This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/Ej04tqIea-55QGqR9P8U_IWSz5E.roa File: Ej04tqIea-55QGqR9P8U_IWSz5E.roa (raw, json) Hash identifier: 56Ay1dz7+2/hrBe1gefM4Z9MpRY5OP2aiLGQZC5nqmk= Subject key identifier: 12:3D:38:B6:A2:1E:6B:EE:79:40:6A:91:F4:FF:14:FC:85:92:CF:91 Certificate issuer: /CN=52e02224ffb971172e4935ed7dd965d1155089b6 Certificate serial: 019B77C76EE5FDBAA7551EBC0D08EA8CF7BB Authority key identifier: 52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/Ej04tqIea-55QGqR9P8U_IWSz5E.roa Signing time: Thu 01 Jan 2026 04:18:37 +0000 ROA not before: Thu 01 Jan 2026 04:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198781 IP address blocks: 185.121.16.0/22 maxlen: 22 185.121.16.0/24 maxlen: 24 185.121.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.mft rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:6e:e5:fd:ba:a7:55:1e:bc:0d:08:ea:8c:f7:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52e02224ffb971172e4935ed7dd965d1155089b6 Validity Not Before: Jan 1 04:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=123d38b6a21e6bee79406a91f4ff14fc8592cf91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f7:d5:95:f0:e0:e5:47:6d:a4:46:04:ac:dc: 3b:2e:d8:92:ec:4c:03:ff:3f:44:24:fe:8c:e1:4f: 26:71:7c:61:78:56:59:8a:f4:d3:39:c8:bf:55:2e: 26:0a:f6:58:85:15:ec:cb:35:b7:a1:0b:f7:3b:47: 89:1f:f9:cf:f2:a8:4a:1c:2c:d1:f4:c7:e4:29:be: 12:3c:ab:39:64:a9:9a:56:6b:12:cc:31:e3:ed:41: 95:ef:c9:6c:62:9c:a6:44:09:de:64:5e:6f:ef:80: af:d0:d1:cb:29:b0:8c:75:74:7c:6f:b5:41:00:29: d8:b1:37:44:af:e1:7f:95:f6:75:66:64:ff:36:9f: 3e:fe:8d:4a:06:80:fe:f9:0e:57:c6:9f:32:5e:32: 82:d4:8e:f7:ee:75:dc:3d:79:04:09:86:c4:d5:59: 83:1b:a0:b4:d6:ac:a8:21:63:b2:6a:b2:c6:b6:28: de:b6:a2:eb:34:38:c4:05:4d:08:12:95:b4:a8:f4: ea:8f:fa:0b:56:26:ab:47:f7:9c:ba:47:0b:14:39: 8d:39:4d:e9:7a:84:ad:05:ca:f7:a7:1a:10:65:c0: 3c:b9:1b:02:a9:8e:87:4a:45:1f:0a:63:82:5b:07: 10:4a:12:b3:75:72:e3:20:c0:61:4c:c5:c0:d0:04: 60:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:3D:38:B6:A2:1E:6B:EE:79:40:6A:91:F4:FF:14:FC:85:92:CF:91 X509v3 Authority Key Identifier: keyid:52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/Ej04tqIea-55QGqR9P8U_IWSz5E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.121.16.