This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/e-tZ1DdZl0dxPJy0N9Yn-0Al0M8.roa File: e-tZ1DdZl0dxPJy0N9Yn-0Al0M8.roa (raw, json) Hash identifier: QAdbievfGnFmg15O+j0D44UXxw3G9rYuADuFC3J6DdQ= Subject key identifier: 7B:EB:59:D4:37:59:97:47:71:3C:9C:B4:37:D6:27:FB:40:25:D0:CF Certificate issuer: /CN=1120a0ce013e2d52a6ff354a270894bb998e4547 Certificate serial: 019B7AC8A04BF0477A8902D410235D2E49E8 Authority key identifier: 11:20:A0:CE:01:3E:2D:52:A6:FF:35:4A:27:08:94:BB:99:8E:45:47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/e-tZ1DdZl0dxPJy0N9Yn-0Al0M8.roa Signing time: Thu 01 Jan 2026 18:18:47 +0000 ROA not before: Thu 01 Jan 2026 18:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 193.17.96.0/21 maxlen: 24 193.17.104.0/23 maxlen: 24 193.17.106.0/24 maxlen: 24 193.17.108.0/23 maxlen: 24 193.17.110.0/24 maxlen: 24 193.17.112.0/23 maxlen: 24 193.17.116.0/23 maxlen: 24 193.17.120.0/23 maxlen: 24 193.17.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.crl rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:a0:4b:f0:47:7a:89:02:d4:10:23:5d:2e:49:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1120a0ce013e2d52a6ff354a270894bb998e4547 Validity Not Before: Jan 1 18:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7beb59d437599747713c9cb437d627fb4025d0cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9f:87:a1:be:b2:56:83:94:cb:dd:a5:2b:8c: 59:91:18:63:68:41:7d:a4:9e:5c:ee:ea:75:d8:4e: e9:f2:85:99:1d:c7:5e:dc:38:7b:8f:f9:99:3d:8c: 95:6d:f6:ff:d7:4f:37:c0:63:47:b5:62:60:6b:dc: 88:19:30:25:6e:64:11:92:f9:d4:cf:2b:ed:b0:86: e5:a3:83:c0:95:2f:31:dc:b9:2e:88:8b:ca:43:d3: f7:a4:bd:6d:1a:ac:8a:cb:ca:fe:58:b8:bb:b6:09: 3d:43:44:5a:54:b6:06:09:1b:a3:61:cf:7f:62:5e: 82:a7:06:f2:82:cf:89:31:40:f9:48:ad:16:27:c6: 07:bb:d7:9d:5c:a1:13:18:1c:04:f4:f3:a3:ef:cc: d2:cb:85:83:0d:20:ae:f8:b8:73:35:11:2d:80:1c: 18:cc:d1:3b:ae:b1:7e:2b:c0:60:5e:a4:0b:76:9d: 13:95:39:96:d8:72:0d:22:b2:c6:c4:74:0f:39:71: 60:e9:1a:ad:d3:d2:1a:b7:87:24:89:3d:15:4f:2d: 9f:23:8d:9b:59:76:a1:c5:e7:73:1a:f5:1f:39:b0: d9:7e:10:e0:a2:7c:bb:99:57:d5:df:e0:0e:5b:7f: 41:7b:b2:a0:fc:b5:10:6f:6c:d5:07:7b:d5:ca:fb: d5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:EB:59:D4:37:59:97:47:71:3C:9C:B4:37:D6:27:FB:40:25:D0:CF X509v3 Authority Key Identifier: keyid:11:20:A0:CE:01:3E:2D:52:A6:FF:35:4A:27:08:94:BB:99:8E:45:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/e-tZ1DdZl0dxPJy0N9Yn-0Al0M8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.17.96.0-193.17.106.255 193.17.108.0-193.17.110.255 193.17.112.0/23 193.17.116.0/23 193.17.120.0/23 193.17.124.