This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/MH0ePkGiqUNJj92Th9uz7ESBLuY.roa File: MH0ePkGiqUNJj92Th9uz7ESBLuY.roa (raw, json) Hash identifier: zEMC++4x++17MQ2QaYX26EoR6rGR9XCEMskuWanLEDo= Subject key identifier: 30:7D:1E:3E:41:A2:A9:43:49:8F:DD:93:87:DB:B3:EC:44:81:2E:E6 Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2 Certificate serial: 019B7B365181B45FF43FECC52703A74EDAE9 Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/MH0ePkGiqUNJj92Th9uz7ESBLuY.roa Signing time: Thu 01 Jan 2026 20:18:35 +0000 ROA not before: Thu 01 Jan 2026 20:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28717 IP address blocks: 5.83.24.0/21 maxlen: 21 78.111.160.0/20 maxlen: 20 88.212.64.0/18 maxlen: 18 91.143.112.0/20 maxlen: 20 94.18.0.0/16 maxlen: 16 109.202.128.0/19 maxlen: 19 176.222.232.0/21 maxlen: 21 188.120.64.0/19 maxlen: 19 212.60.96.0/19 maxlen: 19 2a01:4f0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:51:81:b4:5f:f4:3f:ec:c5:27:03:a7:4e:da:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2 Validity Not Before: Jan 1 20:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=307d1e3e41a2a943498fdd9387dbb3ec44812ee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:dc:d6:76:4c:68:05:9b:84:a4:27:15:c1:e9: 03:14:b2:dc:e7:34:76:bf:2f:9e:a9:e2:80:a7:7a: 10:a5:89:5f:9a:ce:a2:4c:f1:49:e1:57:51:71:61: d4:17:4d:06:37:6a:a1:cc:65:f6:3a:8a:c5:17:28: 43:8e:2d:c7:0a:da:df:6b:b6:20:69:61:b9:9f:5e: a2:db:ff:7f:16:a6:74:dc:02:58:86:1c:2a:60:35: 07:51:e6:4b:05:98:8b:3c:f1:a9:b0:27:d1:3e:6f: fe:1b:f4:46:80:c6:71:cf:cd:79:a9:7b:0c:a7:6a: d9:ec:7c:e0:1c:f9:1f:ee:18:6b:13:fa:20:47:af: 52:09:e5:b7:fc:1e:32:5f:ce:cf:d4:94:03:ae:f6: 88:6f:24:84:57:dd:48:c6:b1:61:81:a5:86:21:22: 92:f9:83:16:76:54:32:c8:a2:24:be:ef:d7:c5:a2: 0b:7e:64:04:cd:aa:a3:b7:c4:86:06:ff:81:99:44: 43:d3:13:1b:32:67:3e:b0:e7:f6:4c:36:0c:a0:6f: 09:4d:0e:3f:b1:5a:fa:8e:fa:f1:54:5c:61:ea:6c: 49:28:55:ce:2e:bd:76:2a:c3:bd:53:76:58:ab:4c: 22:c9:a5:20:fb:89:aa:43:cb:ec:cd:0a:aa:69:2e: 24:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:7D:1E:3E:41:A2:A9:43:49:8F:DD:93:87:DB:B3:EC:44:81:2E:E6 X509v3 Authority Key Identifier: keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/MH0ePkGiqUNJj92Th9uz7ESBLuY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.24.0/21 78.111.160.0/20 88.212.64.0/18 91.143.112.0/20 94.18.0.0/16 109.202.128.0/19 176.222.232.0/21 188.120.64.0/19 212.60.96.0/19 IPv6: 2a01:4f0::/32 Signature Algorithm: sha256WithRSAEncryption 