This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/e11dad-208e-47cc-bf6e-bc513a98b9be/1/ez3ZuiMIYx6XAooxqgacpm5fhZg.roa File: ez3ZuiMIYx6XAooxqgacpm5fhZg.roa (raw, json) Hash identifier: vk/HfV9yv0+3WHPw2z2Am2j60UpVLAvpD1nYGFaREig= Subject key identifier: 7B:3D:D9:BA:23:08:63:1E:97:02:8A:31:AA:06:9C:A6:6E:5F:85:98 Certificate issuer: /CN=5f0df0c8e5d1b23538beb5eccc3ab12865df7eaa Certificate serial: 019B7D5CBAB1BA300F2E0ACE1405FBCF08E7 Authority key identifier: 5F:0D:F0:C8:E5:D1:B2:35:38:BE:B5:EC:CC:3A:B1:28:65:DF:7E:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xw3wyOXRsjU4vrXszDqxKGXffqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/e11dad-208e-47cc-bf6e-bc513a98b9be/1/ez3ZuiMIYx6XAooxqgacpm5fhZg.roa Signing time: Fri 02 Jan 2026 06:19:47 +0000 ROA not before: Fri 02 Jan 2026 06:19:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204572 IP address blocks: 45.143.124.0/22 maxlen: 22 2a0e:e3c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/e11dad-208e-47cc-bf6e-bc513a98b9be/1/Xw3wyOXRsjU4vrXszDqxKGXffqo.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/e11dad-208e-47cc-bf6e-bc513a98b9be/1/Xw3wyOXRsjU4vrXszDqxKGXffqo.mft rsync://rpki.ripe.net/repository/DEFAULT/Xw3wyOXRsjU4vrXszDqxKGXffqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:ba:b1:ba:30:0f:2e:0a:ce:14:05:fb:cf:08:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f0df0c8e5d1b23538beb5eccc3ab12865df7eaa Validity Not Before: Jan 2 06:19:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7b3dd9ba2308631e97028a31aa069ca66e5f8598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:90:c9:02:86:3c:ef:0e:7c:61:25:39:f4:79: c1:88:a7:b3:81:6c:d0:56:0d:89:6e:06:f6:0c:9b: 5b:0b:ab:97:4a:a2:53:ff:53:24:05:66:3f:ee:00: 9b:b5:36:d6:8e:43:35:88:ab:d1:a1:57:ae:72:15: 20:b5:a6:d2:24:a5:db:bd:af:9f:55:fb:fa:a8:ac: d0:e3:f9:1a:a8:6e:f3:27:26:9d:2f:bf:7d:e7:7e: ba:c0:4a:7a:9d:18:3b:d0:ca:d0:1a:3c:a5:44:64: f1:e5:5d:3f:0e:5d:4a:4a:d0:ba:75:d9:e5:9f:32: e2:52:fb:58:51:24:4e:8c:cd:10:0f:5b:76:4f:f1: b9:0f:6a:69:66:84:ca:00:f2:c0:06:45:cb:41:69: 35:b9:8c:96:e7:6d:49:02:94:07:7c:d1:df:8e:34: 2e:82:71:95:d9:07:48:7c:1f:ce:5a:15:4e:55:3b: 79:b3:86:3d:45:5b:93:69:55:db:e8:8c:82:ac:9f: 92:76:eb:41:a7:86:54:a8:1e:4b:dd:d7:39:4d:10: 45:84:f5:15:2a:4f:b5:3f:a0:4c:bb:05:1c:db:11: dc:ce:30:1e:9d:e5:4d:fa:e2:f0:d9:fc:a8:c2:d5: c1:ba:e1:9b:7d:53:e6:84:67:26:3b:36:c6:9c:c4: 8f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3D:D9:BA:23:08:63:1E:97:02:8A:31:AA:06:9C:A6:6E:5F:85:98 X509v3 Authority Key Identifier: keyid:5F:0D:F0:C8:E5:D1:B2:35:38:BE:B5:EC:CC:3A:B1:28:65:DF:7E:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xw3wyOXRsjU4vrXszDqxKGXffqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/e11dad-208e-47cc-bf6e-bc513a98b9be/1/ez3ZuiMIYx6XAooxqgacpm5fhZg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/e11dad-208e-47cc-bf6e-bc513a98b9be/1/Xw3wyOXRsjU4vrXszDqxKGXffqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.124.0/22 