This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/Ev3rmxRidqYnZfMQSlLC-Dhz2FU.roa File: Ev3rmxRidqYnZfMQSlLC-Dhz2FU.roa (raw, json) Hash identifier: T8qErGjhlycgYZldrRbrFryAuFGEKdte6aYXXPvklds= Subject key identifier: 12:FD:EB:9B:14:62:76:A6:27:65:F3:10:4A:52:C2:F8:38:73:D8:55 Certificate issuer: /CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97 Certificate serial: 019B7B35CA6444CD994F0A305C2306338E8B Authority key identifier: 58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/Ev3rmxRidqYnZfMQSlLC-Dhz2FU.roa Signing time: Thu 01 Jan 2026 20:18:01 +0000 ROA not before: Thu 01 Jan 2026 20:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49293 IP address blocks: 95.170.112.0/21 maxlen: 21 95.170.112.0/24 maxlen: 24 95.170.113.0/24 maxlen: 24 95.170.114.0/24 maxlen: 24 95.170.115.0/24 maxlen: 24 95.170.116.0/24 maxlen: 24 95.170.117.0/24 maxlen: 24 95.170.118.0/24 maxlen: 24 95.170.119.0/24 maxlen: 24 212.107.224.0/20 maxlen: 20 212.107.224.0/24 maxlen: 24 212.107.225.0/24 maxlen: 24 212.107.226.0/24 maxlen: 24 212.107.227.0/24 maxlen: 24 212.107.228.0/24 maxlen: 24 212.107.229.0/24 maxlen: 24 212.107.230.0/24 maxlen: 24 212.107.231.0/24 maxlen: 24 212.107.232.0/24 maxlen: 24 212.107.233.0/24 maxlen: 24 212.107.234.0/24 maxlen: 24 212.107.235.0/24 maxlen: 24 212.107.236.0/24 maxlen: 24 212.107.237.0/24 maxlen: 24 212.107.238.0/24 maxlen: 24 212.107.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.crl rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.mft rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ca:64:44:cd:99:4f:0a:30:5c:23:06:33:8e:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97 Validity Not Before: Jan 1 20:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=12fdeb9b146276a62765f3104a52c2f83873d855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b8:ed:dc:a2:88:f6:09:68:16:b0:bf:66:2e: 12:00:a8:a6:3d:f9:e7:e7:47:cd:8c:91:14:60:5b: 00:0f:5c:b7:e5:96:c9:5a:29:1e:5c:65:5f:8d:d0: 4a:4e:7f:a7:4f:73:73:3c:c3:5b:10:74:dc:33:e8: f4:e7:31:af:19:f4:ec:33:e3:8f:49:8d:52:2c:13: 11:44:d4:01:3a:6a:6f:ff:43:c9:59:80:81:8c:40: f2:c1:1a:f1:70:ee:ab:8d:dc:d4:8b:a8:09:23:1b: 09:4e:81:eb:e0:92:c4:f2:7f:ae:a3:ca:4c:3f:11: 44:5e:60:57:f4:d7:6a:9c:8c:01:0c:2c:3c:8c:29: 87:4e:fe:86:df:d3:0a:7b:98:aa:07:70:8e:6d:dd: 77:10:9a:ad:a0:22:4e:57:9c:30:d3:c7:b8:a6:19: 4c:a3:14:7f:a9:c6:0f:e7:46:52:d4:87:fe:18:ce: 6f:3a:23:19:96:5a:c3:75:52:93:96:a8:5c:1c:5b: 8e:63:7e:67:ac:8d:d6:cf:e4:be:31:46:2c:5f:38: f1:95:0a:fc:34:5f:c0:fc:69:24:da:26:bc:e0:f9: f8:03:9d:fc:bf:72:f3:68:a5:5f:af:cf:9b:ab:44: 53:bc:7b:a9:cb:15:fd:51:80:2a:9b:5b:41:d4:47: c9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:FD:EB:9B:14:62:76:A6:27:65:F3:10:4A:52:C2:F8:38:73:D8:55 X509v3 