This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/ea117a-412a-49e2-890f-4bb43ba3cde3/1/ebpfphQpUoNw6-DnGUlcUcncw5M.roa File: ebpfphQpUoNw6-DnGUlcUcncw5M.roa (raw, json) Hash identifier: hBKGgctsDfvdQwo/wD176sECwRPtV6KHzN7DD0h6HOU= Subject key identifier: 79:BA:5F:A6:14:29:52:83:70:EB:E0:E7:19:49:5C:51:C9:DC:C3:93 Certificate issuer: /CN=17999e211914a68db83eaf3f7fd384c53e747455 Certificate serial: 019B79ED27D70B40FD25CB01C48FB46D8FFD Authority key identifier: 17:99:9E:21:19:14:A6:8D:B8:3E:AF:3F:7F:D3:84:C5:3E:74:74:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5meIRkUpo24Pq8_f9OExT50dFU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/ea117a-412a-49e2-890f-4bb43ba3cde3/1/ebpfphQpUoNw6-DnGUlcUcncw5M.roa Signing time: Thu 01 Jan 2026 14:19:03 +0000 ROA not before: Thu 01 Jan 2026 14:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211037 IP address blocks: 185.21.134.0/24 maxlen: 24 2a04:4480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/ea117a-412a-49e2-890f-4bb43ba3cde3/1/F5meIRkUpo24Pq8_f9OExT50dFU.crl rsync://rpki.ripe.net/repository/DEFAULT/93/ea117a-412a-49e2-890f-4bb43ba3cde3/1/F5meIRkUpo24Pq8_f9OExT50dFU.mft rsync://rpki.ripe.net/repository/DEFAULT/F5meIRkUpo24Pq8_f9OExT50dFU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:27:d7:0b:40:fd:25:cb:01:c4:8f:b4:6d:8f:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17999e211914a68db83eaf3f7fd384c53e747455 Validity Not Before: Jan 1 14:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=79ba5fa61429528370ebe0e719495c51c9dcc393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:22:99:ea:52:48:53:20:73:c9:34:ce:49:08: e5:aa:79:72:04:db:be:16:8d:87:4a:ec:43:aa:34: 1a:5b:84:68:7a:16:ca:56:17:2e:35:62:f1:9b:8a: 42:c7:7a:a2:bd:6d:17:bd:b8:8e:cb:1a:bc:3c:0c: 23:73:ea:14:f9:86:fc:59:9c:a0:09:89:2c:3e:fb: 6a:19:79:ca:1c:cc:ac:ae:4a:bf:35:59:a1:47:05: 78:76:4c:63:36:ec:ff:82:da:18:5d:7e:c0:6d:e4: f5:2e:f5:be:3a:05:42:a3:a6:87:bc:c2:89:9e:9c: f9:81:bc:2d:08:9d:84:53:8a:5e:76:40:be:e2:00: 30:05:68:99:d7:50:3c:26:61:05:c1:6f:19:50:58: c2:a5:0a:e6:63:43:b7:55:44:56:f8:2d:1b:a9:ef: 87:f5:5a:e3:d9:7f:b7:c7:53:45:43:70:da:48:bf: 92:a5:8a:6e:7d:68:61:dd:c4:f3:22:4e:46:db:5f: fe:fa:ac:8c:99:34:27:a0:b2:ea:85:f6:5b:2d:be: 3a:38:ec:3d:22:80:6e:a8:0d:ab:03:09:f3:96:7d: c5:8a:3d:ee:ed:01:bf:28:cf:03:c4:58:ff:36:09: f0:ea:d8:d1:25:6a:01:e6:60:41:8c:36:a9:0e:aa: df:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BA:5F:A6:14:29:52:83:70:EB:E0:E7:19:49:5C:51:C9:DC:C3:93 X509v3 Authority Key Identifier: keyid:17:99:9E:21:19:14:A6:8D:B8:3E:AF:3F:7F:D3:84:C5:3E:74:74:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5meIRkUpo24Pq8_f9OExT50dFU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/ea117a-412a-49e2-890f-4bb43ba3cde3/1/ebpfphQpUoNw6-DnGUlcUcncw5M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/ea117a-412a-49e2-890f-4bb43ba3cde3/1/F5meIRkUpo24Pq8_f9OExT50dFU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.21.134.0/24 