This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/0ew4m4ItSCVepyc29nNm9tAEIKM.roa File: 0ew4m4ItSCVepyc29nNm9tAEIKM.roa (raw, json) Hash identifier: qJf794gHKOzylfCxvXi/18OeXDgu/UQKuPAemY2FauU= Subject key identifier: D1:EC:38:9B:82:2D:48:25:5E:A7:27:36:F6:73:66:F6:D0:04:20:A3 Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4 Certificate serial: 019B7CEE33633004A3346D47B0DDCEDCBCB5 Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/0ew4m4ItSCVepyc29nNm9tAEIKM.roa Signing time: Fri 02 Jan 2026 04:19:04 +0000 ROA not before: Fri 02 Jan 2026 04:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6079 IP address blocks: 82.163.68.0/22 maxlen: 24 149.126.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:33:63:30:04:a3:34:6d:47:b0:dd:ce:dc:bc:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4 Validity Not Before: Jan 2 04:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d1ec389b822d48255ea72736f67366f6d00420a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:83:4e:86:0c:e8:97:9e:15:ff:52:c4:c1:06: c3:bd:a3:b9:25:f9:4e:74:e2:99:04:cc:ed:3a:a4: 1c:83:03:f1:4f:8d:d0:d8:dd:b8:17:7e:d8:d2:41: 46:06:ab:04:f2:f8:3d:bc:26:9e:84:36:51:2f:b0: 37:01:36:b4:4b:55:a8:1d:e5:6f:0c:2c:a3:f1:4b: a4:b7:06:2e:36:98:56:59:ce:d3:b7:b1:57:08:ff: 6d:02:b8:28:0b:92:36:5f:d6:0e:9f:16:7a:42:d0: 67:81:f1:2b:dc:e3:f3:85:17:90:a9:2e:05:55:85: 1b:a6:d3:09:af:78:23:0a:b8:e9:90:5d:3c:d7:4b: 77:0f:24:7a:1d:92:9c:f0:91:86:c0:c1:9f:75:30: cb:9d:f1:18:0e:d5:77:76:af:a6:55:07:b9:6b:14: 89:07:9f:28:ee:03:d4:8a:6f:18:ba:4c:91:4d:19: 22:c0:83:57:95:b4:e7:65:b7:64:a5:f1:27:ab:79: 97:66:4e:0b:42:30:43:79:71:7a:c1:62:e2:bf:4d: f3:81:90:d1:c4:6e:20:6b:0d:c6:38:5c:94:12:66: 09:d2:c6:97:51:7a:39:3f:50:04:40:47:7b:ea:24: ee:f2:ae:5c:40:d1:87:6a:39:55:c5:bc:f8:f6:3d: 8e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:EC:38:9B:82:2D:48:25:5E:A7:27:36:F6:73:66:F6:D0:04:20:A3 X509v3 Authority Key Identifier: keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/0ew4m4ItSCVepyc29nNm9tAEIKM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.163.68.0/22 149.126.88.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:9c:1d:0b:6b:c8:f1:ce:26:2c:2f:57:a1:46:28:60:54:60: f7:d5:f3:33:ad:25:7f:dd:83:50:b5:3b:97:49:e2:a8:84:f7: 81:c6:cd:cb:d6:5b:de:39:14:7e:4e:de:f5:69:6f:06:28:cb: c4:05:b8:61:a5:4e:db:ae:f1:be:36:94:1e:d0:05:bf:88:ca: e6:f2:1d:42:b0:33:e3:dd:30:e1:f1:8d:bf:a2:77:fd:d7:b1: 58:c1:80:90:b3:3e:19:0b:b8:eb:86:dd:b0:99:4f:3d:38:99: e3:71:0c:e1:51:0b:b1:59:62:57:57:7c:c7:ac:28:ec:7b:c8: e8:59:66:4e:eb:16:ac:7b:c4:f3:5d:ce:00:ed:18:d4:7a:35: bf:75:29:bc:fb:99:bc:4c:29:ab:14:69:55:8a:ad:d7:17:30: 6a:10:53:13:1b:8b:38:1d:fb:c2:00:60:e7:7c:15:56:d1:32: 2e:fa:6b:6a:7f:8a:6f:f3:7c:0e:3a:da:46:3f:01:f5:bd:17: 3d:bd:a5:35:b2:02:7c:1e:9f:d4:2e:43:29:ad:cc:4a:19:d7: ea:bd:7e:d3:bf:c7:e7:e4:97:d9:0f:a1:44:a9:81:11:f6:3c: 3a:2c:97:d4:8b:07:94:5f:05:29:07:2a:2c:46:d3:a8:e1:bd: 2a:77:e8:98 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87jNjMASjNG1HsN3O3Ly1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2 N2IxZTQwHhcNMjYwMTAyMDQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMWVjMzg5YjgyMmQ0ODI1NWVhNzI3MzZmNjczNjZmNmQwMDQyMGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4NOhgzol54V/1LEwQbDvaO5JflO dOKZBMztOqQcgwPxT43Q2N24F37Y0kFGBqsE8vg9vCaehDZRL7A3ATa0S1WoHeVv DCyj8UuktwYuNphWWc7Tt7FXCP9tArgoC5I2X9YOnxZ6QtBngfEr3OPzhReQqS4F VYUbptMJr3gjCrjpkF0810t3DyR6HZKc8JGGwMGfdTDLnfEYDtV3dq+mVQe5axSJ B58o7gPUim8YukyRTRkiwINXlbTnZbdkpfEnq3mXZk4LQjBDeXF6wWLiv03zgZDR xG4gaw3GOFyUEmYJ0saXUXo5P1AEQEd76iTu8q5cQNGHajlVxbz49j2ObQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNHsOJuCLUglXqcnNvZzZvbQBCCjMB8GA1UdIwQY MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut ODk3MTRhN2U4ZDU4LzEvMGV3NG00SXRTQ1ZlcHljMjluTm05dEFFSUtNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4 LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCUqNEAwQC lX5YMA0GCSqGSIb3DQEBCwUAA4IBAQCLnB0La8jxziYsL1ehRihgVGD31fMzrSV/ 3YNQtTuXSeKohPeBxs3L1lveORR+Tt71aW8GKMvEBbhhpU7brvG+NpQe0AW/iMrm 8h1CsDPj3TDh8Y2/onf917FYwYCQsz4ZC7jrht2wmU89OJnjcQzhUQuxWWJXV3zH rCjse8joWWZO6xase8TzXc4A7RjUejW/dSm8+5m8TCmrFGlViq3XFzBqEFMTG4s4 HfvCAGDnfBVW0TIu+mtqf4pv83wOOtpGPwH1vRc9vaU1sgJ8Hp/ULkMprcxKGdfq vX7Tv8fn5JfZD6FEqYER9jw6LJfUiweUXwUpByosRtOo4b0qd+iY -----END CERTIFICATE-----Generated at Mon Jan 19 16:51:40 2026 by rpki-client