This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/TlJFBm5D9j5YuMmzp85IiQTh8co.roa File: TlJFBm5D9j5YuMmzp85IiQTh8co.roa (raw, json) Hash identifier: i++B3U0x1IS6mONz4BFbN/RmzEvmNewnucDBcHMUTt8= Subject key identifier: 4E:52:45:06:6E:43:F6:3E:58:B8:C9:B3:A7:CE:48:89:04:E1:F1:CA Certificate issuer: /CN=f8ad543624f8d3281ec970458ee752f10a424529 Certificate serial: 019B7BA4B3C3305D315A4A9D19D1D5CCFE9A Authority key identifier: F8:AD:54:36:24:F8:D3:28:1E:C9:70:45:8E:E7:52:F1:0A:42:45:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-K1UNiT40ygeyXBFjudS8QpCRSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/TlJFBm5D9j5YuMmzp85IiQTh8co.roa Signing time: Thu 01 Jan 2026 22:19:10 +0000 ROA not before: Thu 01 Jan 2026 22:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198668 IP address blocks: 176.119.192.0/24 maxlen: 24 185.87.140.0/22 maxlen: 24 185.243.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/1-K1UNiT40ygeyXBFjudS8QpCRSk.crl rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/1-K1UNiT40ygeyXBFjudS8QpCRSk.mft rsync://rpki.ripe.net/repository/DEFAULT/1-K1UNiT40ygeyXBFjudS8QpCRSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:b3:c3:30:5d:31:5a:4a:9d:19:d1:d5:cc:fe:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8ad543624f8d3281ec970458ee752f10a424529 Validity Not Before: Jan 1 22:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4e5245066e43f63e58b8c9b3a7ce488904e1f1ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ab:06:5d:1c:ca:5e:ab:16:5d:78:07:34:cd: b3:8d:7c:d2:3b:ea:a8:06:18:e1:bc:4a:3e:e4:f0: 97:96:1b:46:84:2f:e0:94:c3:1e:af:2f:51:41:dd: b7:7e:90:79:5d:35:99:12:68:d4:e8:eb:54:31:58: a5:6a:2d:3f:d3:89:cf:36:8f:48:49:7f:db:50:64: b5:de:83:47:71:f7:b9:69:de:d2:dc:ef:3a:60:e6: df:6d:95:94:bd:91:f7:d5:3b:2f:ad:19:f1:9f:5e: 9c:a0:c4:a2:d2:ac:0f:13:b6:59:66:fb:a8:50:4f: df:18:f8:2b:be:c4:b9:fb:49:10:33:fa:80:e2:a3: 93:9f:e4:e9:c0:c4:2a:fc:bd:f4:f3:33:a9:74:1e: 63:aa:38:aa:9a:2d:09:9c:f1:ab:41:a5:8b:e6:bf: b8:4e:ac:cf:32:7e:96:89:98:f3:3b:a4:de:2c:d1: 80:0f:d2:c6:bb:fe:e6:36:55:8a:4b:4f:83:e3:5d: 89:3f:6c:c8:ac:e0:e3:81:1c:36:50:c5:d8:61:22: f7:3b:f6:26:86:bf:43:c5:cd:fc:b2:6a:74:c2:74: ba:0c:64:45:25:db:1f:3e:63:9a:71:7a:e1:0f:54: 11:eb:ce:05:73:34:bc:52:34:ad:24:f0:e6:c1:e7: 3f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:52:45:06:6E:43:F6:3E:58:B8:C9:B3:A7:CE:48:89:04:E1:F1:CA X509v3 Authority Key Identifier: keyid:F8:AD:54:36:24:F8:D3:28:1E:C9:70:45:8E:E7:52:F1:0A:42:45:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-K1UNiT40ygeyXBFjudS8QpCRSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/TlJFBm5D9j5YuMmzp85IiQTh8co.