This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/eZKiMQzWjnLSNUhPLCHXtLoY7-g.roa File: eZKiMQzWjnLSNUhPLCHXtLoY7-g.roa (raw, json) Hash identifier: QDiTQOusWt82z3mM8hhlc6NxV/ZNj/KHfUZESocyJ6k= Subject key identifier: 79:92:A2:31:0C:D6:8E:72:D2:35:48:4F:2C:21:D7:B4:BA:18:EF:E8 Certificate issuer: /CN=2fd379353e3c948dfd98da0a59e9792353a4d0e3 Certificate serial: 019B7F15475FF65FCA05BFCE2C93541388AB Authority key identifier: 2F:D3:79:35:3E:3C:94:8D:FD:98:DA:0A:59:E9:79:23:53:A4:D0:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L9N5NT48lI39mNoKWel5I1Ok0OM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/eZKiMQzWjnLSNUhPLCHXtLoY7-g.roa Signing time: Fri 02 Jan 2026 14:20:59 +0000 ROA not before: Fri 02 Jan 2026 14:20:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396982 IP address blocks: 176.116.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/L9N5NT48lI39mNoKWel5I1Ok0OM.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/L9N5NT48lI39mNoKWel5I1Ok0OM.mft rsync://rpki.ripe.net/repository/DEFAULT/L9N5NT48lI39mNoKWel5I1Ok0OM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:47:5f:f6:5f:ca:05:bf:ce:2c:93:54:13:88:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fd379353e3c948dfd98da0a59e9792353a4d0e3 Validity Not Before: Jan 2 14:20:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7992a2310cd68e72d235484f2c21d7b4ba18efe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f6:d8:89:ac:39:a8:e6:ac:1f:0a:70:6b:c2: 5d:c6:0f:e0:78:09:92:d3:46:79:20:19:32:b6:53: b1:72:59:7b:71:a6:8d:82:25:ed:fe:07:e8:2b:ce: d5:1c:37:1a:df:72:49:f3:40:00:db:68:1f:64:4d: c8:f4:8d:45:bb:1c:44:6f:36:5b:40:ee:d6:49:b6: ec:5f:26:5c:f2:bd:a1:84:27:af:6b:2a:f0:f8:bf: c5:c5:60:64:bb:04:37:75:3f:53:17:58:ef:d9:ed: e4:e8:38:c2:37:93:3c:9a:be:d0:74:f3:ed:cb:83: 18:cb:3c:21:b0:c8:55:f2:a3:4d:06:9f:dd:b9:1e: ca:fb:ce:17:b0:4b:74:78:f1:c3:b0:06:e1:10:61: b0:72:60:5e:da:31:f3:cb:07:af:9e:17:3e:30:c1: ef:84:fe:43:7f:0d:9b:ee:e6:4d:04:5d:b7:ae:2d: e1:48:10:d3:31:5a:52:60:12:e1:6d:d0:10:f5:dd: 4a:bc:af:4b:78:35:c7:fe:60:23:91:61:f2:a9:cf: ac:5a:d5:9f:29:25:19:ef:d9:dc:42:75:85:35:0f: 23:6e:1f:a9:32:93:3e:a0:46:9b:61:04:c8:8a:a0: 71:e6:5d:14:1c:b9:53:ac:0e:34:d1:38:ab:d2:2c: a2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:92:A2:31:0C:D6:8E:72:D2:35:48:4F:2C:21:D7:B4:BA:18:EF:E8 X509v3 Authority Key Identifier: keyid:2F:D3:79:35:3E:3C:94:8D:FD:98:DA:0A:59:E9:79:23:53:A4:D0:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L9N5NT48lI39mNoKWel5I1Ok0OM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/eZKiMQzWjnLSNUhPLCHXtLoY7-g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/L9N5NT48lI39mNoKWel5I1Ok0OM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.116.16.