This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/ej_ULItssuJKfpG-aO3TpOCfAcM.roa File: ej_ULItssuJKfpG-aO3TpOCfAcM.roa (raw, json) Hash identifier: MuVT+NmseLKCBtNzkD2hqoLRxqqBtVBwn/7W4rZMBJE= Subject key identifier: 7A:3F:D4:2C:8B:6C:B2:E2:4A:7E:91:BE:68:ED:D3:A4:E0:9F:01:C3 Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664 Certificate serial: 019B7A5B38A621C0B73F07E7AF8F3A318B76 Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/ej_ULItssuJKfpG-aO3TpOCfAcM.roa Signing time: Thu 01 Jan 2026 16:19:17 +0000 ROA not before: Thu 01 Jan 2026 16:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396356 IP address blocks: 45.134.20.0/24 maxlen: 24 2a0e:d787::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.mft rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:38:a6:21:c0:b7:3f:07:e7:af:8f:3a:31:8b:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664 Validity Not Before: Jan 1 16:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7a3fd42c8b6cb2e24a7e91be68edd3a4e09f01c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:23:cc:88:86:bd:fb:10:56:0a:2c:33:b3:f7: 2a:e3:e8:21:aa:35:46:31:b2:b1:da:b5:56:57:e6: aa:c5:ee:cc:6d:ef:2e:b8:fa:26:a4:68:ed:b8:71: 18:ab:c5:bd:b5:91:09:45:0a:5c:aa:2b:69:16:7f: c4:85:a3:ff:e2:5b:ae:38:2a:03:6f:cf:cb:3e:be: 83:90:86:f3:88:99:47:e4:91:2e:81:cd:cb:b1:c0: fb:3a:93:37:6d:be:35:ac:f0:74:be:7a:44:c3:d4: 7d:36:30:13:95:83:e9:56:a8:de:b2:4d:0b:ed:d8: b8:96:51:87:91:2a:72:49:3b:72:c3:15:42:31:6b: 50:4e:93:9a:83:a6:68:5a:b6:7f:bf:73:12:69:6b: c7:4b:d9:4a:4d:a0:ce:16:3d:a8:d1:23:4b:aa:4b: ef:7d:b7:6c:36:f1:af:f4:98:f3:f2:a5:48:24:f2: e4:3b:d7:73:61:e3:f4:0d:bd:b1:0f:1c:19:c6:61: a0:3b:e3:eb:0b:79:50:5d:ab:da:44:69:6d:2d:46: 9b:ab:bb:80:d2:2d:a0:e4:93:ad:70:79:1b:c6:2f: 8d:91:03:73:4b:a9:a4:b7:df:35:c2:8d:aa:de:ae: f3:d7:a7:a7:bc:6a:9c:56:20:9d:5f:e9:6a:ab:16: 2d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:3F:D4:2C:8B:6C:B2:E2:4A:7E:91:BE:68:ED:D3:A4:E0:9F:01:C3 X509v3 Authority Key Identifier: keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/ej_ULItssuJKfpG-aO3TpOCfAcM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.134.20.0/24 IPv6: 2a0e:d787::/32 Signature Algorithm: sha256WithRSAEncryption 01:bf:41:24:2f:1a:56:25:db:e0:ff:9c:ee:ab:26:b9:36:61: 2c:9a:7d:ea:4c:30:63:93:71:04:3d:2a:b4:2d:b2:73:8a:d9: 6f:fc:d8:23:15:6c:cb:82:56:86:d5:d1:30:8b:fe:c8:a4:26: 1b:27:77:35:82:51:d8:63:23:02:35:09:fb:d8:76:22:13:f9: 28:17:36:10:c4:f6:5f:4f:d0:71:f5:92:6b:8f:59:55:c6:d7: a9:1e:92:8d:29:ba:c8:c4:d5:d3:6e:f2:2b:05:88:d8:e1:d1: b3:d4:ad:24:8a:a3:ff:dd:10:8c:da:7d:7e:88:e0:21:0b:0f: 3d:98:c8:65:ed:e0:1c:00:e9:2c:1c:ea:d3:f4:b4:b2:75:57: 43:de:4e:b8:be:5a:2b:fe:69:ca:9c:71:4f:f4:4b:3a:f7:e9: 70:48:78:3d:84:d0:9a:b9:10:f2:c9:89:8e:fe:d0:df:b2:e6: 27:73:df:f1:ff:c9:93:36:03:3f:e5:6d:9e:8b:b1:fb:4f:18: 74:2e:7e:5c:2a:56:c3:b8:13:d2:89:57:11:3e:f7:6f:24:39: 60:2f:13:8d:dd:e0:1c:a7:8a:7d:a0:1a:b9:9c:a8:1b:62:05: 72:9e:58:88:59:4e:4f:ea:08:b3:0c:00:00:e9:94:4e:2e:cf: 9b:22:ef:70 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6WzimIcC3Pwfnr486MYt2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkMjk5OTA0MmM1ZTIwMDZiZDVhZWI3YTA1ZGUxZTk2YTVl NzM2NjQwHhcNMjYwMTAxMTYxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YTNmZDQyYzhiNmNiMmUyNGE3ZTkxYmU2OGVkZDNhNGUwOWYwMWMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnyPMiIa9+xBWCiwzs/cq4+ghqjVG MbKx2rVWV+aqxe7Mbe8uuPompGjtuHEYq8W9tZEJRQpcqitpFn/EhaP/4luuOCoD b8/LPr6DkIbziJlH5JEugc3LscD7OpM3bb41rPB0vnpEw9R9NjATlYPpVqjesk0L 7di4llGHkSpySTtywxVCMWtQTpOag6ZoWrZ/v3MSaWvHS9lKTaDOFj2o0SNLqkvv fbdsNvGv9Jjz8qVIJPLkO9dzYeP0Db2xDxwZxmGgO+PrC3lQXavaRGltLUabq7uA 0i2g5JOtcHkbxi+NkQNzS6mkt981wo2q3q7z16envGqcViCdX+lqqxYtnwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHo/1CyLbLLiSn6Rvmjt06TgnwHDMB8GA1UdIwQY MBaAFA0pmQQsXiAGvVrregXeHpal5zZkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUt OGMxNTM5NjViYWM5LzEvZWpfVUxJdHNzdUpLZnBHLWFPM1RwT0NmQWNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8yYzMzMTYtZWZjNy00OTUyLTllZmUtOGMxNTM5NjViYWM5 LzEvRFNtWkJDeGVJQWE5V3V0NkJkNGVscVhuTm1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALYYUMA0E AgACMAcDBQAqDteHMA0GCSqGSIb3DQEBCwUAA4IBAQABv0EkLxpWJdvg/5zuqya5 NmEsmn3qTDBjk3EEPSq0LbJzitlv/NgjFWzLglaG1dEwi/7IpCYbJ3c1glHYYyMC NQn72HYiE/koFzYQxPZfT9Bx9ZJrj1lVxtepHpKNKbrIxNXTbvIrBYjY4dGz1K0k iqP/3RCM2n1+iOAhCw89mMhl7eAcAOksHOrT9LSydVdD3k64vlor/mnKnHFP9Es6 9+lwSHg9hNCauRDyyYmO/tDfsuYnc9/x/8mTNgM/5W2ei7H7Txh0Ln5cKlbDuBPS iVcRPvdvJDlgLxON3eAcp4p9oBq5nKgbYgVynliIWU5P6gizDAAA6ZROLs+bIu9w -----END CERTIFICATE-----Generated at Mon Jan 19 19:58:13 2026 by rpki-client