This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/TooDCGrMmE8TWOWnC74K3nWuV3A.roa File: TooDCGrMmE8TWOWnC74K3nWuV3A.roa (raw, json) Hash identifier: GIzJZl3HOD2NAFRpAxSwsyFue5zuRGFN1EKt60XvdLE= Subject key identifier: 4E:8A:03:08:6A:CC:98:4F:13:58:E5:A7:0B:BE:0A:DE:75:AE:57:70 Certificate issuer: /CN=43a438813750133e55001bf89670a0db3ae5be1f Certificate serial: 019B7CED8C439E0FA56393C7BCDF6B5A6964 Authority key identifier: 43:A4:38:81:37:50:13:3E:55:00:1B:F8:96:70:A0:DB:3A:E5:BE:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/TooDCGrMmE8TWOWnC74K3nWuV3A.roa Signing time: Fri 02 Jan 2026 04:18:21 +0000 ROA not before: Fri 02 Jan 2026 04:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39923 IP address blocks: 194.50.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.crl rsync://rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.mft rsync://rpki.ripe.net/repository/DEFAULT/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:8c:43:9e:0f:a5:63:93:c7:bc:df:6b:5a:69:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43a438813750133e55001bf89670a0db3ae5be1f Validity Not Before: Jan 2 04:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4e8a03086acc984f1358e5a70bbe0ade75ae5770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:0c:ea:aa:b1:a9:3f:c1:97:2e:fd:f2:0b:d1: 3a:8b:eb:05:4a:f7:90:a8:00:88:49:35:4b:13:c7: d6:b3:79:6a:a4:66:04:48:95:4e:68:35:60:df:52: fe:95:42:15:40:9e:66:f3:5a:1f:82:6b:72:7c:b6: 47:43:21:db:5a:5e:24:f9:d3:31:eb:e7:85:cb:83: 51:e2:e0:1c:b7:f1:02:01:71:26:4d:36:ee:27:70: 69:1f:51:43:32:6d:9d:89:61:05:0c:11:52:74:87: c5:29:fa:0c:03:d8:58:83:e4:58:42:a8:fe:ce:7e: 5b:5a:87:a8:3b:d5:db:3f:37:ba:fe:6c:26:54:f5: da:77:10:14:a9:58:8e:f7:af:81:7b:92:9d:c4:57: 72:7c:e6:79:64:16:4f:c3:46:88:bd:6f:ce:1a:25: 3c:95:95:da:b8:92:97:7d:58:e7:db:dd:9d:3f:2a: 56:9f:b7:cd:ea:bb:2b:37:bb:23:f5:d4:58:71:12: 43:3a:3e:5c:80:91:ba:41:50:32:a1:a4:4d:40:fe: 6d:a6:53:22:9a:4b:9e:bd:52:f2:c2:b3:41:1f:37: fa:a5:53:85:d0:07:90:59:88:04:54:2a:25:1c:c7: c7:53:ef:d0:cc:e8:42:77:f0:f3:fb:62:ba:6b:d3: d3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:8A:03:08:6A:CC:98:4F:13:58:E5:A7:0B:BE:0A:DE:75:AE:57:70 X509v3 Authority Key Identifier: keyid:43:A4:38:81:37:50:13:3E:55:00:1B:F8:96:70:A0:DB:3A:E5:BE:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/TooDCGrMmE8TWOWnC74K3nWuV3A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.50.177.