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:5a:10:00:47:f1:99:8f:d5:f6:c4:19:60:ee:60:dd:33:14: 46:83:ab:74:76:fd:a1:3b:ff:0f:07:20:2d:3c:4d:84:51:9a: 7b:59:85:f2:fa:4d:dd:48:1c:74:eb:a1:f9:3d:05:fd:f5:a0: ee:10:08:74:a5:be:5c:6b:f0:07:e2:6b:ef:ca:46:c8:9d:9f: a9:90:0a:db:e9:14:38:1f:e4:23:50:76:25:e8:81:ed:c9:11: 01:12:20:04:ec:1c:e1:b5:9c:fc:d5:13:69:6c:69:1e:d6:1a: 75:f6:55:2a:ac:fd:6f:50:e7:51:a7:83:98:11:28:02:97:9e: c5:01:b4:78:98:85:bb:96:ab:29:bd:2a:74:9d:75:cc:e0:eb: 9f:f5:a6:77:9a:2a:a4:a3:a8:88:9c:8c:bf:af:2b:d2:76:d1: 9d:2a:59:95:fa:0d:e0:a4:d1:2e:c8:b8:a9:e2:88:52:76:51: 06:ee:9c:a6:d2:41:24:0d:47:bc:39:7d:8a:39:b1:e2:5a:2f: b9:cd:ec:bf:b7:c5:9f:ac:1f:6c:b1:59:b3:42:b4:6b:b4:a3: 70:6f:b8:2f:0f:b5:9f:89:c5:22:6b:18:81:fd:ae:65:dd:f3: e9:5c:c1:c2:fa:6a:24:0b:7a:ba:c5:18:52:5d:94:f3:25:77: 1b:11:4b:42 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x27l/bqnVR68DQjqjPe7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyZTAyMjI0ZmZiOTcxMTcyZTQ5MzVlZDdkZDk2NWQxMTU1 MDg5YjYwHhcNMjYwMTAxMDQxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMjNkMzhiNmEyMWU2YmVlNzk0MDZhOTFmNGZmMTRmYzg1OTJjZjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPfVlfDg5UdtpEYErNw7LtiS7EwD /z9EJP6M4U8mcXxheFZZivTTOci/VS4mCvZYhRXsyzW3oQv3O0eJH/nP8qhKHCzR 9MfkKb4SPKs5ZKmaVmsSzDHj7UGV78lsYpymRAneZF5v74Cv0NHLKbCMdXR8b7VB ACnYsTdEr+F/lfZ1ZmT/Np8+/o1KBoD++Q5Xxp8yXjKC1I737nXcPXkECYbE1VmD G6C01qyoIWOyarLGtijetqLrNDjEBU0IEpW0qPTqj/oLViarR/ecukcLFDmNOU3p eoStBcr3pxoQZcA8uRsCqY6HSkUfCmOCWwcQShKzdXLjIMBhTMXA0ARgvQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBI9OLaiHmvueUBqkfT/FPyFks+RMB8GA1UdIwQY MBaAFFLgIiT/uXEXLkk17X3ZZdEVUIm2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXVBaUpQLTVjUmN1U1RYdGZkbGwwUlZRaWJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8zMTFiYzUtM2YzNi00ZDVlLWFiZGUt YjhkYTg5NDA2YmVkLzEvRWowNHRxSWVhLTU1UUdxUjlQOFVfSVdTejVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8zMTFiYzUtM2YzNi00ZDVlLWFiZGUtYjhkYTg5NDA2YmVk LzEvVXVBaUpQLTVjUmN1U1RYdGZkbGwwUlZRaWJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXkQMA0G CSqGSIb3DQEBCwUAA4IBAQBfWhAAR/GZj9X2xBlg7mDdMxRGg6t0dv2hO/8PByAt PE2EUZp7WYXy+k3dSBx066H5PQX99aDuEAh0pb5ca/AH4mvvykbInZ+pkArb6RQ4 H+QjUHYl6IHtyREBEiAE7BzhtZz81RNpbGke1hp19lUqrP1vUOdRp4OYESgCl57F AbR4mIW7lqspvSp0nXXM4Ouf9aZ3miqko6iInIy/ryvSdtGdKlmV+g3gpNEuyLip 4ohSdlEG7pym0kEkDUe8OX2KObHiWi+5zey/t8WfrB9ssVmzQrRrtKNwb7gvD7Wf icUiaxiB/a5l3fPpXMHC+mokC3q6xRhSXZTzJXcbEUtC -----END CERTIFICATE-----Generated at Mon Jan 26 11:05:06 2026 by rpki-client