This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/b3f993-d03b-4b13-81af-aa6229698461/1/EpA_Ep7US9arWt2LAQnWqt8G0MQ.roa File: EpA_Ep7US9arWt2LAQnWqt8G0MQ.roa (raw, json) Hash identifier: Enhj2i2fenmWvJgS9B/Dve2c1SF+MZkG+SV2591CLso= Subject key identifier: 12:90:3F:12:9E:D4:4B:D6:AB:5A:DD:8B:01:09:D6:AA:DF:06:D0:C4 Certificate issuer: /CN=95571d88b53965a7d081f3b1d8289cbc28775b88 Certificate serial: 019B7DC93467C3ED5635CAC9AD97A34C506B Authority key identifier: 95:57:1D:88:B5:39:65:A7:D0:81:F3:B1:D8:28:9C:BC:28:77:5B:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lVcdiLU5ZafQgfOx2CicvCh3W4g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/b3f993-d03b-4b13-81af-aa6229698461/1/EpA_Ep7US9arWt2LAQnWqt8G0MQ.roa Signing time: Fri 02 Jan 2026 08:18:16 +0000 ROA not before: Fri 02 Jan 2026 08:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202077 IP address blocks: 185.68.136.0/22 maxlen: 24 2a03:2b20::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/b3f993-d03b-4b13-81af-aa6229698461/1/lVcdiLU5ZafQgfOx2CicvCh3W4g.crl rsync://rpki.ripe.net/repository/DEFAULT/55/b3f993-d03b-4b13-81af-aa6229698461/1/lVcdiLU5ZafQgfOx2CicvCh3W4g.mft rsync://rpki.ripe.net/repository/DEFAULT/lVcdiLU5ZafQgfOx2CicvCh3W4g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:34:67:c3:ed:56:35:ca:c9:ad:97:a3:4c:50:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95571d88b53965a7d081f3b1d8289cbc28775b88 Validity Not Before: Jan 2 08:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=12903f129ed44bd6ab5add8b0109d6aadf06d0c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:65:30:55:95:c8:43:7e:5a:de:93:f0:65:de: cf:37:82:5e:d8:d5:01:7b:97:57:db:86:68:ab:42: 6b:58:5c:11:72:83:e5:c0:e3:e7:e4:88:86:d3:bc: 00:d7:4c:d3:a3:54:eb:0e:12:11:52:e2:0b:f2:75: e7:36:0f:fc:43:ae:1e:88:c7:d0:6d:c8:f5:9d:c9: 23:78:77:98:d8:12:03:f3:3e:a7:d9:f5:24:24:d7: e7:e3:fe:a5:1a:f7:d3:f0:4d:7b:db:00:4f:22:3d: 45:56:42:eb:06:45:99:4c:09:8f:63:bc:12:02:ea: 55:da:2d:6b:cc:0c:fc:c0:b0:12:5c:2f:49:ad:68: 79:81:55:f1:65:ee:e8:07:95:53:e2:e5:13:3f:e0: d6:84:d0:9f:13:fd:95:94:bd:63:aa:2c:4a:55:a1: 13:a7:28:9e:ad:2b:db:84:38:1e:e2:f1:8a:b5:e9: 67:ba:fb:1a:3e:25:38:a3:bb:f4:18:a9:bb:92:12: ee:91:7e:0f:10:36:2e:ff:98:11:e5:4e:a7:69:3f: 5a:03:6d:05:cc:b5:c3:ba:69:f9:8e:6d:a3:44:12: cc:78:2e:3a:31:57:7a:1a:dd:22:3e:e8:11:9e:bc: 1c:a8:4c:97:28:8d:77:dc:c0:94:50:03:56:d6:ec: fa:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:90:3F:12:9E:D4:4B:D6:AB:5A:DD:8B:01:09:D6:AA:DF:06:D0:C4 X509v3 Authority Key Identifier: keyid:95:57:1D:88:B5:39:65:A7:D0:81:F3:B1:D8:28:9C:BC:28:77:5B:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lVcdiLU5ZafQgfOx2CicvCh3W4g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b3f993-d03b-4b13-81af-aa6229698461/1/EpA_Ep7US9arWt2LAQnWqt8G0MQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b3f993-d03b-4b13-81af-aa6229698461/1/lVcdiLU5ZafQgfOx2CicvCh3W4g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.68.136.0/22 