This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/2c94be-be37-4c76-aa5d-d1d5120cf6ee/1/EdxZYg5OqmQWPMmegu-B52k_ZIY.roa File: EdxZYg5OqmQWPMmegu-B52k_ZIY.roa (raw, json) Hash identifier: fcd0uJPxM+GkSq+RnRCi5gTClxrJIshw64cEooNSAkU= Subject key identifier: 11:DC:59:62:0E:4E:AA:64:16:3C:C9:9E:82:EF:81:E7:69:3F:64:86 Certificate issuer: /CN=65309ed7221d4d52ae23512a0bea500c677a2ea1 Certificate serial: 019BDAE81573B6D525A2E9649EAD3D35A8E9 Authority key identifier: 65:30:9E:D7:22:1D:4D:52:AE:23:51:2A:0B:EA:50:0C:67:7A:2E:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZTCe1yIdTVKuI1EqC-pQDGd6LqE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/2c94be-be37-4c76-aa5d-d1d5120cf6ee/1/EdxZYg5OqmQWPMmegu-B52k_ZIY.roa Signing time: Tue 20 Jan 2026 10:16:41 +0000 ROA not before: Tue 20 Jan 2026 10:16:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 559 IP address blocks: 185.207.116.0/24 maxlen: 24 193.200.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/2c94be-be37-4c76-aa5d-d1d5120cf6ee/1/ZTCe1yIdTVKuI1EqC-pQDGd6LqE.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/2c94be-be37-4c76-aa5d-d1d5120cf6ee/1/ZTCe1yIdTVKuI1EqC-pQDGd6LqE.mft rsync://rpki.ripe.net/repository/DEFAULT/ZTCe1yIdTVKuI1EqC-pQDGd6LqE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:da:e8:15:73:b6:d5:25:a2:e9:64:9e:ad:3d:35:a8:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65309ed7221d4d52ae23512a0bea500c677a2ea1 Validity Not Before: Jan 20 10:16:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=11dc59620e4eaa64163cc99e82ef81e7693f6486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ae:37:cf:53:7f:d3:d7:ac:bb:47:02:7e:e3: 56:f7:47:d4:3c:2d:8b:34:c3:b2:45:ea:ce:ca:6b: 65:36:de:c1:5d:7e:4c:97:0a:e9:8b:e8:f4:77:c7: 03:09:15:00:7e:0b:97:55:9d:b8:df:8f:56:8b:37: ee:c4:34:6e:c9:ae:ce:4a:6f:8a:f9:b6:f6:22:6c: e4:e1:c1:d8:d6:69:87:8d:60:c2:d0:a3:36:f6:65: 57:64:9a:88:6d:8c:c1:1c:97:d4:74:5e:c6:52:54: 2c:6a:7b:fa:e7:b3:0b:2f:83:5b:50:d1:ec:f3:87: d8:0d:4d:c6:2a:5e:3f:46:92:06:d1:bc:dd:90:8d: 79:19:00:ea:7a:8f:40:80:34:e0:2c:ec:95:3e:fd: 60:9a:bd:38:f3:72:07:40:7f:92:0c:22:3f:43:4d: 27:98:7c:b8:f7:8a:21:54:55:21:6b:04:49:03:b7: 4b:4c:2d:77:46:6b:2b:c5:51:63:4f:7b:d1:c1:f5: 7f:0a:d6:90:c4:20:7d:81:a6:9a:36:cc:68:cb:a5: b2:da:2f:57:11:79:3e:e6:6d:45:bb:bf:e9:52:4b: a9:99:59:db:64:4a:96:f2:78:86:f2:c4:e5:35:e1: 25:4e:eb:61:f0:af:a6:fd:97:61:5f:4f:79:14:45: e2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DC:59:62:0E:4E:AA:64:16:3C:C9:9E:82:EF:81:E7:69:3F:64:86 X509v3 Authority Key Identifier: keyid:65:30:9E:D7:22:1D:4D:52:AE:23:51:2A:0B:EA:50:0C:67:7A:2E:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZTCe1yIdTVKuI1EqC-pQDGd6LqE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2c94be-be37-4c76-aa5d-d1d5120cf6ee/1/EdxZYg5OqmQWPMmegu-B52k_ZIY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2c94be-be37-4c76-aa5d-d1d5120cf6ee/1/ZTCe1yIdTVKuI1EqC-pQDGd6LqE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.207.116.0/24 193.200.79.