This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/ekNWlzZ0g1EVh_32gLA32WWdXxs.roa File: ekNWlzZ0g1EVh_32gLA32WWdXxs.roa (raw, json) Hash identifier: FsBbx+3eH0FsXCQjISiPgnGqORWsFsAuIIMB8HdC5bE= Subject key identifier: 7A:43:56:97:36:74:83:51:15:87:FD:F6:80:B0:37:D9:65:9D:5F:1B Certificate issuer: /CN=e631b080d4ea6fd0616a6e701c7c815d6ff87c00 Certificate serial: 019B4B0EA53FC215EE2FABBD5AC5BAE0F20D Authority key identifier: E6:31:B0:80:D4:EA:6F:D0:61:6A:6E:70:1C:7C:81:5D:6F:F8:7C:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5jGwgNTqb9Bham5wHHyBXW_4fAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/ekNWlzZ0g1EVh_32gLA32WWdXxs.roa Signing time: Tue 23 Dec 2025 11:53:29 +0000 ROA not before: Tue 23 Dec 2025 11:53:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 50319 IP address blocks: 5.180.140.0/22 maxlen: 22 62.133.192.0/18 maxlen: 18 91.206.246.0/23 maxlen: 23 185.84.196.0/22 maxlen: 22 185.144.196.0/22 maxlen: 22 185.156.208.0/22 maxlen: 24 193.105.215.0/24 maxlen: 24 194.88.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/5jGwgNTqb9Bham5wHHyBXW_4fAA.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/5jGwgNTqb9Bham5wHHyBXW_4fAA.mft rsync://rpki.ripe.net/repository/DEFAULT/5jGwgNTqb9Bham5wHHyBXW_4fAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 10:15:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:0e:a5:3f:c2:15:ee:2f:ab:bd:5a:c5:ba:e0:f2:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e631b080d4ea6fd0616a6e701c7c815d6ff87c00 Validity Not Before: Dec 23 11:53:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=7a435697367483511587fdf680b037d9659d5f1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f3:ea:70:3a:8e:37:cb:57:74:3f:3a:3e:6e: b8:42:02:c2:22:db:ad:32:69:39:ac:52:ad:75:b1: b2:2e:d0:da:83:c6:57:f7:1e:3a:68:c8:fc:90:69: 60:f1:33:1e:a0:fb:f3:a8:a0:07:50:e6:0f:81:1f: 9b:73:66:17:7c:59:1a:a5:7f:58:4d:3e:2e:c0:c3: bc:55:88:50:05:d6:50:70:2a:a0:5a:5f:18:fd:0b: 33:8d:da:67:73:2f:dc:a3:a6:10:1d:a8:01:0b:d3: 67:a8:ac:7e:3d:5c:d5:dc:c0:ea:c3:81:74:55:96: 98:9f:5a:57:74:30:75:1e:93:02:91:e3:94:b4:9a: cd:a1:55:cb:f1:46:17:ee:fc:bf:94:3a:bb:9e:c6: a7:2b:22:be:c0:26:7f:85:3a:41:29:84:95:2a:0a: b7:7c:1a:b3:98:c8:32:9b:71:1d:65:35:fd:3a:0a: e7:75:45:90:bb:db:78:c1:34:f5:9f:9c:77:21:ee: b0:e3:70:15:47:a2:dd:70:38:c5:d6:1d:47:c6:a5: c1:af:88:c7:72:63:1c:67:f7:96:b7:9f:09:ac:e6: cc:88:37:79:60:23:0f:80:88:8b:d3:78:c0:52:b7: db:e6:2a:3a:1a:7c:10:17:02:8d:fc:d9:d2:5b:0d: 9b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:43:56:97:36:74:83:51:15:87:FD:F6:80:B0:37:D9:65:9D:5F:1B X509v3 Authority Key Identifier: keyid:E6:31:B0:80:D4:EA:6F:D0:61:6A:6E:70:1C:7C:81:5D:6F:F8:7C:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5jGwgNTqb9Bham5wHHyBXW_4fAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/ekNWlzZ0g1EVh_32gLA32WWdXxs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/5jGwgNTqb9Bham5wHHyBXW_4fAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.140.0/22 