This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/4ffe77-6f3d-41ca-8d8b-4a2aad796fc1/1/EQMMkR6mZKGSiMp4lsn6ISHEMrs.roa File: EQMMkR6mZKGSiMp4lsn6ISHEMrs.roa (raw, json) Hash identifier: gsILKrvDfz3c10IYwfScCX9TE1CSPS61cI9LLaOT2Wc= Subject key identifier: 11:03:0C:91:1E:A6:64:A1:92:88:CA:78:96:C9:FA:21:21:C4:32:BB Certificate issuer: /CN=151e6c3dc5d6754fe4f60a82b1cc551ab780df8b Certificate serial: 019B783529073BED8AF5E975900ED09AA7D4 Authority key identifier: 15:1E:6C:3D:C5:D6:75:4F:E4:F6:0A:82:B1:CC:55:1A:B7:80:DF:8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FR5sPcXWdU_k9gqCscxVGreA34s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/4ffe77-6f3d-41ca-8d8b-4a2aad796fc1/1/EQMMkR6mZKGSiMp4lsn6ISHEMrs.roa Signing time: Thu 01 Jan 2026 06:18:28 +0000 ROA not before: Thu 01 Jan 2026 06:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207097 IP address blocks: 185.166.24.0/22 maxlen: 24 185.166.24.0/24 maxlen: 24 185.166.25.0/24 maxlen: 24 185.166.26.0/24 maxlen: 24 185.166.27.0/24 maxlen: 24 2a0a:6a00::/32 maxlen: 32 2a0a:6a01::/32 maxlen: 32 2a0a:6a02::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/4ffe77-6f3d-41ca-8d8b-4a2aad796fc1/1/FR5sPcXWdU_k9gqCscxVGreA34s.crl rsync://rpki.ripe.net/repository/DEFAULT/44/4ffe77-6f3d-41ca-8d8b-4a2aad796fc1/1/FR5sPcXWdU_k9gqCscxVGreA34s.mft rsync://rpki.ripe.net/repository/DEFAULT/FR5sPcXWdU_k9gqCscxVGreA34s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 06:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:29:07:3b:ed:8a:f5:e9:75:90:0e:d0:9a:a7:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=151e6c3dc5d6754fe4f60a82b1cc551ab780df8b Validity Not Before: Jan 1 06:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=11030c911ea664a19288ca7896c9fa2121c432bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c1:7a:bd:e5:85:4a:81:ad:43:87:a2:91:a8: 45:6b:e1:93:ab:18:45:aa:91:47:5b:2a:34:3f:2d: b8:b4:4e:49:04:f1:a5:cf:84:b6:4b:f8:8e:c5:08: 63:7b:4c:d3:e3:d9:ba:ef:63:a9:52:9f:28:80:f0: 37:e5:44:b8:4e:bc:f3:ab:d2:e0:c2:dd:8d:ae:d6: e6:b6:ca:ea:e7:d5:30:20:dc:d6:66:04:ef:70:95: fa:e5:45:55:3e:7b:3f:f1:1a:ec:85:c6:d9:e7:77: e8:51:8a:5c:66:fb:f1:01:dc:28:e4:7f:f5:c7:8b: 47:b6:0d:06:e0:0e:2d:eb:bd:11:6a:11:72:65:3a: c9:45:86:f4:1b:e2:c7:c4:74:e8:d0:f1:9f:71:f4: e7:1d:f0:b9:43:75:bb:84:ea:49:ba:bc:f4:c1:66: 04:c2:b4:d1:ae:75:16:b0:6a:56:b9:78:c2:c4:1b: 64:77:19:6f:f9:1f:c2:2f:c2:54:83:d9:4a:fe:cc: 42:15:7c:de:5b:2b:de:5b:fe:82:c4:91:7e:1c:2a: 45:36:df:e1:07:56:5f:25:b2:18:35:fe:ce:6e:28: 44:f9:62:0a:eb:59:35:33:d8:50:bb:d9:da:a3:00: 62:f8:d4:38:42:7f:1c:14:44:89:95:e6:47:c8:cb: a0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:03:0C:91:1E:A6:64:A1:92:88:CA:78:96:C9:FA:21:21:C4:32:BB X509v3 Authority Key Identifier: