This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/TsT5WaKHHZB-JvTLxHzgqzbC7j4.roa File: TsT5WaKHHZB-JvTLxHzgqzbC7j4.roa (raw, json) Hash identifier: nhQWYMu3qPydKoRyyFbgvaQmgpO09CG2cC8eGuvFdmU= Subject key identifier: 4E:C4:F9:59:A2:87:1D:90:7E:26:F4:CB:C4:7C:E0:AB:36:C2:EE:3E Certificate issuer: /CN=20e425a32b62d39818c4cbb0081075686fc4c8e8 Certificate serial: 019A8277C24391F4D4DCBF1173322ADF42CC Authority key identifier: 20:E4:25:A3:2B:62:D3:98:18:C4:CB:B0:08:10:75:68:6F:C4:C8:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOQloyti05gYxMuwCBB1aG_EyOg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/TsT5WaKHHZB-JvTLxHzgqzbC7j4.roa Signing time: Fri 14 Nov 2025 13:04:37 +0000 ROA not before: Fri 14 Nov 2025 13:04:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 395374 IP address blocks: 95.170.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/IOQloyti05gYxMuwCBB1aG_EyOg.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/IOQloyti05gYxMuwCBB1aG_EyOg.mft rsync://rpki.ripe.net/repository/DEFAULT/IOQloyti05gYxMuwCBB1aG_EyOg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:82:77:c2:43:91:f4:d4:dc:bf:11:73:32:2a:df:42:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20e425a32b62d39818c4cbb0081075686fc4c8e8 Validity Not Before: Nov 14 13:04:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4ec4f959a2871d907e26f4cbc47ce0ab36c2ee3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:69:b3:a8:be:cb:49:2f:55:4a:46:65:de:8f: ad:d3:c6:28:2d:79:c0:77:f6:7f:71:67:15:9d:e8: e6:38:99:15:ea:da:0a:16:5e:7d:ed:26:16:96:02: c6:e9:b4:e7:1a:1b:d2:57:47:bd:4b:02:2f:0c:f6: 95:bd:7b:1c:d8:b9:0f:52:8f:d8:6c:13:07:22:12: bf:9a:4d:1a:16:30:02:a5:95:95:ff:11:17:5f:a0: 2b:fe:a2:d5:bf:91:17:3c:91:9b:7a:f4:e7:c0:b1: 72:5d:9c:88:ec:d2:df:a4:8a:17:95:c5:6c:66:4f: 43:43:2f:93:6b:43:a5:33:0e:15:4f:3f:4a:57:dc: 7a:b4:bd:90:d1:88:8c:a0:8f:69:96:71:67:77:8e: 08:40:e6:79:96:26:5c:f2:ae:a7:99:d2:c2:0a:74: 08:2c:67:e4:5d:ce:f3:85:c2:18:4f:60:21:e5:7b: f9:1f:d9:31:82:b6:46:58:87:4a:7d:0a:b9:21:a9: 1a:6b:18:7c:ce:24:77:08:a7:b1:19:c2:f4:e6:7d: 4a:3e:be:c5:d8:8b:42:ce:c2:10:09:20:cf:e2:de: f7:66:c4:d5:45:3a:f0:0e:3a:db:76:7b:64:9c:ea: 91:62:4b:30:2e:2d:4b:51:ea:5c:69:84:12:2d:6a: a9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C4:F9:59:A2:87:1D:90:7E:26:F4:CB:C4:7C:E0:AB:36:C2:EE:3E X509v3 Authority Key Identifier: keyid:20:E4:25:A3:2B:62:D3:98:18:C4:CB:B0:08:10:75:68:6F:C4:C8:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOQloyti05gYxMuwCBB1aG_EyOg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/TsT5WaKHHZB-JvTLxHzgqzbC7j4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/IOQloyti05gYxMuwCBB1aG_EyOg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.170.27.