IPv6: 2a0e:e3c0::/29 Signature Algorithm: sha256WithRSAEncryption 2a:44:0a:c1:ae:45:90:aa:00:7f:45:91:f3:9d:c0:91:ee:8c: d7:46:b6:30:8f:38:7b:c2:65:61:b1:31:e6:bc:ef:e2:81:be: af:6c:7d:04:d3:66:44:cc:fb:04:ac:ba:c9:4e:49:42:e5:c9: dd:44:95:3e:13:4e:75:cd:2c:03:98:e5:79:fb:92:c5:19:64: 4d:bd:1f:9d:e1:1b:89:03:d7:52:85:6a:b3:b8:2e:e1:eb:9e: 20:4a:d3:98:f7:2f:f6:97:f2:3b:5d:35:c8:77:d3:c9:c7:89: 84:bd:3c:02:62:bd:a8:fe:f3:18:e0:9b:eb:0b:36:06:fb:c7: 00:35:e8:ef:9d:4c:3d:ac:79:c4:5c:fa:f4:e0:f0:c1:8b:f1: fe:a6:66:06:c3:f4:a5:b4:07:b8:7e:58:45:22:b7:49:ce:fd: f3:1f:8b:13:bd:ad:33:8e:d8:0c:13:54:c3:ff:7f:0a:b0:f3: 9c:5c:c1:c5:8b:36:ce:20:19:21:e8:bc:c1:6d:ed:63:d2:b8: e7:42:05:0c:59:33:97:b6:c2:85:40:80:59:ca:3a:a6:01:42: be:06:26:d1:5f:85:f6:00:92:02:69:8e:b5:15:38:2f:4d:f0: 7d:b4:34:52:82:48:ca:57:f6:32:8f:3b:02:06:5a:ed:3c:1b: 92:e5:cf:ca -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9XLqxujAPLgrOFAX7zwjnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmMGRmMGM4ZTVkMWIyMzUzOGJlYjVlY2NjM2FiMTI4NjVk ZjdlYWEwHhcNMjYwMTAyMDYxOTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YjNkZDliYTIzMDg2MzFlOTcwMjhhMzFhYTA2OWNhNjZlNWY4NTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZDJAoY87w58YSU59HnBiKezgWzQ Vg2Jbgb2DJtbC6uXSqJT/1MkBWY/7gCbtTbWjkM1iKvRoVeuchUgtabSJKXbva+f Vfv6qKzQ4/kaqG7zJyadL7995366wEp6nRg70MrQGjylRGTx5V0/Dl1KStC6ddnl nzLiUvtYUSROjM0QD1t2T/G5D2ppZoTKAPLABkXLQWk1uYyW521JApQHfNHfjjQu gnGV2QdIfB/OWhVOVTt5s4Y9RVuTaVXb6IyCrJ+SdutBp4ZUqB5L3dc5TRBFhPUV Kk+1P6BMuwUc2xHczjAeneVN+uLw2fyowtXBuuGbfVPmhGcmOzbGnMSPuwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHs92bojCGMelwKKMaoGnKZuX4WYMB8GA1UdIwQY MBaAFF8N8Mjl0bI1OL617Mw6sShl336qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHczd3lPWFJzalU0dnJYc3pEcXhLR1hmZnFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9lMTFkYWQtMjA4ZS00N2NjLWJmNmUt YmM1MTNhOThiOWJlLzEvZXozWnVpTUlZeDZYQW9veHFnYWNwbTVmaFpnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi9lMTFkYWQtMjA4ZS00N2NjLWJmNmUtYmM1MTNhOThiOWJl LzEvWHczd3lPWFJzalU0dnJYc3pEcXhLR1hmZnFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLY98MA0E AgACMAcDBQMqDuPAMA0GCSqGSIb3DQEBCwUAA4IBAQAqRArBrkWQqgB/RZHzncCR 7ozXRrYwjzh7wmVhsTHmvO/igb6vbH0E02ZEzPsErLrJTklC5cndRJU+E051zSwD mOV5+5LFGWRNvR+d4RuJA9dShWqzuC7h654gStOY9y/2l/I7XTXId9PJx4mEvTwC Yr2o/vMY4JvrCzYG+8cANejvnUw9rHnEXPr04PDBi/H+pmYGw/SltAe4flhFIrdJ zv3zH4sTva0zjtgME1TD/38KsPOcXMHFizbOIBkh6LzBbe1j0rjnQgUMWTOXtsKF QIBZyjqmAUK+BibRX4X2AJICaY61FTgvTfB9tDRSgkjKV/YyjzsCBlrtPBuS5c/K -----END CERTIFICATE-----Generated at Mon Jan 26 20:42:31 2026 by rpki-client