This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/Ezve964v81lYlWQeavbK7g7CJGk.roa File: Ezve964v81lYlWQeavbK7g7CJGk.roa (raw, json) Hash identifier: iRAr6mZP/rQywgyAaTeChLJgFIykzhfGwc22gfj7mcU= Subject key identifier: 13:3B:DE:F7:AE:2F:F3:59:58:95:64:1E:6A:F6:CA:EE:0E:C2:24:69 Certificate issuer: /CN=01867d98b05217af1afaca7226bbd613370749f0 Certificate serial: 019B7DC9E417FC29CE1EAFE50C353E26C463 Authority key identifier: 01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/Ezve964v81lYlWQeavbK7g7CJGk.roa Signing time: Fri 02 Jan 2026 08:19:01 +0000 ROA not before: Fri 02 Jan 2026 08:19:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42217 IP address blocks: 185.206.40.0/22 maxlen: 24 2a0b:fc0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:e4:17:fc:29:ce:1e:af:e5:0c:35:3e:26:c4:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01867d98b05217af1afaca7226bbd613370749f0 Validity Not Before: Jan 2 08:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=133bdef7ae2ff3595895641e6af6caee0ec22469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5f:da:a1:0a:b8:c0:aa:55:09:90:23:0b:6c: 15:f5:ba:aa:76:c7:bd:ac:ed:bd:a5:ee:be:89:28: 43:bc:94:a8:36:39:e2:db:4f:9f:06:37:63:2c:ab: 8c:c9:26:e8:66:5d:25:3e:1a:c8:74:de:75:02:62: af:7c:83:7b:11:54:9c:d2:4b:0d:89:43:03:81:12: 37:50:4b:ac:8e:35:23:28:dd:b7:b3:20:c4:8f:e0: bd:cd:e3:0e:fe:e7:2c:49:98:f4:ca:0f:fb:ec:2e: 9b:af:a0:d5:93:2a:f8:5b:ba:eb:91:9f:89:21:66: 32:65:28:b9:7c:79:83:98:7a:1d:ca:09:34:a4:10: c8:38:2e:9a:81:3b:c4:43:ef:a7:2d:0a:1f:30:24: 05:d0:26:9b:1c:a2:3d:6e:20:c1:df:55:e3:86:36: d1:1b:7d:38:18:2f:7a:27:37:8f:39:37:fc:1d:96: 9f:b3:34:f0:3e:a9:b9:38:72:74:50:dd:79:9a:27: e4:9e:4d:5e:72:b3:17:37:fa:71:af:b0:67:60:43: 57:f3:a7:a3:39:8b:e2:e6:7c:aa:9a:08:51:d0:d0: d6:c9:97:71:05:14:01:e4:d3:04:a7:29:c5:09:54: 7a:be:a2:65:2c:d7:52:61:b0:c0:01:67:26:55:d5: aa:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:3B:DE:F7:AE:2F:F3:59:58:95:64:1E:6A:F6:CA:EE:0E:C2:24:69 X509v3 Authority Key Identifier: keyid:01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/Ezve964v81lYlWQeavbK7g7CJGk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.206.40.0/22 IPv6: 2a0b:fc0::/29 Signature Algorithm: sha256WithRSAEncryption 10:73:07:a7:56:f3:f9:6d:d5:03:13:06:ae:a1:9a:9a:fd:7a: c7:21:25:ee:ce:8b:e4:e6:73:fc:73:77:b6:a0:8b:a5:e5:7d: 83:8e:30:26:5b:af:ff:05:69:cb:2e:d8:e8:0c:f6:6d:96:cf: 