IPv6: 2a04:4480::/32 Signature Algorithm: sha256WithRSAEncryption 80:80:09:0e:03:b8:dd:91:a3:50:7f:e9:c0:89:3d:3c:60:ff: aa:70:15:8a:ae:79:38:a5:9d:e8:bf:cc:a3:52:02:d2:97:93: cf:75:c6:ba:f5:3b:01:91:ec:2d:83:8f:06:5d:64:5a:6b:a4: 26:e6:54:e6:e0:95:d6:71:71:56:df:62:e7:1b:b6:f6:83:0c: f7:65:80:be:b9:96:4d:71:bd:3b:50:d1:0c:fd:94:85:ff:f3: bc:93:e2:ff:e2:84:fe:3c:3b:3d:b7:05:61:63:78:79:a1:37: 00:9f:5a:2c:58:88:7c:39:00:51:a0:89:37:ab:62:3b:33:49: eb:8d:f2:b3:78:d7:35:d9:a5:a2:e9:78:c2:a5:a3:d1:cd:14: b5:67:c7:db:58:12:5d:66:7a:15:94:75:32:b8:e2:7a:20:56: 49:30:fd:d0:df:79:41:d2:1c:13:af:80:63:c9:45:3f:2a:3c: df:67:76:b7:f6:66:5f:8f:5d:8e:73:9c:89:ad:ca:8f:a2:cc: ec:1e:f2:7a:65:c9:bf:4d:c4:84:d2:2b:20:ce:54:30:12:b0: 1e:15:21:0a:42:e0:15:61:d2:0c:05:bc:ea:15:ed:93:4f:df: 42:3c:39:21:fd:07:d6:3b:4b:77:28:4e:f0:1f:73:ec:1a:3b: ac:00:ec:d4 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57SfXC0D9JcsBxI+0bY/9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3OTk5ZTIxMTkxNGE2OGRiODNlYWYzZjdmZDM4NGM1M2U3 NDc0NTUwHhcNMjYwMTAxMTQxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OWJhNWZhNjE0Mjk1MjgzNzBlYmUwZTcxOTQ5NWM1MWM5ZGNjMzkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiyKZ6lJIUyBzyTTOSQjlqnlyBNu+ Fo2HSuxDqjQaW4RoehbKVhcuNWLxm4pCx3qivW0XvbiOyxq8PAwjc+oU+Yb8WZyg CYksPvtqGXnKHMysrkq/NVmhRwV4dkxjNuz/gtoYXX7AbeT1LvW+OgVCo6aHvMKJ npz5gbwtCJ2EU4pedkC+4gAwBWiZ11A8JmEFwW8ZUFjCpQrmY0O3VURW+C0bqe+H 9Vrj2X+3x1NFQ3DaSL+SpYpufWhh3cTzIk5G21/++qyMmTQnoLLqhfZbLb46OOw9 IoBuqA2rAwnzln3Fij3u7QG/KM8DxFj/Ngnw6tjRJWoB5mBBjDapDqrf2wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHm6X6YUKVKDcOvg5xlJXFHJ3MOTMB8GA1UdIwQY MBaAFBeZniEZFKaNuD6vP3/ThMU+dHRVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjVtZUlSa1VwbzI0UHE4X2Y5T0V4VDUwZEZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9lYTExN2EtNDEyYS00OWUyLTg5MGYt NGJiNDNiYTNjZGUzLzEvZWJwZnBoUXBVb053Ni1EbkdVbGNVY25jdzVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9lYTExN2EtNDEyYS00OWUyLTg5MGYtNGJiNDNiYTNjZGUz LzEvRjVtZUlSa1VwbzI0UHE4X2Y5T0V4VDUwZEZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuRWGMA0E AgACMAcDBQAqBESAMA0GCSqGSIb3DQEBCwUAA4IBAQCAgAkOA7jdkaNQf+nAiT08 YP+qcBWKrnk4pZ3ov8yjUgLSl5PPdca69TsBkewtg48GXWRaa6Qm5lTm4JXWcXFW 32LnG7b2gwz3ZYC+uZZNcb07UNEM/ZSF//O8k+L/4oT+PDs9twVhY3h5oTcAn1os WIh8OQBRoIk3q2I7M0nrjfKzeNc12aWi6XjCpaPRzRS1Z8fbWBJdZnoVlHUyuOJ6 IFZJMP3Q33lB0hwTr4BjyUU/KjzfZ3a39mZfj12Oc5yJrcqPoszsHvJ6Zcm/TcSE 0isgzlQwErAeFSEKQuAVYdIMBbzqFe2TT99CPDkh/QfWO0t3KE7wH3PsGjusAOzU -----END CERTIFICATE-----Generated at Mon Feb 9 22:37:07 2026 by rpki-client