This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/36703a-122b-4116-b317-ca5fccbf7a8c/1/tgxCEeVuZ-EDQmEz7GRXe-l5ETE.roa File: tgxCEeVuZ-EDQmEz7GRXe-l5ETE.roa (raw, json) Hash identifier: LUh2uL8YOcgSTcCxK3/07PSsvLuQW83QgTZqddE2hIU= Subject key identifier: B6:0C:42:11:E5:6E:67:E1:03:42:61:33:EC:64:57:7B:E9:79:11:31 Certificate issuer: /CN=193743467b4da41c6295e9351153309586ba2399 Certificate serial: 019B7834737396A36E3AD5326CA43B064172 Authority key identifier: 19:37:43:46:7B:4D:A4:1C:62:95:E9:35:11:53:30:95:86:BA:23:99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GTdDRntNpBxilek1EVMwlYa6I5k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/36703a-122b-4116-b317-ca5fccbf7a8c/1/tgxCEeVuZ-EDQmEz7GRXe-l5ETE.roa Signing time: Thu 01 Jan 2026 06:17:41 +0000 ROA not before: Thu 01 Jan 2026 06:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59268 IP address blocks: 45.65.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/36703a-122b-4116-b317-ca5fccbf7a8c/1/GTdDRntNpBxilek1EVMwlYa6I5k.crl rsync://rpki.ripe.net/repository/DEFAULT/29/36703a-122b-4116-b317-ca5fccbf7a8c/1/GTdDRntNpBxilek1EVMwlYa6I5k.mft rsync://rpki.ripe.net/repository/DEFAULT/GTdDRntNpBxilek1EVMwlYa6I5k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:73:73:96:a3:6e:3a:d5:32:6c:a4:3b:06:41:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=193743467b4da41c6295e9351153309586ba2399 Validity Not Before: Jan 1 06:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b60c4211e56e67e103426133ec64577be9791131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:14:c5:01:2b:d8:5a:eb:a8:39:61:ce:e3:07: 4d:3f:cb:f0:60:97:19:c9:c8:b7:12:0c:20:54:85: bf:29:ed:ef:0a:09:10:e2:4d:40:6a:f5:80:e5:7c: af:cd:4c:9d:7e:cc:f3:b5:d7:62:89:45:a7:dc:a4: 89:dc:04:fd:db:75:98:2a:df:1c:7c:8b:4a:e0:17: 80:79:52:f1:89:97:f1:bc:e3:a7:47:49:7b:da:9e: f3:41:46:b0:ca:a5:ef:53:f4:9c:f8:d0:33:f4:b6: c6:be:a3:23:ab:80:8d:8b:5c:3b:2a:09:70:2d:76: 53:0c:a5:74:29:bc:54:a6:a1:7e:1b:2e:f7:f2:a7: 16:c5:4d:6d:46:f0:6d:a8:5a:02:f1:c6:6e:12:9e: 63:2c:78:ef:1a:49:dd:d4:54:89:fa:57:27:f6:cc: 79:4b:2b:3a:a2:f2:2b:4d:7b:0e:d2:06:89:91:1e: 88:ac:a4:62:05:99:c7:a6:83:ea:e0:ef:8f:9b:36: cc:eb:48:ac:ee:3a:a0:2b:f5:19:55:15:6b:f9:b3: 7b:db:d7:79:51:03:a4:45:6e:bb:e6:04:88:58:a5: 9e:b0:c3:a3:1c:ff:73:ee:e5:76:e0:ab:d7:f2:02: d7:fe:03:89:c6:20:e7:03:21:c8:65:22:e1:f9:72: c3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:0C:42:11:E5:6E:67:E1:03:42:61:33:EC:64:57:7B:E9:79:11:31 X509v3 Authority Key Identifier: keyid:19:37:43:46:7B:4D:A4:1C:62:95:E9:35:11:53:30:95:86:BA:23:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GTdDRntNpBxilek1EVMwlYa6I5k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/36703a-122b-4116-b317-ca5fccbf7a8c/1/tgxCEeVuZ-EDQmEz7GRXe-l5ETE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/36703a-122b-4116-b317-ca5fccbf7a8c/1/GTdDRntNpBxilek1EVMwlYa6I5k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.65.70.0/24 