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:d9:66:b7:aa:aa:7c:eb:cb:5f:b2:e5:bb:2e:5e:c4:1f:93: e0:3a:c8:a8:f1:ef:ab:29:db:7f:11:c4:12:aa:a4:4c:e9:d4: 4b:9d:35:44:26:83:78:5b:be:51:54:d9:93:87:5e:57:a8:01: 60:21:51:00:85:9e:14:7c:3a:02:4a:68:a3:fd:47:a7:41:91: d0:51:16:d0:30:61:cb:8f:0f:4a:0d:a7:d8:1c:08:6e:9e:94: 01:68:51:7f:89:13:cc:2d:ea:18:a8:7e:b8:49:8c:da:24:85: a2:f4:19:11:f7:47:5d:62:59:82:1f:6e:d9:fe:10:58:be:c8: 4f:c8:54:40:37:17:dc:3f:24:cb:e1:f1:24:00:2c:0d:a7:7e: 51:7f:c5:ab:de:3e:3a:c9:db:60:ae:7d:a7:d3:24:09:41:a3: 33:94:50:c6:06:66:21:ff:e6:55:27:91:ad:da:cd:60:ef:63: 31:47:59:75:cc:3a:65:10:23:c3:9f:44:f2:98:56:9d:18:a3: 6b:ee:f0:fe:9b:09:24:36:25:ef:d3:75:12:49:4c:56:de:46: 0e:67:d5:69:fc:2a:a3:a4:cb:d3:f1:f0:1d:ef:39:77:56:ab: e6:c0:c7:e0:87:d6:ef:08:00:41:be:e0:cd:a3:87:3b:e7:76: 6e:3f:b4:c7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZqCd8JDkfTU3L8RczIq30LMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZTQyNWEzMmI2MmQzOTgxOGM0Y2JiMDA4MTA3NTY4NmZj NGM4ZTgwHhcNMjUxMTE0MTMwNDM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZWM0Zjk1OWEyODcxZDkwN2UyNmY0Y2JjNDdjZTBhYjM2YzJlZTNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmmzqL7LSS9VSkZl3o+t08YoLXnA d/Z/cWcVnejmOJkV6toKFl597SYWlgLG6bTnGhvSV0e9SwIvDPaVvXsc2LkPUo/Y bBMHIhK/mk0aFjACpZWV/xEXX6Ar/qLVv5EXPJGbevTnwLFyXZyI7NLfpIoXlcVs Zk9DQy+Ta0OlMw4VTz9KV9x6tL2Q0YiMoI9plnFnd44IQOZ5liZc8q6nmdLCCnQI LGfkXc7zhcIYT2Ah5Xv5H9kxgrZGWIdKfQq5Iakaaxh8ziR3CKexGcL05n1KPr7F 2ItCzsIQCSDP4t73ZsTVRTrwDjrbdntknOqRYkswLi1LUepcaYQSLWqpAQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE7E+Vmihx2Qfib0y8R84Ks2wu4+MB8GA1UdIwQY MBaAFCDkJaMrYtOYGMTLsAgQdWhvxMjoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU9RbG95dGkwNWdZeE11d0NCQjFhR19FeU9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9mZDhjMDEtN2I3MS00NDJjLTlhZGIt ZWNkMjk2NWNiN2U3LzEvVHNUNVdhS0hIWkItSnZUTHhIemdxemJDN2o0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS9mZDhjMDEtN2I3MS00NDJjLTlhZGItZWNkMjk2NWNiN2U3 LzEvSU9RbG95dGkwNWdZeE11d0NCQjFhR19FeU9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX6obMA0G CSqGSIb3DQEBCwUAA4IBAQBd2Wa3qqp868tfsuW7Ll7EH5PgOsio8e+rKdt/EcQS qqRM6dRLnTVEJoN4W75RVNmTh15XqAFgIVEAhZ4UfDoCSmij/UenQZHQURbQMGHL jw9KDafYHAhunpQBaFF/iRPMLeoYqH64SYzaJIWi9BkR90ddYlmCH27Z/hBYvshP yFRANxfcPyTL4fEkACwNp35Rf8Wr3j46ydtgrn2n0yQJQaMzlFDGBmYh/+ZVJ5Gt 2s1g72MxR1l1zDplECPDn0TymFadGKNr7vD+mwkkNiXv03USSUxW3kYOZ9Vp/Cqj pMvT8fAd7zl3VqvmwMfgh9bvCABBvuDNo4c753ZuP7TH -----END CERTIFICATE-----Generated at Sat Dec 6 21:52:20 2025 by rpki-client