This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/ekkw9iihTG-qYPo-hedl1exUPC8.roa File: ekkw9iihTG-qYPo-hedl1exUPC8.roa (raw, json) Hash identifier: 6EnmfFR+vDTpN8RRIUM5LiGdyTIr+5zEY49hC/rw/qc= Subject key identifier: 7A:49:30:F6:28:A1:4C:6F:AA:60:FA:3E:85:E7:65:D5:EC:54:3C:2F Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Certificate serial: 019B7EA7555D52789909A3EC5F698F120177 Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/ekkw9iihTG-qYPo-hedl1exUPC8.roa Signing time: Fri 02 Jan 2026 12:20:54 +0000 ROA not before: Fri 02 Jan 2026 12:20:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8249 IP address blocks: 185.35.120.0/22 maxlen: 22 195.144.192.0/20 maxlen: 20 195.144.208.0/22 maxlen: 22 195.144.214.0/23 maxlen: 23 195.144.216.0/23 maxlen: 23 195.144.218.0/24 maxlen: 24 195.144.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:55:5d:52:78:99:09:a3:ec:5f:69:8f:12:01:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Validity Not Before: Jan 2 12:20:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7a4930f628a14c6faa60fa3e85e765d5ec543c2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e9:8b:64:bf:4c:c0:b8:26:2a:38:b0:94:df: 08:e0:bd:04:23:82:6d:ca:9f:04:f4:43:02:44:c8: 84:7a:9a:26:3c:31:75:24:75:64:3e:f0:19:d5:ae: 55:03:2b:5b:8c:ba:90:ed:a7:a9:eb:1e:f4:a0:37: 71:39:ab:dd:16:83:3f:ed:7f:ca:d9:58:5b:e3:ac: a3:d4:25:e3:04:3d:d4:2a:54:86:aa:f4:93:be:ea: d7:b1:0b:dc:fb:b5:7d:d6:9b:0e:47:e6:4a:96:66: c6:d1:3c:ab:39:9b:3b:d4:01:af:9b:b6:02:20:26: 20:b6:f9:34:22:36:b8:b4:45:a6:6b:64:29:7b:e4: b6:91:7c:fa:55:fe:a1:bf:bb:22:01:6b:3c:13:fe: d1:fd:a0:6c:7f:f0:ce:fa:a1:ff:6d:21:ed:c0:34: 00:10:e9:93:c1:b7:c3:c0:0b:4a:64:e7:79:64:29: e2:94:7f:ba:5b:ec:a0:e2:2b:d0:15:7f:27:aa:42: 9c:de:b5:01:d2:5c:f6:e2:76:c2:7d:17:df:ad:2a: d5:f4:45:e1:a0:98:8d:43:5d:af:51:48:46:7c:67: 51:56:54:0d:e2:a5:c1:7a:6d:86:82:91:3c:a7:95: c7:54:11:12:af:8c:1d:75:5c:6d:82:95:4b:64:12: 63:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:49:30:F6:28:A1:4C:6F:AA:60:FA:3E:85:E7:65:D5:EC:54:3C:2F X509v3 Authority Key Identifier: keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/ekkw9iihTG-qYPo-hedl1exUPC8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.35.120.0/22 195.144.192.0-195.144.211.255 195.144.214.0-195.144.218.255 195.144.220.0/22 Signature Algorithm: sha256WithRSAEncryption 36:99:46:2d:45:17:de:8d:2b:4d:54:f2:60:54:ba:36:1b:0a: 23:5a:f7:af:e3:8e:ae:e0:f7:67:18:9f:4e:99:0f:0b:ff:58: 80:3a:e1:3e:fd:e1:e8:2a:e5:e4:8d:21:a5:ab:e3:25:93:82: 7b:ab:75:a2:c4:bc:f3:be:d1:75:3f:a0:d0:4e:37:7a:d8:ba: 3b:c7:b8:ed:d1:af:7e:6d:c7:7b:44:d2:f3:c0:3e:ee:c5:2e: da:7f:cc:e1:17:c2:54:20:01:11:4a:a4:3f:d1:47:55:81:9c: 06:b3:1b:fb:6c:98:21:40:b6:b3:14:a6:50:4f:56:e8:44:ec: be:60:2e:22:43:9f:31:4f:07:1a:76:31:f2:6f:e4:57:02:8a: cb:26:18:71:71:76:13:e5:e3:7f:33:4e:43:83:3a:1a:f0:7b: 41:85:6c:08:24:3d:c2:60:10:bc:8b:b1:63:8a:5f:e1:e2:ba: 7f:f7:b6:67:b1:82:03:9f:f3:a6:ca:e9:41:89:71:ef:87:8f: 91:83:81:15:f6:54:eb:e9:50:6e:59:19:23:7e:ac:ac:b0:02: ad:41:c8:2d:83:92:c6:18:d1:7c:29:2c:c7:ca:45:61:cd:9a: 93:a3:bb:d9:01:2b:5e:18:3f:a1:7b:ef:ea:6a:f5:7f:27:16: ce:b9:d2:16 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt+p1VdUniZCaPsX2mPEgF3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx ZTZjMDkwHhcNMjYwMTAyMTIyMDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YTQ5MzBmNjI4YTE0YzZmYWE2MGZhM2U4NWU3NjVkNWVjNTQzYzJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtumLZL9MwLgmKjiwlN8I4L0EI4Jt yp8E9EMCRMiEepomPDF1JHVkPvAZ1a5VAytbjLqQ7aep6x70oDdxOavdFoM/7X/K 2Vhb46yj1CXjBD3UKlSGqvSTvurXsQvc+7V91psOR+ZKlmbG0TyrOZs71AGvm7YC ICYgtvk0Ija4tEWma2Qpe+S2kXz6Vf6hv7siAWs8E/7R/aBsf/DO+qH/bSHtwDQA EOmTwbfDwAtKZOd5ZCnilH+6W+yg4ivQFX8nqkKc3rUB0lz24nbCfRffrSrV9EXh oJiNQ12vUUhGfGdRVlQN4qXBem2GgpE8p5XHVBESr4wddVxtgpVLZBJjhwIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFHpJMPYooUxvqmD6PoXnZdXsVDwvMB8GA1UdIwQY MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt NWE4NmMyNzU3YzFlLzEvZWtrdzlpaWhURy1xWVBvLWhlZGwxZXhVUEM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQCuSN4MAwD BAbDkMADBALDkNAwDAMEAcOQ1gMEAMOQ2gMEAsOQ3DANBgkqhkiG9w0BAQsFAAOC AQEANplGLUUX3o0rTVTyYFS6NhsKI1r3r+OOruD3ZxifTpkPC/9YgDrhPv3h6Crl 5I0hpavjJZOCe6t1osS8877RdT+g0E43eti6O8e47dGvfm3He0TS88A+7sUu2n/M 4RfCVCABEUqkP9FHVYGcBrMb+2yYIUC2sxSmUE9W6ETsvmAuIkOfMU8HGnYx8m/k VwKKyyYYcXF2E+XjfzNOQ4M6GvB7QYVsCCQ9wmAQvIuxY4pf4eK6f/e2Z7GCA5/z psrpQYlx74ePkYOBFfZU6+lQblkZI36srLACrUHILYOSxhjRfCksx8pFYc2ak6O7 2QErXhg/oXvv6mr1fycWzrnSFg== -----END CERTIFICATE-----Generated at Mon Jan 26 10:13:31 2026 by rpki-client