This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ePCQOAXu5rVktFdZNgA-1TC42QI.roa File: ePCQOAXu5rVktFdZNgA-1TC42QI.roa (raw, json) Hash identifier: CjOUrEzkfRz88Ulb7NOdBtXaDB5Py6xFGEV9D+Pw0XY= Subject key identifier: 78:F0:90:38:05:EE:E6:B5:64:B4:57:59:36:00:3E:D5:30:B8:D9:02 Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Certificate serial: 019B797EB1FB42BB2748B88537018C5D1378 Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ePCQOAXu5rVktFdZNgA-1TC42QI.roa Signing time: Thu 01 Jan 2026 12:18:24 +0000 ROA not before: Thu 01 Jan 2026 12:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209417 IP address blocks: 45.9.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:b1:fb:42:bb:27:48:b8:85:37:01:8c:5d:13:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Validity Not Before: Jan 1 12:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=78f0903805eee6b564b4575936003ed530b8d902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:54:74:f0:81:c7:5e:92:3e:a9:97:e9:6c:2c: b7:44:c0:04:fd:9d:f2:3d:23:60:d6:5c:c2:dd:54: e5:30:3f:66:89:6b:47:8d:42:05:7d:d3:01:f0:b8: ef:1a:f0:5b:27:8d:c7:f9:8a:e0:17:f4:e8:70:9b: 35:89:61:fd:07:03:e7:20:8a:39:35:96:30:db:d7: 23:d1:e3:96:1e:c7:00:91:0b:72:55:41:75:ff:dc: cf:81:ba:2d:22:f9:d8:6d:af:13:24:8c:1a:4e:08: 72:37:22:15:bf:0d:a5:eb:e2:4b:95:1c:30:fc:60: 96:c8:9b:7d:a2:68:75:83:1a:2e:31:42:7d:4e:48: f3:72:c8:10:d0:39:1e:ea:5b:1d:c9:61:22:9a:35: 72:18:8e:0f:55:b2:2d:a8:19:7a:5d:2e:f6:90:ce: 9f:4b:60:fb:9d:58:82:3e:d5:c3:d6:aa:53:32:1c: 95:c9:83:f2:68:34:7d:29:cc:a9:6a:db:46:1b:bd: 21:69:c2:eb:38:11:a1:80:d3:3e:70:fa:7b:37:bd: e6:68:88:c6:4f:c2:9f:e3:a5:f2:42:07:94:05:56: 32:35:cd:88:8f:4d:12:b6:80:e7:80:a6:5d:d8:ba: 1a:2b:50:6a:07:f2:77:cd:48:d9:94:3c:fa:90:54: a6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F0:90:38:05:EE:E6:B5:64:B4:57:59:36:00:3E:D5:30:B8:D9:02 X509v3 Authority Key Identifier: keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ePCQOAXu5rVktFdZNgA-1TC42QI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.9.11.0/24 Signature Algorithm: sha256WithRSAEncryption 73:8d:7e:a4:f7:60:87:de:4a:c7:f8:72:a5:04:72:0e:57:ad: 4f:a2:03:2d:c2:b1:10:d1:75:f4:2a:ac:2e:6a:06:c8:1b:6b: 20:69:ae:8b:33:ac:8d:21:0b:0a:da:9a:5f:58:78:34:b4:b1: 9f:5f:29:d2:71:0d:1a:49:73:c5:b2:ee:7d:3e:65:14:fc:92: d2:c0:7d:75:74:52:52:35:9e:e6:9b:a7:2c:67:3c:58:b8:e2: 56:71:2b:7b:ce:b8:22:e5:7c:75:76:b2:bc:39:6b:18:1a:75: a2:4b:06:e5:31:33:7f:15:14:31:c3:86:f4:6f:80:28:90:cc: d4:b7:f4:a6:6d:f0:f5:a7:db:54:05:0c:aa:3a:88:a3:4c:ab: 94:8e:56:e4:3f:1b:6f:3f:5c:84:c5:9d:ca:fa:5f:44:0c:4b: a9:92:45:33:ba:15:7e:c8:c1:22:23:a3:c8:48:f6:e4:ac:2b: 27:09:e0:8d:d2:d1:d2:e2:f5:4f:79:fd:ee:a8:5d:ad:e8:a8: 49:a2:d2:3f:eb:1e:b3:df:a0:26:3d:6b:c7:ba:91:f5:99:be: fd:4b:b9:85:08:15:55:3c:ba:1b:72:b6:bf:8f:77:e4:c4:d6: 73:de:6c:95:dc:78:4e:91:6f:95:ef:a1:49:1d:75:be:aa:2e: fa:22:f4:da -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5frH7QrsnSLiFNwGMXRN4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0 ZWYzYWEwHhcNMjYwMTAxMTIxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OGYwOTAzODA1ZWVlNmI1NjRiNDU3NTkzNjAwM2VkNTMwYjhkOTAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFR08IHHXpI+qZfpbCy3RMAE/Z3y PSNg1lzC3VTlMD9miWtHjUIFfdMB8LjvGvBbJ43H+YrgF/TocJs1iWH9BwPnIIo5 NZYw29cj0eOWHscAkQtyVUF1/9zPgbotIvnYba8TJIwaTghyNyIVvw2l6+JLlRww /GCWyJt9omh1gxouMUJ9TkjzcsgQ0Dke6lsdyWEimjVyGI4PVbItqBl6XS72kM6f S2D7nViCPtXD1qpTMhyVyYPyaDR9KcypattGG70hacLrOBGhgNM+cPp7N73maIjG T8Kf46XyQgeUBVYyNc2Ij00StoDngKZd2LoaK1BqB/J3zUjZlDz6kFSmQQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHjwkDgF7ua1ZLRXWTYAPtUwuNkCMB8GA1UdIwQY MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt YTU0MWQxYmNlZTE5LzEvZVBDUU9BWHU1clZrdEZkWk5nQS0xVEM0MlFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5 LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQkLMA0G CSqGSIb3DQEBCwUAA4IBAQBzjX6k92CH3krH+HKlBHIOV61PogMtwrEQ0XX0Kqwu agbIG2sgaa6LM6yNIQsK2ppfWHg0tLGfXynScQ0aSXPFsu59PmUU/JLSwH11dFJS NZ7mm6csZzxYuOJWcSt7zrgi5Xx1drK8OWsYGnWiSwblMTN/FRQxw4b0b4AokMzU t/SmbfD1p9tUBQyqOoijTKuUjlbkPxtvP1yExZ3K+l9EDEupkkUzuhV+yMEiI6PI SPbkrCsnCeCN0tHS4vVPef3uqF2t6KhJotI/6x6z36AmPWvHupH1mb79S7mFCBVV PLobcra/j3fkxNZz3myV3HhOkW+V76FJHXW+qi76IvTa -----END CERTIFICATE-----Generated at Tue Jan 6 21:30:42 2026 by rpki-client