This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ei7gbLOT6z2qtdrScoHSrhXAc_Q.roa File: ei7gbLOT6z2qtdrScoHSrhXAc_Q.roa (raw, json) Hash identifier: trEQXC8j4Fo/aHPIGgfrdhYdoDgInVHSvuOtLPmlVZY= Subject key identifier: 7A:2E:E0:6C:B3:93:EB:3D:AA:B5:DA:D2:72:81:D2:AE:15:C0:73:F4 Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430 Certificate serial: 019B7FF190D7D61B11D1AEC3C5E6CC4B8A46 Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ei7gbLOT6z2qtdrScoHSrhXAc_Q.roa Signing time: Fri 02 Jan 2026 18:21:36 +0000 ROA not before: Fri 02 Jan 2026 18:21:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44889 IP address blocks: 46.38.129.0/24 maxlen: 24 46.38.131.0/24 maxlen: 24 46.38.139.0/24 maxlen: 24 185.24.150.0/24 maxlen: 24 185.29.220.0/24 maxlen: 24 185.29.221.0/24 maxlen: 24 212.16.64.0/19 maxlen: 24 212.16.68.0/24 maxlen: 24 212.16.72.0/24 maxlen: 25 212.16.86.0/23 maxlen: 23 212.16.89.0/24 maxlen: 24 212.80.0.0/19 maxlen: 24 212.80.2.0/24 maxlen: 24 212.80.12.0/24 maxlen: 24 212.80.13.0/24 maxlen: 24 212.80.14.0/24 maxlen: 24 212.80.15.0/24 maxlen: 24 2a00:7d80::/29 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.mft rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:90:d7:d6:1b:11:d1:ae:c3:c5:e6:cc:4b:8a:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430 Validity Not Before: Jan 2 18:21:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7a2ee06cb393eb3daab5dad27281d2ae15c073f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:14:32:0f:f4:d1:aa:8d:80:9b:78:ac:35:bd: 9a:d3:ef:e6:51:59:30:f6:b6:30:f6:d6:0b:8e:f7: eb:00:27:1e:1f:46:db:a4:cf:24:f0:3f:61:ec:29: a0:c0:74:9e:7d:75:72:18:b0:12:17:c5:ac:57:38: 32:e7:98:0e:aa:f9:c1:43:50:56:76:91:72:46:a2: 85:2d:12:b4:d4:94:be:9b:aa:b3:0f:ef:5f:9b:66: cf:a7:8a:ad:62:32:62:d7:44:9c:98:47:b1:ec:d8: 66:d2:c3:e4:0d:7a:18:e7:88:c8:fd:cc:c8:34:61: 0f:04:b5:af:89:7c:7a:ef:88:88:bb:2e:a3:4f:a1: 9d:dc:8d:16:82:eb:c7:b1:5b:09:74:35:2f:a9:5d: 4a:cf:62:71:0b:5a:0e:bd:28:6c:e7:7a:b2:7c:d3: 52:45:53:9c:7a:a0:63:94:ed:99:58:50:60:ed:34: 29:67:94:2a:78:78:63:5a:2f:75:53:1a:e8:01:57: 9f:e6:d2:e8:ff:d7:a9:bc:f7:6e:97:f0:c0:06:60: ec:04:e4:b1:d6:d7:0d:d5:ad:49:fc:23:86:05:21: 6f:d8:09:ff:cc:d4:3e:26:9a:de:b4:42:fe:71:a0: d5:f2:63:19:aa:a9:61:92:eb:06:8c:77:ba:b5:6c: 08:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:2E:E0:6C:B3:93:EB:3D:AA:B5:DA:D2:72:81:D2:AE:15:C0:73:F4 X509v3 Authority Key Identifier: keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ei7gbLOT6z2qtdrScoHSrhXAc_Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.38.129.0/24 