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:2e:5a:dd:13:0c:4a:db:b9:12:76:ac:e9:67:21:2a:fb:12: 58:d0:c7:88:0b:b2:ce:90:a3:d6:4e:31:04:84:ff:bd:b7:83: ad:30:4f:f1:11:e9:87:ee:48:f2:8d:2a:82:db:72:ed:5b:88: df:dd:b9:b1:55:5e:b4:df:5d:07:86:49:34:cd:15:5a:b9:11: db:50:43:ba:6e:8d:4e:d8:72:86:1d:1b:36:5a:0d:15:e9:b3: 3a:13:63:4c:5a:37:1a:d9:d7:bf:80:90:dd:38:80:91:bc:44: 50:ff:a3:2d:1f:c2:73:9e:d8:e0:64:b0:a3:0a:58:f9:a7:8f: e2:7d:ac:17:6f:31:3b:85:6f:69:a5:b1:0a:4d:ec:ae:30:d2: 8e:3d:bb:ff:e2:2f:72:3e:90:ae:e4:ec:42:15:d8:23:91:a1: b8:5e:c5:1d:2a:94:22:f2:2f:43:99:93:6e:4c:d8:d6:3a:db: 61:16:30:99:18:c7:a6:c1:10:3f:dc:f4:de:b6:f0:22:fe:47: 3d:3b:1e:ff:a4:7c:2a:c1:2d:6d:0e:1a:98:9b:65:d2:da:29: a9:4a:eb:c8:4b:fd:5b:3a:1d:9f:25:d2:9f:7c:6a:ea:13:0b: 78:a7:d2:2e:86:87:9f:21:cf:24:c0:a1:72:98:e8:ca:e4:ad: 5c:3a:c8:8c -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt6yKBL8Ed6iQLUECNdLknoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMjBhMGNlMDEzZTJkNTJhNmZmMzU0YTI3MDg5NGJiOTk4 ZTQ1NDcwHhcNMjYwMTAxMTgxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YmViNTlkNDM3NTk5NzQ3NzEzYzljYjQzN2Q2MjdmYjQwMjVkMGNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAop+Hob6yVoOUy92lK4xZkRhjaEF9 pJ5c7up12E7p8oWZHcde3Dh7j/mZPYyVbfb/1083wGNHtWJga9yIGTAlbmQRkvnU zyvtsIblo4PAlS8x3LkuiIvKQ9P3pL1tGqyKy8r+WLi7tgk9Q0RaVLYGCRujYc9/ Yl6Cpwbygs+JMUD5SK0WJ8YHu9edXKETGBwE9POj78zSy4WDDSCu+LhzNREtgBwY zNE7rrF+K8BgXqQLdp0TlTmW2HINIrLGxHQPOXFg6Rqt09Iat4ckiT0VTy2fI42b WXahxedzGvUfObDZfhDgony7mVfV3+AOW39Be7Kg/LUQb2zVB3vVyvvVrQIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFHvrWdQ3WZdHcTyctDfWJ/tAJdDPMB8GA1UdIwQY MBaAFBEgoM4BPi1Spv81SicIlLuZjkVHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVNDZ3pnRS1MVkttX3pWS0p3aVV1NW1PUlVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC80MjE0OTgtMjhkMy00Mzc2LWI2MjUt MzFhZjNlMjk0NjcxLzEvZS10WjFEZFpsMGR4UEp5ME45WW4tMEFsME04LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC80MjE0OTgtMjhkMy00Mzc2LWI2MjUtMzFhZjNlMjk0Njcx LzEvRVNDZ3pnRS1MVkttX3pWS0p3aVV1NW1PUlVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDA6BAIAATA0MAwDBAXBEWAD BADBEWowDAMEAsERbAMEAMERbgMEAcERcAMEAcERdAMEAcEReAMEAcERfDANBgkq hkiG9w0BAQsFAAOCAQEAjS5a3RMMStu5Enas6WchKvsSWNDHiAuyzpCj1k4xBIT/ vbeDrTBP8RHph+5I8o0qgtty7VuI3925sVVetN9dB4ZJNM0VWrkR21BDum6NTthy hh0bNloNFemzOhNjTFo3GtnXv4CQ3TiAkbxEUP+jLR/Cc57Y4GSwowpY+aeP4n2s F28xO4VvaaWxCk3srjDSjj27/+Ivcj6QruTsQhXYI5GhuF7FHSqUIvIvQ5mTbkzY 1jrbYRYwmRjHpsEQP9z03rbwIv5HPTse/6R8KsEtbQ4amJtl0topqUrryEv9Wzod nyXSn3xq6hMLeKfSLoaHnyHPJMChcpjoyuStXDrIjA== -----END CERTIFICATE-----Generated at Sun Jan 18 15:29:20 2026 by rpki-client