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:b0:15:2d:9d:dd:ea:3f:b1:56:00:38:99:c4:47:a3:54:1f: 2e:e0:e1:a1:cd:76:00:da:f8:58:71:16:63:68:ab:d4:fb:61: 70:14:c4:65:a7:e8:6c:80:7a:38:37:25:cd:f7:10:57:89:0e: 9d:fd:8e:a7:ce:a5:af:8b:52:f4:a3:89:88:14:73:28:e8:7f: 2b:18:33:9f:4c:ea:e0:0d:76:10:1d:5e:94:b4:49:65:ef:35: 85:8b:9b:95:48:b8:d3:2b:94:70:ea:44:14:0f:93:cd:f9:77: 15:2c:f9:53:18:b7:7f:b5:6f:63:8d:0c:d2:1a:fd:e2:e8:00: e5:cb:af:7b:7e:36:2f:1c:f1:87:e2:2f:3e:92:4e:f5:5c:81: 6d:32:15:57:46:84:59:e6:ff:a2:37:a0:43:0e:da:7f:42:ff: d3:88:1e:15:fe:a1:b8:71:a2:4b:f4:3e:24:20:93:d5:b2:18: 6c:71:60:79:cd:6f:b6:7b:eb:b6:28:77:86:28:81:0e:81:b5: dc:6f:dc:eb:77:a1:27:64:3d:75:f5:30:2a:73:97:ab:d0:ab: 54:71:c9:b5:42:85:3a:2d:8b:72:a2:89:9a:82:67:46:ba:ed: 98:fa:e7:25:de:22:80:32:2d:5d:aa:d1:32:18:1b:15:b8:3f: 0b:c9:9b:66 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZva6BVzttUloulknq09NajpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1MzA5ZWQ3MjIxZDRkNTJhZTIzNTEyYTBiZWE1MDBjNjc3 YTJlYTEwHhcNMjYwMTIwMTAxNjQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMWRjNTk2MjBlNGVhYTY0MTYzY2M5OWU4MmVmODFlNzY5M2Y2NDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs643z1N/09esu0cCfuNW90fUPC2L NMOyRerOymtlNt7BXX5Mlwrpi+j0d8cDCRUAfguXVZ24349WizfuxDRuya7OSm+K +bb2Imzk4cHY1mmHjWDC0KM29mVXZJqIbYzBHJfUdF7GUlQsanv657MLL4NbUNHs 84fYDU3GKl4/RpIG0bzdkI15GQDqeo9AgDTgLOyVPv1gmr0483IHQH+SDCI/Q00n mHy494ohVFUhawRJA7dLTC13RmsrxVFjT3vRwfV/CtaQxCB9gaaaNsxoy6Wy2i9X EXk+5m1Fu7/pUkupmVnbZEqW8niG8sTlNeElTuth8K+m/ZdhX095FEXiQQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBHcWWIOTqpkFjzJnoLvgedpP2SGMB8GA1UdIwQY MBaAFGUwntciHU1SriNRKgvqUAxnei6hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlRDZTF5SWRUVkt1STFFcUMtcFFER2Q2THFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8yYzk0YmUtYmUzNy00Yzc2LWFhNWQt ZDFkNTEyMGNmNmVlLzEvRWR4WllnNU9xbVFXUE1tZWd1LUI1MmtfWklZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS8yYzk0YmUtYmUzNy00Yzc2LWFhNWQtZDFkNTEyMGNmNmVl LzEvWlRDZTF5SWRUVkt1STFFcUMtcFFER2Q2THFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuc90AwQA wchPMA0GCSqGSIb3DQEBCwUAA4IBAQA9sBUtnd3qP7FWADiZxEejVB8u4OGhzXYA 2vhYcRZjaKvU+2FwFMRlp+hsgHo4NyXN9xBXiQ6d/Y6nzqWvi1L0o4mIFHMo6H8r GDOfTOrgDXYQHV6UtEll7zWFi5uVSLjTK5Rw6kQUD5PN+XcVLPlTGLd/tW9jjQzS Gv3i6ADly697fjYvHPGH4i8+kk71XIFtMhVXRoRZ5v+iN6BDDtp/Qv/TiB4V/qG4 caJL9D4kIJPVshhscWB5zW+2e+u2KHeGKIEOgbXcb9zrd6EnZD119TAqc5er0KtU ccm1QoU6LYtyoomagmdGuu2Y+ucl3iKAMi1dqtEyGBsVuD8LyZtm -----END CERTIFICATE-----Generated at Sun Jan 25 21:05:05 2026 by rpki-client