This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Ex4ELgEMJLMokPJdkKkWfphZynI.roa File: Ex4ELgEMJLMokPJdkKkWfphZynI.roa (raw, json) Hash identifier: e1aEUYSKBE7T2hxhVL6W+b9JwXI2tPt7O9Wy84HyjWQ= Subject key identifier: 13:1E:04:2E:01:0C:24:B3:28:90:F2:5D:90:A9:16:7E:98:59:CA:72 Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Certificate serial: 019B7C1326345B0E9C0823CB1E671784BE4C Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Ex4ELgEMJLMokPJdkKkWfphZynI.roa Signing time: Fri 02 Jan 2026 00:19:48 +0000 ROA not before: Fri 02 Jan 2026 00:19:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49353 IP address blocks: 171.22.164.0/22 maxlen: 24 2a05:a780::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 11:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:26:34:5b:0e:9c:08:23:cb:1e:67:17:84:be:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Validity Not Before: Jan 2 00:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=131e042e010c24b32890f25d90a9167e9859ca72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:df:ad:52:e5:6d:fa:25:17:32:ad:62:bf:61: c7:18:fa:19:b5:8c:01:c0:95:02:61:70:b2:22:8e: 24:6a:be:a8:33:0f:cf:62:82:64:56:96:fa:35:45: b0:91:5b:ea:d3:12:3d:a9:f6:e2:d5:fb:55:56:66: 71:a9:b9:b3:b7:16:d8:8e:0c:a3:f8:36:92:49:22: 72:c6:bc:40:22:e0:6d:84:a5:10:3a:b8:3c:e5:13: 39:ab:62:48:96:06:3b:55:bc:99:0c:9b:d6:de:16: 83:83:a5:58:ed:16:e6:ba:c7:fe:7f:21:fe:b5:ad: d3:07:f0:6a:bd:bf:9f:0d:43:8e:96:5a:a3:57:24: dd:79:21:0d:7e:70:c9:55:fd:0e:78:01:10:2f:84: 00:e2:3e:06:1c:bb:93:49:26:c0:00:f4:35:01:0f: 16:5c:b1:c0:04:ac:27:95:81:ce:dc:2e:ad:93:37: 63:11:30:26:31:ce:83:30:b1:bd:62:15:d6:2a:87: db:8b:50:93:c5:0e:ee:f4:3f:d0:40:d6:1d:0c:bd: f5:4e:ac:de:6d:23:34:79:78:92:48:c2:dc:29:98: 0b:5b:5e:98:69:00:8b:80:92:82:0e:be:50:6e:8a: bd:51:81:0b:fd:db:25:6e:cd:8a:42:42:ce:11:b9: 52:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:1E:04:2E:01:0C:24:B3:28:90:F2:5D:90:A9:16:7E:98:59:CA:72 X509v3 Authority Key Identifier: keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Ex4ELgEMJLMokPJdkKkWfphZynI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 171.22.164.0/22 IPv6: 2a05:a780::/29 Signature Algorithm: sha256WithRSAEncryption 4d:18:4b:8c:4b:94:91:a9:a6:81:a8:45:28:a2:15:5d:af:01: 6b:bb:9c:3d:9e:b5:11:09:a7:d3:07:e7:ca:ab:90:49:30:f3: 8e:63:d5:87:10:64:15:37:54:6c:b7:67:68:eb:53:69:22:b9: 2f:94:c0:32:5f:5d:96:d0:f5:1c:d1:d4:8c:a2:d0:bb:72:ae: 0e:28:56:74:ac:68:0c:80:1b:c0:92:ee:37:a2:42:a3:74:a4: 81:b5:ef:1c:e6:f6:ef:ea:84:28:46:e9:52:06:a1:52:99:32: b6:69:cd:04:35:54:98:e1:50:5f:93:41:6d:f8:7e:94:11:a9: 3f:8f:a9:f0:a7:25:02:fc:52:8a:e6:5c:c9:3f:d7:3e:93:9e: a2:5a:48:65:ae:0a:65:3e:da:ea:74:5e:67:3a:b6:9a:31:9d: a4:b1:cb:28:fa:70:64:8c:bc:eb:2b:fc:d1:f7:1b:7c:2b:5f: 63:17:b1:40:54:8d:72:2e:42:5f:88:0d:0c:be:1d:50:0f:81: e5:de:d5:fd:3e:d6:33:f9:b3:e6:13:6d:f4:fb:ac:ea:bf:d7: f2:d4:d4:2e:46:42:8b:67:d7:02:20:c3:62:3b:78:3f:10:9e: d9:a4:8e:c9:bd:f2:cc:30:53:a3:6c:c0:b5:4c:a5:e5:72:48: 4a:e7:80:80 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8EyY0Ww6cCCPLHmcXhL5MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy N2E0NjcwHhcNMjYwMTAyMDAxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzFlMDQyZTAxMGMyNGIzMjg5MGYyNWQ5MGE5MTY3ZTk4NTljYTcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsN+tUuVt+iUXMq1iv2HHGPoZtYwB wJUCYXCyIo4kar6oMw/PYoJkVpb6NUWwkVvq0xI9qfbi1ftVVmZxqbmztxbYjgyj +DaSSSJyxrxAIuBthKUQOrg85RM5q2JIlgY7VbyZDJvW3haDg6VY7Rbmusf+fyH+ ta3TB/Bqvb+fDUOOllqjVyTdeSENfnDJVf0OeAEQL4QA4j4GHLuTSSbAAPQ1AQ8W XLHABKwnlYHO3C6tkzdjETAmMc6DMLG9YhXWKofbi1CTxQ7u9D/QQNYdDL31Tqze bSM0eXiSSMLcKZgLW16YaQCLgJKCDr5Qboq9UYEL/dslbs2KQkLOEblSrwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBMeBC4BDCSzKJDyXZCpFn6YWcpyMB8GA1UdIwQY MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt Y2Q3ZTA2Y2JiNTMxLzEvRXg0RUxnRU1KTE1va1BKZGtLa1dmcGhaeW5JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCqxakMA0E AgACMAcDBQMqBaeAMA0GCSqGSIb3DQEBCwUAA4IBAQBNGEuMS5SRqaaBqEUoohVd rwFru5w9nrURCafTB+fKq5BJMPOOY9WHEGQVN1Rst2do61NpIrkvlMAyX12W0PUc 0dSMotC7cq4OKFZ0rGgMgBvAku43okKjdKSBte8c5vbv6oQoRulSBqFSmTK2ac0E NVSY4VBfk0Ft+H6UEak/j6nwpyUC/FKK5lzJP9c+k56iWkhlrgplPtrqdF5nOraa MZ2kscso+nBkjLzrK/zR9xt8K19jF7FAVI1yLkJfiA0Mvh1QD4Hl3tX9PtYz+bPm E230+6zqv9fy1NQuRkKLZ9cCIMNiO3g/EJ7ZpI7JvfLMMFOjbMC1TKXlckhK54CA -----END CERTIFICATE-----Generated at Fri Jan 23 21:36:10 2026 by rpki-client