This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/eZKM8TJMYeLWEyu920Ld75NcinM.roa File: eZKM8TJMYeLWEyu920Ld75NcinM.roa (raw, json) Hash identifier: tmv3AASNUdy6CqfMaQz0xtQC6GhRK7nXqdtlIL9UhUQ= Subject key identifier: 79:92:8C:F1:32:4C:61:E2:D6:13:2B:BD:DB:42:DD:EF:93:5C:8A:73 Certificate issuer: /CN=111014ce8ad38d15350096d549ee1c5805d09dc8 Certificate serial: 019B7D5C4D094E19227ADC0B70EABFBEC0F4 Authority key identifier: 11:10:14:CE:8A:D3:8D:15:35:00:96:D5:49:EE:1C:58:05:D0:9D:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ERAUzorTjRU1AJbVSe4cWAXQncg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/eZKM8TJMYeLWEyu920Ld75NcinM.roa Signing time: Fri 02 Jan 2026 06:19:19 +0000 ROA not before: Fri 02 Jan 2026 06:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208499 IP address blocks: 45.132.220.0/22 maxlen: 24 2a0e:71c0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/ERAUzorTjRU1AJbVSe4cWAXQncg.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/ERAUzorTjRU1AJbVSe4cWAXQncg.mft rsync://rpki.ripe.net/repository/DEFAULT/ERAUzorTjRU1AJbVSe4cWAXQncg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 06:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:4d:09:4e:19:22:7a:dc:0b:70:ea:bf:be:c0:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111014ce8ad38d15350096d549ee1c5805d09dc8 Validity Not Before: Jan 2 06:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=79928cf1324c61e2d6132bbddb42ddef935c8a73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f8:43:cf:a3:cb:e6:3b:17:bb:ce:63:b3:9c: 8c:dc:86:da:f5:21:d7:4f:c8:72:77:41:a1:bd:d6: 89:f7:26:1f:7e:a8:a1:87:61:94:eb:41:cb:9b:f9: 1f:5b:72:84:4c:54:90:71:7d:ca:2b:4b:aa:f1:91: 70:20:2a:cf:16:15:b3:e6:ea:8b:db:3f:f1:28:97: 87:d0:2e:dd:18:8f:2e:ee:fa:74:4a:7f:42:b6:0c: ae:73:a0:ac:b6:8f:66:97:0b:16:6a:43:b2:50:af: d2:48:18:a9:a4:62:a0:3b:91:59:e0:aa:f7:3e:46: 9f:99:9c:19:c7:09:68:4f:f2:f5:c8:cb:0c:63:39: c3:ec:d5:1d:49:a3:b6:5a:40:df:07:9a:84:5e:0b: 47:ef:52:a2:4e:ba:c3:e9:0b:97:cc:a9:b7:f6:ec: 6a:b6:c0:13:0a:89:f8:85:79:55:d2:d9:80:11:47: 7c:fc:59:37:30:fe:5e:61:68:8e:fe:89:58:f7:1b: 18:5f:29:7c:58:d0:81:98:2b:f6:08:e4:a4:cc:34: e6:6b:3f:1d:da:fc:37:67:fd:36:99:ff:6c:88:5b: 25:a9:be:e8:15:a7:b2:ed:0e:e0:fd:e6:51:3d:e6: a1:7b:99:04:91:94:7d:3b:00:d6:ff:07:a5:e0:1b: cf:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:92:8C:F1:32:4C:61:E2:D6:13:2B:BD:DB:42:DD:EF:93:5C:8A:73 X509v3 Authority Key Identifier: keyid:11:10:14:CE:8A:D3:8D:15:35:00:96:D5:49:EE:1C:58:05:D0:9D:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ERAUzorTjRU1AJbVSe4cWAXQncg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/eZKM8TJMYeLWEyu920Ld75NcinM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/ERAUzorTjRU1AJbVSe4cWAXQncg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.132.220.0/22 