This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/eRJh73NsCl5nLTcM8L-WtjQ1i8M.roa File: eRJh73NsCl5nLTcM8L-WtjQ1i8M.roa (raw, json) Hash identifier: FurWUtoK3SJ5oNGdIN9dbo+ONOIK9GXi/NLIt8LbtMY= Subject key identifier: 79:12:61:EF:73:6C:0A:5E:67:2D:37:0C:F0:BF:96:B6:34:35:8B:C3 Certificate issuer: /CN=0c202663de852c7060fdea0298b490d5edcc0f24 Certificate serial: 019B77C67BD1F7D04F6F83AD056F99C0ABE1 Authority key identifier: 0C:20:26:63:DE:85:2C:70:60:FD:EA:02:98:B4:90:D5:ED:CC:0F:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/eRJh73NsCl5nLTcM8L-WtjQ1i8M.roa Signing time: Thu 01 Jan 2026 04:17:34 +0000 ROA not before: Thu 01 Jan 2026 04:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197036 IP address blocks: 178.23.152.0/21 maxlen: 24 185.19.240.0/22 maxlen: 24 185.228.20.0/22 maxlen: 24 195.28.192.0/19 maxlen: 24 213.173.48.0/22 maxlen: 24 2a02:21e8::/32 maxlen: 32 2a02:21e8:71::/48 maxlen: 48 2a09:2600::/29 maxlen: 29 2a0c:e600::/29 maxlen: 29 2a0c:e9c0::/29 maxlen: 29 2a0d:d040::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.mft rsync://rpki.ripe.net/repository/DEFAULT/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:7b:d1:f7:d0:4f:6f:83:ad:05:6f:99:c0:ab:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c202663de852c7060fdea0298b490d5edcc0f24 Validity Not Before: Jan 1 04:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=791261ef736c0a5e672d370cf0bf96b634358bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:c6:38:73:e6:e4:cf:69:e8:bd:83:4a:ff:ff: d2:a2:a6:65:af:b6:b5:8b:37:18:a7:f1:c5:3c:6c: 52:bd:7f:47:d3:23:cc:ed:e1:5a:61:80:a6:3d:67: b2:8e:d2:cb:8e:54:58:b0:f6:3c:f9:60:1b:6f:a0: 7a:27:92:d6:a5:b1:90:b1:3b:49:3c:5a:f7:bd:cc: dc:83:09:44:a1:c3:8b:6d:ed:d9:61:b9:68:6b:a9: d0:ed:2c:f0:29:f8:14:f7:68:60:47:dc:75:d7:52: 83:a2:92:df:88:28:66:43:e1:c8:7f:35:25:7e:39: f1:32:1d:a8:9e:02:2f:62:52:d3:cb:3e:5f:92:71: 12:9b:ac:68:af:56:e3:75:da:67:14:11:0c:cd:66: f3:ae:84:4a:1b:f0:e0:9e:19:1e:a6:39:a6:81:39: 77:59:82:39:5f:a7:31:f3:bb:b2:7f:26:6e:f9:b9: c5:d4:b7:17:55:71:c8:10:92:77:cd:28:6d:fd:dc: 72:d5:51:7a:19:fb:30:38:c2:d0:22:ad:ef:99:7e: b0:40:20:76:38:36:48:ae:0e:90:c3:f0:a2:e9:f5: 9f:85:34:5a:71:79:8b:64:27:89:05:44:82:d8:57: 8b:76:1e:aa:cd:ce:d6:5f:db:95:1b:3a:b8:fb:fa: 65:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:12:61:EF:73:6C:0A:5E:67:2D:37:0C:F0:BF:96:B6:34:35:8B:C3 X509v3 Authority Key Identifier: keyid:0C:20:26:63:DE:85:2C:70:60:FD:EA:02:98:B4:90:D5:ED:CC:0F:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/eRJh73NsCl5nLTcM8L-WtjQ1i8M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.23.152.0/21 185.19.240.0/22 185.228.20.0/22 195.28.192.0/19 213.173.48.0/22 IPv6: 2a02:21e8::/32 