This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/96d730-38ef-4b21-b1fe-a57d488744c2/1/Ez_pZH7L8lMe256HqBWIeLgG1hs.roa File: Ez_pZH7L8lMe256HqBWIeLgG1hs.roa (raw, json) Hash identifier: JvfD5mizMy+PavivGm6Zb/1ENtcMHSO0OABQppwDyDM= Subject key identifier: 13:3F:E9:64:7E:CB:F2:53:1E:DB:9E:87:A8:15:88:78:B8:06:D6:1B Certificate issuer: /CN=32536254b3e74900675bc6ebd50ae825828b9a76 Certificate serial: 019B7E3862918B2383F1328ED840DD3D3A29 Authority key identifier: 32:53:62:54:B3:E7:49:00:67:5B:C6:EB:D5:0A:E8:25:82:8B:9A:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlNiVLPnSQBnW8br1QroJYKLmnY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/96d730-38ef-4b21-b1fe-a57d488744c2/1/Ez_pZH7L8lMe256HqBWIeLgG1hs.roa Signing time: Fri 02 Jan 2026 10:19:42 +0000 ROA not before: Fri 02 Jan 2026 10:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35086 IP address blocks: 185.95.140.0/24 maxlen: 24 185.95.141.0/24 maxlen: 24 185.95.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/96d730-38ef-4b21-b1fe-a57d488744c2/1/MlNiVLPnSQBnW8br1QroJYKLmnY.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/96d730-38ef-4b21-b1fe-a57d488744c2/1/MlNiVLPnSQBnW8br1QroJYKLmnY.mft rsync://rpki.ripe.net/repository/DEFAULT/MlNiVLPnSQBnW8br1QroJYKLmnY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 19:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:62:91:8b:23:83:f1:32:8e:d8:40:dd:3d:3a:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32536254b3e74900675bc6ebd50ae825828b9a76 Validity Not Before: Jan 2 10:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=133fe9647ecbf2531edb9e87a8158878b806d61b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:26:b5:5b:fb:27:26:49:0c:4b:8c:63:44:72: 75:1f:72:87:c7:95:bf:de:42:b7:2c:6e:72:cf:93: ac:ba:1d:e3:f8:94:49:7f:72:c6:5d:61:ec:88:ed: 7b:d2:34:7d:be:90:4b:83:18:1d:74:4a:30:31:df: 7e:3b:bd:54:98:ac:fd:21:1a:29:20:ac:8a:ae:13: 42:8e:e9:a9:9e:fc:77:07:29:9a:b9:92:f7:a9:43: 9b:a2:d4:8a:7c:f9:9d:f3:47:00:98:d6:2d:f5:cf: 84:07:f8:21:c9:39:7c:8e:1c:78:46:7e:c1:d5:4c: d0:4b:3f:4f:f8:42:6b:2b:3c:34:07:08:35:ff:7c: 13:08:27:e0:07:4b:3a:30:3a:fd:53:1b:57:cc:b7: 58:de:21:2e:a7:b8:af:27:42:bd:07:ca:78:08:50: bc:78:5a:d0:7c:b2:48:d5:03:c9:a9:4b:c0:8e:e0: 3c:11:85:3c:1c:8d:dd:11:5e:ce:fb:7e:59:9c:f6: fe:3a:f8:b3:fc:26:42:d8:31:58:a8:63:09:6b:6f: ef:8e:8c:a9:f0:67:c8:67:7e:8e:23:8c:e9:8d:e4: 2d:a5:b1:8a:80:3e:bb:2d:70:82:6a:92:2b:62:1d: 7c:0d:ab:d4:b5:33:a3:4a:b8:a1:ed:20:e1:8b:49: 49:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:3F:E9:64:7E:CB:F2:53:1E:DB:9E:87:A8:15:88:78:B8:06:D6:1B X509v3 Authority Key Identifier: keyid:32:53:62:54:B3:E7:49:00:67:5B:C6:EB:D5:0A:E8:25:82:8B:9A:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlNiVLPnSQBnW8br1QroJYKLmnY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/96d730-38ef-4b21-b1fe-a57d488744c2/1/Ez_pZH7L8lMe256HqBWIeLgG1hs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/96d730-38ef-4b21-b1fe-a57d488744c2/1/MlNiVLPnSQBnW8br1QroJYKLmnY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.95.140.0-185.95.142.255 Signature Algorithm: sha256WithRSAEncryption 8d:15:c9:15:0f:49:10:10:df:8c:09:24:fb:81:4e:e4:0e:48: 16:2a:85:f2:8a:33:0b:b7:74:dd:13:98:47:94:b7:28:cb:43: 19:49:b6:2e:f6:6b:dd:44:aa:28:c8:9a:c9:48:f3:f3:d6:4d: 7f:00:2e:82:bd:67:aa:fb:c1:30:d8:cf:a4:48:15:cc:49:df: fc:0b:41:44:0e:2e:b0:66:56:44:ec:b9:5c:fb:5d:d2:2c:3d: 87:03:7e:44:5f:2f:71:d4:a5:1d:69:37:48:36:f9:79:46:82: 80:e5:6e:ea:aa:84:f7:ba:22:39:6c:1c:cb:f7:34:aa:07:17: bd:5c:54:6c:12:4d:84:45:df:23:f6:fc:d5:24:23:2d:83:0a: e3:1f:ee:d1:4c:df:6d:3a:1b:9d:3b:93:54:4b:cd:10:47:23: fe:bb:f5:96:c8:c1:04:a3:87:19:8e:74:4d:df:95:08:59:89: 76:17:9e:00:d6:a7:3a:09:b1:51:35:c9:67:89:00:6b:d4:f7: d6:91:13:a9:d5:e5:e5:e1:c6:09:90:26:c4:d8:bf:c5:46:d3: 30:ba:46:6c:26:e6:f7:45:df:44:0e:d3:af:1b:31:16:b0:e7: e6:68:5e:17:34:f6:03:1b:35:2b:f9:7f:22:71:fa:42:49:b0: 5b:48:24:54 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt+OGKRiyOD8TKO2EDdPTopMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNTM2MjU0YjNlNzQ5MDA2NzViYzZlYmQ1MGFlODI1ODI4 YjlhNzYwHhcNMjYwMTAyMTAxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzNmZTk2NDdlY2JmMjUzMWVkYjllODdhODE1ODg3OGI4MDZkNjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Ca1W/snJkkMS4xjRHJ1H3KHx5W/ 3kK3LG5yz5Osuh3j+JRJf3LGXWHsiO170jR9vpBLgxgddEowMd9+O71UmKz9IRop IKyKrhNCjumpnvx3BymauZL3qUObotSKfPmd80cAmNYt9c+EB/ghyTl8jhx4Rn7B 1UzQSz9P+EJrKzw0Bwg1/3wTCCfgB0s6MDr9UxtXzLdY3iEup7ivJ0K9B8p4CFC8 eFrQfLJI1QPJqUvAjuA8EYU8HI3dEV7O+35ZnPb+Oviz/CZC2DFYqGMJa2/vjoyp 8GfIZ36OI4zpjeQtpbGKgD67LXCCapIrYh18DavUtTOjSrih7SDhi0lJDQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFBM/6WR+y/JTHtueh6gViHi4BtYbMB8GA1UdIwQY MBaAFDJTYlSz50kAZ1vG69UK6CWCi5p2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWxOaVZMUG5TUUJuVzhicjFRcm9KWUtMbW5ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy85NmQ3MzAtMzhlZi00YjIxLWIxZmUt YTU3ZDQ4ODc0NGMyLzEvRXpfcFpIN0w4bE1lMjU2SHFCV0llTGdHMWhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy85NmQ3MzAtMzhlZi00YjIxLWIxZmUtYTU3ZDQ4ODc0NGMy LzEvTWxOaVZMUG5TUUJuVzhicjFRcm9KWUtMbW5ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAK5X4wD BAC5X44wDQYJKoZIhvcNAQELBQADggEBAI0VyRUPSRAQ34wJJPuBTuQOSBYqhfKK Mwu3dN0TmEeUtyjLQxlJti72a91EqijImslI8/PWTX8ALoK9Z6r7wTDYz6RIFcxJ 3/wLQUQOLrBmVkTsuVz7XdIsPYcDfkRfL3HUpR1pN0g2+XlGgoDlbuqqhPe6Ijls HMv3NKoHF71cVGwSTYRF3yP2/NUkIy2DCuMf7tFM3206G507k1RLzRBHI/679ZbI wQSjhxmOdE3flQhZiXYXngDWpzoJsVE1yWeJAGvU99aRE6nV5eXhxgmQJsTYv8VG 0zC6Rmwm5vdF30QO068bMRaw5+ZoXhc09gMbNSv5fyJx+kJJsFtIJFQ= -----END CERTIFICATE-----Generated at Sun Jan 18 04:08:28 2026 by rpki-client