This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bdaeb7-52d5-49ff-9a4b-df05d489da17/1/eEPTZT6Cu9Z_P3_raMWIwWmS4XU.roa File: eEPTZT6Cu9Z_P3_raMWIwWmS4XU.roa (raw, json) Hash identifier: QSgLB7ALo1ZtZRISbHuHkO61FWxfLx7/83BtDc+Ihaw= Subject key identifier: 78:43:D3:65:3E:82:BB:D6:7F:3F:7F:EB:68:C5:88:C1:69:92:E1:75 Certificate issuer: /CN=096e293ba380dcc75f00106443668f51002555b7 Certificate serial: 019B7A5A2787DFC8E6ABBF8DBB022285E0BB Authority key identifier: 09:6E:29:3B:A3:80:DC:C7:5F:00:10:64:43:66:8F:51:00:25:55:B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CW4pO6OA3MdfABBkQ2aPUQAlVbc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bdaeb7-52d5-49ff-9a4b-df05d489da17/1/eEPTZT6Cu9Z_P3_raMWIwWmS4XU.roa Signing time: Thu 01 Jan 2026 16:18:07 +0000 ROA not before: Thu 01 Jan 2026 16:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60435 IP address blocks: 45.157.4.0/24 maxlen: 24 45.157.5.0/24 maxlen: 24 45.157.6.0/24 maxlen: 24 185.29.16.0/24 maxlen: 24 185.29.17.0/24 maxlen: 24 185.29.18.0/24 maxlen: 24 185.29.19.0/24 maxlen: 24 193.242.154.0/24 maxlen: 24 2a00:a360::/32 maxlen: 32 2a00:a362::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/bdaeb7-52d5-49ff-9a4b-df05d489da17/1/CW4pO6OA3MdfABBkQ2aPUQAlVbc.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/bdaeb7-52d5-49ff-9a4b-df05d489da17/1/CW4pO6OA3MdfABBkQ2aPUQAlVbc.mft rsync://rpki.ripe.net/repository/DEFAULT/CW4pO6OA3MdfABBkQ2aPUQAlVbc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:27:87:df:c8:e6:ab:bf:8d:bb:02:22:85:e0:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=096e293ba380dcc75f00106443668f51002555b7 Validity Not Before: Jan 1 16:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7843d3653e82bbd67f3f7feb68c588c16992e175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e2:4a:b4:a6:e4:8b:b2:33:bc:3c:23:ea:78: c3:85:fa:44:7a:81:1b:75:4e:f0:0d:f7:34:9f:c3: 4b:88:ea:54:9d:ef:fe:44:54:8e:7f:41:ed:7b:af: ec:f4:9c:f8:dd:56:dd:64:03:20:65:86:1e:fa:89: 52:c4:5a:d4:2f:39:d0:45:fb:db:57:4c:94:02:9e: 72:e8:7f:3b:16:55:53:5a:23:f2:11:f1:05:24:04: 87:a2:c6:2a:c5:d5:df:aa:36:e0:55:1c:03:68:85: ab:15:92:69:d2:c8:2a:6a:36:c5:7f:05:b2:b2:c8: 31:21:c7:72:d9:b4:5d:b1:8d:aa:ac:ba:40:8e:31: 77:27:b1:b8:93:d1:4e:60:16:20:4c:28:5c:6a:f5: 05:ed:88:ec:91:bb:50:b8:08:13:31:11:ca:88:e4: 51:f4:83:31:4c:b9:97:69:7f:9f:89:f9:2e:1b:0f: f9:02:d5:7f:81:a3:bc:30:84:a0:34:f7:d8:dd:c2: c4:8f:60:b7:d9:39:5b:bd:9b:3c:83:1f:56:eb:0b: 29:c0:24:4d:2a:54:1c:7f:11:63:e0:c2:1e:77:94: 83:3d:30:f0:53:a7:8c:1e:df:ff:c9:9d:c9:86:ae: cf:8b:a9:19:e1:56:0e:85:57:18:f1:f4:1b:6c:94: b4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:43:D3:65:3E:82:BB:D6:7F:3F:7F:EB:68:C5:88:C1:69:92:E1:75 X509v3 Authority Key Identifier: keyid:09:6E:29:3B:A3:80:DC:C7:5F:00:10:64:43:66:8F:51:00:25:55:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CW4pO6OA3MdfABBkQ2aPUQAlVbc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bdaeb7-52d5-49ff-9a4b-df05d489da17/1/eEPTZT6Cu9Z_P3_raMWIwWmS4XU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bdaeb7-52d5-49ff-9a4b-df05d489da17/1/CW4pO6OA3MdfABBkQ2aPUQAlVbc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.157.4.0-45.157.6.255 185.29.16.0/22 193.242.154.0/24 IPv6: 2a00:a360::/32 2a00:a362::/32 Signature Algorithm: sha256WithRSAEncryption 77:1c:c9:f4:91:f1:58:1d:f2:ea:5c:d8:05:89:48:2f:77:10: d3:de:8a:a7:bf:5f:8f:79:38:4f:6d:c8:a4:90:c9:3c:0d:22: 5a:a1:b0:15:84:79:4a:3c:41:2d:94:52:0f:0b:2e:65:9a:40: 72:04:09:5f:d1:6d:6e:9d:45:d6:4c:9d:01:7f:7e:ee:57:23: 5f:11:a6:cd:11:ba:bc:31:58:ff:1e:a5:10:b7:ad:d2:3c:be: 06:83:d1:9f:c8:be:23:5a:65:da:58:e6:d5:b2:36:59:5b:5b: 28:ae:6b:31:be:14:77:fc:3e:5a:2e:0a:ef:80:45:9e:dc:11: 71:03:15:05:bb:4b:81:2e:1a:16:b7:22:79:e5:67:e1:fd:67: f2:7a:80:ec:c0:3a:a7:c0:e5:df:1a:f5:3f:43:5b:b7:11:8e: c9:18:60:8e:41:fc:78:10:47:d2:08:f8:3f:9c:3f:44:4d:b5: 5e:bc:70:c3:a8:5b:6f:2b:64:1b:fb:d9:03:a3:81:79:63:89: bb:f3:0b:06:93:bc:da:a6:22:2c:69:c7:1b:42:dc:74:15:c1: 40:43:3c:d7:db:fe:2f:ab:12:3b:35:da:5f:94:56:1a:e2:77: 59:ee:95:09:e5:13:ff:8b:92:49:8f:cf:87:7f:e5:3e:84:a5: 50:79:6e:86 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt6WieH38jmq7+NuwIiheC7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NmUyOTNiYTM4MGRjYzc1ZjAwMTA2NDQzNjY4ZjUxMDAy NTU1YjcwHhcNMjYwMTAxMTYxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ODQzZDM2NTNlODJiYmQ2N2YzZjdmZWI2OGM1ODhjMTY5OTJlMTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqeJKtKbki7IzvDwj6njDhfpEeoEb dU7wDfc0n8NLiOpUne/+RFSOf0Hte6/s9Jz43VbdZAMgZYYe+olSxFrULznQRfvb V0yUAp5y6H87FlVTWiPyEfEFJASHosYqxdXfqjbgVRwDaIWrFZJp0sgqajbFfwWy ssgxIcdy2bRdsY2qrLpAjjF3J7G4k9FOYBYgTChcavUF7YjskbtQuAgTMRHKiORR 9IMxTLmXaX+fifkuGw/5AtV/gaO8MISgNPfY3cLEj2C32TlbvZs8gx9W6wspwCRN KlQcfxFj4MIed5SDPTDwU6eMHt//yZ3Jhq7Pi6kZ4VYOhVcY8fQbbJS0IwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFHhD02U+grvWfz9/62jFiMFpkuF1MB8GA1UdIwQY MBaAFAluKTujgNzHXwAQZENmj1EAJVW3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1c0cE82T0EzTWRmQUJCa1EyYVBVUUFsVmJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9iZGFlYjctNTJkNS00OWZmLTlhNGIt ZGYwNWQ0ODlkYTE3LzEvZUVQVFpUNkN1OVpfUDNfcmFNV0l3V21TNFhVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9iZGFlYjctNTJkNS00OWZmLTlhNGItZGYwNWQ0ODlkYTE3 LzEvQ1c0cE82T0EzTWRmQUJCa1EyYVBVUUFsVmJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODAgBAIAATAaMAwDBAItnQQD BAAtnQYDBAK5HRADBADB8powFAQCAAIwDgMFACoAo2ADBQAqAKNiMA0GCSqGSIb3 DQEBCwUAA4IBAQB3HMn0kfFYHfLqXNgFiUgvdxDT3oqnv1+PeThPbcikkMk8DSJa obAVhHlKPEEtlFIPCy5lmkByBAlf0W1unUXWTJ0Bf37uVyNfEabNEbq8MVj/HqUQ t63SPL4Gg9GfyL4jWmXaWObVsjZZW1sormsxvhR3/D5aLgrvgEWe3BFxAxUFu0uB LhoWtyJ55Wfh/WfyeoDswDqnwOXfGvU/Q1u3EY7JGGCOQfx4EEfSCPg/nD9ETbVe vHDDqFtvK2Qb+9kDo4F5Y4m78wsGk7zapiIsaccbQtx0FcFAQzzX2/4vqxI7Ndpf lFYa4ndZ7pUJ5RP/i5JJj8+Hf+U+hKVQeW6G -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:04 2026 by rpki-client