This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/ePQMQe046NknExZADvr19blY0SA.roa File: ePQMQe046NknExZADvr19blY0SA.roa (raw, json) Hash identifier: wKoVniNasUoMb11Rk/qza9dNeWvntUlfFXzDDxceLEM= Subject key identifier: 78:F4:0C:41:ED:38:E8:D9:27:13:16:40:0E:FA:F5:F5:B9:58:D1:20 Certificate issuer: /CN=9256ebf66b80f08135858d144ced6f785834f5f4 Certificate serial: 019B79109F76D9ECD8D67D5BCEA6EE5F8466 Authority key identifier: 92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/ePQMQe046NknExZADvr19blY0SA.roa Signing time: Thu 01 Jan 2026 10:18:11 +0000 ROA not before: Thu 01 Jan 2026 10:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5580 IP address blocks: 185.168.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:9f:76:d9:ec:d8:d6:7d:5b:ce:a6:ee:5f:84:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9256ebf66b80f08135858d144ced6f785834f5f4 Validity Not Before: Jan 1 10:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=78f40c41ed38e8d9271316400efaf5f5b958d120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:09:24:dc:1e:ed:2f:ca:5f:ec:c6:04:b3:4f: 8e:b3:3f:a7:9b:7c:f5:8a:96:1c:43:04:34:57:9a: f2:a2:e6:8b:46:94:5a:e9:0f:32:e1:ef:0a:e3:7f: 4c:fb:87:46:18:89:9c:08:51:09:91:84:d1:db:fc: 81:9a:1e:e9:1f:c0:54:64:a9:4e:69:38:ad:c0:5f: bd:87:8d:e1:54:31:89:8f:7b:3f:9b:ca:09:94:d2: 52:5f:ac:10:ff:90:b3:d1:31:39:fa:48:40:08:00: a9:20:d6:d9:24:81:93:e6:ce:5d:9e:b4:5f:d2:00: b0:01:ab:eb:88:59:18:66:52:0a:16:d1:21:1e:d1: 69:b1:ec:bc:cc:68:c8:91:11:37:9c:94:6c:f3:01: 73:f6:e1:18:2e:c1:30:8d:4b:a8:9e:55:57:ae:5d: 42:e9:65:70:de:b8:de:c5:3d:6c:b7:28:ae:9f:4b: 6f:30:3c:d7:87:d3:32:f1:c6:6e:a0:e3:73:e6:cd: 4e:a8:27:a4:a7:dd:bd:9e:4e:0c:5a:6a:8f:6c:03: f3:4a:9f:04:4a:bb:87:14:07:3d:3b:35:b3:24:3f: c3:df:18:76:70:ca:ee:1a:21:1f:7f:14:83:73:d5: 43:7a:fa:bf:23:1f:e2:07:af:cc:e8:5a:fb:a4:20: de:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F4:0C:41:ED:38:E8:D9:27:13:16:40:0E:FA:F5:F5:B9:58:D1:20 X509v3 Authority Key Identifier: keyid:92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/ePQMQe046NknExZADvr19blY0SA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.168.160.0/22 Signature Algorithm: sha256WithRSAEncryption 89:1d:5a:22:fe:66:b2:7e:73:b1:ee:aa:5a:7d:8e:8b:53:e5: c0:0b:f3:89:23:46:d3:71:c9:9e:80:ef:0f:f5:22:d5:7c:15: 6c:ec:b8:2b:36:8c:36:26:ff:50:7c:77:99:5a:ee:ac:ee:b3: 75:fb:90:12:b3:d5:84:c7:73:90:6e:46:47:a1:11:38:7a:bc: e3:86:42:d9:51:cf:38:b6:89:11:35:53:a8:69:12:b4:97:49: f9:7d:af:15:c9:bc:e9:0f:e5:54:b9:30:4e:94:eb:f3:8d:f5: 5a:29:ce:3d:3f:8f:5e:ea:0d:5f:9b:30:e2:9c:5e:83:c2:3b: b3:dc:be:31:d4:39:5c:00:13:1f:2b:36:0e:55:31:b0:ee:68: 73:15:03:3d:06:15:ef:f8:6d:03:e4:a1:e5:8e:ab:04:a3:52: 01:53:08:e1:0d:82:57:b2:66:29:8a:7d:42:09:9f:98:e3:19: 21:a0:5e:60:38:6b:0a:44:b6:1a:6d:fb:ab:71:ac:c9:a3:d6: 0d:10:a4:b1:cc:83:bf:73:19:e3:3b:c1:a1:97:52:f4:7b:41: d2:4f:03:c3:06:82:5d:f9:c7:ea:59:f0:77:59:9a:6e:30:69: c8:a1:51:fd:cb:15:cf:f2:c7:1f:65:b9:03:43:5d:8a:04:f9: 64:5b:00:d2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EJ922ezY1n1bzqbuX4RmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNTZlYmY2NmI4MGYwODEzNTg1OGQxNDRjZWQ2Zjc4NTgz NGY1ZjQwHhcNMjYwMTAxMTAxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OGY0MGM0MWVkMzhlOGQ5MjcxMzE2NDAwZWZhZjVmNWI5NThkMTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQkk3B7tL8pf7MYEs0+Osz+nm3z1 ipYcQwQ0V5ryouaLRpRa6Q8y4e8K439M+4dGGImcCFEJkYTR2/yBmh7pH8BUZKlO aTitwF+9h43hVDGJj3s/m8oJlNJSX6wQ/5Cz0TE5+khACACpINbZJIGT5s5dnrRf 0gCwAavriFkYZlIKFtEhHtFpsey8zGjIkRE3nJRs8wFz9uEYLsEwjUuonlVXrl1C 6WVw3rjexT1styiun0tvMDzXh9My8cZuoONz5s1OqCekp929nk4MWmqPbAPzSp8E SruHFAc9OzWzJD/D3xh2cMruGiEffxSDc9VDevq/Ix/iB6/M6Fr7pCDeZwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHj0DEHtOOjZJxMWQA769fW5WNEgMB8GA1UdIwQY MBaAFJJW6/ZrgPCBNYWNFEztb3hYNPX0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2xicjltdUE4SUUxaFkwVVRPMXZlRmcwOWZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9iNzE3YzUtYTY0Yi00NDc1LWJlM2Ut NWRhOGQ2NzdkODQ3LzEvZVBRTVFlMDQ2TmtuRXhaQUR2cjE5YmxZMFNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9iNzE3YzUtYTY0Yi00NDc1LWJlM2UtNWRhOGQ2NzdkODQ3 LzEva2xicjltdUE4SUUxaFkwVVRPMXZlRmcwOWZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaigMA0G CSqGSIb3DQEBCwUAA4IBAQCJHVoi/mayfnOx7qpafY6LU+XAC/OJI0bTccmegO8P 9SLVfBVs7LgrNow2Jv9QfHeZWu6s7rN1+5ASs9WEx3OQbkZHoRE4erzjhkLZUc84 tokRNVOoaRK0l0n5fa8VybzpD+VUuTBOlOvzjfVaKc49P49e6g1fmzDinF6Dwjuz 3L4x1DlcABMfKzYOVTGw7mhzFQM9BhXv+G0D5KHljqsEo1IBUwjhDYJXsmYpin1C CZ+Y4xkhoF5gOGsKRLYabfurcazJo9YNEKSxzIO/cxnjO8Ghl1L0e0HSTwPDBoJd +cfqWfB3WZpuMGnIoVH9yxXP8scfZbkDQ12KBPlkWwDS -----END CERTIFICATE-----Generated at Sun Jan 25 18:05:49 2026 by rpki-client