keyid:15:1E:6C:3D:C5:D6:75:4F:E4:F6:0A:82:B1:CC:55:1A:B7:80:DF:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FR5sPcXWdU_k9gqCscxVGreA34s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/4ffe77-6f3d-41ca-8d8b-4a2aad796fc1/1/EQMMkR6mZKGSiMp4lsn6ISHEMrs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/4ffe77-6f3d-41ca-8d8b-4a2aad796fc1/1/FR5sPcXWdU_k9gqCscxVGreA34s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.166.24.0/22 IPv6: 2a0a:6a00::-2a0a:6a02:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 47:3f:45:c4:46:7f:ee:95:c2:3f:23:d0:97:ac:e4:2c:ee:e6: c8:cc:aa:c9:e0:fb:8e:d1:84:68:0f:1a:03:c0:45:13:ae:c0: 22:05:8a:fd:c0:57:94:4d:92:8a:98:a7:13:87:7b:ff:4a:99: 8b:21:7b:19:38:74:6d:db:cc:2b:0b:93:7d:b6:36:be:d6:4b: dc:79:f3:d8:44:87:6b:41:ab:84:83:b9:d5:5f:0e:96:11:ae: 34:b2:ba:b8:87:ba:a3:49:a8:76:89:7b:05:31:98:c6:dc:5b: 8c:85:5c:ac:4c:44:43:a8:40:0e:94:9c:4b:89:94:1e:51:06: 6f:86:62:ac:64:8c:e1:9b:a9:4d:7f:e7:c3:dd:2e:8b:3f:b1: 08:71:6f:b9:9a:76:35:63:d0:69:94:ea:f5:ae:7a:0a:e0:f2: 61:e0:62:77:dc:bc:b8:1c:fa:7f:a9:a8:bf:55:a6:d5:33:38: 20:50:0a:41:d9:b3:4c:65:41:61:c0:d8:4c:65:ca:13:97:54: 76:11:d7:b9:a9:6f:ff:c2:5d:f0:fe:d9:4a:c3:46:fe:fa:a3: 4c:58:86:7d:6d:d5:21:53:42:44:0d:15:85:0e:31:38:eb:66: 87:0c:10:69:4a:2b:b3:de:d0:1d:ed:8c:e2:16:34:18:5d:a8: e9:07:33:bc -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt4NSkHO+2K9el1kA7QmqfUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1MWU2YzNkYzVkNjc1NGZlNGY2MGE4MmIxY2M1NTFhYjc4 MGRmOGIwHhcNMjYwMTAxMDYxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTAzMGM5MTFlYTY2NGExOTI4OGNhNzg5NmM5ZmEyMTIxYzQzMmJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8F6veWFSoGtQ4eikahFa+GTqxhF qpFHWyo0Py24tE5JBPGlz4S2S/iOxQhje0zT49m672OpUp8ogPA35US4Trzzq9Lg wt2Nrtbmtsrq59UwINzWZgTvcJX65UVVPns/8RrshcbZ53foUYpcZvvxAdwo5H/1 x4tHtg0G4A4t670RahFyZTrJRYb0G+LHxHTo0PGfcfTnHfC5Q3W7hOpJurz0wWYE wrTRrnUWsGpWuXjCxBtkdxlv+R/CL8JUg9lK/sxCFXzeWyveW/6CxJF+HCpFNt/h B1ZfJbIYNf7ObihE+WIK61k1M9hQu9naowBi+NQ4Qn8cFESJleZHyMugKQIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFBEDDJEepmShkojKeJbJ+iEhxDK7MB8GA1UdIwQY MBaAFBUebD3F1nVP5PYKgrHMVRq3gN+LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlI1c1BjWFdkVV9rOWdxQ3NjeFZHcmVBMzRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC80ZmZlNzctNmYzZC00MWNhLThkOGIt NGEyYWFkNzk2ZmMxLzEvRVFNTWtSNm1aS0dTaU1wNGxzbjZJU0hFTXJzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC80ZmZlNzctNmYzZC00MWNhLThkOGItNGEyYWFkNzk2ZmMx LzEvRlI1c1BjWFdkVV9rOWdxQ3NjeFZHcmVBMzRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAMBAIAATAGAwQCuaYYMBUE AgACMA8wDQMEASoKagMFACoKagIwDQYJKoZIhvcNAQELBQADggEBAEc/RcRGf+6V wj8j0Jes5Czu5sjMqsng+47RhGgPGgPARROuwCIFiv3AV5RNkoqYpxOHe/9KmYsh exk4dG3bzCsLk322Nr7WS9x589hEh2tBq4SDudVfDpYRrjSyuriHuqNJqHaJewUx mMbcW4yFXKxMREOoQA6UnEuJlB5RBm+GYqxkjOGbqU1/58PdLos/sQhxb7madjVj 0GmU6vWuegrg8mHgYnfcvLgc+n+pqL9VptUzOCBQCkHZs0xlQWHA2ExlyhOXVHYR 17mpb//CXfD+2UrDRv76o0xYhn1t1SFTQkQNFYUOMTjrZocMEGlKK7Pe0B3tjOIW NBhdqOkHM7w= -----END CERTIFICATE-----Generated at Wed Jan 7 10:04:15 2026 by rpki-client