This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/Tg7LpYV7I-GpxinThcktcQRnm_4.roa File: Tg7LpYV7I-GpxinThcktcQRnm_4.roa (raw, json) Hash identifier: BbXoN3AQWQv407qJGvIy6QX/6IL8zec6zQB0QjsD6HA= Subject key identifier: 4E:0E:CB:A5:85:7B:23:E1:A9:C6:29:D3:85:C9:2D:71:04:67:9B:FE Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288 Certificate serial: 019B7BA3EAF2D0BC10DD0BBE3E7E601F543D Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/Tg7LpYV7I-GpxinThcktcQRnm_4.roa Signing time: Thu 01 Jan 2026 22:18:18 +0000 ROA not before: Thu 01 Jan 2026 22:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210244 IP address blocks: 195.184.6.0/24 maxlen: 24 212.108.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.mft rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:ea:f2:d0:bc:10:dd:0b:be:3e:7e:60:1f:54:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288 Validity Not Before: Jan 1 22:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4e0ecba5857b23e1a9c629d385c92d7104679bfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:18:4e:0f:a8:50:1c:8d:fe:96:3b:ba:3e:2e: 35:00:84:58:63:79:92:f1:4d:ea:74:d8:20:c4:e2: a2:9e:64:67:71:cf:88:d9:54:67:c8:2e:d6:a3:0c: be:8c:3c:75:c4:9d:74:bb:48:00:3b:52:17:14:d8: 29:b0:db:07:58:6c:c5:bf:29:94:61:d4:3a:b9:71: 49:f4:4e:d1:37:f4:df:ff:e7:d4:ec:7a:b6:ac:fa: 17:69:94:84:35:ba:73:bc:ef:eb:e5:01:71:98:b0: 34:a6:90:de:9b:75:71:c5:68:b7:65:42:75:31:50: ae:b1:2f:c6:a3:53:e2:51:2d:19:9e:8d:a0:c2:a3: 37:3c:87:03:5e:14:86:72:5e:13:e8:d7:c3:35:ab: 65:67:62:b0:b6:19:8c:b2:5a:ae:6c:9e:c7:e4:a3: c4:57:8b:91:fe:4a:da:2b:68:63:05:10:04:b0:f6: 61:83:e8:df:9f:fd:60:8e:3f:17:e4:f3:e4:45:b8: 7d:9d:13:73:f9:d0:44:62:8d:64:e6:29:b1:68:72: f6:21:62:e0:31:dd:17:93:37:fc:cd:0a:b2:d9:ce: 6e:0d:62:9b:b3:e4:f4:a1:c8:a7:45:73:ba:9c:71: 3f:b5:b4:1a:24:44:50:c6:32:fd:7e:49:c4:26:77: a3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:0E:CB:A5:85:7B:23:E1:A9:C6:29:D3:85:C9:2D:71:04:67:9B:FE X509v3 Authority Key Identifier: keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/Tg7LpYV7I-GpxinThcktcQRnm_4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.184.6.0/24 212.108.238.0/24 Signature Algorithm: sha256WithRSAEncryption 00:e7:71:e8:ea:4a:91:23:45:a1:64:90:71:d6:65:8a:48:a0: b2:1b:c1:3d:1c:aa:2d:40:60:09:39:01:ac:23:6d:98:12:8d: ba:61:b5:8b:0a:4b:08:47:d0:70:7b:77:17:d4:45:0f:5f:01: c3:6b:f2:92:17:85:15:49:10:a5:3c:57:ff:21:31:51:b2:ab: a0:78:c9:a3:3f:13:75:ec:d4:7f:27:4d:cb:da:be:27:02:72: 22:d0:c5:b0:aa:29:dc:28:a7:27:a2:42:30:7c:22:30:06:29: f9:57:e8:17:ef:bb:a6:b1:61:22:1f:53:09:75:12:2e:de:01: f9:5f:a0:89:96:5b:6a:6e:27:a8:63:c2:f6:56:bc:f9:46:b0: 6e:d3:d9:5d:7a:b9:cd:51:f3:37:05:77:ef:a0:cb:21:28:04: a8:ca:8e:c3:46:1b:d9:9d:be:07:05:3e:86:2d:6a:d7:f1:69: 04:66:ae:04:86:59:6a:8b:3f:38:e4:e0:43:fa:03:0f:65:24: ad:cb:73:c0:0d:40:64:3b:bf:17:a2:b3:a5:28:7a:0a:d5:b2: e1:eb:e5:71:4c:ec:a7:35:0d:f0:94:79:f6:bb:eb:03:4b:be: 9b:64:ca:e1:af:ce:14:42:70:c4:32:4a:65:c9:b9:70:38:73: 12:f2:cb:0f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7o+ry0LwQ3Qu+Pn5gH1Q9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYjA5N2EzNmMyMzI1ZDEwMzFmZjQwOTFiYTAwYTg2NDU5 ZDQyODgwHhcNMjYwMTAxMjIxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZTBlY2JhNTg1N2IyM2UxYTljNjI5ZDM4NWM5MmQ3MTA0Njc5YmZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxhOD6hQHI3+lju6Pi41AIRYY3mS 8U3qdNggxOKinmRncc+I2VRnyC7Wowy+jDx1xJ10u0gAO1IXFNgpsNsHWGzFvymU YdQ6uXFJ9E7RN/Tf/+fU7Hq2rPoXaZSENbpzvO/r5QFxmLA0ppDem3VxxWi3ZUJ1 MVCusS/Go1PiUS0Zno2gwqM3PIcDXhSGcl4T6NfDNatlZ2KwthmMslqubJ7H5KPE V4uR/kraK2hjBRAEsPZhg+jfn/1gjj8X5PPkRbh9nRNz+dBEYo1k5imxaHL2IWLg Md0Xkzf8zQqy2c5uDWKbs+T0ocinRXO6nHE/tbQaJERQxjL9fknEJnejVwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFE4Oy6WFeyPhqcYp04XJLXEEZ5v+MB8GA1UdIwQY MBaAFL+wl6NsIyXRAx/0CRugCoZFnUKIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2It ZWNjNDliZGMyYWQ4LzEvVGc3THBZVjdJLUdweGluVGhja3RjUVJubV80LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2ItZWNjNDliZGMyYWQ4 LzEvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAw7gGAwQA 1GzuMA0GCSqGSIb3DQEBCwUAA4IBAQAA53Ho6kqRI0WhZJBx1mWKSKCyG8E9HKot QGAJOQGsI22YEo26YbWLCksIR9Bwe3cX1EUPXwHDa/KSF4UVSRClPFf/ITFRsqug eMmjPxN17NR/J03L2r4nAnIi0MWwqincKKcnokIwfCIwBin5V+gX77umsWEiH1MJ dRIu3gH5X6CJlltqbieoY8L2Vrz5RrBu09ldernNUfM3BXfvoMshKASoyo7DRhvZ nb4HBT6GLWrX8WkEZq4Ehllqiz845OBD+gMPZSSty3PADUBkO78XorOlKHoK1bLh 6+VxTOynNQ3wlHn2u+sDS76bZMrhr84UQnDEMkplyblwOHMS8ssP -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:47 2026 by rpki-client