53:21:04:ea:0a:e6:54:2e:55:8d:49:be:e7:d2:d1:f5:27:e5: 8f:e5:13:cf:cf:8f:a0:93:f4:31:de:5d:3d:3a:dd:bb:be:7a: 19:04:c5:8b:c5:1a:b1:ef:35:aa:9d:2c:1f:f4:1f:83:22:9b: db:4c:74:b9:6f:8a:89:b9:71:be:b3:3e:dd:87:21:2c:60:0d: ff:34:3d:e2:1d:4a:a7:62:12:88:7d:0a:6d:e5:94:3c:68:12: 51:e6:6a:a4:63:15:a5:1c:17:f1:3c:e3:e5:b4:d2:97:23:8a: 4b:16:d4:57:4f:48:70:e8:34:85:4b:05:32:6e:d8:a9:41:b0: 6e:e0:d0:15:9a:b1:0b:bb:d5:75:10:69:8e:9d:48:73:0c:82: c2:4a:18:bd:97:13:7c:83:a0:e3:bb:bd:bc:8b:dc:a3:6d:7e: 17:0d:0f:64:ae:19:78:e8:c0:d5:85:d2:f9:20:c3:df:b3:a1: cc:1a:69:fc:8c:98:3e:ae:bd:d4:63:e1:9a:ad:0c:e9:37:8e: 3b:34:42:74:4d:85:cb:b2:17:dc:92:7d:d9:d8:b1:64:63:82: 23:1d:10:24:96:4d:50:e3:e4:38:17:1b:1a:3b:1b:7d:0e:e4: 7e:33:13:00:bf:99:a8:bf:2a:be:12:bb:06:6f:7b:14:61:8c: 42:17:3c:a8 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgISAZt7NlGBtF/0P+zFJwOnTtrpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0Zjg0MzYwMDNkMzc2MDIwMjZiNjU1MzE3NTVjYThmY2Qz MWJlZDIwHhcNMjYwMTAxMjAxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMDdkMWUzZTQxYTJhOTQzNDk4ZmRkOTM4N2RiYjNlYzQ0ODEyZWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndzWdkxoBZuEpCcVwekDFLLc5zR2 vy+eqeKAp3oQpYlfms6iTPFJ4VdRcWHUF00GN2qhzGX2OorFFyhDji3HCtrfa7Yg aWG5n16i2/9/FqZ03AJYhhwqYDUHUeZLBZiLPPGpsCfRPm/+G/RGgMZxz815qXsM p2rZ7HzgHPkf7hhrE/ogR69SCeW3/B4yX87P1JQDrvaIbySEV91IxrFhgaWGISKS +YMWdlQyyKIkvu/XxaILfmQEzaqjt8SGBv+BmURD0xMbMmc+sOf2TDYMoG8JTQ4/ sVr6jvrxVFxh6mxJKFXOLr12KsO9U3ZYq0wiyaUg+4mqQ8vszQqqaS4kywIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFDB9Hj5BoqlDSY/dk4fbs+xEgS7mMB8GA1UdIwQY MBaAFKT4Q2AD03YCAmtlUxdVyo/NMb7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS81MTU2MDgtNTAxMi00YTQwLWIzMjQt MjdiZjgzY2RlZDZiLzEvTUgwZVBrR2lxVU5KajkyVGg5dXo3RVNCTHVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS81MTU2MDgtNTAxMi00YTQwLWIzMjQtMjdiZjgzY2RlZDZi LzEvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDA7BAIAATA1AwQDBVMYAwQE Tm+gAwQGWNRAAwQEW49wAwMAXhIDBAVtyoADBAOw3ugDBAW8eEADBAXUPGAwDQQC AAIwBwMFACoBBPAwDQYJKoZIhvcNAQELBQADggEBAFMhBOoK5lQuVY1JvufS0fUn 5Y/lE8/Pj6CT9DHeXT063bu+ehkExYvFGrHvNaqdLB/0H4Mim9tMdLlviom5cb6z Pt2HISxgDf80PeIdSqdiEoh9Cm3llDxoElHmaqRjFaUcF/E84+W00pcjiksW1FdP SHDoNIVLBTJu2KlBsG7g0BWasQu71XUQaY6dSHMMgsJKGL2XE3yDoOO7vbyL3KNt fhcND2SuGXjowNWF0vkgw9+zocwaafyMmD6uvdRj4ZqtDOk3jjs0QnRNhcuyF9yS fdnYsWRjgiMdECSWTVDj5DgXGxo7G30O5H4zEwC/mai/Kr4SuwZvexRhjEIXPKg= -----END CERTIFICATE-----Generated at Mon Jan 26 03:05:59 2026 by rpki-client