This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/38c2e1-8a3f-40b1-8353-aec96f431018/1/EK0F93TMdb3mWGdibqrR_m6Xz-I.roa File: EK0F93TMdb3mWGdibqrR_m6Xz-I.roa (raw, json) Hash identifier: mx33ExzlOw54fpOREl279Ht7q+DRDKueDOMyUR0ZqEk= Subject key identifier: 10:AD:05:F7:74:CC:75:BD:E6:58:67:62:6E:AA:D1:FE:6E:97:CF:E2 Certificate issuer: /CN=47e05df247174cd350b1af37833327c7702b8fff Certificate serial: 019B79103B1756743E1BE0B4F33ADB40CF4C Authority key identifier: 47:E0:5D:F2:47:17:4C:D3:50:B1:AF:37:83:33:27:C7:70:2B:8F:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-Bd8kcXTNNQsa83gzMnx3Arj_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/38c2e1-8a3f-40b1-8353-aec96f431018/1/EK0F93TMdb3mWGdibqrR_m6Xz-I.roa Signing time: Thu 01 Jan 2026 10:17:45 +0000 ROA not before: Thu 01 Jan 2026 10:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24953 IP address blocks: 194.59.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/38c2e1-8a3f-40b1-8353-aec96f431018/1/R-Bd8kcXTNNQsa83gzMnx3Arj_8.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/38c2e1-8a3f-40b1-8353-aec96f431018/1/R-Bd8kcXTNNQsa83gzMnx3Arj_8.mft rsync://rpki.ripe.net/repository/DEFAULT/R-Bd8kcXTNNQsa83gzMnx3Arj_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:3b:17:56:74:3e:1b:e0:b4:f3:3a:db:40:cf:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47e05df247174cd350b1af37833327c7702b8fff Validity Not Before: Jan 1 10:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=10ad05f774cc75bde65867626eaad1fe6e97cfe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:73:71:27:1b:ff:47:37:f9:12:5b:68:b5:e2: c0:27:3f:8f:d5:3f:c5:d4:67:80:15:7d:12:11:d9: 76:dd:e0:b9:db:c0:2a:c7:bc:7d:62:2a:16:91:55: 62:7e:db:b0:42:b7:33:57:57:91:d2:57:5f:7b:60: e9:f3:9b:f2:c4:b6:4a:5f:43:ae:55:2f:6a:a7:f8: 47:94:87:eb:c2:dd:c4:b3:a1:6a:39:83:09:87:3c: 0e:6b:30:8d:4a:63:e7:0b:fa:84:a2:d4:3c:fa:7c: b5:a2:65:a7:7d:15:e2:5f:2e:87:cc:df:0a:e4:8c: 83:a1:e7:1d:3f:9e:15:d9:cb:da:6a:6c:06:a7:c2: 3e:c4:24:f3:a8:1b:65:8e:ac:03:ef:bb:33:18:92: 1e:fc:b7:74:f8:c7:03:4a:18:2c:4e:37:51:f3:a9: ee:03:97:72:ed:67:1b:15:98:c2:64:e0:92:75:bf: 9d:46:49:2c:9a:89:52:d1:2c:49:38:0f:05:47:60: ae:90:33:26:19:d0:17:cb:1e:93:b4:c9:50:6e:62: f4:7f:90:4a:ba:22:e8:55:e9:39:95:79:ba:46:36: 86:df:18:7c:b0:2d:24:70:c7:c0:3b:6b:80:d4:79: e4:d0:b6:85:63:4f:e9:e3:fa:4e:e8:43:9f:2b:74: d6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:AD:05:F7:74:CC:75:BD:E6:58:67:62:6E:AA:D1:FE:6E:97:CF:E2 X509v3 Authority Key Identifier: keyid:47:E0:5D:F2:47:17:4C:D3:50:B1:AF:37:83:33:27:C7:70:2B:8F:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-Bd8kcXTNNQsa83gzMnx3Arj_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/38c2e1-8a3f-40b1-8353-aec96f431018/1/EK0F93TMdb3mWGdibqrR_m6Xz-I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/38c2e1-8a3f-40b1-8353-aec96f431018/1/R-Bd8kcXTNNQsa83gzMnx3Arj_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.59.178.0/24 