This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/3cb147-a7c3-44e9-adc8-9cd662bc8320/1/EKz4flrIoueHizntrE9idO2uWZo.roa File: EKz4flrIoueHizntrE9idO2uWZo.roa (raw, json) Hash identifier: tVc+C52qd0UtmnHbcj6lKrLWHuaNqcGzJf6IS5Fv1K0= Subject key identifier: 10:AC:F8:7E:5A:C8:A2:E7:87:8B:39:ED:AC:4F:62:74:ED:AE:59:9A Certificate issuer: /CN=eb349af2af111361b29fcfef2e043d5be75e3f98 Certificate serial: 019BDCE25F8B0CBE134B4E1739DF2419D423 Authority key identifier: EB:34:9A:F2:AF:11:13:61:B2:9F:CF:EF:2E:04:3D:5B:E7:5E:3F:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6zSa8q8RE2Gyn8_vLgQ9W-deP5g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/3cb147-a7c3-44e9-adc8-9cd662bc8320/1/EKz4flrIoueHizntrE9idO2uWZo.roa Signing time: Tue 20 Jan 2026 19:29:41 +0000 ROA not before: Tue 20 Jan 2026 19:29:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34984 IP address blocks: 5.56.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/3cb147-a7c3-44e9-adc8-9cd662bc8320/1/6zSa8q8RE2Gyn8_vLgQ9W-deP5g.crl rsync://rpki.ripe.net/repository/DEFAULT/70/3cb147-a7c3-44e9-adc8-9cd662bc8320/1/6zSa8q8RE2Gyn8_vLgQ9W-deP5g.mft rsync://rpki.ripe.net/repository/DEFAULT/6zSa8q8RE2Gyn8_vLgQ9W-deP5g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:dc:e2:5f:8b:0c:be:13:4b:4e:17:39:df:24:19:d4:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eb349af2af111361b29fcfef2e043d5be75e3f98 Validity Not Before: Jan 20 19:29:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=10acf87e5ac8a2e7878b39edac4f6274edae599a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9a:4b:69:f7:8c:b7:62:8f:fc:19:16:0b:07: 3d:a1:51:8f:94:6a:1e:5d:99:03:de:ec:bf:2a:dd: 9c:9f:6a:c9:bd:90:ae:ce:92:b8:13:8c:69:1d:6f: a2:b1:6e:5a:b3:5d:92:8e:1a:95:3f:1d:17:8d:c4: 37:d6:43:76:07:16:9d:20:6f:29:55:18:60:e2:9c: 69:b5:71:dd:19:e2:3f:e1:44:21:7f:d4:a1:55:fe: ce:c7:93:7c:5b:c9:fc:58:32:1c:b8:5c:41:af:10: 64:91:f0:b8:fe:04:ba:16:b8:28:9c:ae:52:d8:4e: 3f:d0:6a:7a:2d:01:9a:cb:9d:02:69:21:53:09:05: 23:51:0e:ed:83:f8:ed:16:0d:c0:b7:6c:d1:98:fc: c7:7a:37:0c:51:dc:51:77:d2:0d:98:16:27:9b:13: f7:13:66:64:27:25:69:aa:f9:39:a8:9a:51:e5:35: 1e:97:af:e1:7e:b8:31:b7:7e:f6:22:f0:b9:9b:f8: 83:7d:e4:44:af:24:d4:cc:88:e5:dc:4b:cd:32:dc: 96:0c:d7:1f:4e:be:65:42:6a:b9:d3:ca:a2:47:0d: 0b:71:17:8c:01:5a:e5:92:35:1d:4c:88:27:83:43: f0:84:36:c4:37:ee:b4:12:03:d0:fe:8e:50:d8:37: 62:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:AC:F8:7E:5A:C8:A2:E7:87:8B:39:ED:AC:4F:62:74:ED:AE:59:9A X509v3 Authority Key Identifier: keyid:EB:34:9A:F2:AF:11:13:61:B2:9F:CF:EF:2E:04:3D:5B:E7:5E:3F:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6zSa8q8RE2Gyn8_vLgQ9W-deP5g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/3cb147-a7c3-44e9-adc8-9cd662bc8320/1/EKz4flrIoueHizntrE9idO2uWZo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/3cb147-a7c3-44e9-adc8-9cd662bc8320/1/6zSa8q8RE2Gyn8_vLgQ9W-deP5g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.56.27.0/24 