This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a74744-ed48-4707-a63e-52f6919139c4/1/E3Abz8c2x25X2p1IuNZFKekLDzE.roa File: E3Abz8c2x25X2p1IuNZFKekLDzE.roa (raw, json) Hash identifier: DciKvL6unAo5I4YBQh4SUA/jwjzYuA3QTOA40FWqmwU= Subject key identifier: 13:70:1B:CF:C7:36:C7:6E:57:DA:9D:48:B8:D6:45:29:E9:0B:0F:31 Certificate issuer: /CN=a98eebed9753f580bea75b352e706325a18d1447 Certificate serial: 019B7F1478E494215D6D5875AA6AC600064C Authority key identifier: A9:8E:EB:ED:97:53:F5:80:BE:A7:5B:35:2E:70:63:25:A1:8D:14:47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY7r7ZdT9YC-p1s1LnBjJaGNFEc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a74744-ed48-4707-a63e-52f6919139c4/1/E3Abz8c2x25X2p1IuNZFKekLDzE.roa Signing time: Fri 02 Jan 2026 14:20:06 +0000 ROA not before: Fri 02 Jan 2026 14:20:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12552 IP address blocks: 185.57.136.0/22 maxlen: 24 2a04:ddc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/a74744-ed48-4707-a63e-52f6919139c4/1/qY7r7ZdT9YC-p1s1LnBjJaGNFEc.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/a74744-ed48-4707-a63e-52f6919139c4/1/qY7r7ZdT9YC-p1s1LnBjJaGNFEc.mft rsync://rpki.ripe.net/repository/DEFAULT/qY7r7ZdT9YC-p1s1LnBjJaGNFEc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:78:e4:94:21:5d:6d:58:75:aa:6a:c6:00:06:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a98eebed9753f580bea75b352e706325a18d1447 Validity Not Before: Jan 2 14:20:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=13701bcfc736c76e57da9d48b8d64529e90b0f31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:91:81:6e:c0:6c:e9:98:9d:21:a9:c0:84:18: e7:4b:24:9f:f5:11:2d:05:b1:8a:5e:7f:29:3c:8e: 23:d5:bd:41:3e:04:9d:b0:d8:38:16:fc:39:ee:9d: d1:e8:cd:15:ba:56:fa:fc:63:d6:6d:cf:ec:47:5f: dd:ee:61:53:2c:a2:c3:50:89:f3:22:a1:04:0e:8e: bd:e9:c8:7d:9c:00:8b:eb:f1:66:8a:5e:a9:b5:94: 66:89:24:34:a5:01:d1:8c:05:f1:0f:f8:97:68:21: a3:d1:56:e0:42:fc:e9:bf:eb:5e:90:88:da:5b:72: c3:14:77:fd:32:ad:bd:a2:46:13:54:1a:25:5c:ef: a4:94:fb:e1:1b:7f:8c:cb:8b:0d:61:cf:cd:1f:c4: 13:0b:51:12:47:be:52:22:24:30:a6:19:1b:53:c6: 23:16:81:7c:94:b1:6e:72:a5:e2:98:2b:de:70:ce: 79:f1:20:93:91:ff:00:9c:9b:38:b5:f2:16:43:6d: 0e:28:b2:9a:ef:be:06:b1:d4:54:63:da:0d:cf:c9: b7:7d:5e:6f:c1:d5:f9:08:2c:87:a4:8c:de:38:4c: bd:af:34:f5:dc:7b:0f:28:73:a0:a6:90:fc:e4:86: 70:7f:fe:a9:aa:a5:dc:06:fe:65:fc:6f:b5:cb:c6: c0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:70:1B:CF:C7:36:C7:6E:57:DA:9D:48:B8:D6:45:29:E9:0B:0F:31 X509v3 Authority Key Identifier: keyid:A9:8E:EB:ED:97:53:F5:80:BE:A7:5B:35:2E:70:63:25:A1:8D:14:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY7r7ZdT9YC-p1s1LnBjJaGNFEc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a74744-ed48-4707-a63e-52f6919139c4/1/E3Abz8c2x25X2p1IuNZFKekLDzE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a74744-ed48-4707-a63e-52f6919139c4/1/qY7r7ZdT9YC-p1s1LnBjJaGNFEc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.57.136.0/22 