This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/E3n9esmOrOiobKpJnsNX1UEdPcY.roa File: E3n9esmOrOiobKpJnsNX1UEdPcY.roa (raw, json) Hash identifier: dbM92eMK8IhOySdV1MJ9MEgIxZl7Dktml8lfCphXSgw= Subject key identifier: 13:79:FD:7A:C9:8E:AC:E8:A8:6C:AA:49:9E:C3:57:D5:41:1D:3D:C6 Certificate issuer: /CN=4a9c5e56aacd01ffb2825a931ed5ede41c3f92e6 Certificate serial: 019B7AC79B7FC719AF0FD9545C0951676EF2 Authority key identifier: 4A:9C:5E:56:AA:CD:01:FF:B2:82:5A:93:1E:D5:ED:E4:1C:3F:92:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SpxeVqrNAf-yglqTHtXt5Bw_kuY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/E3n9esmOrOiobKpJnsNX1UEdPcY.roa Signing time: Thu 01 Jan 2026 18:17:40 +0000 ROA not before: Thu 01 Jan 2026 18:17:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204511 IP address blocks: 185.197.116.0/22 maxlen: 22 185.197.116.0/24 maxlen: 24 185.197.118.0/24 maxlen: 24 2a05:3f06::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/SpxeVqrNAf-yglqTHtXt5Bw_kuY.crl rsync://rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/SpxeVqrNAf-yglqTHtXt5Bw_kuY.mft rsync://rpki.ripe.net/repository/DEFAULT/SpxeVqrNAf-yglqTHtXt5Bw_kuY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:9b:7f:c7:19:af:0f:d9:54:5c:09:51:67:6e:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a9c5e56aacd01ffb2825a931ed5ede41c3f92e6 Validity Not Before: Jan 1 18:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1379fd7ac98eace8a86caa499ec357d5411d3dc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c7:cc:d9:04:e5:57:1b:3f:d4:f2:4d:48:46: 90:f8:5d:99:16:c6:59:07:3a:94:78:23:a5:0f:e3: 5c:1f:42:66:e9:1c:b1:52:b7:60:2e:01:e0:d3:0d: d6:cd:4e:bf:39:26:c9:02:bc:3e:6e:81:6b:42:1c: 0d:2c:af:2b:67:85:84:58:bc:d6:dc:49:aa:b6:fa: 11:53:4d:9a:52:c7:81:d0:cc:cb:27:b7:43:27:da: 2e:f0:83:92:2f:f9:74:97:1b:f3:c5:8a:b4:74:ca: 5d:25:ef:dc:ac:ea:c1:dd:0e:49:f3:53:dd:30:df: 7d:ea:56:0f:d0:41:ae:68:bd:0a:13:c2:3b:e7:f0: 1a:ca:8a:4b:78:95:e8:fb:8b:8f:36:b3:e5:db:1b: 33:73:a1:9f:4e:96:6a:0f:77:7b:9c:dd:ae:1c:3c: fc:83:c1:7f:21:77:61:83:01:77:a1:5d:b1:47:43: a4:0b:1c:79:b8:08:6e:55:3e:67:91:92:f1:d8:64: a7:f6:57:93:7a:9f:d0:4c:99:52:59:69:08:e7:cc: ee:1c:af:31:74:bc:83:56:be:f0:cc:61:e3:e9:ba: c7:1b:d2:8c:9c:af:33:91:4f:94:9c:30:bb:5a:68: 72:8e:4d:7b:91:d5:83:3f:ef:d9:b3:df:ba:1e:10: 7c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:79:FD:7A:C9:8E:AC:E8:A8:6C:AA:49:9E:C3:57:D5:41:1D:3D:C6 X509v3 Authority Key Identifier: keyid:4A:9C:5E:56:AA:CD:01:FF:B2:82:5A:93:1E:D5:ED:E4:1C:3F:92:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SpxeVqrNAf-yglqTHtXt5Bw_kuY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/E3n9esmOrOiobKpJnsNX1UEdPcY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/SpxeVqrNAf-yglqTHtXt5Bw_kuY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.197.116.0/22 