This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/79e439-fc0b-4e6e-8b06-39fb66a26ef8/1/EhpMBlG4nDKvcGQKRYPAEZtRdEU.roa File: EhpMBlG4nDKvcGQKRYPAEZtRdEU.roa (raw, json) Hash identifier: 00M7VIQ9njSy4l1huIv3bbpiOTYXp7U9IOJHNMG4ZKk= Subject key identifier: 12:1A:4C:06:51:B8:9C:32:AF:70:64:0A:45:83:C0:11:9B:51:74:45 Certificate issuer: /CN=5f93da757c17fe38a0e6cd70275c73c8c69c896e Certificate serial: 019B7EA6810C77DA7279BDF2FEFDFD20E2BF Authority key identifier: 5F:93:DA:75:7C:17:FE:38:A0:E6:CD:70:27:5C:73:C8:C6:9C:89:6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5PadXwX_jig5s1wJ1xzyMaciW4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/79e439-fc0b-4e6e-8b06-39fb66a26ef8/1/EhpMBlG4nDKvcGQKRYPAEZtRdEU.roa Signing time: Fri 02 Jan 2026 12:19:59 +0000 ROA not before: Fri 02 Jan 2026 12:19:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201073 IP address blocks: 185.86.206.0/24 maxlen: 24 2a05:bb80::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/79e439-fc0b-4e6e-8b06-39fb66a26ef8/1/X5PadXwX_jig5s1wJ1xzyMaciW4.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/79e439-fc0b-4e6e-8b06-39fb66a26ef8/1/X5PadXwX_jig5s1wJ1xzyMaciW4.mft rsync://rpki.ripe.net/repository/DEFAULT/X5PadXwX_jig5s1wJ1xzyMaciW4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:81:0c:77:da:72:79:bd:f2:fe:fd:fd:20:e2:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f93da757c17fe38a0e6cd70275c73c8c69c896e Validity Not Before: Jan 2 12:19:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=121a4c0651b89c32af70640a4583c0119b517445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ad:c5:e7:ea:4a:1f:93:23:f0:b2:4c:55:c9: 6e:11:0e:2a:37:d1:46:a5:d8:ff:a0:d8:dc:27:83: c7:07:26:b9:89:7d:82:23:cf:8a:0d:52:5c:ad:44: e9:98:a8:21:45:c7:3b:b0:50:e7:82:85:89:50:36: ad:90:39:0b:a8:98:ba:4f:41:d4:26:2e:3d:53:a7: b4:3c:40:19:14:ad:84:e1:35:84:6d:25:ba:bb:36: 35:4c:fb:b0:66:ee:2b:53:63:33:94:4c:9e:4e:cd: 88:07:fd:5b:2a:00:66:67:b6:d1:cc:eb:6f:ac:25: 45:d0:02:75:42:24:26:d6:26:d4:5e:d9:ed:fa:62: e2:f0:cc:f5:17:29:8a:9e:54:e0:09:2b:ae:15:85: 35:30:e1:bd:9b:9a:29:62:db:b4:d0:5f:6b:07:05: 1e:41:00:da:ba:f2:6f:69:bb:d5:5b:8b:ba:d6:0e: 09:70:f3:ac:52:17:b8:a3:2c:df:74:f8:43:64:33: 73:7e:bb:40:ba:09:88:4a:0b:9b:64:19:2f:2b:a2: b8:31:c9:57:14:4a:72:02:5d:ab:5d:14:a8:75:23: 9d:c8:a5:c9:b7:13:7d:33:da:e5:57:1c:8d:78:51: 0a:86:9c:d8:9e:79:e3:21:c1:1f:1f:81:ea:2e:de: ae:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:1A:4C:06:51:B8:9C:32:AF:70:64:0A:45:83:C0:11:9B:51:74:45 X509v3 Authority Key Identifier: keyid:5F:93:DA:75:7C:17:FE:38:A0:E6:CD:70:27:5C:73:C8:C6:9C:89:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5PadXwX_jig5s1wJ1xzyMaciW4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/79e439-fc0b-4e6e-8b06-39fb66a26ef8/1/EhpMBlG4nDKvcGQKRYPAEZtRdEU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/79e439-fc0b-4e6e-8b06-39fb66a26ef8/1/X5PadXwX_jig5s1wJ1xzyMaciW4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.86.206.0/24 