This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/eEnkFR6pXLhlHa3K_hBPWDi1w58.roa File: eEnkFR6pXLhlHa3K_hBPWDi1w58.roa (raw, json) Hash identifier: SV4R5qDN4YbUrJOQ/Cn0+Be7TsAwFGb5aLPqwWgd988= Subject key identifier: 78:49:E4:15:1E:A9:5C:B8:65:1D:AD:CA:FE:10:4F:58:38:B5:C3:9F Certificate issuer: /CN=ae52db82090b343f89f7c637cf41a94bcfd4346a Certificate serial: 019B7D5C032A44E72859424B85A13F97B3CF Authority key identifier: AE:52:DB:82:09:0B:34:3F:89:F7:C6:37:CF:41:A9:4B:CF:D4:34:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlLbggkLND-J98Y3z0GpS8_UNGo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/eEnkFR6pXLhlHa3K_hBPWDi1w58.roa Signing time: Fri 02 Jan 2026 06:19:00 +0000 ROA not before: Fri 02 Jan 2026 06:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34674 IP address blocks: 128.140.176.0/21 maxlen: 21 128.140.176.0/22 maxlen: 22 128.140.176.0/23 maxlen: 23 128.140.178.0/23 maxlen: 23 128.140.180.0/22 maxlen: 22 128.140.180.0/23 maxlen: 23 128.140.182.0/23 maxlen: 23 128.140.184.0/23 maxlen: 23 128.140.184.0/24 maxlen: 24 128.140.185.0/24 maxlen: 24 185.184.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/rlLbggkLND-J98Y3z0GpS8_UNGo.crl rsync://rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/rlLbggkLND-J98Y3z0GpS8_UNGo.mft rsync://rpki.ripe.net/repository/DEFAULT/rlLbggkLND-J98Y3z0GpS8_UNGo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:03:2a:44:e7:28:59:42:4b:85:a1:3f:97:b3:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae52db82090b343f89f7c637cf41a94bcfd4346a Validity Not Before: Jan 2 06:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7849e4151ea95cb8651dadcafe104f5838b5c39f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5c:cf:52:06:a6:cd:a4:09:47:14:a7:1c:a3: 60:c6:13:b7:6a:c6:49:c6:19:a8:8b:32:97:3f:82: 90:2a:ae:88:d4:cb:c2:fb:fb:4f:cd:f5:19:09:59: b8:46:44:a6:84:4f:f5:b0:d7:8d:1f:b1:ca:3d:38: c4:6b:4e:08:e9:e2:f0:a5:ee:29:75:84:b2:ba:ad: d7:9a:33:5b:69:e8:b5:f8:8c:11:0a:76:e0:68:5c: 25:f3:d8:95:79:19:06:fc:3c:84:d6:a7:2a:63:e7: fb:d2:89:64:d4:45:97:af:28:c4:39:f3:b1:18:88: 1c:3f:ff:e0:6e:d4:72:18:14:0d:3e:26:9b:9e:21: ee:f2:40:c6:8c:23:af:de:84:9b:01:4b:0f:70:b5: 60:62:da:87:68:25:e1:79:f3:38:8d:8b:c7:7c:fb: 15:a5:24:2a:ad:6a:3d:7e:3c:26:5d:9e:88:60:ca: 36:39:eb:3d:f1:c8:29:c9:0d:93:08:16:41:f9:2f: a0:77:e7:d0:52:21:f3:3b:47:49:9e:5d:c0:e3:79: 1f:c7:ff:0e:7f:95:99:31:9f:1a:ad:2f:60:62:20: f3:31:b1:fa:0f:12:de:af:c3:c4:01:3f:46:d0:5f: d9:22:26:ef:a8:ca:37:14:9f:6c:8d:66:c9:84:77: b1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:49:E4:15:1E:A9:5C:B8:65:1D:AD:CA:FE:10:4F:58:38:B5:C3:9F X509v3 Authority Key Identifier: keyid:AE:52:DB:82:09:0B:34:3F:89:F7:C6:37:CF:41:A9:4B:CF:D4:34:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlLbggkLND-J98Y3z0GpS8_UNGo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/eEnkFR6pXLhlHa3K_hBPWDi1w58.