IPv6: 2a04:ddc0::/29 Signature Algorithm: sha256WithRSAEncryption 4f:58:d9:a5:14:59:d7:16:c9:ab:a3:59:31:ec:68:3e:85:12: 60:7b:6f:2f:4c:b6:f0:99:14:4d:62:c0:8a:f0:a2:8b:41:32: 02:b6:cc:59:0a:57:60:6c:96:8c:7d:13:67:c9:a7:3a:9e:23: 0c:18:2f:0a:bb:e0:0f:70:06:e4:8e:fd:5c:68:b2:c4:47:49: d4:25:ac:e9:eb:22:04:46:fc:5c:36:89:d1:b2:48:19:72:a0: d2:f0:bb:85:4f:0e:16:d6:d2:38:7f:30:9b:d7:bb:43:77:6a: 40:b7:e0:c8:13:ef:88:97:47:82:f2:62:52:18:65:63:83:96: 0b:4a:14:26:95:25:78:d0:88:be:06:d8:a6:4f:f2:5f:27:2f: 2c:4e:d2:02:ec:1c:a8:96:ff:96:82:a9:1e:8e:00:78:45:bb: d3:cc:f8:9d:ae:3a:70:45:d6:12:d2:4e:b9:ba:3a:64:9a:c0: 30:e8:57:bd:85:8d:81:17:b3:d7:ac:a1:da:5d:c2:48:ee:39: a0:6d:fb:1e:ee:fe:fb:8b:f3:bc:e6:0f:14:fe:fb:8c:b2:ab: 63:ab:e4:e7:79:38:93:bb:3d:7f:04:00:68:de:1d:ad:a3:8e: f2:c3:d8:88:80:c7:1e:bf:9a:4f:9e:8b:2d:50:f4:bb:20:c5: 91:f1:a1:99 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FHjklCFdbVh1qmrGAAZMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5OGVlYmVkOTc1M2Y1ODBiZWE3NWIzNTJlNzA2MzI1YTE4 ZDE0NDcwHhcNMjYwMTAyMTQyMDA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzcwMWJjZmM3MzZjNzZlNTdkYTlkNDhiOGQ2NDUyOWU5MGIwZjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5GBbsBs6ZidIanAhBjnSySf9REt BbGKXn8pPI4j1b1BPgSdsNg4Fvw57p3R6M0Vulb6/GPWbc/sR1/d7mFTLKLDUInz IqEEDo696ch9nACL6/Fmil6ptZRmiSQ0pQHRjAXxD/iXaCGj0VbgQvzpv+tekIja W3LDFHf9Mq29okYTVBolXO+klPvhG3+My4sNYc/NH8QTC1ESR75SIiQwphkbU8Yj FoF8lLFucqXimCvecM558SCTkf8AnJs4tfIWQ20OKLKa774GsdRUY9oNz8m3fV5v wdX5CCyHpIzeOEy9rzT13HsPKHOgppD85IZwf/6pqqXcBv5l/G+1y8bAKQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBNwG8/HNsduV9qdSLjWRSnpCw8xMB8GA1UdIwQY MBaAFKmO6+2XU/WAvqdbNS5wYyWhjRRHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVk3cjdaZFQ5WUMtcDFzMUxuQmpKYUdORkVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9hNzQ3NDQtZWQ0OC00NzA3LWE2M2Ut NTJmNjkxOTEzOWM0LzEvRTNBYno4YzJ4MjVYMnAxSXVOWkZLZWtMRHpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9hNzQ3NDQtZWQ0OC00NzA3LWE2M2UtNTJmNjkxOTEzOWM0 LzEvcVk3cjdaZFQ5WUMtcDFzMUxuQmpKYUdORkVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTmIMA0E AgACMAcDBQMqBN3AMA0GCSqGSIb3DQEBCwUAA4IBAQBPWNmlFFnXFsmro1kx7Gg+ hRJge28vTLbwmRRNYsCK8KKLQTICtsxZCldgbJaMfRNnyac6niMMGC8Ku+APcAbk jv1caLLER0nUJazp6yIERvxcNonRskgZcqDS8LuFTw4W1tI4fzCb17tDd2pAt+DI E++Il0eC8mJSGGVjg5YLShQmlSV40Ii+BtimT/JfJy8sTtIC7Byolv+WgqkejgB4 RbvTzPidrjpwRdYS0k65ujpkmsAw6Fe9hY2BF7PXrKHaXcJI7jmgbfse7v77i/O8 5g8U/vuMsqtjq+TneTiTuz1/BABo3h2to47yw9iIgMcev5pPnostUPS7IMWR8aGZ -----END CERTIFICATE-----Generated at Mon Jan 26 06:21:17 2026 by rpki-client