This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/3c8dce-8356-4422-be85-fda4e8a5b46e/1/ezZ2s7vM_vTGuAjYXi6un0LAHgM.roa File: ezZ2s7vM_vTGuAjYXi6un0LAHgM.roa (raw, json) Hash identifier: FqUWKm/wtZJygI56D9CwfC5nsdth685XmNZzJnjwPBQ= Subject key identifier: 7B:36:76:B3:BB:CC:FE:F4:C6:B8:08:D8:5E:2E:AE:9F:42:C0:1E:03 Certificate issuer: /CN=d17ae9dc9f43a269eb0accf3488e861f4ff0e89e Certificate serial: 019B7A5AFF9B529135CA04E4FE0EE6967825 Authority key identifier: D1:7A:E9:DC:9F:43:A2:69:EB:0A:CC:F3:48:8E:86:1F:4F:F0:E8:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Xrp3J9DomnrCszzSI6GH0_w6J4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/3c8dce-8356-4422-be85-fda4e8a5b46e/1/ezZ2s7vM_vTGuAjYXi6un0LAHgM.roa Signing time: Thu 01 Jan 2026 16:19:02 +0000 ROA not before: Thu 01 Jan 2026 16:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 46606 IP address blocks: 185.195.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/3c8dce-8356-4422-be85-fda4e8a5b46e/1/0Xrp3J9DomnrCszzSI6GH0_w6J4.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/3c8dce-8356-4422-be85-fda4e8a5b46e/1/0Xrp3J9DomnrCszzSI6GH0_w6J4.mft rsync://rpki.ripe.net/repository/DEFAULT/0Xrp3J9DomnrCszzSI6GH0_w6J4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:ff:9b:52:91:35:ca:04:e4:fe:0e:e6:96:78:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d17ae9dc9f43a269eb0accf3488e861f4ff0e89e Validity Not Before: Jan 1 16:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7b3676b3bbccfef4c6b808d85e2eae9f42c01e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:34:c8:7a:50:9b:97:83:46:7e:b1:e8:f6:60: 7d:3f:0f:e6:23:78:16:df:a0:3b:b5:9e:fd:bb:c2: 00:c6:df:34:4e:fe:1b:fa:b1:e5:d9:21:72:c5:90: bb:2b:28:d8:5f:17:fb:41:52:82:ea:36:6c:dc:43: 93:20:c3:e2:d6:06:6a:54:79:08:ec:06:5a:55:b5: cf:db:c1:a0:55:1a:f0:98:16:19:c8:75:27:04:ad: ac:54:9e:51:ab:dd:72:4c:5a:9a:ec:f9:4b:d7:f3: e0:aa:9e:93:e2:60:45:4c:93:a7:01:50:4b:5d:ec: c8:c5:ca:98:08:26:0b:f1:a4:15:8d:e4:d4:4b:c6: 69:12:e3:0d:59:fc:56:7c:32:10:78:4e:c3:98:f5: f4:d2:86:31:7c:82:a7:78:f6:e8:12:c4:31:f8:8b: 94:75:20:5f:0b:29:0d:96:50:4a:37:3d:ab:5d:22: 29:06:2b:2c:f4:ad:66:a0:87:90:4d:60:e8:8d:48: f7:df:22:66:29:4c:e5:cf:f0:60:63:8e:4f:9d:08: 54:08:5d:b3:63:69:d9:80:3a:41:98:ae:b0:f8:49: 3b:4c:f1:cf:3b:3c:b5:77:bc:0d:1c:1e:6f:12:fd: 8b:26:12:55:93:e4:18:17:9e:01:4b:05:77:14:55: 0d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:36:76:B3:BB:CC:FE:F4:C6:B8:08:D8:5E:2E:AE:9F:42:C0:1E:03 X509v3 Authority Key Identifier: keyid:D1:7A:E9:DC:9F:43:A2:69:EB:0A:CC:F3:48:8E:86:1F:4F:F0:E8:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Xrp3J9DomnrCszzSI6GH0_w6J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/3c8dce-8356-4422-be85-fda4e8a5b46e/1/ezZ2s7vM_vTGuAjYXi6un0LAHgM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/3c8dce-8356-4422-be85-fda4e8a5b46e/1/0Xrp3J9DomnrCszzSI6GH0_w6J4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.195.12.0/22 