This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/EZMelYnsyxsc7u1d-UmuOELSVGA.roa File: EZMelYnsyxsc7u1d-UmuOELSVGA.roa (raw, json) Hash identifier: fiCJAdZiRwTzbxllvOptWzW5kDS3kt1J0JiXeIKn0tM= Subject key identifier: 11:93:1E:95:89:EC:CB:1B:1C:EE:ED:5D:F9:49:AE:38:42:D2:54:60 Certificate issuer: /CN=91a1173a70e41f4593547669ada22f0d7f68f354 Certificate serial: 019B7E37A089791F0D6B8E8678541DB016B5 Authority key identifier: 91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/EZMelYnsyxsc7u1d-UmuOELSVGA.roa Signing time: Fri 02 Jan 2026 10:18:53 +0000 ROA not before: Fri 02 Jan 2026 10:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209509 IP address blocks: 152.89.176.0/22 maxlen: 24 152.89.176.0/24 maxlen: 24 152.89.177.0/24 maxlen: 24 152.89.178.0/24 maxlen: 24 152.89.179.0/24 maxlen: 24 2a09:3340::/29 maxlen: 32 2a09:3340::/32 maxlen: 32 2a09:3341::/32 maxlen: 32 2a09:3342::/32 maxlen: 32 2a09:3343::/32 maxlen: 32 2a09:3344::/32 maxlen: 32 2a09:3345::/32 maxlen: 32 2a09:3346::/32 maxlen: 32 2a09:3347::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:a0:89:79:1f:0d:6b:8e:86:78:54:1d:b0:16:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91a1173a70e41f4593547669ada22f0d7f68f354 Validity Not Before: Jan 2 10:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=11931e9589eccb1b1ceeed5df949ae3842d25460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:15:02:47:26:69:55:95:65:e4:88:03:7d:6f: 2a:7e:ed:08:0c:50:ec:55:5f:35:ba:c2:b6:f0:06: c2:f3:46:67:c1:b8:b3:81:f6:9a:b8:fb:71:e9:43: 5c:b8:dc:47:c2:5e:f4:94:5a:41:5e:2e:3f:ca:1e: 32:a9:8c:bf:2b:45:99:4c:48:0a:3e:c6:5e:48:7c: 3d:15:13:b3:87:29:8e:f4:3b:f6:17:6d:6b:09:cb: 72:c1:8e:98:ee:35:64:5b:5c:73:51:4e:5d:33:7d: f7:a5:9a:49:e8:16:66:ab:e0:ad:22:59:73:ba:98: 95:a7:27:52:f2:e1:c9:a5:31:f4:08:82:95:22:10: cf:d7:27:96:19:09:87:f4:be:c6:de:95:c1:b4:9e: 20:7d:f5:16:4e:4a:c2:2f:57:9b:a3:e1:48:2b:87: 92:33:ec:30:fb:b9:7f:34:11:8d:eb:da:7b:57:06: c9:45:f0:60:8e:00:03:f4:64:5b:23:8b:ca:92:7c: b2:ee:36:e7:40:94:ac:9e:3a:28:97:d7:c5:96:58: 4a:c8:5a:f5:89:bc:d6:ec:75:33:dc:c8:1f:9d:f2: 45:ad:31:49:45:da:b7:52:3f:84:d7:5a:e4:05:12: d2:e1:e5:21:a9:72:11:8e:8c:e8:82:64:9f:d5:40: bf:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:93:1E:95:89:EC:CB:1B:1C:EE:ED:5D:F9:49:AE:38:42:D2:54:60 X509v3 Authority Key Identifier: keyid:91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/EZMelYnsyxsc7u1d-UmuOELSVGA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.89.176.0/22 IPv6: 2a09:3340::/29 Signature Algorithm: