This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/EP-Dzz1NsbE3FdE9FqHYCykGClM.roa File: EP-Dzz1NsbE3FdE9FqHYCykGClM.roa (raw, json) Hash identifier: j4hgB5ZXwadY27nb0X3WLEn8DWlc84cj5g+efdOnuH8= Subject key identifier: 10:FF:83:CF:3D:4D:B1:B1:37:15:D1:3D:16:A1:D8:0B:29:06:0A:53 Certificate issuer: /CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d Certificate serial: 019B77591A71905BF995DEABF43CFF12E63C Authority key identifier: D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/EP-Dzz1NsbE3FdE9FqHYCykGClM.roa Signing time: Thu 01 Jan 2026 02:18:06 +0000 ROA not before: Thu 01 Jan 2026 02:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209379 IP address blocks: 185.203.200.0/22 maxlen: 22 2a0a:edc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:1a:71:90:5b:f9:95:de:ab:f4:3c:ff:12:e6:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d Validity Not Before: Jan 1 02:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=10ff83cf3d4db1b13715d13d16a1d80b29060a53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bb:e9:46:74:66:8f:1f:40:6d:9c:67:01:de: 15:0d:0a:fb:d9:28:5b:d3:13:e7:cf:58:78:d0:95: c7:3a:f2:d0:fa:22:56:52:77:48:8d:1d:8e:3a:65: 9e:44:67:a7:d2:f9:e3:c1:0c:94:2c:12:56:3e:11: 0e:b2:cf:c0:d1:20:21:9b:a5:61:d6:6b:fa:ee:ec: 38:39:3a:a4:fe:a6:18:69:da:f9:08:8a:e9:79:c7: 69:4e:7f:0b:4b:bd:d2:fe:c6:28:19:79:8d:e4:95: 75:49:08:c6:b2:6d:8e:02:bf:e5:db:a4:e6:29:be: 6e:b8:4b:b3:a7:d0:10:f2:2b:9a:14:4d:91:98:74: 0f:5d:56:19:75:6e:e9:af:60:a4:a9:aa:7e:fc:b8: 9a:e0:05:c0:03:bb:49:f6:d5:8d:56:36:99:c7:13: f3:58:d9:ab:a5:c9:cc:31:ba:61:da:85:83:ae:7a: 39:56:bd:df:fd:46:d5:ce:14:4c:c6:b8:d8:c9:e9: 2b:a9:3d:62:7b:a0:1a:00:86:d2:46:4d:76:3c:0d: 66:81:09:92:a2:14:a2:81:3d:88:7e:b6:4f:21:6a: 73:5c:e7:a6:b5:50:0b:18:7f:32:b4:8e:a2:54:e1: a1:c3:b1:a8:43:d2:b5:2c:82:a4:0b:0e:fa:41:b1: 2c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:FF:83:CF:3D:4D:B1:B1:37:15:D1:3D:16:A1:D8:0B:29:06:0A:53 X509v3 Authority Key Identifier: keyid:D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/EP-Dzz1NsbE3FdE9FqHYCykGClM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.203.200.0/22 IPv6: 2a0a:edc0::/32 Signature Algorithm: sha256WithRSAEncryption b6:f5:76:4a:4b:98:f0:ee:8f:4a:23:a1:48:be:d6:3b:f8:73: 17:cc:cd:70:46:c7:3d:1d:34:b0:a0:eb:cf:5e:80:b0:51:3b: 7b:63:bf:0a:64:a1:d7:d1:10:17:b1:97:c5:01:c7:d3:d6:8c: c6:85:a3:5d:a2:0d:6c:9b:6d:65:46:21:ae:74:f0:fa:ce:01: 71:a5:8a:fe:0a:73:c9:fd:01:1d:db:04:73:94:ce:66:8f:e1: 70:09:80:e9:80:3b:73:51:40:dc:26:92:d2:d5:7f:3b:56:47: f8:fa:d5:84:25:a4:01:d7:ec:b6:08:df:82:52:fb:50:15:e2: 47:b8:80:25:48:41:c2:61:0a:1f:86:1d:ba:af:f8:51:af:95: f7:33:cf:7d:46:6d:ee:09:6e:0e:0d:34:cf:a1:a0:b8:48:41: 41:77:c4:56:bf:7c:38:c1:2c:07:f5:67:3a:aa:b5:c7:ff:8d: e2:0d:2f:b2:67:20:bd:cd:69:86:13:70:23:1b:d7:ba:50:6a: e6:55:47:e0:b5:ce:56:3a:7c:98:74:63:1e:79:0a:c7:13:b3: eb:bd:10:99:f2:84:fe:cb:d9:17:e0:e6:30:b7:cb:c4:c8:3b: b6:17:d0:8a:5d:8b:99:8e:9c:3e:bc:a3:13:d7:a3:a9:fe:9d: 4c:05:39:a1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WRpxkFv5ld6r9Dz/EuY8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2MzM0M2Y3Y2M2YzIzN2RhM2Y4YjgxMTM4YzA1MWQ4Zjkz YzljNGQwHhcNMjYwMTAxMDIxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMGZmODNjZjNkNGRiMWIxMzcxNWQxM2QxNmExZDgwYjI5MDYwYTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbvpRnRmjx9AbZxnAd4VDQr72Shb 0xPnz1h40JXHOvLQ+iJWUndIjR2OOmWeRGen0vnjwQyULBJWPhEOss/A0SAhm6Vh 1mv67uw4OTqk/qYYadr5CIrpecdpTn8LS73S/sYoGXmN5JV1SQjGsm2OAr/l26Tm Kb5uuEuzp9AQ8iuaFE2RmHQPXVYZdW7pr2Ckqap+/Lia4AXAA7tJ9tWNVjaZxxPz WNmrpcnMMbph2oWDrno5Vr3f/UbVzhRMxrjYyekrqT1ie6AaAIbSRk12PA1mgQmS ohSigT2IfrZPIWpzXOemtVALGH8ytI6iVOGhw7GoQ9K1LIKkCw76QbEsUwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBD/g889TbGxNxXRPRah2AspBgpTMB8GA1UdIwQY MBaAFNYzQ/fMbCN9o/i4ETjAUdj5PJxNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS84ZWI1ODEtOWM3NC00OGUxLTgyMWEt NTMxODBlZWM1NmZiLzEvRVAtRHp6MU5zYkUzRmRFOUZxSFlDeWtHQ2xNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS84ZWI1ODEtOWM3NC00OGUxLTgyMWEtNTMxODBlZWM1NmZi LzEvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCucvIMA0E AgACMAcDBQAqCu3AMA0GCSqGSIb3DQEBCwUAA4IBAQC29XZKS5jw7o9KI6FIvtY7 +HMXzM1wRsc9HTSwoOvPXoCwUTt7Y78KZKHX0RAXsZfFAcfT1ozGhaNdog1sm21l RiGudPD6zgFxpYr+CnPJ/QEd2wRzlM5mj+FwCYDpgDtzUUDcJpLS1X87Vkf4+tWE JaQB1+y2CN+CUvtQFeJHuIAlSEHCYQofhh26r/hRr5X3M899Rm3uCW4ODTTPoaC4 SEFBd8RWv3w4wSwH9Wc6qrXH/43iDS+yZyC9zWmGE3AjG9e6UGrmVUfgtc5WOnyY dGMeeQrHE7PrvRCZ8oT+y9kX4OYwt8vEyDu2F9CKXYuZjpw+vKMT16Op/p1MBTmh -----END CERTIFICATE-----Generated at Mon Feb 9 18:44:08 2026 by rpki-client