IPv6: 2a03:2b20::/32 Signature Algorithm: sha256WithRSAEncryption 72:d5:a8:c9:df:1c:47:2e:0b:b6:3f:16:31:c0:c3:f4:2f:79: 5d:c8:3c:0b:6b:c3:63:95:d6:e4:cd:ef:eb:2c:92:38:c0:27: 11:bd:ce:80:de:88:99:3c:b0:6b:bc:31:09:15:dd:4e:d3:8e: 86:72:b1:30:94:24:a4:d2:f0:95:93:71:d8:50:5f:e4:f0:bf: 92:b7:c3:8e:80:4a:a9:0e:2c:41:14:88:bb:e3:5c:24:dd:7a: ad:9c:0b:ee:48:77:9e:de:8d:8d:db:dc:ac:92:90:a3:5b:66: 01:bf:57:86:98:9f:89:c0:d3:cc:bb:dd:bf:fa:80:34:8b:d5: d0:9f:b8:02:7e:2d:2a:ac:04:a4:7e:2b:58:97:da:57:5e:6e: d5:0d:6a:3d:82:a9:82:6a:81:9b:53:90:fe:d4:41:72:1e:6f: 02:a7:b1:6d:09:9a:dd:94:68:2f:ed:23:6e:5b:ac:eb:5a:58: 3a:99:da:3a:a9:91:bf:43:3b:94:35:95:c4:25:ef:69:99:6e: 51:1d:c9:aa:de:63:7f:9c:ea:1b:a5:e4:28:c8:44:34:9c:d0: 67:75:9b:97:6e:f1:66:46:9a:84:d0:86:3f:1d:0f:31:eb:aa: c6:e0:4d:4b:b9:7e:01:f3:a5:66:a7:f1:ba:20:55:57:ed:ed: db:53:1b:55 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9yTRnw+1WNcrJrZejTFBrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1NTcxZDg4YjUzOTY1YTdkMDgxZjNiMWQ4Mjg5Y2JjMjg3 NzViODgwHhcNMjYwMTAyMDgxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMjkwM2YxMjllZDQ0YmQ2YWI1YWRkOGIwMTA5ZDZhYWRmMDZkMGM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGUwVZXIQ35a3pPwZd7PN4Je2NUB e5dX24Zoq0JrWFwRcoPlwOPn5IiG07wA10zTo1TrDhIRUuIL8nXnNg/8Q64eiMfQ bcj1nckjeHeY2BID8z6n2fUkJNfn4/6lGvfT8E172wBPIj1FVkLrBkWZTAmPY7wS AupV2i1rzAz8wLASXC9JrWh5gVXxZe7oB5VT4uUTP+DWhNCfE/2VlL1jqixKVaET pyierSvbhDge4vGKtelnuvsaPiU4o7v0GKm7khLukX4PEDYu/5gR5U6naT9aA20F zLXDumn5jm2jRBLMeC46MVd6Gt0iPugRnrwcqEyXKI133MCUUANW1uz68QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBKQPxKe1EvWq1rdiwEJ1qrfBtDEMB8GA1UdIwQY MBaAFJVXHYi1OWWn0IHzsdgonLwod1uIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFZjZGlMVTVaYWZRZ2ZPeDJDaWN2Q2gzVzRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9iM2Y5OTMtZDAzYi00YjEzLTgxYWYt YWE2MjI5Njk4NDYxLzEvRXBBX0VwN1VTOWFyV3QyTEFRbldxdDhHME1RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9iM2Y5OTMtZDAzYi00YjEzLTgxYWYtYWE2MjI5Njk4NDYx LzEvbFZjZGlMVTVaYWZRZ2ZPeDJDaWN2Q2gzVzRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuUSIMA0E AgACMAcDBQAqAysgMA0GCSqGSIb3DQEBCwUAA4IBAQBy1ajJ3xxHLgu2PxYxwMP0 L3ldyDwLa8Njldbkze/rLJI4wCcRvc6A3oiZPLBrvDEJFd1O046GcrEwlCSk0vCV k3HYUF/k8L+St8OOgEqpDixBFIi741wk3XqtnAvuSHee3o2N29yskpCjW2YBv1eG mJ+JwNPMu92/+oA0i9XQn7gCfi0qrASkfitYl9pXXm7VDWo9gqmCaoGbU5D+1EFy Hm8Cp7FtCZrdlGgv7SNuW6zrWlg6mdo6qZG/QzuUNZXEJe9pmW5RHcmq3mN/nOob peQoyEQ0nNBndZuXbvFmRpqE0IY/HQ8x66rG4E1LuX4B86Vmp/G6IFVX7e3bUxtV -----END CERTIFICATE-----Generated at Mon Feb 9 20:59:50 2026 by rpki-client