This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/EfsJnQ3fWNGuLHN2Qj7lFcxFPDY.roa File: EfsJnQ3fWNGuLHN2Qj7lFcxFPDY.roa (raw, json) Hash identifier: fRjDXyYWBIV0igVEoIZnUlJBKpIyjajsg/tbcl1aWrc= Subject key identifier: 11:FB:09:9D:0D:DF:58:D1:AE:2C:73:76:42:3E:E5:15:CC:45:3C:36 Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Certificate serial: 019B7F15BEDD62BAE148BB5DE10AA12CDD7B Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/EfsJnQ3fWNGuLHN2Qj7lFcxFPDY.roa Signing time: Fri 02 Jan 2026 14:21:30 +0000 ROA not before: Fri 02 Jan 2026 14:21:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15830 IP address blocks: 2.56.0.0/22 maxlen: 22 188.95.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.mft rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:be:dd:62:ba:e1:48:bb:5d:e1:0a:a1:2c:dd:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Validity Not Before: Jan 2 14:21:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=11fb099d0ddf58d1ae2c7376423ee515cc453c36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:02:45:85:f4:b4:64:d3:89:75:52:3c:e2:8b: 7d:9d:40:50:f6:d4:1f:9a:79:c3:b3:01:a0:bb:00: ef:b1:75:9e:89:32:0d:98:4e:e3:20:b7:95:86:6a: b4:a9:ab:b4:cd:6b:0f:10:ca:d1:66:cc:d3:08:28: 27:54:62:bc:bf:dd:47:a2:8d:1c:66:c8:e7:89:d6: ea:ec:3b:b5:33:b7:94:2c:88:8e:88:61:6a:73:01: b0:a3:8d:aa:02:57:f7:5c:7b:44:f3:6a:e9:38:70: 7a:b8:76:1e:3d:33:52:18:46:06:4c:9e:9e:aa:82: ec:44:e8:99:64:f2:df:c5:2b:25:1c:c0:e6:55:5f: 53:3a:30:63:6d:d9:5b:a3:7f:d8:d9:a4:d4:96:c0: 92:ee:33:bf:c1:a3:85:44:83:77:6a:db:d4:00:25: be:7e:ac:c5:91:43:00:d0:f6:ed:eb:46:9b:a5:ab: bb:1e:72:10:ac:48:87:30:90:7b:c5:68:3c:eb:5f: 8a:94:e3:0c:20:8a:a8:1d:6b:69:32:83:6c:be:30: 36:44:51:3e:d1:20:6d:66:47:f7:d4:e0:ab:8f:41: 90:7a:86:df:b9:82:54:0e:e3:e1:e5:a7:9a:3b:8f: d2:89:6f:d1:09:0f:5b:e5:52:38:ee:d8:2e:d9:bc: 82:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:FB:09:9D:0D:DF:58:D1:AE:2C:73:76:42:3E:E5:15:CC:45:3C:36 X509v3 Authority Key Identifier: keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/EfsJnQ3fWNGuLHN2Qj7lFcxFPDY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.0.0/22 188.95.67.0/24 Signature Algorithm: sha256WithRSAEncryption 32:99:48:ec:99:a9:e4:3e:fc:55:5c:32:a7:0a:b3:65:ad:5f: dc:80:97:02:7c:c7:93:3b:1b:06:09:93:ed:d7:1e:82:14:f3: be:6f:7a:d3:48:0f:0d:50:56:1f:50:0c:b4:01:3b:86:30:45: a4:53:7c:da:ef:c0:4b:4e:02:f0:d1:b0:a9:f2:c7:3d:4b:56: 17:b9:15:19:72:48:f7:7b:ca:c5:4f:e8:1b:d3:d7:a1:ea:4f: 82:56:1c:58:e7:cc:57:c0:04:d7:60:3c:8f:07:14:bd:65:14: b6:08:fd:72:02:4b:13:c8:7d:86:8f:db:39:72:e2:38:5e:10: 65:9c:40:9a:12:69:78:f4:a6:6f:12:51:36:60:cd:78:60:a8: 3f:f4:21:6c:20:e1:02:be:10:a4:4f:3d:13:6b:a4:94:a5:4c: 47:60:3e:e4:e7:08:4c:a0:ad:a6:85:89:f4:86:7f:b2:b7:26: 83:95:2d:aa:2d:55:6a:ba:9b:da:11:8d:17:59:6d:3d:7a:a5: f7:8e:db:b6:bb:3c:9e:b4:19:86:49:6c:8a:4f:d0:53:c0:89: 59:b3:86:08:0d:d3:eb:3e:5a:79:2e:41:c5:fe:3d:36:69:d8: 97:ce:fc:2f:9e:87:bb:e5:27:4b:f8:26:56:45:bb:78:89:06: cc:4d:c1:c2 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/Fb7dYrrhSLtd4QqhLN17MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw MjNlYmUwHhcNMjYwMTAyMTQyMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMWZiMDk5ZDBkZGY1OGQxYWUyYzczNzY0MjNlZTUxNWNjNDUzYzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgJFhfS0ZNOJdVI84ot9nUBQ9tQf mnnDswGguwDvsXWeiTINmE7jILeVhmq0qau0zWsPEMrRZszTCCgnVGK8v91Hoo0c Zsjnidbq7Du1M7eULIiOiGFqcwGwo42qAlf3XHtE82rpOHB6uHYePTNSGEYGTJ6e qoLsROiZZPLfxSslHMDmVV9TOjBjbdlbo3/Y2aTUlsCS7jO/waOFRIN3atvUACW+ fqzFkUMA0Pbt60abpau7HnIQrEiHMJB7xWg861+KlOMMIIqoHWtpMoNsvjA2RFE+ 0SBtZkf31OCrj0GQeobfuYJUDuPh5aeaO4/SiW/RCQ9b5VI47tgu2byCawIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBH7CZ0N31jRrixzdkI+5RXMRTw2MB8GA1UdIwQY MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt OTlhY2I5OWNlNzU0LzEvRWZzSm5RM2ZXTkd1TEhOMlFqN2xGY3hGUERZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0 LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCAjgAAwQA vF9DMA0GCSqGSIb3DQEBCwUAA4IBAQAymUjsmankPvxVXDKnCrNlrV/cgJcCfMeT OxsGCZPt1x6CFPO+b3rTSA8NUFYfUAy0ATuGMEWkU3za78BLTgLw0bCp8sc9S1YX uRUZckj3e8rFT+gb09eh6k+CVhxY58xXwATXYDyPBxS9ZRS2CP1yAksTyH2Gj9s5 cuI4XhBlnECaEml49KZvElE2YM14YKg/9CFsIOECvhCkTz0Ta6SUpUxHYD7k5whM oK2mhYn0hn+ytyaDlS2qLVVqupvaEY0XWW09eqX3jtu2uzyetBmGSWyKT9BTwIlZ s4YIDdPrPlp5LkHF/j02adiXzvwvnoe75SdL+CZWRbt4iQbMTcHC -----END CERTIFICATE-----Generated at Sat Jan 3 04:53:30 2026 by rpki-client