This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/TwfyGfqbw_iz87adTBlXiBThHR0.roa File: TwfyGfqbw_iz87adTBlXiBThHR0.roa (raw, json) Hash identifier: xagKwwf2sSb1M0CRuAOegBg1B9xa7Cb7FM6XUz7rG6s= Subject key identifier: 4F:07:F2:19:FA:9B:C3:F8:B3:F3:B6:9D:4C:19:57:88:14:E1:1D:1D Certificate issuer: /CN=49596cecc21dd02677a727ef37f0689546ea5097 Certificate serial: 019B77588BFC22FDB123ECFA89997DDA479E Authority key identifier: 49:59:6C:EC:C2:1D:D0:26:77:A7:27:EF:37:F0:68:95:46:EA:50:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/TwfyGfqbw_iz87adTBlXiBThHR0.roa Signing time: Thu 01 Jan 2026 02:17:30 +0000 ROA not before: Thu 01 Jan 2026 02:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5390 IP address blocks: 83.118.224.0/22 maxlen: 24 83.119.0.0/19 maxlen: 24 83.119.0.0/21 maxlen: 24 83.119.8.0/21 maxlen: 24 83.119.14.0/24 maxlen: 24 83.119.16.0/20 maxlen: 24 85.148.0.0/15 maxlen: 16 85.148.0.0/16 maxlen: 17 85.149.0.0/17 maxlen: 18 2a02:2500::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/SVls7MId0CZ3pyfvN_BolUbqUJc.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/SVls7MId0CZ3pyfvN_BolUbqUJc.mft rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 02:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:8b:fc:22:fd:b1:23:ec:fa:89:99:7d:da:47:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49596cecc21dd02677a727ef37f0689546ea5097 Validity Not Before: Jan 1 02:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4f07f219fa9bc3f8b3f3b69d4c19578814e11d1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:77:c3:70:d4:50:6f:6b:2d:7b:e5:a0:34:bd: df:b6:e4:a1:5c:87:d6:de:6a:59:16:ff:a2:ab:54: 49:01:53:49:ee:47:fb:33:48:6a:69:f7:0a:ab:d9: 56:e0:13:dd:b8:eb:8f:10:4d:bf:f5:e4:f2:37:9a: ec:fc:e8:9b:57:4a:57:2a:e0:3f:fd:64:f5:4d:d0: 91:91:36:a6:e5:70:cd:df:74:e1:df:50:31:09:65: cd:87:03:86:32:0c:d7:dc:90:c6:73:87:e5:7e:6b: 87:80:0f:50:7d:97:88:9d:16:d6:a0:c4:c1:7c:66: f2:57:ce:e4:55:4c:b5:42:27:9e:50:98:2a:53:ba: 6c:c6:c1:92:ea:24:b9:2f:ba:94:16:6d:1d:8d:0d: 93:54:fb:a0:c8:f5:ed:0f:72:ae:27:1f:00:ce:62: 1d:ec:f0:7d:9b:e3:d9:d5:3f:e6:5e:cc:fe:5c:54: b4:02:43:be:07:7a:82:be:a6:ef:36:fe:92:dd:cb: 45:45:30:da:21:97:4d:50:36:2e:21:02:cb:5a:17: e3:11:81:46:43:42:01:fa:14:f4:c4:dc:7e:e4:5a: 22:70:1e:b7:cb:c2:1f:9b:83:4b:f7:fb:98:2f:2d: 18:47:57:d8:e8:7e:25:df:79:c5:6c:49:32:19:12: 2b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:07:F2:19:FA:9B:C3:F8:B3:F3:B6:9D:4C:19:57:88:14:E1:1D:1D X509v3 Authority Key Identifier: keyid:49:59:6C:EC:C2:1D:D0:26:77:A7:27:EF:37:F0:68:95:46:EA:50:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/TwfyGfqbw_iz87adTBlXiBThHR0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/SVls7MId0CZ3pyfvN_BolUbqUJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.118.224.0/22 