IPv6: 2a05:3f06::/32 Signature Algorithm: sha256WithRSAEncryption 49:80:6c:68:ec:80:b8:3c:7d:e9:2f:1c:07:13:02:c5:29:de: 1c:21:cb:3b:98:5b:65:d9:39:a5:a6:e2:9b:b1:d2:95:bb:b9: bc:a5:e6:86:cf:79:68:ea:c2:97:9c:e3:ff:be:8e:51:4c:c7: ee:a8:e3:1e:74:e8:d7:39:a5:5d:13:bd:8e:aa:09:d7:0e:5d: dc:6b:14:2c:f3:5f:f4:ff:29:46:87:1b:cf:bb:c7:fa:84:ee: 1d:fa:89:81:53:12:6a:2e:84:4b:1c:9a:3b:f2:1c:8f:85:e5: 19:69:72:a8:1d:78:b7:47:31:18:9a:da:30:78:74:2c:71:f0: 08:8e:5d:15:bf:cf:ce:c7:da:0e:63:89:d3:34:a2:5f:3c:ff: 1d:40:1c:89:43:74:c8:96:b7:b9:eb:d2:98:16:aa:20:54:dc: 88:30:9b:11:f2:4b:e7:36:58:3d:5e:8e:88:10:be:97:a5:20: a1:41:a3:e3:37:cf:61:c6:78:93:bc:c9:e4:d0:b4:3d:d9:8e: 21:e0:e0:a7:5d:3a:f3:5a:cb:42:0b:a5:7c:93:31:69:f1:11: 82:8c:e8:ec:be:c5:f1:80:1d:b5:e3:0e:75:8c:90:7d:a8:2c: c3:96:c3:2a:9f:90:e7:03:15:c5:6f:1c:4f:b6:b5:a5:ba:84: 5e:13:f4:bf -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6x5t/xxmvD9lUXAlRZ27yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhOWM1ZTU2YWFjZDAxZmZiMjgyNWE5MzFlZDVlZGU0MWMz ZjkyZTYwHhcNMjYwMTAxMTgxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzc5ZmQ3YWM5OGVhY2U4YTg2Y2FhNDk5ZWMzNTdkNTQxMWQzZGM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycfM2QTlVxs/1PJNSEaQ+F2ZFsZZ BzqUeCOlD+NcH0Jm6RyxUrdgLgHg0w3WzU6/OSbJArw+boFrQhwNLK8rZ4WEWLzW 3EmqtvoRU02aUseB0MzLJ7dDJ9ou8IOSL/l0lxvzxYq0dMpdJe/crOrB3Q5J81Pd MN996lYP0EGuaL0KE8I75/AayopLeJXo+4uPNrPl2xszc6GfTpZqD3d7nN2uHDz8 g8F/IXdhgwF3oV2xR0OkCxx5uAhuVT5nkZLx2GSn9leTep/QTJlSWWkI58zuHK8x dLyDVr7wzGHj6brHG9KMnK8zkU+UnDC7Wmhyjk17kdWDP+/Zs9+6HhB81wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBN5/XrJjqzoqGyqSZ7DV9VBHT3GMB8GA1UdIwQY MBaAFEqcXlaqzQH/soJakx7V7eQcP5LmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3B4ZVZxck5BZi15Z2xxVEh0WHQ1Qndfa3VZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9jMDEwZGMtMDkxMC00MzQxLThiMzMt MmU2OTRiMzM5OTMzLzEvRTNuOWVzbU9yT2lvYktwSm5zTlgxVUVkUGNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9jMDEwZGMtMDkxMC00MzQxLThiMzMtMmU2OTRiMzM5OTMz LzEvU3B4ZVZxck5BZi15Z2xxVEh0WHQ1Qndfa3VZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCucV0MA0E AgACMAcDBQAqBT8GMA0GCSqGSIb3DQEBCwUAA4IBAQBJgGxo7IC4PH3pLxwHEwLF Kd4cIcs7mFtl2TmlpuKbsdKVu7m8peaGz3lo6sKXnOP/vo5RTMfuqOMedOjXOaVd E72OqgnXDl3caxQs81/0/ylGhxvPu8f6hO4d+omBUxJqLoRLHJo78hyPheUZaXKo HXi3RzEYmtoweHQscfAIjl0Vv8/Ox9oOY4nTNKJfPP8dQByJQ3TIlre569KYFqog VNyIMJsR8kvnNlg9Xo6IEL6XpSChQaPjN89hxniTvMnk0LQ92Y4h4OCnXTrzWstC C6V8kzFp8RGCjOjsvsXxgB214w51jJB9qCzDlsMqn5DnAxXFbxxPtrWluoReE/S/ -----END CERTIFICATE-----Generated at Mon Jan 26 09:25:18 2026 by rpki-client