IPv6: 2a0e:71c0::/29 Signature Algorithm: sha256WithRSAEncryption a1:fe:82:8a:9b:43:a2:82:88:83:15:a1:33:c3:9b:fa:26:a1: c3:2f:bd:ec:0b:0b:88:01:0d:d8:22:57:29:2f:5f:97:ce:62: c5:4a:29:58:1f:9c:16:ea:63:25:37:c2:ae:2f:de:4d:d4:d1: dd:81:25:98:35:df:a7:02:a4:3e:83:ea:81:58:99:77:30:f6: 36:f7:20:32:22:8f:98:41:15:bc:f2:8a:9d:c8:c7:17:6a:7f: 1e:8a:e4:78:6e:a3:a9:fa:f4:cc:ff:d4:d2:19:6e:8f:9b:64: 0f:26:91:5b:31:4e:f4:c8:fa:15:ff:8d:c4:9f:9d:dd:56:6d: bd:28:9c:69:a8:7f:06:1a:56:03:32:8a:2f:4c:00:20:8a:40: 28:be:ae:f5:92:e2:2d:67:c3:97:08:ab:4e:36:ec:79:89:21: bb:a5:c1:61:95:f0:99:c9:9d:9d:29:b2:c5:14:14:bd:72:de: fd:9c:f3:f6:8a:6e:df:d6:a9:ea:e9:3e:6f:5b:c1:51:79:ec: 73:13:e9:58:44:e7:15:16:a1:e9:41:33:35:26:b5:4b:b5:df: c3:ab:dc:2e:7c:88:c6:04:ed:15:87:a8:f2:bf:df:01:21:62: 92:a8:a1:0a:20:73:98:95:43:67:25:6e:39:ee:b9:65:22:29: 89:39:fb:cb -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9XE0JThkietwLcOq/vsD0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMTAxNGNlOGFkMzhkMTUzNTAwOTZkNTQ5ZWUxYzU4MDVk MDlkYzgwHhcNMjYwMTAyMDYxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OTkyOGNmMTMyNGM2MWUyZDYxMzJiYmRkYjQyZGRlZjkzNWM4YTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlPhDz6PL5jsXu85js5yM3Iba9SHX T8hyd0GhvdaJ9yYffqihh2GU60HLm/kfW3KETFSQcX3KK0uq8ZFwICrPFhWz5uqL 2z/xKJeH0C7dGI8u7vp0Sn9Ctgyuc6Csto9mlwsWakOyUK/SSBippGKgO5FZ4Kr3 PkafmZwZxwloT/L1yMsMYznD7NUdSaO2WkDfB5qEXgtH71KiTrrD6QuXzKm39uxq tsATCon4hXlV0tmAEUd8/Fk3MP5eYWiO/olY9xsYXyl8WNCBmCv2COSkzDTmaz8d 2vw3Z/02mf9siFslqb7oFaey7Q7g/eZRPeahe5kEkZR9OwDW/wel4BvPBwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHmSjPEyTGHi1hMrvdtC3e+TXIpzMB8GA1UdIwQY MBaAFBEQFM6K040VNQCW1UnuHFgF0J3IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVJBVXpvclRqUlUxQUpiVlNlNGNXQVhRbmNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9kNmM3NTItYWE0Yi00ZmE3LWFiMWYt OTFhMzk0Njg0NjQ0LzEvZVpLTThUSk1ZZUxXRXl1OTIwTGQ3NU5jaW5NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy9kNmM3NTItYWE0Yi00ZmE3LWFiMWYtOTFhMzk0Njg0NjQ0 LzEvRVJBVXpvclRqUlUxQUpiVlNlNGNXQVhRbmNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLYTcMA0E AgACMAcDBQMqDnHAMA0GCSqGSIb3DQEBCwUAA4IBAQCh/oKKm0OigoiDFaEzw5v6 JqHDL73sCwuIAQ3YIlcpL1+XzmLFSilYH5wW6mMlN8KuL95N1NHdgSWYNd+nAqQ+ g+qBWJl3MPY29yAyIo+YQRW88oqdyMcXan8eiuR4bqOp+vTM/9TSGW6Pm2QPJpFb MU70yPoV/43En53dVm29KJxpqH8GGlYDMoovTAAgikAovq71kuItZ8OXCKtONux5 iSG7pcFhlfCZyZ2dKbLFFBS9ct79nPP2im7f1qnq6T5vW8FReexzE+lYROcVFqHp QTM1JrVLtd/Dq9wufIjGBO0Vh6jyv98BIWKSqKEKIHOYlUNnJW457rllIimJOfvL -----END CERTIFICATE-----Generated at Mon Jan 26 12:55:14 2026 by rpki-client