Signature Algorithm: sha256WithRSAEncryption 01:ac:a0:3a:5c:55:cc:c9:17:4d:ef:89:7d:71:bf:e5:dd:33: 1b:a5:8b:1d:47:00:26:d0:b5:9d:f2:fa:7a:a4:b4:c2:59:c6: 30:f9:32:6f:22:e6:7c:d4:20:82:c3:d9:f4:ee:41:52:a1:7b: 8c:98:ce:d5:f1:8a:cb:1e:fc:f3:77:b4:78:78:38:fc:0b:71: 27:3b:d4:73:98:11:95:f9:dc:35:30:54:ba:3c:87:9c:cd:3b: e5:05:fc:f8:97:b4:6a:d5:7f:1f:40:95:49:9c:2c:4e:10:1e: 68:87:e3:34:44:23:8e:70:c3:d8:17:96:6c:75:b2:10:61:3e: a7:50:3e:d0:3f:fa:8e:25:e7:c0:07:87:20:09:71:6e:79:94: 4d:b9:73:5a:fb:4b:de:b1:f5:14:b4:3f:44:f4:2b:ee:88:66: 3e:2e:e4:79:b1:28:d7:81:da:08:74:6c:5e:31:57:9f:73:08: aa:8b:24:2b:66:b4:b1:ac:53:6e:87:f1:16:e6:77:35:14:a0: 2f:60:b3:90:a1:47:5f:81:17:37:39:be:94:0b:e9:c8:3f:f0: bc:8c:88:b5:37:47:96:5a:91:59:fb:86:06:cf:3e:81:15:cb: 75:50:a1:92:1c:3c:8b:c2:0c:8f:99:e2:0d:f5:77:a0:41:0d: 80:81:0f:00 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZvc4l+LDL4TS04XOd8kGdQjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGViMzQ5YWYyYWYxMTEzNjFiMjlmY2ZlZjJlMDQzZDViZTc1 ZTNmOTgwHhcNMjYwMTIwMTkyOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMGFjZjg3ZTVhYzhhMmU3ODc4YjM5ZWRhYzRmNjI3NGVkYWU1OTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZpLafeMt2KP/BkWCwc9oVGPlGoe XZkD3uy/Kt2cn2rJvZCuzpK4E4xpHW+isW5as12SjhqVPx0XjcQ31kN2BxadIG8p VRhg4pxptXHdGeI/4UQhf9ShVf7Ox5N8W8n8WDIcuFxBrxBkkfC4/gS6FrgonK5S 2E4/0Gp6LQGay50CaSFTCQUjUQ7tg/jtFg3At2zRmPzHejcMUdxRd9INmBYnmxP3 E2ZkJyVpqvk5qJpR5TUel6/hfrgxt372IvC5m/iDfeREryTUzIjl3EvNMtyWDNcf Tr5lQmq508qiRw0LcReMAVrlkjUdTIgng0PwhDbEN+60EgPQ/o5Q2Ddi7wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBCs+H5ayKLnh4s57axPYnTtrlmaMB8GA1UdIwQY MBaAFOs0mvKvERNhsp/P7y4EPVvnXj+YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNnpTYThxOFJFMkd5bjhfdkxnUTlXLWRlUDVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8zY2IxNDctYTdjMy00NGU5LWFkYzgt OWNkNjYyYmM4MzIwLzEvRUt6NGZscklvdWVIaXpudHJFOWlkTzJ1V1pvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC8zY2IxNDctYTdjMy00NGU5LWFkYzgtOWNkNjYyYmM4MzIw LzEvNnpTYThxOFJFMkd5bjhfdkxnUTlXLWRlUDVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABTgbMA0G CSqGSIb3DQEBCwUAA4IBAQABrKA6XFXMyRdN74l9cb/l3TMbpYsdRwAm0LWd8vp6 pLTCWcYw+TJvIuZ81CCCw9n07kFSoXuMmM7V8YrLHvzzd7R4eDj8C3EnO9RzmBGV +dw1MFS6PIeczTvlBfz4l7Rq1X8fQJVJnCxOEB5oh+M0RCOOcMPYF5ZsdbIQYT6n UD7QP/qOJefAB4cgCXFueZRNuXNa+0vesfUUtD9E9CvuiGY+LuR5sSjXgdoIdGxe MVefcwiqiyQrZrSxrFNuh/EW5nc1FKAvYLOQoUdfgRc3Ob6UC+nIP/C8jIi1N0eW WpFZ+4YGzz6BFct1UKGSHDyLwgyPmeIN9XegQQ2AgQ8A -----END CERTIFICATE-----Generated at Sun Jan 25 14:35:54 2026 by rpki-client