This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/51a60c-cf63-443d-9e02-04dd56f70fe3/1/eDMAR7PJPyAOpBqLeTLJ9cfWmlY.roa File: eDMAR7PJPyAOpBqLeTLJ9cfWmlY.roa (raw, json) Hash identifier: +nUDLc8VobBs/aZ0/WWl0V/gT+IU0wqtjeeOECCwgDE= Subject key identifier: 78:33:00:47:B3:C9:3F:20:0E:A4:1A:8B:79:32:C9:F5:C7:D6:9A:56 Certificate issuer: /CN=39e87ef03cf171a40ba2bec89e688bb9d3825873 Certificate serial: 019B7D5C866964FD1DD9EEC119D2411F4972 Authority key identifier: 39:E8:7E:F0:3C:F1:71:A4:0B:A2:BE:C8:9E:68:8B:B9:D3:82:58:73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oeh-8DzxcaQLor7InmiLudOCWHM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/51a60c-cf63-443d-9e02-04dd56f70fe3/1/eDMAR7PJPyAOpBqLeTLJ9cfWmlY.roa Signing time: Fri 02 Jan 2026 06:19:34 +0000 ROA not before: Fri 02 Jan 2026 06:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202139 IP address blocks: 85.158.8.0/22 maxlen: 24 2a05:fa80::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/51a60c-cf63-443d-9e02-04dd56f70fe3/1/Oeh-8DzxcaQLor7InmiLudOCWHM.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/51a60c-cf63-443d-9e02-04dd56f70fe3/1/Oeh-8DzxcaQLor7InmiLudOCWHM.mft rsync://rpki.ripe.net/repository/DEFAULT/Oeh-8DzxcaQLor7InmiLudOCWHM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:86:69:64:fd:1d:d9:ee:c1:19:d2:41:1f:49:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39e87ef03cf171a40ba2bec89e688bb9d3825873 Validity Not Before: Jan 2 06:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=78330047b3c93f200ea41a8b7932c9f5c7d69a56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:33:cb:45:a3:91:e2:c2:ad:6a:e1:9a:8d:01: c7:ab:fd:f5:22:47:fd:94:8c:dd:bf:fe:81:4b:4c: a2:89:e2:6c:51:79:62:ff:ed:c9:0b:b7:f4:8c:51: 7c:2f:22:6a:8f:2f:bb:7d:1f:2b:50:ba:3d:d2:e3: 04:39:5b:44:28:fa:ac:31:7a:68:41:fa:ee:3a:c0: 0f:88:61:d1:47:bd:1f:a6:2d:41:0d:4a:2b:a2:43: e6:6d:77:af:4b:84:31:84:a4:76:ca:d6:5b:89:49: 2c:3d:38:d2:14:ac:d7:eb:51:44:a1:a4:6e:5c:e2: 7a:81:48:ec:3e:8b:8f:31:b2:0e:db:90:8a:1a:e8: 0c:7b:87:60:9d:69:55:41:80:cb:1a:d8:f1:a3:5d: 36:72:d2:b4:4f:ec:be:1d:c2:35:01:6e:38:34:23: d8:61:92:02:c4:5d:88:f4:8e:ae:be:c9:22:28:99: ea:4c:d0:e0:f6:e4:ea:df:69:7a:c9:7f:28:4f:af: 17:24:2a:41:2f:ee:fe:68:d3:cf:57:1c:88:c3:f3: db:3a:f0:92:3d:07:cf:0b:79:69:99:01:f7:d9:90: 4f:db:7a:d5:7e:1a:9b:1e:b4:84:82:12:bf:7a:1e: 09:c1:45:07:d8:6d:9c:00:57:a8:b1:7c:cf:47:e6: d1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:33:00:47:B3:C9:3F:20:0E:A4:1A:8B:79:32:C9:F5:C7:D6:9A:56 X509v3 Authority Key Identifier: keyid:39:E8:7E:F0:3C:F1:71:A4:0B:A2:BE:C8:9E:68:8B:B9:D3:82:58:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oeh-8DzxcaQLor7InmiLudOCWHM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/51a60c-cf63-443d-9e02-04dd56f70fe3/1/eDMAR7PJPyAOpBqLeTLJ9cfWmlY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/51a60c-cf63-443d-9e02-04dd56f70fe3/1/Oeh-8DzxcaQLor7InmiLudOCWHM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.158.8.0/22 