46.38.131.0/24 46.38.139.0/24 185.24.150.0/24 185.29.220.0/23 212.16.64.0/19 212.80.0.0/19 IPv6: 2a00:7d80::/29 Signature Algorithm: sha256WithRSAEncryption 69:5f:d4:0f:83:d6:06:1d:b5:56:9d:18:ec:59:da:e7:1e:b2: 66:01:a3:67:d5:0e:16:f4:90:c2:9e:fa:88:c4:38:4b:f7:0e: fe:d8:7b:6b:ff:f3:57:a9:db:8d:ad:3c:51:19:13:4c:84:e5: 81:7c:f9:12:45:0e:96:d5:4d:7f:41:37:56:ee:bb:9c:41:1e: d5:b7:0b:1a:0f:11:a8:14:41:95:e2:72:10:7c:97:6e:61:f7: 36:90:22:56:7d:74:fe:a8:e9:8d:34:63:e4:e2:20:3b:7f:06: c4:53:74:fc:7d:50:3a:4f:b1:2e:b1:07:0a:bc:ec:db:3d:f0: 47:f0:02:20:f6:8e:dd:21:be:13:a4:8f:5a:73:14:3e:c3:38: 0d:39:16:f4:ab:9b:bc:c0:c5:38:a5:38:3c:6d:5a:ef:67:11: 2b:b3:51:c9:ce:fe:2f:75:e8:d9:27:8f:02:da:18:fe:3d:a9: e9:98:9c:0f:7e:77:34:b2:87:15:2a:66:35:36:95:19:9b:2f: dd:ea:56:87:1a:5a:97:01:5b:a3:1c:e4:43:58:8c:a1:7c:32: 95:d4:5d:4f:82:d4:64:22:47:13:e1:bf:ef:0d:e0:6a:48:2e: 7b:13:c9:7c:c8:95:b6:85:e6:ba:98:99:9a:09:75:42:ff:d0: 02:69:75:86 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt/8ZDX1hsR0a7DxebMS4pGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj NWY0MzAwHhcNMjYwMTAyMTgyMTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YTJlZTA2Y2IzOTNlYjNkYWFiNWRhZDI3MjgxZDJhZTE1YzA3M2Y0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArRQyD/TRqo2Am3isNb2a0+/mUVkw 9rYw9tYLjvfrACceH0bbpM8k8D9h7CmgwHSefXVyGLASF8WsVzgy55gOqvnBQ1BW dpFyRqKFLRK01JS+m6qzD+9fm2bPp4qtYjJi10ScmEex7Nhm0sPkDXoY54jI/czI NGEPBLWviXx674iIuy6jT6Gd3I0WguvHsVsJdDUvqV1Kz2JxC1oOvShs53qyfNNS RVOceqBjlO2ZWFBg7TQpZ5QqeHhjWi91UxroAVef5tLo/9epvPdul/DABmDsBOSx 1tcN1a1J/COGBSFv2An/zNQ+JpretEL+caDV8mMZqqlhkusGjHe6tWwIvwIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFHou4Gyzk+s9qrXa0nKB0q4VwHP0MB8GA1UdIwQY MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt MmEwOWNjNTNhODA1LzEvZWk3Z2JMT1Q2ejJxdGRyU2NvSFNyaFhBY19RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1 LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQALiaBAwQA LiaDAwQALiaLAwQAuRiWAwQBuR3cAwQF1BBAAwQF1FAAMA0EAgACMAcDBQMqAH2A MA0GCSqGSIb3DQEBCwUAA4IBAQBpX9QPg9YGHbVWnRjsWdrnHrJmAaNn1Q4W9JDC nvqIxDhL9w7+2Htr//NXqduNrTxRGRNMhOWBfPkSRQ6W1U1/QTdW7rucQR7Vtwsa DxGoFEGV4nIQfJduYfc2kCJWfXT+qOmNNGPk4iA7fwbEU3T8fVA6T7EusQcKvOzb PfBH8AIg9o7dIb4TpI9acxQ+wzgNORb0q5u8wMU4pTg8bVrvZxErs1HJzv4vdejZ J48C2hj+PanpmJwPfnc0socVKmY1NpUZmy/d6laHGlqXAVujHORDWIyhfDKV1F1P gtRkIkcT4b/vDeBqSC57E8l8yJW2hea6mJmaCXVC/9ACaXWG -----END CERTIFICATE-----Generated at Wed Jan 21 04:02:27 2026 by rpki-client