This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/TCMNO3-CS_Nx-NPlLu6HlbDn--Y.roa File: TCMNO3-CS_Nx-NPlLu6HlbDn--Y.roa (raw, json) Hash identifier: JY2kbXROkO8FWfujlDIjurbZxxm0qrKzSX4v6ycpeWY= Subject key identifier: 4C:23:0D:3B:7F:82:4B:F3:71:F8:D3:E5:2E:EE:87:95:B0:E7:FB:E6 Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34 Certificate serial: 019B79103FAE29B5155D9834536E02CAA18B Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/TCMNO3-CS_Nx-NPlLu6HlbDn--Y.roa Signing time: Thu 01 Jan 2026 10:17:46 +0000 ROA not before: Thu 01 Jan 2026 10:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207821 IP address blocks: 45.95.205.0/24 maxlen: 24 45.95.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:3f:ae:29:b5:15:5d:98:34:53:6e:02:ca:a1:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34 Validity Not Before: Jan 1 10:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4c230d3b7f824bf371f8d3e52eee8795b0e7fbe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6c:ce:ae:7b:e7:76:58:fe:5d:fc:82:ea:aa: 87:95:bf:95:e7:a2:33:02:28:30:d6:48:4e:72:74: 37:f9:3a:f9:8e:19:b1:a0:a0:62:92:c1:c5:56:12: ae:17:04:f7:31:04:f5:e5:ae:14:71:45:a6:0f:15: 24:8a:17:18:3d:f8:6f:5c:7e:30:43:b6:1c:c1:d9: c6:cf:ca:67:5d:05:aa:b2:64:d1:c7:9e:ca:06:1c: a4:cd:81:c0:55:58:76:3e:b0:ae:4e:35:44:91:ee: 2f:c5:d3:15:e9:f8:1a:f5:40:6e:e0:66:58:bf:b5: 33:9e:56:35:0e:9d:18:9a:c6:48:5e:d5:6c:8c:0d: aa:ab:36:25:89:f7:89:ea:98:6d:62:09:c3:6a:74: b8:38:50:b8:65:3e:06:07:aa:f1:25:f4:83:3e:1e: 9a:52:c5:a7:01:ad:1b:24:73:4e:7f:e6:79:c9:87: 42:3c:d0:1b:5a:0f:a3:6f:c6:d3:9e:6b:34:60:e1: ef:2b:21:f9:64:b2:08:d8:4f:09:0c:1f:70:1b:ce: f6:6e:71:ba:e4:4c:76:d5:d6:2c:27:b9:d5:9a:73: e1:8c:1a:69:4c:a5:ac:81:22:70:fd:08:40:0a:af: 54:f6:94:9e:b6:52:cd:7e:e1:34:46:fc:f6:4f:f3: 9c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:23:0D:3B:7F:82:4B:F3:71:F8:D3:E5:2E:EE:87:95:B0:E7:FB:E6 X509v3 Authority Key Identifier: keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/TCMNO3-CS_Nx-NPlLu6HlbDn--Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.95.205.0-45.95.206.255 Signature Algorithm: sha256WithRSAEncryption 74:b4:2e:51:ab:93:2d:92:90:76:2b:4b:58:4b:ef:95:97:6d: c6:cf:39:d0:d8:e0:93:ea:f4:7e:d7:ae:7b:75:74:49:59:cc: 65:91:19:b2:ef:8c:00:f3:e5:b9:e6:e2:c3:6a:f8:99:4b:6f: e0:00:63:da:43:cd:5c:d5:7f:b6:80:e9:4e:0c:dc:d0:23:98: 6e:e9:8f:8f:7d:da:52:d6:a5:9e:b0:4a:f3:b1:f1:11:5e:66: 15:e5:d7:40:1d:76:03:bc:d7:56:1b:9f:3f:27:bf:4b:c4:21: 92:43:60:f9:63:25:ef:ea:48:a9:89:44:ef:b1:7d:5d:91:e2: 69:6e:39:4b:ad:2b:4c:8e:60:86:b5:45:14:b7:67:4e:01:f4: 03:ac:cb:80:b7:47:36:16:74:19:04:9f:32:13:9c:e0:a5:63: 63:86:2d:e7:6a:c5:d9:11:f0:b6:1b:6d:1b:00:4a:45:f3:4a: ee:4b:ca:2e:90:c3:ec:74:7c:15:2a:da:2b:46:07:11:d9:86: cd:db:06:b9:a6:57:29:30:d5:88:5e:a3:b6:11:70:19:6e:7e: 68:41:a3:b5:7d:d0:01:cf:d4:5c:cd:2d:ea:aa:e1:9d:60:3b: 3f:db:bf:dd:46:04:dd:52:18:a4:bf:5a:3f:27:37:7a:9a:0e: 57:8f:4e:56 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt5ED+uKbUVXZg0U24CyqGLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmNjFhYTVkMWJlZmQ3YTBmZTNlNGRmZTNhYThkYTczZWZj ZmJhMzQwHhcNMjYwMTAxMTAxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YzIzMGQzYjdmODI0YmYzNzFmOGQzZTUyZWVlODc5NWIwZTdmYmU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumzOrnvndlj+XfyC6qqHlb+V56Iz Aigw1khOcnQ3+Tr5jhmxoKBiksHFVhKuFwT3MQT15a4UcUWmDxUkihcYPfhvXH4w Q7YcwdnGz8pnXQWqsmTRx57KBhykzYHAVVh2PrCuTjVEke4vxdMV6fga9UBu4GZY v7UznlY1Dp0YmsZIXtVsjA2qqzYlifeJ6phtYgnDanS4OFC4ZT4GB6rxJfSDPh6a UsWnAa0bJHNOf+Z5yYdCPNAbWg+jb8bTnms0YOHvKyH5ZLII2E8JDB9wG872bnG6 5Ex21dYsJ7nVmnPhjBppTKWsgSJw/QhACq9U9pSetlLNfuE0Rvz2T/OcHQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFEwjDTt/gkvzcfjT5S7uh5Ww5/vmMB8GA1UdIwQY MBaAFB9hql0b79eg/j5N/jqo2nPvz7o0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUt YzYyMWU4ZGY5NWZmLzEvVENNTk8zLUNTX054LU5QbEx1NkhsYkRuLS1ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUtYzYyMWU4ZGY5NWZm LzEvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAAtX80D BAAtX84wDQYJKoZIhvcNAQELBQADggEBAHS0LlGrky2SkHYrS1hL75WXbcbPOdDY 4JPq9H7Xrnt1dElZzGWRGbLvjADz5bnm4sNq+JlLb+AAY9pDzVzVf7aA6U4M3NAj mG7pj4992lLWpZ6wSvOx8RFeZhXl10AddgO811Ybnz8nv0vEIZJDYPljJe/qSKmJ RO+xfV2R4mluOUutK0yOYIa1RRS3Z04B9AOsy4C3RzYWdBkEnzITnOClY2OGLedq xdkR8LYbbRsASkXzSu5Lyi6Qw+x0fBUq2itGBxHZhs3bBrmmVykw1Yheo7YRcBlu fmhBo7V90AHP1FzNLeqq4Z1gOz/bv91GBN1SGKS/Wj8nN3qaDlePTlY= -----END CERTIFICATE-----Generated at Sun Jan 25 16:35:48 2026 by rpki-client