Signature Algorithm: sha256WithRSAEncryption 89:c9:ad:74:2b:72:79:3a:23:59:06:6f:ea:db:da:48:b2:cb: e4:6c:b2:a0:63:ed:52:d5:12:d1:3a:1b:2b:e6:29:16:e5:36: a5:02:d9:2c:8c:43:fc:2b:d1:3f:7c:72:44:a3:c1:ad:10:2d: eb:a4:2b:e7:7a:8d:91:73:24:a3:ec:20:14:56:94:22:a0:d8: 78:4a:db:d1:bb:7c:b1:42:63:88:3a:94:e7:c1:85:5f:44:65: d2:53:66:9d:48:1f:6d:d7:e9:44:32:ee:14:21:b9:f5:3a:d3: 0f:1c:3e:a1:d5:4c:fd:f3:a8:e2:f9:9f:94:3b:14:71:1a:69: 71:fa:c6:73:da:24:57:42:bf:19:77:c3:ab:90:be:0e:2e:f6: bf:f1:f3:2e:ca:2c:37:ce:83:40:a4:43:dd:0a:5f:c7:9e:59: c8:44:4c:0a:94:b4:27:28:04:9c:fc:81:9a:b7:fc:b0:ba:e6: e0:75:16:65:80:09:26:cf:72:ff:a0:ed:ea:ae:47:4c:32:e0: 93:cb:10:8d:8a:1d:4f:3f:42:ed:40:1e:79:2b:a6:48:4b:9e: 27:b4:37:05:49:d5:46:3d:26:9a:50:31:9a:56:5e:23:e8:6d: d2:61:c8:58:19:83:f1:f0:48:f5:85:c6:cc:93:8a:9d:2d:6e: 32:1f:72:6b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NHNzlqNuOtUybKQ7BkFyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE5Mzc0MzQ2N2I0ZGE0MWM2Mjk1ZTkzNTExNTMzMDk1ODZi YTIzOTkwHhcNMjYwMTAxMDYxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNjBjNDIxMWU1NmU2N2UxMDM0MjYxMzNlYzY0NTc3YmU5NzkxMTMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRTFASvYWuuoOWHO4wdNP8vwYJcZ yci3EgwgVIW/Ke3vCgkQ4k1AavWA5XyvzUydfszztddiiUWn3KSJ3AT923WYKt8c fItK4BeAeVLxiZfxvOOnR0l72p7zQUawyqXvU/Sc+NAz9LbGvqMjq4CNi1w7Kglw LXZTDKV0KbxUpqF+Gy738qcWxU1tRvBtqFoC8cZuEp5jLHjvGknd1FSJ+lcn9sx5 Sys6ovIrTXsO0gaJkR6IrKRiBZnHpoPq4O+PmzbM60is7jqgK/UZVRVr+bN729d5 UQOkRW675gSIWKWesMOjHP9z7uV24KvX8gLX/gOJxiDnAyHIZSLh+XLDCQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLYMQhHlbmfhA0JhM+xkV3vpeRExMB8GA1UdIwQY MBaAFBk3Q0Z7TaQcYpXpNRFTMJWGuiOZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR1RkRFJudE5wQnhpbGVrMUVWTXdsWWE2STVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8zNjcwM2EtMTIyYi00MTE2LWIzMTct Y2E1ZmNjYmY3YThjLzEvdGd4Q0VlVnVaLUVEUW1FejdHUlhlLWw1RVRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8zNjcwM2EtMTIyYi00MTE2LWIzMTctY2E1ZmNjYmY3YThj LzEvR1RkRFJudE5wQnhpbGVrMUVWTXdsWWE2STVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALUFGMA0G CSqGSIb3DQEBCwUAA4IBAQCJya10K3J5OiNZBm/q29pIssvkbLKgY+1S1RLROhsr 5ikW5TalAtksjEP8K9E/fHJEo8GtEC3rpCvneo2RcySj7CAUVpQioNh4StvRu3yx QmOIOpTnwYVfRGXSU2adSB9t1+lEMu4UIbn1OtMPHD6h1Uz986ji+Z+UOxRxGmlx +sZz2iRXQr8Zd8OrkL4OLva/8fMuyiw3zoNApEPdCl/HnlnIREwKlLQnKASc/IGa t/ywuubgdRZlgAkmz3L/oO3qrkdMMuCTyxCNih1PP0LtQB55K6ZIS54ntDcFSdVG PSaaUDGaVl4j6G3SYchYGYPx8Ej1hcbMk4qdLW4yH3Jr -----END CERTIFICATE-----Generated at Mon Jan 26 03:06:04 2026 by rpki-client