83.119.0.0/19 85.148.0.0/15 IPv6: 2a02:2500::/32 Signature Algorithm: sha256WithRSAEncryption 50:81:0e:50:8b:90:ac:ca:e1:66:c7:fd:11:a2:fe:11:c0:98: 4a:d9:dc:08:ed:70:34:38:93:c4:22:72:50:5b:80:a7:64:48: d0:42:33:d9:9c:2b:63:a5:7f:0e:65:00:3a:d9:8a:58:77:a8: a9:ec:3e:da:0f:eb:84:52:d2:91:95:f0:51:04:d4:84:2e:ab: 78:e3:36:df:58:7a:d2:b1:38:ea:76:a3:a7:fd:fc:e9:c8:a3: 19:09:94:08:e9:64:48:72:dc:d0:eb:95:fe:11:d7:4c:fd:7a: 54:7c:a8:d6:9a:83:e1:6a:2d:9b:d7:42:de:d6:c3:ee:3d:cf: e6:b8:19:28:22:40:2e:a2:12:a7:f6:e0:41:ee:d4:6e:c1:e1: 65:56:ec:ec:e9:c9:a8:7d:5e:df:46:38:bd:09:32:48:f2:7d: a0:fa:fe:5e:d9:a0:76:8c:0e:a8:ee:40:3f:03:00:26:53:d6: de:48:08:3c:89:22:41:36:9c:17:a8:8d:db:26:b3:77:18:8e: 1a:20:e1:72:8f:22:01:95:7f:e3:41:fe:be:92:4d:f8:76:b7: 5b:50:42:9d:90:fe:f4:e9:5d:7d:9a:d6:e2:08:cd:6e:0d:1c: e7:8c:a6:c3:9f:5a:8c:46:c7:63:ec:3a:5f:aa:5b:b8:08:f5: e9:8a:a0:7c -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt3WIv8Iv2xI+z6iZl92keeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5NTk2Y2VjYzIxZGQwMjY3N2E3MjdlZjM3ZjA2ODk1NDZl YTUwOTcwHhcNMjYwMTAxMDIxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZjA3ZjIxOWZhOWJjM2Y4YjNmM2I2OWQ0YzE5NTc4ODE0ZTExZDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnfDcNRQb2ste+WgNL3ftuShXIfW 3mpZFv+iq1RJAVNJ7kf7M0hqafcKq9lW4BPduOuPEE2/9eTyN5rs/OibV0pXKuA/ /WT1TdCRkTam5XDN33Th31AxCWXNhwOGMgzX3JDGc4flfmuHgA9QfZeInRbWoMTB fGbyV87kVUy1QieeUJgqU7psxsGS6iS5L7qUFm0djQ2TVPugyPXtD3KuJx8AzmId 7PB9m+PZ1T/mXsz+XFS0AkO+B3qCvqbvNv6S3ctFRTDaIZdNUDYuIQLLWhfjEYFG Q0IB+hT0xNx+5FoicB63y8Ifm4NL9/uYLy0YR1fY6H4l33nFbEkyGRIrwQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFE8H8hn6m8P4s/O2nUwZV4gU4R0dMB8GA1UdIwQY MBaAFElZbOzCHdAmd6cn7zfwaJVG6lCXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1ZsczdNSWQwQ1ozcHlmdk5fQm9sVWJxVUpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9lN2JkMDEtNDMyZi00YmY5LTgwYzUt ODk3ZDAwOTc3ZmYyLzEvVHdmeUdmcWJ3X2l6ODdhZFRCbFhpQlRoSFIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9lN2JkMDEtNDMyZi00YmY5LTgwYzUtODk3ZDAwOTc3ZmYy LzEvU1ZsczdNSWQwQ1ozcHlmdk5fQm9sVWJxVUpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAXBAIAATARAwQCU3bgAwQF U3cAAwMBVZQwDQQCAAIwBwMFACoCJQAwDQYJKoZIhvcNAQELBQADggEBAFCBDlCL kKzK4WbH/RGi/hHAmErZ3AjtcDQ4k8QiclBbgKdkSNBCM9mcK2Olfw5lADrZilh3 qKnsPtoP64RS0pGV8FEE1IQuq3jjNt9YetKxOOp2o6f9/OnIoxkJlAjpZEhy3NDr lf4R10z9elR8qNaag+FqLZvXQt7Ww+49z+a4GSgiQC6iEqf24EHu1G7B4WVW7Ozp yah9Xt9GOL0JMkjyfaD6/l7ZoHaMDqjuQD8DACZT1t5ICDyJIkE2nBeojdsms3cY jhog4XKPIgGVf+NB/r6STfh2t1tQQp2Q/vTpXX2a1uIIzW4NHOeMpsOfWoxGx2Ps Ol+qW7gI9emKoHw= -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:27 2026 by rpki-client