This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/836431-b90d-4a98-be2c-955f5cb09893/1/ePD_PZq2SA3Fh1qdkHm5Afa6Vks.roa File: ePD_PZq2SA3Fh1qdkHm5Afa6Vks.roa (raw, json) Hash identifier: v/E9wRP8401S3jY/oWtwnFxF/BL1kSc3z6Bit9lF6Zo= Subject key identifier: 78:F0:FF:3D:9A:B6:48:0D:C5:87:5A:9D:90:79:B9:01:F6:BA:56:4B Certificate issuer: /CN=b7871f290fff0e04260c6753e387c9efb75be296 Certificate serial: 019AE54BEAF159B84207DC9CD5395ECF198C Authority key identifier: B7:87:1F:29:0F:FF:0E:04:26:0C:67:53:E3:87:C9:EF:B7:5B:E2:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t4cfKQ__DgQmDGdT44fJ77db4pY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/836431-b90d-4a98-be2c-955f5cb09893/1/ePD_PZq2SA3Fh1qdkHm5Afa6Vks.roa Signing time: Wed 03 Dec 2025 17:39:09 +0000 ROA not before: Wed 03 Dec 2025 17:39:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 51346 IP address blocks: 89.104.121.0/24 maxlen: 24 91.218.160.0/22 maxlen: 22 91.218.160.0/24 maxlen: 24 91.218.161.0/24 maxlen: 24 91.218.162.0/24 maxlen: 24 91.218.163.0/24 maxlen: 24 185.177.0.0/22 maxlen: 22 185.177.0.0/24 maxlen: 24 185.177.1.0/24 maxlen: 24 185.177.2.0/24 maxlen: 24 2a0a:2980::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/836431-b90d-4a98-be2c-955f5cb09893/1/t4cfKQ__DgQmDGdT44fJ77db4pY.crl rsync://rpki.ripe.net/repository/DEFAULT/43/836431-b90d-4a98-be2c-955f5cb09893/1/t4cfKQ__DgQmDGdT44fJ77db4pY.mft rsync://rpki.ripe.net/repository/DEFAULT/t4cfKQ__DgQmDGdT44fJ77db4pY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e5:4b:ea:f1:59:b8:42:07:dc:9c:d5:39:5e:cf:19:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b7871f290fff0e04260c6753e387c9efb75be296 Validity Not Before: Dec 3 17:39:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=78f0ff3d9ab6480dc5875a9d9079b901f6ba564b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:00:af:f6:64:c9:24:46:b8:c1:cd:fc:46:73: 46:1f:dc:2e:ca:ae:86:70:a9:79:3b:5d:2f:c5:e2: 61:aa:f0:8b:1c:79:88:3f:84:24:b0:42:63:48:fc: 90:76:17:f4:cd:2b:c6:0d:e1:5e:cc:b9:9f:b9:14: 25:ff:fd:a9:15:ec:74:8b:25:6d:42:10:e1:a7:9d: b5:06:8e:5c:64:5c:42:c8:1b:27:ce:b5:c1:a1:ac: 82:f0:52:2a:e4:a0:33:dc:63:e8:e2:48:ac:29:73: 89:ed:c0:df:8e:46:88:1a:5d:06:b2:c8:9d:e5:a7: 1f:53:82:36:30:d3:45:d4:99:d5:db:06:08:5a:22: 38:72:3e:f2:83:be:47:b6:4d:3a:6d:47:31:89:55: 50:32:4e:4e:c6:f8:f1:f6:e2:27:62:0c:8b:d1:14: 34:69:ce:76:13:76:8e:b7:5a:95:88:15:c2:bd:b8: 20:5b:81:51:38:bf:2b:a3:75:8e:eb:fc:96:01:6a: c5:20:de:fd:cd:d1:4b:cb:a4:35:79:c2:64:66:47: 68:eb:e1:c1:3f:51:f6:12:93:6f:8a:ae:2d:33:34: f9:f7:82:3a:e7:1d:f1:4e:e6:7f:9f:ac:ab:82:9c: 8d:bb:2f:3a:ef:72:55:ba:e7:f1:06:19:e9:5f:ef: 2f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F0:FF:3D:9A:B6:48:0D:C5:87:5A:9D:90:79:B9:01:F6:BA:56:4B X509v3 Authority Key Identifier: keyid:B7:87:1F:29:0F:FF:0E:04:26:0C:67:53:E3:87:C9:EF:B7:5B:E2:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t4cfKQ__DgQmDGdT44fJ77db4pY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/836431-b90d-4a98-be2c-955f5cb09893/1/ePD_PZq2SA3Fh1qdkHm5Afa6Vks.