0e:d6:34:90:82:61:2a:c6:66:4f:80:33:37:67:89:69:a8:5b: 43:ad:a0:8f:07:46:f7:82:2d:c5:da:cb:62:96:35:5e:3c:28: 7d:ec:db:a5:6f:73:2f:8d:7a:75:c7:87:0f:27:fb:5b:f4:66: 63:a0:4a:ea:42:ca:e3:85:33:26:ca:a6:cf:bc:94:17:98:bb: 57:98:07:d0:4f:29:6b:3c:5b:c7:75:53:22:3a:23:85:88:6a: 90:36:62:35:1a:ff:a0:50:26:de:6f:fc:de:6d:a9:a9:60:af: 89:fd:ed:4b:37:5d:d9:d6:f1:25:2f:d8:ba:13:2f:13:c7:3e: 31:b5:09:b2:9e:f1:f7:25:b5:a8:80:eb:99:3f:c2:3b:c4:44: 42:33:d8:e0:13:61:af:e6:ba:86:00:54:97:a6:82:4b:5c:39: 76:80:a4:26:7e:66:7e:e1:a3:27:86:81:ea:67:8d:13:86:98: 88:b7:5c:4a:93:83:63:e3:8f:a2:e0:63:41:fb:26:7b:98:28: 06:58:5e:fe -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9yeQX/CnOHq/lDDU+JsRjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxODY3ZDk4YjA1MjE3YWYxYWZhY2E3MjI2YmJkNjEzMzcw NzQ5ZjAwHhcNMjYwMTAyMDgxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzNiZGVmN2FlMmZmMzU5NTg5NTY0MWU2YWY2Y2FlZTBlYzIyNDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1/aoQq4wKpVCZAjC2wV9bqqdse9 rO29pe6+iShDvJSoNjni20+fBjdjLKuMySboZl0lPhrIdN51AmKvfIN7EVSc0ksN iUMDgRI3UEusjjUjKN23syDEj+C9zeMO/ucsSZj0yg/77C6br6DVkyr4W7rrkZ+J IWYyZSi5fHmDmHodygk0pBDIOC6agTvEQ++nLQofMCQF0CabHKI9biDB31XjhjbR G304GC96JzePOTf8HZafszTwPqm5OHJ0UN15mifknk1ecrMXN/pxr7BnYENX86ej OYvi5nyqmghR0NDWyZdxBRQB5NMEpynFCVR6vqJlLNdSYbDAAWcmVdWqmwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBM73veuL/NZWJVkHmr2yu4OwiRpMB8GA1UdIwQY MBaAFAGGfZiwUhevGvrKcia71hM3B0nwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVlaOW1MQlNGNjhhLXNweUpydldFemNIU2ZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC81MmJlYTQtMGFiZC00NzE5LWE2NGIt ZTQ3YzU4Y2U1MzNjLzEvRXp2ZTk2NHY4MWxZbFdRZWF2Yks3ZzdDSkdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC81MmJlYTQtMGFiZC00NzE5LWE2NGItZTQ3YzU4Y2U1MzNj LzEvQVlaOW1MQlNGNjhhLXNweUpydldFemNIU2ZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuc4oMA0E AgACMAcDBQMqCw/AMA0GCSqGSIb3DQEBCwUAA4IBAQAQcwenVvP5bdUDEwauoZqa /XrHISXuzovk5nP8c3e2oIul5X2DjjAmW6//BWnLLtjoDPZtls8O1jSQgmEqxmZP gDM3Z4lpqFtDraCPB0b3gi3F2stiljVePCh97Nulb3MvjXp1x4cPJ/tb9GZjoErq QsrjhTMmyqbPvJQXmLtXmAfQTylrPFvHdVMiOiOFiGqQNmI1Gv+gUCbeb/zebamp YK+J/e1LN13Z1vElL9i6Ey8Txz4xtQmynvH3JbWogOuZP8I7xERCM9jgE2Gv5rqG AFSXpoJLXDl2gKQmfmZ+4aMnhoHqZ40ThpiIt1xKk4Nj44+i4GNB+yZ7mCgGWF7+ -----END CERTIFICATE-----Generated at Mon Feb 9 20:59:55 2026 by rpki-client