Authority Key Identifier: keyid:58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/Ev3rmxRidqYnZfMQSlLC-Dhz2FU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.170.112.0/21 212.107.224.0/20 Signature Algorithm: sha256WithRSAEncryption 57:55:ff:28:1a:cc:7c:8a:05:ff:47:68:e5:71:97:44:49:04: 74:eb:7e:fd:b4:8e:b3:e6:c9:49:6a:9f:e0:0e:9f:c1:72:0e: da:3d:20:d0:76:91:f6:4f:b1:4f:b6:58:5b:87:7e:cd:9e:22: e0:86:88:f9:e0:de:bf:47:a6:c1:b0:69:3f:8c:aa:08:dd:6b: ab:fc:5e:1c:92:45:9e:50:5b:f7:b9:7b:59:a9:81:67:16:70: ed:8e:56:1e:17:2c:9c:5c:d2:d6:e8:4d:bb:60:53:9d:13:98: ac:f6:4c:2e:78:db:dc:6b:e6:00:8a:24:24:6e:ca:ff:a0:e8: f7:5f:19:d8:ef:58:a3:75:d9:34:fd:5e:c9:ab:a4:31:15:c2: 11:f3:50:f9:df:16:8f:47:45:79:04:d9:28:76:97:65:dd:06: 35:b7:0d:bc:2b:8d:17:b2:95:5c:c0:8a:1e:2d:53:d4:e2:12: db:cc:14:54:20:b4:db:e4:be:aa:3f:b8:a8:38:06:3a:47:f7: 12:f1:aa:db:0d:3d:19:49:3f:b1:a0:1d:10:87:83:f5:0c:35: 19:86:8e:e4:d2:e8:ca:5b:0e:bf:0c:9d:e4:fa:32:97:f6:60: a7:7d:44:66:6f:9d:b1:6d:74:cf:6a:be:b7:48:83:ef:11:96: 6c:da:b5:e6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NcpkRM2ZTwowXCMGM46LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4NTNlNjVhMzA4N2I0Y2E4NWM4ODAyYjYwZmYwZjAyYjQx MDZkOTcwHhcNMjYwMTAxMjAxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMmZkZWI5YjE0NjI3NmE2Mjc2NWYzMTA0YTUyYzJmODM4NzNkODU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrjt3KKI9gloFrC/Zi4SAKimPfnn 50fNjJEUYFsAD1y35ZbJWikeXGVfjdBKTn+nT3NzPMNbEHTcM+j05zGvGfTsM+OP SY1SLBMRRNQBOmpv/0PJWYCBjEDywRrxcO6rjdzUi6gJIxsJToHr4JLE8n+uo8pM PxFEXmBX9NdqnIwBDCw8jCmHTv6G39MKe5iqB3CObd13EJqtoCJOV5ww08e4phlM oxR/qcYP50ZS1If+GM5vOiMZllrDdVKTlqhcHFuOY35nrI3Wz+S+MUYsXzjxlQr8 NF/A/Gkk2ia84Pn4A538v3LzaKVfr8+bq0RTvHupyxX9UYAqm1tB1EfJ5QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBL965sUYnamJ2XzEEpSwvg4c9hVMB8GA1UdIwQY MBaAFFhT5lowh7TKhciAK2D/DwK0EG2XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0ZQbVdqQ0h0TXFGeUlBcllQOFBBclFRYlpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi82YWZkMWUtY2I3ZS00ZTZlLWE4YTQt ZTE4NjAyNzM5Y2Q1LzEvRXYzcm14UmlkcVluWmZNUVNsTEMtRGh6MkZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi82YWZkMWUtY2I3ZS00ZTZlLWE4YTQtZTE4NjAyNzM5Y2Q1 LzEvV0ZQbVdqQ0h0TXFGeUlBcllQOFBBclFRYlpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDX6pwAwQE 1GvgMA0GCSqGSIb3DQEBCwUAA4IBAQBXVf8oGsx8igX/R2jlcZdESQR06379tI6z 5slJap/gDp/Bcg7aPSDQdpH2T7FPtlhbh37NniLghoj54N6/R6bBsGk/jKoI3Wur /F4ckkWeUFv3uXtZqYFnFnDtjlYeFyycXNLW6E27YFOdE5is9kwueNvca+YAiiQk bsr/oOj3XxnY71ijddk0/V7Jq6QxFcIR81D53xaPR0V5BNkodpdl3QY1tw28K40X spVcwIoeLVPU4hLbzBRUILTb5L6qP7ioOAY6R/cS8arbDT0ZST+xoB0Qh4P1DDUZ ho7k0ujKWw6/DJ3k+jKX9mCnfURmb52xbXTPar63SIPvEZZs2rXm -----END CERTIFICATE-----Generated at Mon Jan 26 10:13:57 2026 by rpki-client