This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/64d313-644c-4b9f-811a-38a5c9105cc5/1/EgvxwX18F988dQqkK9XKl7B803U.roa File: EgvxwX18F988dQqkK9XKl7B803U.roa (raw, json) Hash identifier: LbApliZ16bFCZoVrhnEezKbFE+rVBexY2nPAOQAYD/U= Subject key identifier: 12:0B:F1:C1:7D:7C:17:DF:3C:75:0A:A4:2B:D5:CA:97:B0:7C:D3:75 Certificate issuer: /CN=570cdd1732e5643a15eed9ee77e1394b80242548 Certificate serial: 019B7C7FDAEE2C6A15FB08686F5442EC6A7E Authority key identifier: 57:0C:DD:17:32:E5:64:3A:15:EE:D9:EE:77:E1:39:4B:80:24:25:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VwzdFzLlZDoV7tnud-E5S4AkJUg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/64d313-644c-4b9f-811a-38a5c9105cc5/1/EgvxwX18F988dQqkK9XKl7B803U.roa Signing time: Fri 02 Jan 2026 02:18:32 +0000 ROA not before: Fri 02 Jan 2026 02:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212693 IP address blocks: 185.175.89.0/24 maxlen: 24 2a10:4440::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/64d313-644c-4b9f-811a-38a5c9105cc5/1/VwzdFzLlZDoV7tnud-E5S4AkJUg.crl rsync://rpki.ripe.net/repository/DEFAULT/83/64d313-644c-4b9f-811a-38a5c9105cc5/1/VwzdFzLlZDoV7tnud-E5S4AkJUg.mft rsync://rpki.ripe.net/repository/DEFAULT/VwzdFzLlZDoV7tnud-E5S4AkJUg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:da:ee:2c:6a:15:fb:08:68:6f:54:42:ec:6a:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=570cdd1732e5643a15eed9ee77e1394b80242548 Validity Not Before: Jan 2 02:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=120bf1c17d7c17df3c750aa42bd5ca97b07cd375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c5:0f:c9:a5:f4:84:51:18:26:bd:d2:4b:a7: 7a:be:5e:4e:31:e8:9a:6e:e0:fb:db:e4:68:ae:fb: d9:14:e6:a7:58:a9:da:32:fe:a9:75:45:0b:66:3d: 38:8b:22:1f:60:89:8f:b3:92:63:d1:de:5f:ea:ac: 2f:68:49:31:3a:6d:ed:fc:41:72:ce:20:8d:99:83: ff:63:79:29:62:dd:55:13:b9:51:ee:31:ff:49:c0: df:66:4b:90:6d:23:86:6b:8d:69:68:82:c3:0a:b0: 2c:55:8f:64:df:8e:22:f0:96:b1:86:df:2d:5f:97: c8:6f:e1:2f:b1:56:2d:1d:c0:75:cd:e5:94:cf:0f: 40:10:93:18:2e:be:9d:c9:4f:63:23:f6:70:b9:da: 09:51:86:7e:ab:0f:23:bc:d1:59:0d:81:e6:7b:67: 38:58:e3:2d:26:b5:1c:62:95:bd:11:3d:61:f2:ea: a9:27:0d:bd:5a:b4:0b:5b:01:06:c5:81:fa:78:f0: af:3d:1e:73:26:c1:29:6e:0e:9e:72:e0:6a:5a:64: 52:eb:3f:6d:0d:da:85:00:71:c4:a4:6d:b2:45:5c: ad:c0:47:e4:22:df:40:ee:fb:42:21:aa:dd:c3:84: 83:1e:74:eb:c5:a9:8b:5d:a9:b8:6b:93:eb:7a:ca: dc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:0B:F1:C1:7D:7C:17:DF:3C:75:0A:A4:2B:D5:CA:97:B0:7C:D3:75 X509v3 Authority Key Identifier: keyid:57:0C:DD:17:32:E5:64:3A:15:EE:D9:EE:77:E1:39:4B:80:24:25:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VwzdFzLlZDoV7tnud-E5S4AkJUg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/64d313-644c-4b9f-811a-38a5c9105cc5/1/EgvxwX18F988dQqkK9XKl7B803U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/64d313-644c-4b9f-811a-38a5c9105cc5/1/VwzdFzLlZDoV7tnud-E5S4AkJUg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.175.89.0/24 