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:56:76:92:87:4c:f2:39:dd:96:8d:8b:3e:19:5c:b8:01:77: d1:b3:26:64:b8:44:c8:93:60:8e:39:6f:24:f4:27:a4:fc:11: a3:a2:02:91:ad:45:6c:17:dc:a9:13:b9:42:c7:66:da:ac:eb: 87:5f:c9:6f:71:89:f6:9d:2b:a2:b3:65:93:fc:ee:68:ee:b3: e9:1c:d1:9d:0e:1b:a1:2a:89:55:ff:47:77:a0:f0:28:eb:dd: 72:91:b8:06:35:28:a2:af:6d:18:8a:e8:fa:9c:5f:61:de:44: a7:36:31:f2:38:50:5f:75:85:c4:a5:90:7f:e7:e1:86:ac:19: 3e:a8:57:1c:b7:9c:6c:22:4b:f4:25:3d:9d:1a:9e:b4:b1:52: 7e:29:04:dd:5e:54:77:d8:3f:dd:c4:88:68:9a:5f:6e:29:de: 42:2d:6a:3c:0b:7c:d6:0c:d6:0b:41:9f:6e:1b:2d:25:db:ac: 0b:f9:f8:da:42:9c:be:49:30:5d:97:bd:0c:ff:c3:dc:bc:6f: 1e:5a:bc:a8:fa:4b:45:ea:22:7e:86:99:4e:71:4e:80:c9:67: 55:14:65:20:8c:13:1d:0a:91:2d:9f:0e:ca:ba:b4:ed:be:82: e0:7b:1c:01:57:be:8e:63:09:61:1b:49:ac:9d:4d:54:5e:ad: 3d:fc:3d:12 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FUdf9l/KBb/OLJNUE4irMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmZDM3OTM1M2UzYzk0OGRmZDk4ZGEwYTU5ZTk3OTIzNTNh NGQwZTMwHhcNMjYwMTAyMTQyMDU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OTkyYTIzMTBjZDY4ZTcyZDIzNTQ4NGYyYzIxZDdiNGJhMThlZmU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/bYiaw5qOasHwpwa8Jdxg/geAmS 00Z5IBkytlOxcll7caaNgiXt/gfoK87VHDca33JJ80AA22gfZE3I9I1FuxxEbzZb QO7WSbbsXyZc8r2hhCevayrw+L/FxWBkuwQ3dT9TF1jv2e3k6DjCN5M8mr7QdPPt y4MYyzwhsMhV8qNNBp/duR7K+84XsEt0ePHDsAbhEGGwcmBe2jHzywevnhc+MMHv hP5Dfw2b7uZNBF23ri3hSBDTMVpSYBLhbdAQ9d1KvK9LeDXH/mAjkWHyqc+sWtWf KSUZ79ncQnWFNQ8jbh+pMpM+oEabYQTIiqBx5l0UHLlTrA400Tir0iyiUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHmSojEM1o5y0jVITywh17S6GO/oMB8GA1UdIwQY MBaAFC/TeTU+PJSN/ZjaClnpeSNTpNDjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDlONU5UNDhsSTM5bU5vS1dlbDVJMU9rME9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8xMzI4OGEtZDkyOC00NjJiLTk0YmEt OWUyMjU2MWJjYTg4LzEvZVpLaU1ReldqbkxTTlVoUExDSFh0TG9ZNy1nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS8xMzI4OGEtZDkyOC00NjJiLTk0YmEtOWUyMjU2MWJjYTg4 LzEvTDlONU5UNDhsSTM5bU5vS1dlbDVJMU9rME9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHQQMA0G CSqGSIb3DQEBCwUAA4IBAQBdVnaSh0zyOd2WjYs+GVy4AXfRsyZkuETIk2COOW8k 9Cek/BGjogKRrUVsF9ypE7lCx2barOuHX8lvcYn2nSuis2WT/O5o7rPpHNGdDhuh KolV/0d3oPAo691ykbgGNSiir20Yiuj6nF9h3kSnNjHyOFBfdYXEpZB/5+GGrBk+ qFcct5xsIkv0JT2dGp60sVJ+KQTdXlR32D/dxIhoml9uKd5CLWo8C3zWDNYLQZ9u Gy0l26wL+fjaQpy+STBdl70M/8PcvG8eWryo+ktF6iJ+hplOcU6AyWdVFGUgjBMd CpEtnw7KurTtvoLgexwBV76OYwlhG0msnU1UXq09/D0S -----END CERTIFICATE-----Generated at Fri Jan 9 06:21:13 2026 by rpki-client