2a09:2600::/29 2a0c:e600::/29 2a0c:e9c0::/29 2a0d:d040::/29 Signature Algorithm: sha256WithRSAEncryption 08:40:15:2d:1c:7c:31:ac:6b:4f:f4:ca:8f:a2:df:e3:85:ef: da:fc:3e:65:ea:91:6f:1c:2f:29:c3:93:6a:3f:93:ae:92:1f: 38:9f:ae:cf:77:18:cf:5c:91:95:30:f8:ad:80:b9:14:bf:88: 2c:c2:a9:4f:6b:78:22:43:fc:69:7f:d3:a4:05:f0:73:f0:2a: 0d:5a:4c:19:27:b1:9d:4f:6f:37:9d:33:de:6e:d9:37:cb:ed: 02:c6:5b:50:3b:41:6e:0a:4e:96:f4:ef:36:99:3f:21:bb:65: fb:e9:48:9a:11:57:7e:f1:88:77:ca:80:33:00:1e:99:74:d7: 18:13:d1:1b:8b:d0:37:a4:97:e5:fb:5a:40:8a:2b:f0:9b:4f: 00:25:6f:9f:e1:67:a1:68:48:9e:7f:e1:70:ae:cb:57:70:95: 88:f2:1a:65:48:e5:ba:71:0d:a3:b3:96:02:e1:c4:cc:cc:a7: 6d:b3:d1:60:df:62:cc:b4:1e:be:f9:54:15:f4:63:e5:dd:97: 7d:00:1f:1b:13:da:be:a8:f0:92:23:f5:4d:19:6f:52:f0:fe: f9:65:f5:2b:04:7e:67:8b:be:39:97:3c:22:15:f1:3a:0a:83: b4:68:bf:38:b9:cc:b7:df:82:b5:e6:6e:6c:30:30:b6:3a:5a: 2a:14:0b:e0 -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgISAZt3xnvR99BPb4OtBW+ZwKvhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMjAyNjYzZGU4NTJjNzA2MGZkZWEwMjk4YjQ5MGQ1ZWRj YzBmMjQwHhcNMjYwMTAxMDQxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OTEyNjFlZjczNmMwYTVlNjcyZDM3MGNmMGJmOTZiNjM0MzU4YmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh8Y4c+bkz2novYNK///SoqZlr7a1 izcYp/HFPGxSvX9H0yPM7eFaYYCmPWeyjtLLjlRYsPY8+WAbb6B6J5LWpbGQsTtJ PFr3vczcgwlEocOLbe3ZYbloa6nQ7SzwKfgU92hgR9x111KDopLfiChmQ+HIfzUl fjnxMh2ongIvYlLTyz5fknESm6xor1bjddpnFBEMzWbzroRKG/DgnhkepjmmgTl3 WYI5X6cx87uyfyZu+bnF1LcXVXHIEJJ3zSht/dxy1VF6GfswOMLQIq3vmX6wQCB2 ODZIrg6Qw/Ci6fWfhTRacXmLZCeJBUSC2FeLdh6qzc7WX9uVGzq4+/plowIDAQAB o4ICTDCCAkgwHQYDVR0OBBYEFHkSYe9zbApeZy03DPC/lrY0NYvDMB8GA1UdIwQY MBaAFAwgJmPehSxwYP3qApi0kNXtzA8kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRENBbVk5NkZMSEJnX2VvQ21MU1ExZTNNRHlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wOTEwZTYtYzA3NC00MGQwLWI3ODkt YTE3ODA0NDM5ODk1LzEvZVJKaDczTnNDbDVuTFRjTThMLVd0alExaThNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8wOTEwZTYtYzA3NC00MGQwLWI3ODktYTE3ODA0NDM5ODk1 LzEvRENBbVk5NkZMSEJnX2VvQ21MU1ExZTNNRHlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGIGCCsGAQUFBwEHAQH/BFMwUTAkBAIAATAeAwQDsheYAwQC uRPwAwQCueQUAwQFwxzAAwQC1a0wMCkEAgACMCMDBQAqAiHoAwUDKgkmAAMFAyoM 5gADBQMqDOnAAwUDKg3QQDANBgkqhkiG9w0BAQsFAAOCAQEACEAVLRx8MaxrT/TK j6Lf44Xv2vw+ZeqRbxwvKcOTaj+TrpIfOJ+uz3cYz1yRlTD4rYC5FL+ILMKpT2t4 IkP8aX/TpAXwc/AqDVpMGSexnU9vN50z3m7ZN8vtAsZbUDtBbgpOlvTvNpk/Ibtl ++lImhFXfvGId8qAMwAemXTXGBPRG4vQN6SX5ftaQIor8JtPACVvn+FnoWhInn/h cK7LV3CViPIaZUjlunENo7OWAuHEzMynbbPRYN9izLQevvlUFfRj5d2XfQAfGxPa vqjwkiP1TRlvUvD++WX1KwR+Z4u+OZc8IhXxOgqDtGi/OLnMt9+CteZubDAwtjpa KhQL4A== -----END CERTIFICATE-----Generated at Mon Feb 9 22:23:44 2026 by rpki-client