This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/eczTTw63Z89Bvx_PDTMEgnxlsuM.roa File: eczTTw63Z89Bvx_PDTMEgnxlsuM.roa (raw, json) Hash identifier: EGjQDsuLjtgXMDaJKqFFVXP8wORi9rfRbOBnhjq8cf8= Subject key identifier: 79:CC:D3:4F:0E:B7:67:CF:41:BF:1F:CF:0D:33:04:82:7C:65:B2:E3 Certificate issuer: /CN=4feb9457ec519e8237867710bcc82fa30eae67c0 Certificate serial: 019B7834C5FB6BD079A1C95CA1FBDD0BF92A Authority key identifier: 4F:EB:94:57:EC:51:9E:82:37:86:77:10:BC:C8:2F:A3:0E:AE:67:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T-uUV-xRnoI3hncQvMgvow6uZ8A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/eczTTw63Z89Bvx_PDTMEgnxlsuM.roa Signing time: Thu 01 Jan 2026 06:18:03 +0000 ROA not before: Thu 01 Jan 2026 06:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49188 IP address blocks: 185.163.244.0/22 maxlen: 22 185.163.244.0/24 maxlen: 24 185.163.245.0/24 maxlen: 24 185.163.246.0/23 maxlen: 23 185.163.246.0/24 maxlen: 24 2a10:9d00::/29 maxlen: 29 2a10:9d00::/48 maxlen: 48 2a10:9d00:1::/48 maxlen: 48 2a10:9d00:2::/48 maxlen: 48 2a10:9d00:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/T-uUV-xRnoI3hncQvMgvow6uZ8A.crl rsync://rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/T-uUV-xRnoI3hncQvMgvow6uZ8A.mft rsync://rpki.ripe.net/repository/DEFAULT/T-uUV-xRnoI3hncQvMgvow6uZ8A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:c5:fb:6b:d0:79:a1:c9:5c:a1:fb:dd:0b:f9:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4feb9457ec519e8237867710bcc82fa30eae67c0 Validity Not Before: Jan 1 06:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=79ccd34f0eb767cf41bf1fcf0d3304827c65b2e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:bb:86:2c:b5:39:c2:0d:63:45:cb:59:0d:bc: 13:4a:e8:0a:6b:c5:85:3c:24:50:c5:ae:de:0b:73: 81:5f:67:6c:fc:77:c6:c0:fa:5e:fd:d1:c3:f6:a3: 20:fa:49:f1:7e:c9:58:24:6f:e2:e5:0d:62:16:d1: 37:1c:7b:10:a9:45:86:2b:60:af:14:c1:d3:a5:a0: f8:f5:68:73:df:4c:63:5b:71:08:f7:59:56:82:77: b5:8c:f9:ff:28:75:ed:08:08:c9:ae:16:3d:77:68: b3:71:8e:39:60:f2:9d:22:4f:d7:eb:8c:5e:98:9d: 6c:0e:35:ea:bc:4a:8d:1d:d7:b5:1f:8f:21:37:52: f5:46:1d:5e:67:10:20:e0:fd:7f:15:9a:c2:69:e4: 6d:17:db:27:6a:fc:a6:27:e2:7a:d2:0f:62:59:b3: f4:fb:03:b1:f2:82:7e:15:fe:4f:ea:33:52:9f:7d: 5f:83:96:7e:9b:66:f0:85:24:9e:da:4b:81:b3:b3: c6:70:22:09:b3:ed:9f:62:15:a1:8c:e6:24:59:a8: 68:aa:58:06:d3:95:e4:78:cf:9e:77:51:ce:0b:8b: 2a:5e:ed:dc:75:03:f8:92:c7:49:e4:c8:4e:15:7b: b0:12:f6:27:80:26:bf:cc:fe:89:50:c8:8b:e1:29: fe:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:CC:D3:4F:0E:B7:67:CF:41:BF:1F:CF:0D:33:04:82:7C:65:B2:E3 X509v3 Authority Key Identifier: keyid:4F:EB:94:57:EC:51:9E:82:37:86:77:10:BC:C8:2F:A3:0E:AE:67:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T-uUV-xRnoI3hncQvMgvow6uZ8A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/eczTTw63Z89Bvx_PDTMEgnxlsuM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/b8f50e-475f-4b47-85c0-5f123555cfb1/1/T-uUV-xRnoI3hncQvMgvow6uZ8A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.163.244.0/22 IPv6: 2a10:9d00::/29 Signature Algorithm: sha256WithRSAEncryption 3e:60:c2:61:c0:88:5b:ab:de:71:77:ea:ff:8a:f5:87:25:90: c4:fb:fe:4f:7e:69:45:18:00:7a:6c:26:1f:41:3c:99:37:be: 6c:6b:05:30:87:0d:da:b8:07:0e:a4:86:49:38:f7:56:10:12: 21:5b:17:3f:d6:64:56:c4:af:67:60:b4:a1:36:28:17:a4:b9: 68:9d:0a:09:6a:0f:0c:38:6b:57:cc:4c:cb:f5:f5:98:04:22: 41:f7:85:7a:97:c3:f5:56:66:79:aa:ef:05:d1:d2:14:32:99: 4c:95:5d:4d:ec:52:7a:ae:27:94:63:0d:7c:88:b5:15:49:e6: 7c:24:e1:36:86:69:af:c0:c8:f1:ec:56:6d:17:c4:70:9c:68: de:82:44:42:b6:96:5a:20:d8:b8:cf:c6:9b:51:2c:f4:db:89: 24:a7:78:14:57:49:94:21:12:78:ee:3b:a6:dd:05:a6:4f:41: 7b:16:73:50:3e:de:47:9b:4a:dd:03:4f:55:bd:55:ae:0c:56: 53:77:23:bd:5a:3f:5d:70:14:d2:de:e2:bd:25:98:1f:46:1c: 5a:91:36:59:fc:ee:04:df:1f:a5:93:6e:d4:6c:33:ad:ca:b9: 82:d2:6b:87:ec:54:c2:e3:6b:b9:a5:b6:29:b5:82:25:1e:58: 89:80:64:39 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NMX7a9B5oclcofvdC/kqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmZWI5NDU3ZWM1MTllODIzNzg2NzcxMGJjYzgyZmEzMGVh ZTY3YzAwHhcNMjYwMTAxMDYxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OWNjZDM0ZjBlYjc2N2NmNDFiZjFmY2YwZDMzMDQ4MjdjNjViMmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ruGLLU5wg1jRctZDbwTSugKa8WF PCRQxa7eC3OBX2ds/HfGwPpe/dHD9qMg+knxfslYJG/i5Q1iFtE3HHsQqUWGK2Cv FMHTpaD49Whz30xjW3EI91lWgne1jPn/KHXtCAjJrhY9d2izcY45YPKdIk/X64xe mJ1sDjXqvEqNHde1H48hN1L1Rh1eZxAg4P1/FZrCaeRtF9snavymJ+J60g9iWbP0 +wOx8oJ+Ff5P6jNSn31fg5Z+m2bwhSSe2kuBs7PGcCIJs+2fYhWhjOYkWahoqlgG 05XkeM+ed1HOC4sqXu3cdQP4ksdJ5MhOFXuwEvYngCa/zP6JUMiL4Sn+YQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHnM008Ot2fPQb8fzw0zBIJ8ZbLjMB8GA1UdIwQY MBaAFE/rlFfsUZ6CN4Z3ELzIL6MOrmfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVC11VVYteFJub0kzaG5jUXZNZ3ZvdzZ1WjhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9iOGY1MGUtNDc1Zi00YjQ3LTg1YzAt NWYxMjM1NTVjZmIxLzEvZWN6VFR3NjNaODlCdnhfUERUTUVnbnhsc3VNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9iOGY1MGUtNDc1Zi00YjQ3LTg1YzAtNWYxMjM1NTVjZmIx LzEvVC11VVYteFJub0kzaG5jUXZNZ3ZvdzZ1WjhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuaP0MA0E AgACMAcDBQMqEJ0AMA0GCSqGSIb3DQEBCwUAA4IBAQA+YMJhwIhbq95xd+r/ivWH JZDE+/5PfmlFGAB6bCYfQTyZN75sawUwhw3auAcOpIZJOPdWEBIhWxc/1mRWxK9n YLShNigXpLlonQoJag8MOGtXzEzL9fWYBCJB94V6l8P1VmZ5qu8F0dIUMplMlV1N 7FJ6rieUYw18iLUVSeZ8JOE2hmmvwMjx7FZtF8RwnGjegkRCtpZaINi4z8abUSz0 24kkp3gUV0mUIRJ47jum3QWmT0F7FnNQPt5Hm0rdA09VvVWuDFZTdyO9Wj9dcBTS 3uK9JZgfRhxakTZZ/O4E3x+lk27UbDOtyrmC0muH7FTC42u5pbYptYIlHliJgGQ5 -----END CERTIFICATE-----Generated at Mon Jan 26 02:22:48 2026 by rpki-client