This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6c3702-1178-4cbd-8eba-c0384fe1b007/1/EkaMEHFXzVXgvijJ-hXSC2h-u7I.roa File: EkaMEHFXzVXgvijJ-hXSC2h-u7I.roa (raw, json) Hash identifier: JZppuXOA54xhCxrPeBXaCqhSYeNgkIyj6hJkt7FdiSE= Subject key identifier: 12:46:8C:10:71:57:CD:55:E0:BE:28:C9:FA:15:D2:0B:68:7E:BB:B2 Certificate issuer: /CN=f31ffb54cac7f5b5768569e4197d41d7446bf1fc Certificate serial: 019B77C675E1822AEA13E0C55575BB382AA5 Authority key identifier: F3:1F:FB:54:CA:C7:F5:B5:76:85:69:E4:19:7D:41:D7:44:6B:F1:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8x_7VMrH9bV2hWnkGX1B10Rr8fw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6c3702-1178-4cbd-8eba-c0384fe1b007/1/EkaMEHFXzVXgvijJ-hXSC2h-u7I.roa Signing time: Thu 01 Jan 2026 04:17:33 +0000 ROA not before: Thu 01 Jan 2026 04:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29237 IP address blocks: 185.96.228.0/24 maxlen: 24 185.96.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/6c3702-1178-4cbd-8eba-c0384fe1b007/1/8x_7VMrH9bV2hWnkGX1B10Rr8fw.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/6c3702-1178-4cbd-8eba-c0384fe1b007/1/8x_7VMrH9bV2hWnkGX1B10Rr8fw.mft rsync://rpki.ripe.net/repository/DEFAULT/8x_7VMrH9bV2hWnkGX1B10Rr8fw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 16:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:75:e1:82:2a:ea:13:e0:c5:55:75:bb:38:2a:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f31ffb54cac7f5b5768569e4197d41d7446bf1fc Validity Not Before: Jan 1 04:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=12468c107157cd55e0be28c9fa15d20b687ebbb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:35:81:cb:32:dd:0e:69:02:8c:6c:fc:1d:dd: 68:80:f3:4b:18:e3:44:cf:92:78:8b:79:aa:e7:9a: 34:cc:a3:8e:38:10:27:2c:22:7d:07:00:63:f9:22: 99:e9:b6:b8:49:9c:b5:41:b7:f8:76:8a:db:f8:53: e1:16:b3:97:00:ac:8b:4c:64:f2:d4:8e:af:cb:c1: 5a:b3:f4:52:19:e9:16:97:77:87:b8:15:4f:65:c9: fa:41:97:57:ba:3f:0d:39:46:42:68:6c:de:37:26: e2:aa:77:aa:36:a7:66:c2:53:2f:78:a1:25:8e:be: ec:8a:bc:47:5a:f8:0a:f7:bd:a0:20:bc:54:29:77: 85:4b:77:d6:9d:e0:4e:03:28:1d:64:8d:6a:f0:f8: 52:25:d0:72:5c:4d:93:2a:ae:11:37:06:8c:82:74: 03:7c:a8:4c:93:dd:de:58:09:f9:33:f7:74:75:aa: e0:9f:4b:55:d1:e7:e0:a3:2e:fb:19:27:40:31:98: 77:05:c1:56:11:65:35:2a:92:f7:af:60:81:67:89: b5:c4:93:01:b2:fc:13:dc:56:eb:da:75:54:3f:8a: ac:75:8e:6b:02:7c:7d:1d:86:38:fc:ec:a0:09:e2: 23:e3:87:0c:60:3d:8a:c0:ae:96:3e:d3:57:d0:ed: 2b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:46:8C:10:71:57:CD:55:E0:BE:28:C9:FA:15:D2:0B:68:7E:BB:B2 X509v3 Authority Key Identifier: keyid:F3:1F:FB:54:CA:C7:F5:B5:76:85:69:E4:19:7D:41:D7:44:6B:F1:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8x_7VMrH9bV2hWnkGX1B10Rr8fw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6c3702-1178-4cbd-8eba-c0384fe1b007/1/EkaMEHFXzVXgvijJ-hXSC2h-u7I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6c3702-1178-4cbd-8eba-c0384fe1b007/1/8x_7VMrH9bV2hWnkGX1B10Rr8fw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.96.228.0/23 Signature Algorithm: sha256WithRSAEncryption 81:74:1d:de:20:9d:86:bd:38:13:10:1a:f7:46:7c:da:65:d9: 43:1c:21:c8:66:84:a3:74:e2:77:e9:13:30:cc:d5:8b:53:60: 96:45:25:85:65:e3:a7:56:de:d7:c5:dd:91:24:b5:e2:5f:09: 21:46:cd:e4:5c:b6:09:9a:46:a5:70:cf:99:24:6f:1b:fa:a6: 24:38:8c:1b:58:fc:34:0a:25:ea:9a:b7:1a:2e:f5:43:86:44: 13:24:4b:1c:57:7a:0c:7a:b3:c4:f0:6c:d4:f3:0c:25:82:f9: c0:7d:be:a6:9e:7d:43:31:b5:24:6d:4e:4b:3e:56:b3:f9:7a: f0:67:d7:1d:70:b9:19:08:50:fd:e0:20:f4:3e:00:e7:f6:ad: 86:ce:58:e3:49:54:a1:28:37:62:3e:42:ab:d8:cc:ed:a3:83: b4:4c:3c:64:49:6d:d6:7d:38:b9:19:24:e1:af:ba:a9:b1:29: 68:f9:9a:7a:af:7b:c2:c9:09:c1:09:76:a9:af:0c:ee:4e:43: c7:c1:a6:62:a5:cd:7d:99:16:9a:b5:6b:2d:08:23:86:ea:0a: 54:21:1a:b0:e1:58:83:f9:fb:cb:10:f4:9b:b3:36:f1:35:2f: 56:72:2f:6b:95:96:a0:d0:ce:76:b7:b0:21:64:c4:12:52:42: 3a:7c:9f:a8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xnXhgirqE+DFVXW7OCqlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMWZmYjU0Y2FjN2Y1YjU3Njg1NjllNDE5N2Q0MWQ3NDQ2 YmYxZmMwHhcNMjYwMTAxMDQxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMjQ2OGMxMDcxNTdjZDU1ZTBiZTI4YzlmYTE1ZDIwYjY4N2ViYmIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzWByzLdDmkCjGz8Hd1ogPNLGONE z5J4i3mq55o0zKOOOBAnLCJ9BwBj+SKZ6ba4SZy1Qbf4dorb+FPhFrOXAKyLTGTy 1I6vy8Fas/RSGekWl3eHuBVPZcn6QZdXuj8NOUZCaGzeNybiqneqNqdmwlMveKEl jr7sirxHWvgK972gILxUKXeFS3fWneBOAygdZI1q8PhSJdByXE2TKq4RNwaMgnQD fKhMk93eWAn5M/d0dargn0tV0efgoy77GSdAMZh3BcFWEWU1KpL3r2CBZ4m1xJMB svwT3Fbr2nVUP4qsdY5rAnx9HYY4/OygCeIj44cMYD2KwK6WPtNX0O0roQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBJGjBBxV81V4L4oyfoV0gtofruyMB8GA1UdIwQY MBaAFPMf+1TKx/W1doVp5Bl9QddEa/H8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHhfN1ZNckg5YlYyaFdua0dYMUIxMFJyOGZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS82YzM3MDItMTE3OC00Y2JkLThlYmEt YzAzODRmZTFiMDA3LzEvRWthTUVIRlh6VlhndmlqSi1oWFNDMmgtdTdJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS82YzM3MDItMTE3OC00Y2JkLThlYmEtYzAzODRmZTFiMDA3 LzEvOHhfN1ZNckg5YlYyaFdua0dYMUIxMFJyOGZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuWDkMA0G CSqGSIb3DQEBCwUAA4IBAQCBdB3eIJ2GvTgTEBr3RnzaZdlDHCHIZoSjdOJ36RMw zNWLU2CWRSWFZeOnVt7Xxd2RJLXiXwkhRs3kXLYJmkalcM+ZJG8b+qYkOIwbWPw0 CiXqmrcaLvVDhkQTJEscV3oMerPE8GzU8wwlgvnAfb6mnn1DMbUkbU5LPlaz+Xrw Z9cdcLkZCFD94CD0PgDn9q2GzljjSVShKDdiPkKr2Mzto4O0TDxkSW3WfTi5GSTh r7qpsSlo+Zp6r3vCyQnBCXaprwzuTkPHwaZipc19mRaatWstCCOG6gpUIRqw4ViD +fvLEPSbszbxNS9Wci9rlZag0M52t7AhZMQSUkI6fJ+o -----END CERTIFICATE-----Generated at Mon Jan 12 01:42:28 2026 by rpki-client