This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/edbf44-3732-44ff-a944-e21974a294ba/1/Ey6_U3MNqlk5sSbuI2Okie2De-M.roa File: Ey6_U3MNqlk5sSbuI2Okie2De-M.roa (raw, json) Hash identifier: EHs4rxI+XpWq2Dq6A1mosS3qkiasZu2Py2spZNfHGZc= Subject key identifier: 13:2E:BF:53:73:0D:AA:59:39:B1:26:EE:23:63:A4:89:ED:83:7B:E3 Certificate issuer: /CN=a1a2d637cb0accf8721f43e266ce213f8eddd26a Certificate serial: 019B78355887DE10E41E9E45577508FE0BF9 Authority key identifier: A1:A2:D6:37:CB:0A:CC:F8:72:1F:43:E2:66:CE:21:3F:8E:DD:D2:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oaLWN8sKzPhyH0PiZs4hP47d0mo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/edbf44-3732-44ff-a944-e21974a294ba/1/Ey6_U3MNqlk5sSbuI2Okie2De-M.roa Signing time: Thu 01 Jan 2026 06:18:40 +0000 ROA not before: Thu 01 Jan 2026 06:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209975 IP address blocks: 212.60.8.0/22 maxlen: 22 212.60.8.0/24 maxlen: 24 212.60.9.0/24 maxlen: 24 212.60.10.0/24 maxlen: 24 212.60.11.0/24 maxlen: 24 2a09:800::/29 maxlen: 29 2a09:800::/35 maxlen: 35 2a09:800::/36 maxlen: 36 2a09:800:1000::/48 maxlen: 48 2a09:800:1001::/48 maxlen: 48 2a09:800:1002::/48 maxlen: 48 2a09:800:2000::/35 maxlen: 35 2a09:800:4000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/edbf44-3732-44ff-a944-e21974a294ba/1/oaLWN8sKzPhyH0PiZs4hP47d0mo.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/edbf44-3732-44ff-a944-e21974a294ba/1/oaLWN8sKzPhyH0PiZs4hP47d0mo.mft rsync://rpki.ripe.net/repository/DEFAULT/oaLWN8sKzPhyH0PiZs4hP47d0mo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:58:87:de:10:e4:1e:9e:45:57:75:08:fe:0b:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1a2d637cb0accf8721f43e266ce213f8eddd26a Validity Not Before: Jan 1 06:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=132ebf53730daa5939b126ee2363a489ed837be3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:94:cc:8f:71:d0:6a:df:ed:e0:03:98:26:09: a4:b4:4b:c6:3f:db:42:5a:a3:8a:29:64:f9:f2:70: d7:bf:86:ae:62:ee:25:22:37:f6:dc:70:af:d6:de: 04:6b:da:4b:cd:db:12:b8:15:87:f4:98:2f:81:11: 01:f6:76:ce:54:28:14:4a:84:c3:c0:fd:f7:62:cf: 9c:17:e6:89:e2:ad:bf:28:97:4a:12:35:8b:67:3a: 7b:eb:e1:94:45:32:5b:2c:94:49:10:ab:7c:3f:16: 04:2d:31:68:6b:3a:0d:ca:39:8b:50:a8:7a:1f:6c: 7c:bf:2c:85:ed:42:76:13:7b:b5:53:4d:c2:ad:59: 93:c5:5e:a4:4b:ac:58:b8:8b:95:84:96:d3:35:96: 92:ca:b2:86:3d:de:a3:c3:a4:28:94:c7:a8:be:b2: d0:7f:17:dd:44:64:4b:c9:62:4c:21:e9:48:e9:50: 93:ad:cc:05:27:51:c1:e6:f8:06:e6:d4:f2:c0:36: 05:0d:1c:1f:6a:ef:8b:8f:04:5e:9e:8b:2b:32:02: 0a:de:a6:6c:80:35:5e:97:a7:33:8e:a4:e8:da:7f: 6a:a8:a6:6e:87:12:a6:c2:ef:2c:51:c0:44:91:bd: 90:f4:f5:f5:a8:5d:fd:94:9b:ff:2e:77:f6:11:eb: 93:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2E:BF:53:73:0D:AA:59:39:B1:26:EE:23:63:A4:89:ED:83:7B:E3 X509v3 Authority Key Identifier: keyid:A1:A2:D6:37:CB:0A:CC:F8:72:1F:43:E2:66:CE:21:3F:8E:DD:D2:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaLWN8sKzPhyH0PiZs4hP47d0mo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/edbf44-3732-44ff-a944-e21974a294ba/1/Ey6_U3MNqlk5sSbuI2Okie2De-M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/edbf44-3732-44ff-a944-e21974a294ba/1/oaLWN8sKzPhyH0PiZs4hP47d0mo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.60.8.0/22 IPv6: 2a09:800::/29 Signature Algorithm: sha256WithRSAEncryption 45:84:75:93:d5:da:76:e8:cc:e5:c7:6f:fe:89:65:15:b6:7c: cf:b6:ac:cb:f3:f7:c8:eb:82:0d:ab:80:67:e1:17:89:47:20: 0c:15:99:58:82:d7:86:ff:0b:cd:4c:4d:8d:cd:1f:3a:66:6d: e4:4d:bc:e5:01:0d:37:d5:13:8d:fa:39:0c:bd:2d:99:15:7f: 20:d1:18:03:b2:df:7e:23:37:f2:d2:16:eb:ba:68:35:8d:2f: 3e:59:d0:03:b6:aa:af:15:d4:93:de:90:d3:6d:c9:20:1e:a2: 56:74:8d:46:8b:ab:b8:ae:47:da:f2:a0:16:d1:2a:b9:92:d5: f3:18:31:20:1c:46:55:cf:86:36:9d:33:61:3b:20:9d:d3:93: d2:df:e3:c9:45:7e:de:66:30:91:26:0b:69:e9:70:47:20:70: 66:e3:76:71:23:48:16:73:f5:d9:09:57:e5:fc:f6:a7:91:88: 01:f0:f0:ec:88:96:43:e3:c1:5e:0a:19:59:b9:5a:21:7c:d9: 61:28:75:58:24:96:ba:df:4b:7d:b0:fd:51:7c:57:b7:cc:76: a6:31:ce:4b:94:0e:8d:4c:76:65:21:9c:16:ba:81:53:51:0d: 24:44:c7:25:6e:3b:a1:6f:10:9a:34:b6:4c:c3:61:f5:7a:f0: 1c:26:54:89 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NViH3hDkHp5FV3UI/gv5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExYTJkNjM3Y2IwYWNjZjg3MjFmNDNlMjY2Y2UyMTNmOGVk ZGQyNmEwHhcNMjYwMTAxMDYxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzJlYmY1MzczMGRhYTU5MzliMTI2ZWUyMzYzYTQ4OWVkODM3YmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpTMj3HQat/t4AOYJgmktEvGP9tC WqOKKWT58nDXv4auYu4lIjf23HCv1t4Ea9pLzdsSuBWH9JgvgREB9nbOVCgUSoTD wP33Ys+cF+aJ4q2/KJdKEjWLZzp76+GURTJbLJRJEKt8PxYELTFoazoNyjmLUKh6 H2x8vyyF7UJ2E3u1U03CrVmTxV6kS6xYuIuVhJbTNZaSyrKGPd6jw6QolMeovrLQ fxfdRGRLyWJMIelI6VCTrcwFJ1HB5vgG5tTywDYFDRwfau+LjwRenosrMgIK3qZs gDVel6czjqTo2n9qqKZuhxKmwu8sUcBEkb2Q9PX1qF39lJv/Lnf2EeuTzQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBMuv1NzDapZObEm7iNjpIntg3vjMB8GA1UdIwQY MBaAFKGi1jfLCsz4ch9D4mbOIT+O3dJqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2FMV044c0t6UGh5SDBQaVpzNGhQNDdkMG1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9lZGJmNDQtMzczMi00NGZmLWE5NDQt ZTIxOTc0YTI5NGJhLzEvRXk2X1UzTU5xbGs1c1NidUkyT2tpZTJEZS1NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS9lZGJmNDQtMzczMi00NGZmLWE5NDQtZTIxOTc0YTI5NGJh LzEvb2FMV044c0t6UGh5SDBQaVpzNGhQNDdkMG1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQC1DwIMA0E AgACMAcDBQMqCQgAMA0GCSqGSIb3DQEBCwUAA4IBAQBFhHWT1dp26Mzlx2/+iWUV tnzPtqzL8/fI64INq4Bn4ReJRyAMFZlYgteG/wvNTE2NzR86Zm3kTbzlAQ031RON +jkMvS2ZFX8g0RgDst9+Izfy0hbrumg1jS8+WdADtqqvFdST3pDTbckgHqJWdI1G i6u4rkfa8qAW0Sq5ktXzGDEgHEZVz4Y2nTNhOyCd05PS3+PJRX7eZjCRJgtp6XBH IHBm43ZxI0gWc/XZCVfl/PankYgB8PDsiJZD48FeChlZuVohfNlhKHVYJJa630t9 sP1RfFe3zHamMc5LlA6NTHZlIZwWuoFTUQ0kRMclbjuhbxCaNLZMw2H1evAcJlSJ -----END CERTIFICATE-----Generated at Sun Jan 25 13:47:28 2026 by rpki-client