Signature Algorithm: sha256WithRSAEncryption 14:6b:64:03:28:5f:8a:06:b7:39:87:49:f9:1d:9e:d7:82:ce: 8a:12:ec:65:4a:e4:d5:46:d0:a6:22:0c:42:84:ee:98:c8:48: b8:21:b4:b4:55:6b:c1:22:63:0a:57:99:a6:24:6c:86:0a:5d: 3d:e8:64:01:7a:64:af:b5:29:53:52:46:54:27:4a:75:cf:a9: 9a:2f:64:7f:1e:23:b2:0a:b4:f3:2c:61:5b:9f:e7:16:fd:8e: e9:2d:24:e6:04:e1:23:bd:a4:5c:d8:27:07:7d:c0:fe:a8:71: 8b:8f:39:f0:40:d7:b7:46:31:cb:21:1f:5b:20:82:b1:cd:b7: 82:d5:40:d4:f2:ea:a6:9d:48:5b:c4:95:36:ee:88:e7:25:40: 4c:a9:97:46:17:05:36:90:2f:3d:da:8a:d8:85:d4:b0:91:72: fa:a1:cc:ac:44:50:9d:a0:a7:53:8c:1b:78:c7:5c:cb:e6:8f: b0:54:c6:60:ae:a3:c3:34:50:6f:cf:e7:b8:80:53:92:0f:c1: eb:38:87:c4:89:08:bd:70:41:41:99:cf:f4:91:2d:d9:e0:10: f9:88:b0:d7:29:98:19:1c:a9:f7:d2:81:ae:d3:41:16:a9:57: 40:01:55:b8:8a:2f:fb:a7:30:87:53:75:4b:b5:bf:b1:a3:2c: 33:45:70:1b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6Wv+bUpE1ygTk/g7mlnglMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxN2FlOWRjOWY0M2EyNjllYjBhY2NmMzQ4OGU4NjFmNGZm MGU4OWUwHhcNMjYwMTAxMTYxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YjM2NzZiM2JiY2NmZWY0YzZiODA4ZDg1ZTJlYWU5ZjQyYzAxZTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzTIelCbl4NGfrHo9mB9Pw/mI3gW 36A7tZ79u8IAxt80Tv4b+rHl2SFyxZC7KyjYXxf7QVKC6jZs3EOTIMPi1gZqVHkI 7AZaVbXP28GgVRrwmBYZyHUnBK2sVJ5Rq91yTFqa7PlL1/Pgqp6T4mBFTJOnAVBL XezIxcqYCCYL8aQVjeTUS8ZpEuMNWfxWfDIQeE7DmPX00oYxfIKnePboEsQx+IuU dSBfCykNllBKNz2rXSIpBiss9K1moIeQTWDojUj33yJmKUzlz/BgY45PnQhUCF2z Y2nZgDpBmK6w+Ek7TPHPOzy1d7wNHB5vEv2LJhJVk+QYF54BSwV3FFUN3QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHs2drO7zP70xrgI2F4urp9CwB4DMB8GA1UdIwQY MBaAFNF66dyfQ6Jp6wrM80iOhh9P8OieMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFhycDNKOURvbW5yQ3N6elNJNkdIMF93Nko0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8zYzhkY2UtODM1Ni00NDIyLWJlODUt ZmRhNGU4YTViNDZlLzEvZXpaMnM3dk1fdlRHdUFqWVhpNnVuMExBSGdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy8zYzhkY2UtODM1Ni00NDIyLWJlODUtZmRhNGU4YTViNDZl LzEvMFhycDNKOURvbW5yQ3N6elNJNkdIMF93Nko0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucMMMA0G CSqGSIb3DQEBCwUAA4IBAQAUa2QDKF+KBrc5h0n5HZ7Xgs6KEuxlSuTVRtCmIgxC hO6YyEi4IbS0VWvBImMKV5mmJGyGCl096GQBemSvtSlTUkZUJ0p1z6maL2R/HiOy CrTzLGFbn+cW/Y7pLSTmBOEjvaRc2CcHfcD+qHGLjznwQNe3RjHLIR9bIIKxzbeC 1UDU8uqmnUhbxJU27ojnJUBMqZdGFwU2kC892orYhdSwkXL6ocysRFCdoKdTjBt4 x1zL5o+wVMZgrqPDNFBvz+e4gFOSD8HrOIfEiQi9cEFBmc/0kS3Z4BD5iLDXKZgZ HKn30oGu00EWqVdAAVW4ii/7pzCHU3VLtb+xoywzRXAb -----END CERTIFICATE-----Generated at Sun Jan 25 17:20:14 2026 by rpki-client