4:15:6b:46:70:aa:d3:12:ed:57:3d:99:7d:c4:56:d4:06: bb:10:99:03:1d:10:11:08:b5:00:73:71:b9:cd:03:7e:3e:57: 81:32:68:cc:79:9e:3f:d8:58:f0:c7:76:67:7b:89:82:75:75: fd:e4:8f:2c:8d:f4:de:b8:ee:0c:a4:8d:dd:66:24:90:c3:e1: d9:2d:13:8d:cc:db:d4:e3:11:95:75:e8:6d:9a:5b:10:2f:36: 67:8b:77:36:e6:ca:95:b6:28:8c:04:ec:9f:f6:be:d4:e3:99: 70:68:52:d9:7f:7d:9e:26:fb:ac:54:15:66:3b:1c:ab:ab:0e: 92:32:46:2d -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZu7bFoGnlCk4bEdqHDa4EpeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmOTY2NzZjZjM5OGQzOTk0YzRkZDRhMjk2NTk0NjE0ZGZm NTg2YzcwHhcNMjYwMTE0MDczMzE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTI3MDczYmY4NTk3MzNhMjYwYTdhMjlhYzFjZmRhMTgwZThhMDAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKwk6B0ZdH5keVHIGcMwzpFO7Vza xoZ7SzLAFUKWSrxJAtCOMGOJJAG12o6cjDxoG8i2/bpPD2ok+sfxjUrgwk6AYa65 3Z87cDuNjAApAS5DczDO15XorBcYmCwoJkl+UDxZ2Cf4qZVLUjEQiMVNqyE6YXF0 U/56h5ayVlqiqNNrY6q54/9xO8sqYHphG6MxZUCZeTcpBP+kxvZ+7ez3CjrxKh2v ygd4Pbp+uoSL3h0Sx40NjqCZpJizP315vc9BnaMNlTDlNfszXsdg0xK3PHXq1CjW Q6MrTBngGZo7Ypk2S+P/biInZAzFusNeETnlOPHj/l9ToYgiN2Rzt9ujvwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFBEnBzv4WXM6Jgp6Kawc/aGA6KADMB8GA1UdIwQY MBaAFF+WZ2zzmNOZTE3UopZZRhTf9YbHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDVabmJQT1kwNWxNVGRTaWxsbEdGTl8xaHNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC82YTY4MDUtNWNlMC00MTI4LWEwNGMt ZjYyZjM1YWY0MzcxLzEvRVNjSE9faFpjem9tQ25vcHJCejlvWURvb0FNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC82YTY4MDUtNWNlMC00MTI4LWEwNGMtZjYyZjM1YWY0Mzcx LzEvWDVabmJQT1kwNWxNVGRTaWxsbEdGTl8xaHNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAWSeXAwQA WSiDAwQAWSoiAwQAXHIiAwQAXrFAAwQAvNASAwQAvPAQAwQAvPAuMA0GCSqGSIb3 DQEBCwUAA4IBAQDPFUQUSSZpXmtTVdeyvNP26IKZj9/VrWCmKHekJvwwn7/EvWaj tvjl4HZeDo9kuMVysuu/PO1GcW8aYp+9mB4b8EHWiU/z413+6nfs/kvCyKnHy3X+ 0OF2NcHWMAaFEUYpXuaijVyi5av0oKAicSGInCtU0Q5GV0he12dJBsq7pBVrRnCq 0xLtVz2ZfcRW1Aa7EJkDHRARCLUAc3G5zQN+PleBMmjMeZ4/2Fjwx3Zne4mCdXX9 5I8sjfTeuO4MpI3dZiSQw+HZLRONzNvU4xGVdehtmlsQLzZni3c25sqVtiiMBOyf 9r7U45lwaFLZf32eJvusVBVmOxyrqw6SMkYt -----END CERTIFICATE-----Generated at Wed Jan 21 13:19:08 2026 by rpki-client