Signature Algorithm: sha256WithRSAEncryption 02:2e:cd:76:cc:0d:a4:9c:7a:77:46:ae:6f:6c:f3:bd:5a:8b: 82:bf:d5:17:d6:0e:5b:86:af:1e:b1:c4:df:16:de:72:73:ba: 77:c3:e6:a4:bf:62:b8:da:db:45:02:8f:d6:f2:3f:08:26:9d: cd:45:d5:d1:14:b0:3d:35:b4:76:01:f4:47:6f:e1:e1:d5:78: 51:f3:a9:4b:0c:1b:9f:34:c8:6c:b1:b6:8c:f6:7b:a7:cc:18: e2:aa:e8:15:e2:24:f3:a6:b6:c2:78:39:80:a3:18:ef:1b:1d: e9:06:18:84:93:42:7e:03:77:7e:27:f1:8b:2c:f9:fb:d2:2c: 89:03:95:be:c9:7d:45:a6:6f:0d:18:3b:e0:ad:ca:4c:fe:2e: 32:74:d2:be:37:c7:b0:e9:56:90:74:75:e5:d1:9a:73:65:f8: 46:e6:a2:b8:34:68:56:1a:c4:1e:a6:71:e5:c4:15:b4:52:43: b6:a2:79:11:be:25:41:f8:95:78:50:cb:7d:84:5f:e5:34:48: 9d:39:5f:dc:4d:13:a4:13:9b:1d:73:ce:e4:2c:36:f2:2d:ec: c4:e8:22:8a:e9:2b:85:0c:61:e1:46:80:ae:5a:84:04:35:b2: 12:bc:90:4c:70:91:66:05:f6:d3:4d:95:bb:b0:80:9c:c3:1d: 16:8f:92:3d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EDsXVnQ+G+C08zrbQM9MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3ZTA1ZGYyNDcxNzRjZDM1MGIxYWYzNzgzMzMyN2M3NzAy YjhmZmYwHhcNMjYwMTAxMTAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMGFkMDVmNzc0Y2M3NWJkZTY1ODY3NjI2ZWFhZDFmZTZlOTdjZmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHNxJxv/Rzf5EltoteLAJz+P1T/F 1GeAFX0SEdl23eC528Aqx7x9YioWkVViftuwQrczV1eR0ldfe2Dp85vyxLZKX0Ou VS9qp/hHlIfrwt3Es6FqOYMJhzwOazCNSmPnC/qEotQ8+ny1omWnfRXiXy6HzN8K 5IyDoecdP54V2cvaamwGp8I+xCTzqBtljqwD77szGJIe/Ld0+McDShgsTjdR86nu A5dy7WcbFZjCZOCSdb+dRkksmolS0SxJOA8FR2CukDMmGdAXyx6TtMlQbmL0f5BK uiLoVek5lXm6RjaG3xh8sC0kcMfAO2uA1Hnk0LaFY0/p4/pO6EOfK3TWFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBCtBfd0zHW95lhnYm6q0f5ul8/iMB8GA1UdIwQY MBaAFEfgXfJHF0zTULGvN4MzJ8dwK4//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUi1CZDhrY1hUTk5Rc2E4M2d6TW54M0Fyal84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8zOGMyZTEtOGEzZi00MGIxLTgzNTMt YWVjOTZmNDMxMDE4LzEvRUswRjkzVE1kYjNtV0dkaWJxclJfbTZYei1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS8zOGMyZTEtOGEzZi00MGIxLTgzNTMtYWVjOTZmNDMxMDE4 LzEvUi1CZDhrY1hUTk5Rc2E4M2d6TW54M0Fyal84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjuyMA0G CSqGSIb3DQEBCwUAA4IBAQACLs12zA2knHp3Rq5vbPO9WouCv9UX1g5bhq8escTf Ft5yc7p3w+akv2K42ttFAo/W8j8IJp3NRdXRFLA9NbR2AfRHb+Hh1XhR86lLDBuf NMhssbaM9nunzBjiqugV4iTzprbCeDmAoxjvGx3pBhiEk0J+A3d+J/GLLPn70iyJ A5W+yX1Fpm8NGDvgrcpM/i4ydNK+N8ew6VaQdHXl0ZpzZfhG5qK4NGhWGsQepnHl xBW0UkO2onkRviVB+JV4UMt9hF/lNEidOV/cTROkE5sdc87kLDbyLezE6CKK6SuF DGHhRoCuWoQENbISvJBMcJFmBfbTTZW7sICcwx0Wj5I9 -----END CERTIFICATE-----Generated at Mon Jan 26 18:42:34 2026 by rpki-client