IPv6: 2a05:fa80::/29 Signature Algorithm: sha256WithRSAEncryption 95:db:53:c1:b2:b7:64:0f:bd:3a:c8:26:95:05:f2:6d:a8:bb: 50:eb:54:96:35:1b:2f:16:3b:3f:6d:51:4b:53:60:8b:e7:a3: 01:49:83:05:e4:df:c5:15:92:e3:80:b4:c3:68:fa:24:9d:2e: 28:50:a2:cb:fc:ea:b1:41:98:0f:34:4e:22:82:39:6f:8c:39: b3:96:8b:95:c7:1d:b7:63:7e:96:fd:f5:c5:ac:72:95:fb:de: ba:56:91:54:02:6f:49:a7:9b:d5:9c:14:48:f1:03:ae:77:62: ea:90:59:d8:ad:b7:24:48:46:15:f9:30:33:dc:f3:ec:41:cd: e3:22:3f:54:16:d0:9f:e9:a8:8f:0c:96:2e:b0:04:7c:68:da: fe:ff:56:81:ae:85:e3:03:d5:0c:13:ad:4d:39:06:f5:4f:69: 44:c4:26:3f:4b:5d:a9:59:75:60:fc:26:63:9c:68:6a:df:cb: 81:cb:54:1f:8a:4a:f5:16:b9:c4:28:76:c3:ef:d7:52:87:30: d1:7a:4d:57:04:cf:f5:83:bb:00:95:8c:7e:b8:96:89:db:05: 77:a1:e4:b7:0b:73:08:68:c5:3b:f8:fc:f3:0a:84:df:ba:b1: 5f:30:a2:93:30:d3:2d:77:8d:d0:38:74:14:f2:e4:3b:8f:5b: f9:44:09:43 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9XIZpZP0d2e7BGdJBH0lyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5ZTg3ZWYwM2NmMTcxYTQwYmEyYmVjODllNjg4YmI5ZDM4 MjU4NzMwHhcNMjYwMTAyMDYxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ODMzMDA0N2IzYzkzZjIwMGVhNDFhOGI3OTMyYzlmNWM3ZDY5YTU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1zPLRaOR4sKtauGajQHHq/31Ikf9 lIzdv/6BS0yiieJsUXli/+3JC7f0jFF8LyJqjy+7fR8rULo90uMEOVtEKPqsMXpo QfruOsAPiGHRR70fpi1BDUorokPmbXevS4QxhKR2ytZbiUksPTjSFKzX61FEoaRu XOJ6gUjsPouPMbIO25CKGugMe4dgnWlVQYDLGtjxo102ctK0T+y+HcI1AW44NCPY YZICxF2I9I6uvskiKJnqTNDg9uTq32l6yX8oT68XJCpBL+7+aNPPVxyIw/PbOvCS PQfPC3lpmQH32ZBP23rVfhqbHrSEghK/eh4JwUUH2G2cAFeosXzPR+bRZQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHgzAEezyT8gDqQai3kyyfXH1ppWMB8GA1UdIwQY MBaAFDnofvA88XGkC6K+yJ5oi7nTglhzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2VoLThEenhjYVFMb3I3SW5taUx1ZE9DV0hNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy81MWE2MGMtY2Y2My00NDNkLTllMDIt MDRkZDU2ZjcwZmUzLzEvZURNQVI3UEpQeUFPcEJxTGVUTEo5Y2ZXbWxZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy81MWE2MGMtY2Y2My00NDNkLTllMDItMDRkZDU2ZjcwZmUz LzEvT2VoLThEenhjYVFMb3I3SW5taUx1ZE9DV0hNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCVZ4IMA0E AgACMAcDBQMqBfqAMA0GCSqGSIb3DQEBCwUAA4IBAQCV21PBsrdkD706yCaVBfJt qLtQ61SWNRsvFjs/bVFLU2CL56MBSYMF5N/FFZLjgLTDaPoknS4oUKLL/OqxQZgP NE4igjlvjDmzlouVxx23Y36W/fXFrHKV+966VpFUAm9Jp5vVnBRI8QOud2LqkFnY rbckSEYV+TAz3PPsQc3jIj9UFtCf6aiPDJYusAR8aNr+/1aBroXjA9UME61NOQb1 T2lExCY/S12pWXVg/CZjnGhq38uBy1Qfikr1FrnEKHbD79dShzDRek1XBM/1g7sA lYx+uJaJ2wV3oeS3C3MIaMU7+PzzCoTfurFfMKKTMNMtd43QOHQU8uQ7j1v5RAlD -----END CERTIFICATE-----Generated at Mon Feb 9 20:59:47 2026 by rpki-client