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/1-K1UNiT40ygeyXBFjudS8QpCRSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.119.192.0/24 185.87.140.0/22 185.243.172.0/22 Signature Algorithm: sha256WithRSAEncryption 25:97:9e:1a:79:60:68:2e:dd:12:82:10:20:26:17:9c:f3:5e: 6d:4c:6b:9e:32:33:b7:9b:f3:96:61:41:21:b5:97:c4:84:b5: f7:c9:06:af:76:29:23:de:e7:88:2f:ed:cd:4c:5b:94:3f:84: 4e:c5:f6:9e:34:b9:65:7f:28:fc:78:5a:a0:3d:ae:35:b7:21: 94:32:e8:1a:8d:b0:16:18:6f:02:6d:7e:d6:42:3b:4e:30:3f: 91:cc:7c:2d:8c:e8:38:07:26:cb:da:5e:7c:1c:a0:90:38:d0: 8b:e7:75:2c:65:0d:51:7c:48:29:39:8e:b6:fe:ca:4d:2a:1b: 9b:af:09:e8:5a:60:16:3f:1a:d3:f0:a0:0a:eb:5d:17:15:f8: 85:af:31:d4:f4:b0:39:0b:76:57:cd:e8:1e:78:42:34:0f:14: 66:ca:79:a0:70:fd:c2:9e:95:87:85:eb:c2:92:b1:d0:56:65: cb:5f:5c:8c:23:05:08:b9:7e:78:17:cc:70:9c:ed:98:d0:e3: 1c:79:c9:2d:48:2e:8a:99:a0:88:5f:74:c8:94:cc:0a:7d:94: a8:78:48:03:10:c3:80:79:3a:48:d5:92:0a:cc:4f:fc:b2:ef: 95:e4:83:fb:4f:65:32:05:bb:ce:a3:8b:47:c4:c3:35:45:87: 4f:4c:1f:32 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt7pLPDMF0xWkqdGdHVzP6aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4YWQ1NDM2MjRmOGQzMjgxZWM5NzA0NThlZTc1MmYxMGE0 MjQ1MjkwHhcNMjYwMTAxMjIxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZTUyNDUwNjZlNDNmNjNlNThiOGM5YjNhN2NlNDg4OTA0ZTFmMWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6sGXRzKXqsWXXgHNM2zjXzSO+qo BhjhvEo+5PCXlhtGhC/glMMery9RQd23fpB5XTWZEmjU6OtUMVilai0/04nPNo9I SX/bUGS13oNHcfe5ad7S3O86YObfbZWUvZH31TsvrRnxn16coMSi0qwPE7ZZZvuo UE/fGPgrvsS5+0kQM/qA4qOTn+TpwMQq/L308zOpdB5jqjiqmi0JnPGrQaWL5r+4 TqzPMn6WiZjzO6TeLNGAD9LGu/7mNlWKS0+D412JP2zIrODjgRw2UMXYYSL3O/Ym hr9Dxc38smp0wnS6DGRFJdsfPmOacXrhD1QR684FczS8UjStJPDmwec/HQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFE5SRQZuQ/Y+WLjJs6fOSIkE4fHKMB8GA1UdIwQY MBaAFPitVDYk+NMoHslwRY7nUvEKQkUpMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1LMVVOaVQ0MHlnZXlYQkZqdWRTOFFwQ1JTay5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjAvYWYxZjY0LWMzNWYtNDdlOC04N2M5 LThhMTFiNDcxOWQ4Mi8xL1RsSkZCbTVEOWo1WXVNbXpwODVJaVFUaDhjby5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMjAvYWYxZjY0LWMzNWYtNDdlOC04N2M5LThhMTFiNDcxOWQ4 Mi8xLzEtSzFVTmlUNDB5Z2V5WEJGanVkUzhRcENSU2suY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBACwd8AD BAK5V4wDBAK586wwDQYJKoZIhvcNAQELBQADggEBACWXnhp5YGgu3RKCECAmF5zz Xm1Ma54yM7eb85ZhQSG1l8SEtffJBq92KSPe54gv7c1MW5Q/hE7F9p40uWV/KPx4 WqA9rjW3IZQy6BqNsBYYbwJtftZCO04wP5HMfC2M6DgHJsvaXnwcoJA40IvndSxl DVF8SCk5jrb+yk0qG5uvCehaYBY/GtPwoArrXRcV+IWvMdT0sDkLdlfN6B54QjQP FGbKeaBw/cKelYeF68KSsdBWZctfXIwjBQi5fngXzHCc7ZjQ4xx5yS1ILoqZoIhf dMiUzAp9lKh4SAMQw4B5OkjVkgrMT/yy75Xkg/tPZTIFu86ji0fEwzVFh09MHzI= -----END CERTIFICATE-----Generated at Mon Jan 26 05:06:46 2026 by rpki-client