IPv6: 2a10:4440::/29 Signature Algorithm: sha256WithRSAEncryption 67:18:4c:62:77:ae:62:ff:4c:f4:11:d1:ba:f4:de:ad:34:aa: ce:3e:8f:26:ac:f7:f9:8e:ec:ab:86:01:d7:27:02:73:62:13: 4d:a1:cb:4b:e5:00:63:4b:47:11:81:64:87:68:f8:e7:c9:8e: 84:6d:05:3a:75:9b:9c:2a:d5:05:b9:99:ff:40:0c:d3:2f:90: de:b5:38:ef:b9:e8:0e:78:02:c0:49:b5:d3:2d:73:77:75:c1: 7c:b2:b1:1e:fe:7e:f6:55:a0:5e:5a:52:3b:18:3f:a9:4f:aa: b9:c1:c9:4d:e7:d2:89:9d:ea:f5:05:54:a0:9d:a0:5a:54:2b: 4c:bf:ca:43:f8:d4:87:bd:66:26:18:ea:42:98:7d:23:0f:69: 03:5a:39:89:f2:68:15:3c:1c:b3:b1:2b:6a:dc:1a:f4:83:de: cf:46:7a:78:c5:e5:38:15:3f:02:c0:e2:78:d0:43:1c:dd:df: 91:6c:e8:56:0f:59:23:81:39:42:8a:a0:87:53:6c:92:5a:cf: cb:6d:20:26:2c:2e:aa:4c:a5:52:e7:99:cd:1c:61:63:cb:c0: 0d:b2:59:48:c9:85:ec:38:28:a6:c0:f1:e1:d7:c9:6e:59:eb: c9:71:23:01:fe:0a:7e:8b:6b:71:50:c5:7b:7c:65:66:0d:8f: e1:0a:20:4b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8f9ruLGoV+whob1RC7Gp+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3MGNkZDE3MzJlNTY0M2ExNWVlZDllZTc3ZTEzOTRiODAy NDI1NDgwHhcNMjYwMTAyMDIxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMjBiZjFjMTdkN2MxN2RmM2M3NTBhYTQyYmQ1Y2E5N2IwN2NkMzc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssUPyaX0hFEYJr3SS6d6vl5OMeia buD72+RorvvZFOanWKnaMv6pdUULZj04iyIfYImPs5Jj0d5f6qwvaEkxOm3t/EFy ziCNmYP/Y3kpYt1VE7lR7jH/ScDfZkuQbSOGa41paILDCrAsVY9k344i8Jaxht8t X5fIb+EvsVYtHcB1zeWUzw9AEJMYLr6dyU9jI/ZwudoJUYZ+qw8jvNFZDYHme2c4 WOMtJrUcYpW9ET1h8uqpJw29WrQLWwEGxYH6ePCvPR5zJsEpbg6ecuBqWmRS6z9t DdqFAHHEpG2yRVytwEfkIt9A7vtCIardw4SDHnTrxamLXam4a5Presrc/QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBIL8cF9fBffPHUKpCvVypewfNN1MB8GA1UdIwQY MBaAFFcM3Rcy5WQ6Fe7Z7nfhOUuAJCVIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnd6ZEZ6TGxaRG9WN3RudWQtRTVTNEFrSlVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My82NGQzMTMtNjQ0Yy00YjlmLTgxMWEt MzhhNWM5MTA1Y2M1LzEvRWd2eHdYMThGOTg4ZFFxa0s5WEtsN0I4MDNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My82NGQzMTMtNjQ0Yy00YjlmLTgxMWEtMzhhNWM5MTA1Y2M1 LzEvVnd6ZEZ6TGxaRG9WN3RudWQtRTVTNEFrSlVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAua9ZMA0E AgACMAcDBQMqEERAMA0GCSqGSIb3DQEBCwUAA4IBAQBnGExid65i/0z0EdG69N6t NKrOPo8mrPf5juyrhgHXJwJzYhNNoctL5QBjS0cRgWSHaPjnyY6EbQU6dZucKtUF uZn/QAzTL5DetTjvuegOeALASbXTLXN3dcF8srEe/n72VaBeWlI7GD+pT6q5wclN 59KJner1BVSgnaBaVCtMv8pD+NSHvWYmGOpCmH0jD2kDWjmJ8mgVPByzsStq3Br0 g97PRnp4xeU4FT8CwOJ40EMc3d+RbOhWD1kjgTlCiqCHU2ySWs/LbSAmLC6qTKVS 55nNHGFjy8ANsllIyYXsOCimwPHh18luWevJcSMB/gp+i2txUMV7fGVmDY/hCiBL -----END CERTIFICATE-----Generated at Mon Jan 26 01:21:36 2026 by rpki-client