This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/EZ0XqFeWBU7xgVrdPdN0hk4snjc.roa File: EZ0XqFeWBU7xgVrdPdN0hk4snjc.roa (raw, json) Hash identifier: 9+4B5/EQq2Co6wuVhgW+6rsEc9z5PF8prIUdudng6fE= Subject key identifier: 11:9D:17:A8:57:96:05:4E:F1:81:5A:DD:3D:D3:74:86:4E:2C:9E:37 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B791089298C07E5F2FDB03C3D0AFE9052 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/EZ0XqFeWBU7xgVrdPdN0hk4snjc.roa Signing time: Thu 01 Jan 2026 10:18:05 +0000 ROA not before: Thu 01 Jan 2026 10:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58052 IP address blocks: 2a12:bec0:190::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:89:29:8c:07:e5:f2:fd:b0:3c:3d:0a:fe:90:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=119d17a85796054ef1815add3dd374864e2c9e37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:72:87:05:95:55:2e:ee:f4:dd:bb:1d:e7:c3: 2e:2b:0d:73:22:45:d2:cd:c4:b0:ec:5d:08:5f:04: 00:e7:9b:3d:74:c3:24:da:3a:49:c4:12:26:a7:d7: 76:55:3b:9d:3b:d9:e4:09:af:44:d6:07:9d:ba:6f: c9:0d:72:67:e0:86:5e:8f:2c:c4:86:39:9a:78:0b: 38:4c:56:af:0f:5a:a5:38:c4:a4:9e:14:94:e7:f1: 22:bd:8a:4c:bd:51:6d:22:5a:1e:a1:6a:2e:00:da: da:08:aa:78:9f:be:81:11:8c:4d:75:0d:81:99:25: 62:79:15:59:4c:60:12:d1:f9:b1:48:22:c1:de:11: 4a:86:dd:a5:88:64:97:d8:8b:a2:c2:f7:5a:f3:d0: e4:dc:69:65:18:dd:83:34:6e:1e:36:dd:41:17:4c: 8f:00:4c:a6:38:10:ae:47:de:45:ee:74:ac:c4:25: 12:e7:c6:8a:0d:43:5a:3f:0a:57:f8:e4:7c:45:43: c4:a2:1d:25:5f:50:41:db:72:23:4a:85:eb:f9:c1: fc:3d:e9:4d:2b:3b:b5:8f:af:5d:93:57:3c:dc:90: 93:27:7b:bb:f6:1b:a4:f0:81:92:f4:40:63:56:7d: 93:3d:4f:8e:1f:4e:07:94:d1:91:09:0a:df:d7:a5: f0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:9D:17:A8:57:96:05:4E:F1:81:5A:DD:3D:D3:74:86:4E:2C:9E:37 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/EZ0XqFeWBU7xgVrdPdN0hk4snjc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec0:190::/44 Signature Algorithm: sha256WithRSAEncryption b5:d9:0d:39:b0:9f:4b:ad:c4:d4:37:f0:7c:b2:61:4b:8a:df: 61:eb:13:ec:de:b4:ab:b9:3a:c5:ce:a6:69:e0:83:57:ce:04: ce:44:83:5b:a6:61:46:de:42:c2:b1:fd:f0:8a:43:c4:1c:5d: 7f:a7:fc:6e:23:d4:c1:3b:e4:44:0e:9b:5c:05:b3:5e:b1:6f: 44:b8:c2:bc:23:29:79:68:00:8e:1f:d6:69:80:b2:80:a1:60: dc:3a:ee:8c:aa:46:a6:f1:66:35:79:9e:22:4a:34:a7:b1:47: 50:67:8a:79:ec:0b:c4:5e:05:86:fe:78:a9:99:e5:37:37:2d: 29:19:9c:55:2a:87:59:ab:16:53:2a:d8:67:62:d1:2a:fb:f1: c1:ee:d7:08:98:96:6e:eb:5b:3b:34:6a:1f:f9:e7:4b:81:99: 5c:bd:f6:93:7b:fc:c7:9a:d8:fb:42:1d:a0:76:b4:e5:5c:7c: e1:da:4a:c9:1b:b2:3c:ea:e7:06:90:f0:b9:48:12:38:2c:e7: e9:8e:fd:c4:bd:cc:12:88:2e:56:66:d8:41:a7:f6:bc:2a:b6: c5:43:82:5e:f9:79:98:df:10:33:7d:67:12:27:3f:bd:00:f4: 5d:fb:13:e7:e4:a6:2d:2a:43:54:83:b7:ee:c8:39:52:af:1a: 3f:b7:40:2a -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EIkpjAfl8v2wPD0K/pBSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTlkMTdhODU3OTYwNTRlZjE4MTVhZGQzZGQzNzQ4NjRlMmM5ZTM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3KHBZVVLu703bsd58MuKw1zIkXS zcSw7F0IXwQA55s9dMMk2jpJxBImp9d2VTudO9nkCa9E1gedum/JDXJn4IZejyzE hjmaeAs4TFavD1qlOMSknhSU5/EivYpMvVFtIloeoWouANraCKp4n76BEYxNdQ2B mSVieRVZTGAS0fmxSCLB3hFKht2liGSX2Iuiwvda89Dk3GllGN2DNG4eNt1BF0yP AEymOBCuR95F7nSsxCUS58aKDUNaPwpX+OR8RUPEoh0lX1BB23IjSoXr+cH8PelN Kzu1j69dk1c83JCTJ3u79huk8IGS9EBjVn2TPU+OH04HlNGRCQrf16XwQwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFBGdF6hXlgVO8YFa3T3TdIZOLJ43MB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvRVowWHFGZVdCVTd4Z1ZyZFBkTjBoazRzbmpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wAGQ MA0GCSqGSIb3DQEBCwUAA4IBAQC12Q05sJ9LrcTUN/B8smFLit9h6xPs3rSruTrF zqZp4INXzgTORINbpmFG3kLCsf3wikPEHF1/p/xuI9TBO+REDptcBbNesW9EuMK8 Iyl5aACOH9ZpgLKAoWDcOu6Mqkam8WY1eZ4iSjSnsUdQZ4p57AvEXgWG/nipmeU3 Ny0pGZxVKodZqxZTKthnYtEq+/HB7tcImJZu61s7NGof+edLgZlcvfaTe/zHmtj7 Qh2gdrTlXHzh2krJG7I86ucGkPC5SBI4LOfpjv3EvcwSiC5WZthBp/a8KrbFQ4Je +XmY3xAzfWcSJz+9APRd+xPn5KYtKkNUg7fuyDlSrxo/t0Aq -----END CERTIFICATE-----Generated at Tue Jan 20 02:48:55 2026 by rpki-client