This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/trir8qL64aNBmuq7kCE6q-vw1qE.roa File: trir8qL64aNBmuq7kCE6q-vw1qE.roa (raw, json) Hash identifier: e1sr1CETTzxHpRTFfDyLkJVAK4EzBhmgBByIF0XK3ZI= Subject key identifier: B6:B8:AB:F2:A2:FA:E1:A3:41:9A:EA:BB:90:21:3A:AB:EB:F0:D6:A1 Certificate issuer: /CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe Certificate serial: 019BEC286B741BC753B98AAF21231EBFE413 Authority key identifier: B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/trir8qL64aNBmuq7kCE6q-vw1qE.roa Signing time: Fri 23 Jan 2026 18:40:30 +0000 ROA not before: Fri 23 Jan 2026 18:40:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3320 IP address blocks: 43.251.0.0/22 maxlen: 22 80.174.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 21:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ec:28:6b:74:1b:c7:53:b9:8a:af:21:23:1e:bf:e4:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe Validity Not Before: Jan 23 18:40:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b6b8abf2a2fae1a3419aeabb90213aabebf0d6a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d0:06:32:4e:44:d7:7e:f4:7e:0e:d3:8c:f3: 7e:70:92:07:71:5d:d4:15:28:93:8b:a5:2f:13:be: e7:4a:80:b9:f6:8b:a0:74:bf:b7:8c:f7:45:41:e8: 0d:21:9a:c5:1b:b6:9f:7c:69:86:36:6c:7d:47:df: 70:44:26:a5:40:ba:27:28:0f:1d:8f:e4:3e:ab:9a: 22:c3:ff:1c:c9:7a:7d:5d:ea:ce:43:41:e9:28:67: cc:70:de:48:77:98:6f:c0:52:94:e3:c4:e4:9d:24: b1:9d:0b:87:31:79:d6:a7:b4:b8:37:35:9f:99:11: c3:28:0f:ab:1c:68:44:1e:cc:42:05:c7:18:9e:21: 45:96:ed:99:fb:95:78:0c:f5:55:7f:8c:aa:d1:a3: 0b:c9:29:15:01:db:e9:d8:df:99:3e:c6:69:56:94: 22:37:ae:0a:74:64:0c:0d:13:77:76:39:e1:1f:ce: cb:0d:65:96:f3:98:c8:c6:a8:c6:a4:9d:8a:9b:66: dc:bb:21:2e:20:bb:ca:4f:fc:24:03:da:b3:9e:a0: 95:25:54:19:ea:52:24:cb:68:1a:6b:d7:8d:e2:fe: 8f:3f:6e:e5:24:5c:90:28:fe:36:ab:ae:8a:0f:85: 44:cb:1d:38:46:0e:a1:5e:d5:4f:72:fb:eb:37:96: ed:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B8:AB:F2:A2:FA:E1:A3:41:9A:EA:BB:90:21:3A:AB:EB:F0:D6:A1 X509v3 Authority Key Identifier: keyid:B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/trir8qL64aNBmuq7kCE6q-vw1qE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.251.0.0/22 80.174.255.0/24 Signature Algorithm: sha256WithRSAEncryption 48:46:7e:d8:83:91:be:02:5c:95:09:a1:e1:0e:7c:3e:be:fc: ff:08:68:f6:96:23:0e:b3:40:76:f7:48:79:f2:4c:0d:fa:a5: ac:67:c4:bb:5c:3e:3c:b1:1f:85:eb:1f:36:f4:df:ad:11:e6: 8d:7a:34:e9:fc:97:b1:42:4d:34:b0:e2:a9:3e:9f:e0:bd:4d: 8b:0d:2d:4e:49:fa:bc:f6:43:26:8e:32:cf:e5:33:df:6b:28: 47:60:b3:12:e4:74:c7:f0:53:d9:b5:28:d8:4c:fb:9a:99:e0: 3e:16:7d:7b:79:97:0a:8f:e8:5a:30:fa:d2:b5:41:28:ef:cc: 83:69:f0:57:66:08:97:2c:06:27:44:ed:9a:ef:4e:a0:3b:d3: 5c:de:b4:0e:5a:24:a3:65:4d:5b:42:42:35:f5:61:20:f9:6e: 60:01:27:49:bd:a4:43:f5:49:5c:98:6b:4f:2f:73:c7:a9:c6: 90:8f:e1:fd:e5:39:f2:b1:5e:2b:cd:7f:5e:b5:a5:0f:34:c5: 12:93:61:ba:fe:d5:fd:c2:1b:0b:3e:71:fd:6b:35:59:1e:79: a3:52:b4:0a:f8:d1:10:34:9a:1b:16:ab:56:1c:0d:67:6f:45: 3f:b9:a4:82:d1:4c:4b:4f:38:7f:2c:40:4f:e1:44:ae:41:94: 16:bd:f8:a6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZvsKGt0G8dTuYqvISMev+QTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0NTk5OTg5OWY3NmQyZTJlNGNjZGZjODE3Zjk4NzljZmFj MDZiYmUwHhcNMjYwMTIzMTg0MDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNmI4YWJmMmEyZmFlMWEzNDE5YWVhYmI5MDIxM2FhYmViZjBkNmExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstAGMk5E1370fg7TjPN+cJIHcV3U FSiTi6UvE77nSoC59ougdL+3jPdFQegNIZrFG7affGmGNmx9R99wRCalQLonKA8d j+Q+q5oiw/8cyXp9XerOQ0HpKGfMcN5Id5hvwFKU48TknSSxnQuHMXnWp7S4NzWf mRHDKA+rHGhEHsxCBccYniFFlu2Z+5V4DPVVf4yq0aMLySkVAdvp2N+ZPsZpVpQi N64KdGQMDRN3djnhH87LDWWW85jIxqjGpJ2Km2bcuyEuILvKT/wkA9qznqCVJVQZ 6lIky2gaa9eN4v6PP27lJFyQKP42q66KD4VEyx04Rg6hXtVPcvvrN5btXQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLa4q/Ki+uGjQZrqu5AhOqvr8NahMB8GA1UdIwQY MBaAFLRZmYmfdtLi5MzfyBf5h5z6wGu+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEZtWmlaOTIwdUxrek5fSUZfbUhuUHJBYTc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9jYjdiMjEtMzM1Yy00MmNhLTg1OWUt NzM0MjhmOWM3YmZmLzEvdHJpcjhxTDY0YU5CbXVxN2tDRTZxLXZ3MXFFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC9jYjdiMjEtMzM1Yy00MmNhLTg1OWUtNzM0MjhmOWM3YmZm LzEvdEZtWmlaOTIwdUxrek5fSUZfbUhuUHJBYTc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCK/sAAwQA UK7/MA0GCSqGSIb3DQEBCwUAA4IBAQBIRn7Yg5G+AlyVCaHhDnw+vvz/CGj2liMO s0B290h58kwN+qWsZ8S7XD48sR+F6x829N+tEeaNejTp/JexQk00sOKpPp/gvU2L DS1OSfq89kMmjjLP5TPfayhHYLMS5HTH8FPZtSjYTPuameA+Fn17eZcKj+haMPrS tUEo78yDafBXZgiXLAYnRO2a706gO9Nc3rQOWiSjZU1bQkI19WEg+W5gASdJvaRD 9UlcmGtPL3PHqcaQj+H95TnysV4rzX9etaUPNMUSk2G6/tX9whsLPnH9azVZHnmj UrQK+NEQNJobFqtWHA1nb0U/uaSC0UxLTzh/LEBP4USuQZQWvfim -----END CERTIFICATE-----Generated at Sun Jan 25 07:36:49 2026 by rpki-client