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/836431-b90d-4a98-be2c-955f5cb09893/1/t4cfKQ__DgQmDGdT44fJ77db4pY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.104.121.0/24 91.218.160.0/22 185.177.0.0/22 IPv6: 2a0a:2980::/29 Signature Algorithm: sha256WithRSAEncryption b0:d7:05:51:d7:45:5c:f3:ce:49:48:49:9d:97:78:a3:d3:0c: bb:d8:07:e0:47:0b:5f:8d:c2:ea:ad:a1:cd:28:21:e0:76:9f: 88:e2:c1:5d:79:61:d4:99:2a:41:12:77:3a:ba:40:a8:17:28: ee:f7:f2:6a:c8:7f:45:60:f7:14:07:2f:e3:3c:67:b7:d8:a1: 2b:d6:77:3f:2f:c4:48:d0:3a:08:31:31:cf:de:fc:60:07:29: 0d:67:53:d3:b1:97:22:c8:36:d3:e0:27:fe:d1:0b:cb:c1:a6: ce:21:1f:10:b7:95:da:9a:eb:7f:07:b2:ee:7a:93:91:d0:72: 47:a0:50:81:83:6f:a2:be:71:01:0f:6e:f3:99:6c:85:19:00: 9a:0e:64:41:80:0c:94:60:74:96:0d:b8:3c:f3:72:ee:8d:45: 6a:96:69:9c:03:04:df:02:22:bf:23:8c:b2:51:ce:13:ff:cb: a1:35:db:28:8c:4d:7f:58:64:e4:eb:28:88:f0:dc:9a:53:b6: b1:87:92:5f:a1:6d:2a:ec:d9:53:cf:66:d0:5f:55:17:37:62: d2:67:b4:90:30:e8:3a:5a:c8:03:d5:cc:c7:07:5a:0c:56:bd: 1b:c4:be:6c:6e:1d:48:90:51:42:3d:66:7b:d6:e5:8c:e1:2a: 00:fc:c9:3a -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZrlS+rxWbhCB9yc1TlezxmMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3ODcxZjI5MGZmZjBlMDQyNjBjNjc1M2UzODdjOWVmYjc1 YmUyOTYwHhcNMjUxMjAzMTczOTA5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OGYwZmYzZDlhYjY0ODBkYzU4NzVhOWQ5MDc5YjkwMWY2YmE1NjRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ACv9mTJJEa4wc38RnNGH9wuyq6G cKl5O10vxeJhqvCLHHmIP4QksEJjSPyQdhf0zSvGDeFezLmfuRQl//2pFex0iyVt QhDhp521Bo5cZFxCyBsnzrXBoayC8FIq5KAz3GPo4kisKXOJ7cDfjkaIGl0Gssid 5acfU4I2MNNF1JnV2wYIWiI4cj7yg75Htk06bUcxiVVQMk5Oxvjx9uInYgyL0RQ0 ac52E3aOt1qViBXCvbggW4FROL8ro3WO6/yWAWrFIN79zdFLy6Q1ecJkZkdo6+HB P1H2EpNviq4tMzT594I65x3xTuZ/n6yrgpyNuy8673JVuufxBhnpX+8vlQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFHjw/z2atkgNxYdanZB5uQH2ulZLMB8GA1UdIwQY MBaAFLeHHykP/w4EJgxnU+OHye+3W+KWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDRjZktRX19EZ1FtREdkVDQ0Zko3N2RiNHBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My84MzY0MzEtYjkwZC00YTk4LWJlMmMt OTU1ZjVjYjA5ODkzLzEvZVBEX1BacTJTQTNGaDFxZGtIbTVBZmE2VmtzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My84MzY0MzEtYjkwZC00YTk4LWJlMmMtOTU1ZjVjYjA5ODkz LzEvdDRjZktRX19EZ1FtREdkVDQ0Zko3N2RiNHBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQAWWh5AwQC W9qgAwQCubEAMA0EAgACMAcDBQMqCimAMA0GCSqGSIb3DQEBCwUAA4IBAQCw1wVR 10Vc885JSEmdl3ij0wy72AfgRwtfjcLqraHNKCHgdp+I4sFdeWHUmSpBEnc6ukCo Fyju9/JqyH9FYPcUBy/jPGe32KEr1nc/L8RI0DoIMTHP3vxgBykNZ1PTsZciyDbT 4Cf+0QvLwabOIR8Qt5Xamut/B7LuepOR0HJHoFCBg2+ivnEBD27zmWyFGQCaDmRB gAyUYHSWDbg883LujUVqlmmcAwTfAiK/I4yyUc4T/8uhNdsojE1/WGTk6yiI8Nya U7axh5JfoW0q7NlTz2bQX1UXN2LSZ7SQMOg6WsgD1czHB1oMVr0bxL5sbh1IkFFC PWZ71uWM4SoA/Mk6 -----END CERTIFICATE-----Generated at Sun Dec 7 00:11:00 2025 by rpki-client