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/rlLbggkLND-J98Y3z0GpS8_UNGo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.140.176.0-128.140.185.255 185.184.60.0/24 Signature Algorithm: sha256WithRSAEncryption 46:68:e4:79:85:a2:ba:8c:53:c7:ea:45:f5:e3:ae:34:b2:aa: 80:88:8d:85:fb:63:ee:57:0b:e4:3c:61:80:ae:b5:df:b8:1e: 37:2f:70:ef:4d:08:57:4f:6d:56:56:a7:12:0a:bd:a3:d6:03: 15:81:11:91:cd:db:f1:d4:dc:b4:f9:28:d0:1a:d7:e8:02:ef: ef:a3:42:4d:fe:61:22:ff:69:1f:4f:0e:2d:a2:bd:03:38:b6: 7d:da:55:2c:62:e5:21:64:ea:93:5b:49:2f:88:38:e2:af:48: 15:52:94:6e:b9:8d:39:50:59:b8:14:52:2c:eb:ec:d4:df:8e: 49:c0:8c:83:9d:e1:e8:15:66:26:af:db:d4:5f:44:78:96:77: 9c:d7:fa:11:d2:e0:8c:ab:f3:d6:17:0b:c3:f6:18:c9:a1:91: fb:fc:51:fc:d4:55:d5:f5:3e:e1:99:e2:be:d4:16:1c:c2:a8: 5c:33:c9:d4:71:3b:cb:6e:13:3c:1e:57:9e:dc:ac:12:b3:9b: 46:cf:d4:01:76:fb:9d:7b:11:b9:6f:41:13:87:77:40:8e:98: a8:2f:5c:83:38:19:f1:87:8b:63:ad:08:00:65:1c:0e:63:ab: ca:72:5f:d7:e0:2a:48:75:65:6c:76:84:c9:52:cd:6f:b7:2b: 9b:6a:66:be -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt9XAMqROcoWUJLhaE/l7PPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNTJkYjgyMDkwYjM0M2Y4OWY3YzYzN2NmNDFhOTRiY2Zk NDM0NmEwHhcNMjYwMTAyMDYxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ODQ5ZTQxNTFlYTk1Y2I4NjUxZGFkY2FmZTEwNGY1ODM4YjVjMzlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAylzPUgamzaQJRxSnHKNgxhO3asZJ xhmoizKXP4KQKq6I1MvC+/tPzfUZCVm4RkSmhE/1sNeNH7HKPTjEa04I6eLwpe4p dYSyuq3XmjNbaei1+IwRCnbgaFwl89iVeRkG/DyE1qcqY+f70olk1EWXryjEOfOx GIgcP//gbtRyGBQNPiabniHu8kDGjCOv3oSbAUsPcLVgYtqHaCXhefM4jYvHfPsV pSQqrWo9fjwmXZ6IYMo2Oes98cgpyQ2TCBZB+S+gd+fQUiHzO0dJnl3A43kfx/8O f5WZMZ8arS9gYiDzMbH6DxLer8PEAT9G0F/ZIibvqMo3FJ9sjWbJhHexQwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFHhJ5BUeqVy4ZR2tyv4QT1g4tcOfMB8GA1UdIwQY MBaAFK5S24IJCzQ/iffGN89BqUvP1DRqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmxMYmdna0xORC1KOThZM3owR3BTOF9VTkdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9iY2YxNjctYjYxOC00OGQzLTlhNGUt ZDdiNjA2M2RjYTM3LzEvZUVua0ZSNnBYTGhsSGEzS19oQlBXRGkxdzU4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9iY2YxNjctYjYxOC00OGQzLTlhNGUtZDdiNjA2M2RjYTM3 LzEvcmxMYmdna0xORC1KOThZM3owR3BTOF9VTkdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBASAjLAD BAGAjLgDBAC5uDwwDQYJKoZIhvcNAQELBQADggEBAEZo5HmForqMU8fqRfXjrjSy qoCIjYX7Y+5XC+Q8YYCutd+4HjcvcO9NCFdPbVZWpxIKvaPWAxWBEZHN2/HU3LT5 KNAa1+gC7++jQk3+YSL/aR9PDi2ivQM4tn3aVSxi5SFk6pNbSS+IOOKvSBVSlG65 jTlQWbgUUizr7NTfjknAjIOd4egVZiav29RfRHiWd5zX+hHS4Iyr89YXC8P2GMmh kfv8UfzUVdX1PuGZ4r7UFhzCqFwzydRxO8tuEzweV57crBKzm0bP1AF2+517Eblv QROHd0COmKgvXIM4GfGHi2OtCABlHA5jq8pyX9fgKkh1ZWx2hMlSzW+3K5tqZr4= -----END CERTIFICATE-----Generated at Tue Feb 10 08:37:00 2026 by rpki-client