62.133.192.0/18 91.206.246.0/23 185.84.196.0/22 185.144.196.0/22 185.156.208.0/22 193.105.215.0/24 194.88.236.0/23 Signature Algorithm: sha256WithRSAEncryption 12:37:f4:65:a6:84:93:08:52:20:e1:a5:03:d4:6d:38:38:da: b5:0c:b3:73:78:13:b6:4a:ed:88:55:e5:89:e0:b5:4f:d4:bf: b4:86:54:52:6e:06:d9:36:e9:f8:48:11:78:77:f7:97:f4:0a: 26:3f:2d:7a:ad:7d:f6:c6:1a:cc:a7:0d:db:29:87:68:9d:ff: 90:54:6e:a2:46:f6:32:b5:9e:c8:75:7f:99:2d:3b:7a:18:6a: 0b:a2:7b:dd:b8:af:8e:47:99:e8:85:a4:4f:38:78:39:1c:e1: 8c:41:da:ce:4b:09:58:0f:1a:b1:5c:db:4a:a0:82:e7:ca:fa: 02:e2:53:c7:1a:2b:1d:96:ea:25:e2:3f:e1:f2:0d:30:01:c9: 20:af:07:b0:30:3b:0e:c7:e9:51:2b:01:e8:cc:28:35:85:23: 23:ba:29:3e:9c:c1:e0:b2:46:e2:bb:c2:b0:9e:61:9d:b0:8a: 95:06:2e:89:ef:45:a3:e4:a6:1e:a6:0e:79:c7:3d:8c:22:d2: be:34:71:62:6d:86:fd:c9:fa:91:5b:62:07:1f:a4:cb:04:a5: e5:16:94:ed:3c:eb:10:60:54:c6:16:09:83:d9:fc:e4:75:68: 1f:af:81:40:39:b3:bb:61:40:23:d5:77:6d:0c:9e:f4:d3:9d: 4e:6d:b4:3c -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZtLDqU/whXuL6u9WsW64PINMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2MzFiMDgwZDRlYTZmZDA2MTZhNmU3MDFjN2M4MTVkNmZm ODdjMDAwHhcNMjUxMjIzMTE1MzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YTQzNTY5NzM2NzQ4MzUxMTU4N2ZkZjY4MGIwMzdkOTY1OWQ1ZjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqPPqcDqON8tXdD86Pm64QgLCItut Mmk5rFKtdbGyLtDag8ZX9x46aMj8kGlg8TMeoPvzqKAHUOYPgR+bc2YXfFkapX9Y TT4uwMO8VYhQBdZQcCqgWl8Y/Qszjdpncy/co6YQHagBC9NnqKx+PVzV3MDqw4F0 VZaYn1pXdDB1HpMCkeOUtJrNoVXL8UYX7vy/lDq7nsanKyK+wCZ/hTpBKYSVKgq3 fBqzmMgym3EdZTX9OgrndUWQu9t4wTT1n5x3Ie6w43AVR6LdcDjF1h1HxqXBr4jH cmMcZ/eWt58JrObMiDd5YCMPgIiL03jAUrfb5io6GnwQFwKN/NnSWw2bzwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFHpDVpc2dINRFYf99oCwN9llnV8bMB8GA1UdIwQY MBaAFOYxsIDU6m/QYWpucBx8gV1v+HwAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWpHd2dOVHFiOUJoYW01d0hIeUJYV180ZkFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9kY2RhZTYtZDY5NS00MjY2LWJhOWIt OTNiM2EzNjk2ZDk2LzEvZWtOV2x6WjBnMUVWaF8zMmdMQTMyV1dkWHhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC9kY2RhZTYtZDY5NS00MjY2LWJhOWItOTNiM2EzNjk2ZDk2 LzEvNWpHd2dOVHFiOUJoYW01d0hIeUJYV180ZkFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCBbSMAwQG PoXAAwQBW872AwQCuVTEAwQCuZDEAwQCuZzQAwQAwWnXAwQBwljsMA0GCSqGSIb3 DQEBCwUAA4IBAQASN/RlpoSTCFIg4aUD1G04ONq1DLNzeBO2Su2IVeWJ4LVP1L+0 hlRSbgbZNun4SBF4d/eX9AomPy16rX32xhrMpw3bKYdonf+QVG6iRvYytZ7IdX+Z LTt6GGoLonvduK+OR5nohaRPOHg5HOGMQdrOSwlYDxqxXNtKoILnyvoC4lPHGisd luol4j/h8g0wAckgrwewMDsOx+lRKwHozCg1hSMjuik+nMHgskbiu8KwnmGdsIqV Bi6J70Wj5KYepg55xz2MItK+NHFibYb9yfqRW2IHH6TLBKXlFpTtPOsQYFTGFgmD 2fzkdWgfr4FAObO7YUAj1XdtDJ70051ObbQ8 -----END CERTIFICATE-----Generated at Mon Dec 29 14:54:20 2025 by rpki-client