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:3e:a6:6c:58:b0:23:8a:02:7c:d7:9b:bd:79:20:d7:32:7b: 15:0e:10:c0:f7:15:df:e2:b6:e6:3d:f2:d9:7b:b5:b0:cd:63: 7a:d5:78:92:36:ca:e4:c7:83:a8:c4:4b:c8:1d:9e:8c:65:ef: cd:80:bf:37:d7:41:b1:c7:aa:17:b0:76:88:75:0b:11:69:b2: d5:bf:e3:82:f3:26:26:84:0d:80:eb:b9:58:44:41:d8:4d:4a: 95:9b:32:13:d8:60:3b:9a:b2:08:34:ee:3b:68:7a:93:7a:c5: 7b:9d:75:bf:65:fd:a2:f4:19:5c:6a:27:72:1f:f0:10:f8:c7: 65:62:87:37:05:fe:5b:43:e6:ce:94:62:ac:79:6f:5e:91:30: 12:84:ae:d1:06:5d:f3:9d:36:b4:e4:50:eb:a9:42:74:a0:65: 7d:f3:ea:33:b2:cc:ee:e6:fe:5b:eb:06:0c:9a:18:00:5b:00: 95:31:62:a3:67:66:e7:99:2c:7b:bf:fa:f0:42:0a:17:0b:b7: e8:c7:a3:73:b7:ba:8d:8a:87:56:48:d4:b6:e8:33:f7:4c:18: 86:74:01:2d:3b:08:8b:02:84:e3:74:65:7f:59:f5:2e:c4:e9: a1:24:59:5d:57:3a:42:96:e3:58:93:b0:15:b9:4c:80:74:0b: 1f:78:e7:98 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87YxDng+lY5PHvN9rWmlkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzYTQzODgxMzc1MDEzM2U1NTAwMWJmODk2NzBhMGRiM2Fl NWJlMWYwHhcNMjYwMTAyMDQxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZThhMDMwODZhY2M5ODRmMTM1OGU1YTcwYmJlMGFkZTc1YWU1NzcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkwzqqrGpP8GXLv3yC9E6i+sFSveQ qACISTVLE8fWs3lqpGYESJVOaDVg31L+lUIVQJ5m81ofgmtyfLZHQyHbWl4k+dMx 6+eFy4NR4uAct/ECAXEmTTbuJ3BpH1FDMm2diWEFDBFSdIfFKfoMA9hYg+RYQqj+ zn5bWoeoO9XbPze6/mwmVPXadxAUqViO96+Be5KdxFdyfOZ5ZBZPw0aIvW/OGiU8 lZXauJKXfVjn292dPypWn7fN6rsrN7sj9dRYcRJDOj5cgJG6QVAyoaRNQP5tplMi mkuevVLywrNBHzf6pVOF0AeQWYgEVColHMfHU+/QzOhCd/Dz+2K6a9PTkQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE6KAwhqzJhPE1jlpwu+Ct51rldwMB8GA1UdIwQY MBaAFEOkOIE3UBM+VQAb+JZwoNs65b4fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTZRNGdUZFFFejVWQUJ2NGxuQ2cyenJsdmg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81Y2I0NzMtMzVhMS00NzI3LTg3NzMt YTBkNmYwZWViNWMyLzEvVG9vRENHck1tRThUV09XbkM3NEszbld1VjNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC81Y2I0NzMtMzVhMS00NzI3LTg3NzMtYTBkNmYwZWViNWMy LzEvUTZRNGdUZFFFejVWQUJ2NGxuQ2cyenJsdmg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjKxMA0G CSqGSIb3DQEBCwUAA4IBAQBcPqZsWLAjigJ815u9eSDXMnsVDhDA9xXf4rbmPfLZ e7WwzWN61XiSNsrkx4OoxEvIHZ6MZe/NgL8310Gxx6oXsHaIdQsRabLVv+OC8yYm hA2A67lYREHYTUqVmzIT2GA7mrIINO47aHqTesV7nXW/Zf2i9BlcaidyH/AQ+Mdl Yoc3Bf5bQ+bOlGKseW9ekTAShK7RBl3znTa05FDrqUJ0oGV98+ozsszu5v5b6wYM mhgAWwCVMWKjZ2bnmSx7v/rwQgoXC7fox6Nzt7qNiodWSNS26DP3TBiGdAEtOwiL AoTjdGV/WfUuxOmhJFldVzpCluNYk7AVuUyAdAsfeOeY -----END CERTIFICATE-----Generated at Sun Jan 25 17:41:47 2026 by rpki-client