sha256WithRSAEncryption 57:af:71:ca:bb:ff:09:a4:67:b9:16:4e:6f:6f:33:25:97:09: 24:80:95:75:7d:9c:40:86:c6:60:a9:28:0d:3c:ee:2f:37:d5: 55:63:43:85:f2:12:8d:b7:7a:4d:eb:9b:55:94:80:e0:4c:14: 88:1a:75:9a:b9:64:ab:2c:f3:20:8c:5b:64:ab:2c:1a:2a:a1: 07:0b:a5:6b:37:5c:f8:aa:95:1e:d4:fb:d8:c7:20:0b:1a:4d: 43:5b:5a:46:69:1d:7a:19:44:78:22:d2:f8:7f:07:67:da:5c: a2:4f:24:f3:b4:f7:cd:e2:d7:24:fe:89:33:d6:1f:51:d8:40: 74:aa:7a:70:a7:e6:0f:bf:a2:8e:fc:ec:12:3d:77:a4:97:73: 11:58:fb:9f:6d:af:06:7e:66:58:ec:79:a8:c5:e6:88:7c:7d: 01:3e:a8:d6:f5:76:ed:47:89:4e:c3:a5:5b:10:c7:c1:2b:0a: 5a:d6:cf:d8:65:b4:b4:04:da:94:37:f1:d8:82:4d:57:51:0d: a5:6d:b7:ff:76:4e:af:d1:d3:42:c4:ad:cc:c1:d6:57:a4:18: b8:0f:a2:44:93:b3:33:e0:90:cb:25:d1:fc:54:92:70:5a:cf: b8:2a:31:b3:d0:58:a6:a2:40:2e:a0:61:b7:fc:03:8b:db:2a: cd:2d:31:c1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+N6CJeR8Na46GeFQdsBa1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxYTExNzNhNzBlNDFmNDU5MzU0NzY2OWFkYTIyZjBkN2Y2 OGYzNTQwHhcNMjYwMTAyMTAxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTkzMWU5NTg5ZWNjYjFiMWNlZWVkNWRmOTQ5YWUzODQyZDI1NDYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRUCRyZpVZVl5IgDfW8qfu0IDFDs VV81usK28AbC80ZnwbizgfaauPtx6UNcuNxHwl70lFpBXi4/yh4yqYy/K0WZTEgK PsZeSHw9FROzhymO9Dv2F21rCctywY6Y7jVkW1xzUU5dM333pZpJ6BZmq+CtIllz upiVpydS8uHJpTH0CIKVIhDP1yeWGQmH9L7G3pXBtJ4gffUWTkrCL1ebo+FIK4eS M+ww+7l/NBGN69p7VwbJRfBgjgAD9GRbI4vKknyy7jbnQJSsnjool9fFllhKyFr1 ibzW7HUz3MgfnfJFrTFJRdq3Uj+E11rkBRLS4eUhqXIRjozogmSf1UC/GwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBGTHpWJ7MsbHO7tXflJrjhC0lRgMB8GA1UdIwQY MBaAFJGhFzpw5B9Fk1R2aa2iLw1/aPNUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2FFWE9uRGtIMFdUVkhacHJhSXZEWDlvODFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8zNGU1M2YtNjc1OS00Y2Y1LTk4MDEt NWQ2MzBlMjAzZmQ1LzEvRVpNZWxZbnN5eHNjN3UxZC1VbXVPRUxTVkdBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8zNGU1M2YtNjc1OS00Y2Y1LTk4MDEtNWQ2MzBlMjAzZmQ1 LzEva2FFWE9uRGtIMFdUVkhacHJhSXZEWDlvODFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCmFmwMA0E AgACMAcDBQMqCTNAMA0GCSqGSIb3DQEBCwUAA4IBAQBXr3HKu/8JpGe5Fk5vbzMl lwkkgJV1fZxAhsZgqSgNPO4vN9VVY0OF8hKNt3pN65tVlIDgTBSIGnWauWSrLPMg jFtkqywaKqEHC6VrN1z4qpUe1PvYxyALGk1DW1pGaR16GUR4ItL4fwdn2lyiTyTz tPfN4tck/okz1h9R2EB0qnpwp+YPv6KO/OwSPXekl3MRWPufba8GfmZY7HmoxeaI fH0BPqjW9XbtR4lOw6VbEMfBKwpa1s/YZbS0BNqUN/HYgk1XUQ2lbbf/dk6v0dNC xK3MwdZXpBi4D6JEk7Mz4JDLJdH8VJJwWs+4KjGz0FimokAuoGG3/AOL2yrNLTHB -----END CERTIFICATE-----Generated at Mon Feb 9 22:28:01 2026 by rpki-client