This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/EIWc_1ygbfLXQxwP5S5_H6DcG8c.roa File: EIWc_1ygbfLXQxwP5S5_H6DcG8c.roa (raw, json) Hash identifier: kPxNx2015YLvTZ5DmOKJCBp5fmIfHBjjcBVt2F9GGPE= Subject key identifier: 10:85:9C:FF:5C:A0:6D:F2:D7:43:1C:0F:E5:2E:7F:1F:A0:DC:1B:C7 Certificate issuer: /CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c Certificate serial: 019B79ED5AFDAA9EE0A9EA8F0E158A4B42D2 Authority key identifier: 47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/EIWc_1ygbfLXQxwP5S5_H6DcG8c.roa Signing time: Thu 01 Jan 2026 14:19:16 +0000 ROA not before: Thu 01 Jan 2026 14:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55933 IP address blocks: 85.208.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 17:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:5a:fd:aa:9e:e0:a9:ea:8f:0e:15:8a:4b:42:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c Validity Not Before: Jan 1 14:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=10859cff5ca06df2d7431c0fe52e7f1fa0dc1bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:69:07:9d:7c:8a:85:b2:df:88:64:56:85:d9: 25:d5:1e:54:53:eb:2d:fc:6b:0e:62:68:71:6f:a8: 94:a7:dd:05:50:f4:d3:39:4b:26:5b:a1:0f:df:78: ea:ac:cf:ba:fe:e2:6c:cd:14:e0:73:e8:27:c4:75: 6f:0d:51:eb:5d:5f:c7:62:7c:e3:17:9b:d7:bf:22: 19:0b:b3:2e:60:f9:ad:e4:f3:69:81:ce:1f:23:f4: bb:94:7d:91:a0:af:63:f0:37:67:63:45:53:83:f4: d2:29:67:12:47:de:ee:c3:88:b3:85:aa:f8:c6:c3: 3a:6c:83:97:47:16:85:ce:f7:eb:43:9c:a5:f6:35: fc:76:8e:f0:73:2c:2a:b4:0e:46:50:4a:12:4b:74: e1:f6:32:69:1b:48:0e:f5:d3:e7:83:33:89:dd:a5: 59:10:7a:39:fd:7f:d0:54:9e:41:24:96:ab:76:0d: 65:b8:5c:5d:e7:a0:5e:3d:15:9b:8c:c1:0c:1f:5a: 64:b1:36:21:b9:f7:73:e5:19:9b:46:b9:1e:18:05: f1:f8:58:bd:8c:f6:20:45:12:50:c9:0e:88:c9:97: 38:cd:fb:9f:db:66:53:dd:d0:43:50:d6:1a:d6:a4: e5:12:3b:a9:c3:a7:86:21:ad:17:d9:67:90:30:93: 35:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:85:9C:FF:5C:A0:6D:F2:D7:43:1C:0F:E5:2E:7F:1F:A0:DC:1B:C7 X509v3 Authority Key Identifier: keyid:47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/EIWc_1ygbfLXQxwP5S5_H6DcG8c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.208.212.0/22 Signature Algorithm: sha256WithRSAEncryption cc:a1:ba:12:88:cb:12:ca:7c:ae:6a:76:73:96:9a:4b:05:01: 70:57:19:7f:6e:9f:7a:c0:ad:5f:c1:83:c3:34:a0:15:ef:ec: 5f:f4:f9:7c:34:fe:f6:db:fa:46:6e:7c:b9:e7:7a:c8:86:e4: 65:8a:99:6d:46:cf:49:c0:db:78:ce:23:d0:55:ca:5c:ca:f0: 3c:fd:2f:c4:c2:28:38:04:e7:58:b2:0c:57:50:fc:12:b9:8f: 30:d0:ef:88:50:35:a1:f0:30:87:41:4a:83:52:4e:39:20:11: b3:ee:98:f3:99:c1:2d:ba:6e:51:8a:88:67:90:aa:05:bf:76: ba:d4:69:fc:1a:d6:41:e7:40:95:44:59:2a:45:5d:bb:90:b3: 36:52:92:4c:20:21:eb:36:08:4e:b9:06:4d:ee:9b:82:6c:e3: 0a:b1:d4:94:4d:87:fa:39:eb:f1:ab:bd:13:ab:00:0c:58:39: 7e:0d:f4:ee:9f:e5:32:08:b3:af:58:0f:87:ca:f7:fe:0f:16: 4f:a9:c9:ef:7c:7f:85:b0:f2:d5:37:10:47:3b:49:ed:3b:d5: 48:cb:98:0f:87:85:0a:37:25:c0:a4:4d:cb:f6:61:83:62:c0: 12:34:3b:db:64:73:e4:e3:04:f1:b9:4c:50:36:7c:3b:8e:c5: c7:13:22:b6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57Vr9qp7gqeqPDhWKS0LSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3MDVkM2M2YTViMDUxMjY4MmNkZmRmMzYzYjE5YTljNTY3 ZjFmNmMwHhcNMjYwMTAxMTQxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMDg1OWNmZjVjYTA2ZGYyZDc0MzFjMGZlNTJlN2YxZmEwZGMxYmM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1mkHnXyKhbLfiGRWhdkl1R5UU+st /GsOYmhxb6iUp90FUPTTOUsmW6EP33jqrM+6/uJszRTgc+gnxHVvDVHrXV/HYnzj F5vXvyIZC7MuYPmt5PNpgc4fI/S7lH2RoK9j8DdnY0VTg/TSKWcSR97uw4izhar4 xsM6bIOXRxaFzvfrQ5yl9jX8do7wcywqtA5GUEoSS3Th9jJpG0gO9dPngzOJ3aVZ EHo5/X/QVJ5BJJardg1luFxd56BePRWbjMEMH1pksTYhufdz5RmbRrkeGAXx+Fi9 jPYgRRJQyQ6IyZc4zfuf22ZT3dBDUNYa1qTlEjupw6eGIa0X2WeQMJM1GQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBCFnP9coG3y10McD+Uufx+g3BvHMB8GA1UdIwQY MBaAFEcF08alsFEmgs3982OxmpxWfx9sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUndYVHhxV3dVU2FDemYzelk3R2FuRlpfSDJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi81NmFlZTktOTk2Yy00MzhmLWJiMDAt MGRmYTZiMjJlZmYyLzEvRUlXY18xeWdiZkxYUXh3UDVTNV9INkRjRzhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi81NmFlZTktOTk2Yy00MzhmLWJiMDAtMGRmYTZiMjJlZmYy LzEvUndYVHhxV3dVU2FDemYzelk3R2FuRlpfSDJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVdDUMA0G CSqGSIb3DQEBCwUAA4IBAQDMoboSiMsSynyuanZzlppLBQFwVxl/bp96wK1fwYPD NKAV7+xf9Pl8NP722/pGbny553rIhuRlipltRs9JwNt4ziPQVcpcyvA8/S/Ewig4 BOdYsgxXUPwSuY8w0O+IUDWh8DCHQUqDUk45IBGz7pjzmcEtum5RiohnkKoFv3a6 1Gn8GtZB50CVRFkqRV27kLM2UpJMICHrNghOuQZN7puCbOMKsdSUTYf6Oevxq70T qwAMWDl+DfTun+UyCLOvWA+Hyvf+DxZPqcnvfH+FsPLVNxBHO0ntO9VIy5gPh4UK NyXApE3L9mGDYsASNDvbZHPk4wTxuUxQNnw7jsXHEyK2 -----END CERTIFICATE-----Generated at Sun Jan 18 04:08:42 2026 by rpki-client