IPv6: 2a05:bb80::/29 Signature Algorithm: sha256WithRSAEncryption 1e:4d:8a:6b:86:dd:f7:6d:be:a2:f2:b7:f6:5e:d0:75:6b:26: c9:50:89:49:31:e0:0b:b2:e6:cb:29:cd:fe:b9:5d:2b:8d:d0: 05:34:6f:e9:f1:e6:b2:31:77:b7:0c:44:70:53:5c:49:b9:db: 3d:87:fd:cb:77:f5:32:0d:54:68:50:b8:09:27:d6:41:a7:e6: 5f:e5:50:90:6f:c5:ff:1e:47:65:fa:6c:3f:7b:fa:aa:a1:97: 82:8a:95:d4:6d:b5:d2:91:0f:7f:89:75:46:18:c7:94:2e:2c: 4d:7e:10:83:42:2e:f0:1b:03:b5:17:66:ab:8b:55:9b:67:9a: ef:8f:06:d9:cd:17:32:4b:27:18:f1:36:6c:ec:85:63:c0:84: 83:55:7f:65:c3:09:5e:ff:ab:f6:d8:4c:65:5e:5d:36:c7:1d: 08:b7:7b:2d:ce:18:86:d1:c6:ac:2f:88:78:62:d9:ab:36:40: ec:d7:ec:35:2e:5f:b4:bb:0d:ed:9d:e7:72:de:1c:e6:f2:f2: 30:92:b4:20:1d:7f:cd:4b:9d:1d:cc:9c:f8:52:a1:33:ae:48: 8e:d5:5f:f0:33:96:7a:8c:fe:67:51:b6:dd:49:b9:d6:f4:7c: 4f:6a:67:ef:2a:16:e0:0c:2e:59:f0:0f:28:c6:54:a6:73:62: 56:6c:81:f5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+poEMd9pyeb3y/v39IOK/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmOTNkYTc1N2MxN2ZlMzhhMGU2Y2Q3MDI3NWM3M2M4YzY5 Yzg5NmUwHhcNMjYwMTAyMTIxOTU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMjFhNGMwNjUxYjg5YzMyYWY3MDY0MGE0NTgzYzAxMTliNTE3NDQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAta3F5+pKH5Mj8LJMVcluEQ4qN9FG pdj/oNjcJ4PHBya5iX2CI8+KDVJcrUTpmKghRcc7sFDngoWJUDatkDkLqJi6T0HU Ji49U6e0PEAZFK2E4TWEbSW6uzY1TPuwZu4rU2MzlEyeTs2IB/1bKgBmZ7bRzOtv rCVF0AJ1QiQm1ibUXtnt+mLi8Mz1FymKnlTgCSuuFYU1MOG9m5opYtu00F9rBwUe QQDauvJvabvVW4u61g4JcPOsUhe4oyzfdPhDZDNzfrtAugmISgubZBkvK6K4MclX FEpyAl2rXRSodSOdyKXJtxN9M9rlVxyNeFEKhpzYnnnjIcEfH4HqLt6uHQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBIaTAZRuJwyr3BkCkWDwBGbUXRFMB8GA1UdIwQY MBaAFF+T2nV8F/44oObNcCdcc8jGnIluMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDVQYWRYd1hfamlnNXMxd0oxeHp5TWFjaVc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS83OWU0MzktZmMwYi00ZTZlLThiMDYt MzlmYjY2YTI2ZWY4LzEvRWhwTUJsRzRuREt2Y0dRS1JZUEFFWnRSZEVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS83OWU0MzktZmMwYi00ZTZlLThiMDYtMzlmYjY2YTI2ZWY4 LzEvWDVQYWRYd1hfamlnNXMxd0oxeHp5TWFjaVc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuVbOMA0E AgACMAcDBQMqBbuAMA0GCSqGSIb3DQEBCwUAA4IBAQAeTYprht33bb6i8rf2XtB1 aybJUIlJMeALsubLKc3+uV0rjdAFNG/p8eayMXe3DERwU1xJuds9h/3Ld/UyDVRo ULgJJ9ZBp+Zf5VCQb8X/Hkdl+mw/e/qqoZeCipXUbbXSkQ9/iXVGGMeULixNfhCD Qi7wGwO1F2ari1WbZ5rvjwbZzRcySycY8TZs7IVjwISDVX9lwwle/6v22ExlXl02 xx0It3stzhiG0casL4h4YtmrNkDs1+w1Ll+0uw3tnedy3hzm8vIwkrQgHX/NS50d zJz4UqEzrkiO1V/wM5Z6jP5nUbbdSbnW9HxPamfvKhbgDC5Z8A8oxlSmc2JWbIH1 -----END CERTIFICATE-----Generated at Mon Jan 26 02:32:16 2026 by rpki-client