This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/TIvJg_D8L59DF8_rGSPpCstNnzM.roa File: TIvJg_D8L59DF8_rGSPpCstNnzM.roa (raw, json) Hash identifier: 5VTMM2uJ8vh69du8nHAtqKX16uhZm+kHat+T08fFG1k= Subject key identifier: 4C:8B:C9:83:F0:FC:2F:9F:43:17:CF:EB:19:23:E9:0A:CB:4D:9F:33 Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8 Certificate serial: 019B77590F409199A49FE2942626B680CF49 Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/TIvJg_D8L59DF8_rGSPpCstNnzM.roa Signing time: Thu 01 Jan 2026 02:18:03 +0000 ROA not before: Thu 01 Jan 2026 02:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207838 IP address blocks: 188.114.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.mft rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:0f:40:91:99:a4:9f:e2:94:26:26:b6:80:cf:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8 Validity Not Before: Jan 1 02:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4c8bc983f0fc2f9f4317cfeb1923e90acb4d9f33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:16:c5:e5:78:35:bb:30:31:42:41:7d:75:08: bc:7e:33:e6:71:db:e6:90:fd:f0:a4:cf:07:64:84: e1:53:54:c8:67:56:ba:50:3e:aa:78:b7:90:c7:13: 39:bd:46:11:f3:32:4c:dc:ea:1e:fd:b1:6b:b0:b7: c5:2e:b4:36:fa:42:ec:9c:f2:31:02:f3:26:62:eb: fe:c5:b7:2e:ed:52:1c:c3:b0:d6:2c:a9:f1:38:7e: 3e:3d:e0:cf:c5:4f:29:35:15:9b:73:0b:c7:2d:ef: 26:54:9d:14:0a:03:ec:c4:7d:14:e6:f8:5c:88:13: c5:3e:d6:ab:08:16:f9:c7:7f:88:a0:51:cc:3d:e2: 3d:2e:f5:c6:9a:df:ce:a4:28:75:75:bb:e8:64:75: 55:2d:d9:16:61:62:2b:46:42:9a:a3:c1:a0:13:d6: d3:63:6a:d4:1b:e6:ab:c7:7d:3e:c2:b3:39:4e:68: e7:c3:5f:72:d2:9e:f1:1c:42:75:56:8c:82:cc:64: c5:ee:11:20:4a:a2:04:68:e3:5a:d2:83:5a:44:32: 87:d7:8a:c0:3e:ee:90:4e:b9:d4:7d:76:24:04:85: ae:a3:5b:28:6f:8d:41:45:be:f9:7a:f0:2d:62:e9: 92:d8:83:da:b5:cc:5b:22:02:ae:22:41:ac:19:6e: ac:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:8B:C9:83:F0:FC:2F:9F:43:17:CF:EB:19:23:E9:0A:CB:4D:9F:33 X509v3 Authority Key Identifier: keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/TIvJg_D8L59DF8_rGSPpCstNnzM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.114.91.0/24 Signature Algorithm: sha256WithRSAEncryption 27:c5:2a:5a:14:74:41:41:24:4b:3a:ef:6d:61:0e:f6:50:77: 10:e8:e8:f2:2a:a9:b1:be:61:ba:46:a6:f5:43:42:c4:4a:17: a1:db:4f:69:5f:5b:5d:71:45:d0:f1:70:9b:af:c6:8b:92:49: 08:92:d3:09:20:82:a4:dd:d1:9c:6b:39:32:2b:db:ea:54:17: 53:b7:a1:e4:ee:6a:91:29:a4:37:5e:0f:cb:7f:cf:b1:97:ed: 91:ab:1b:a8:7c:d0:d3:6f:b6:a5:52:54:19:cc:9e:6a:be:7d: 31:58:7a:78:c6:bb:e6:2e:2b:19:50:05:d5:c2:dd:ad:0f:7f: 84:b1:7c:55:a4:a4:86:7e:cf:d0:9c:c7:c0:17:58:9d:4b:8d: 9b:3a:be:53:6c:f8:8b:73:d4:7c:38:6f:12:ba:a9:67:3c:20: e9:f6:c5:86:1c:cb:a5:9e:43:b9:e4:cf:8f:fb:b0:44:3e:15: 78:4b:93:ae:b2:f6:3a:7d:e4:ba:05:25:b4:7e:88:b6:fb:7d: 0e:ac:53:8c:63:4e:14:c3:1e:15:22:8c:23:10:65:3e:b2:34: 35:8e:ab:a5:6b:25:b0:40:eb:d5:9e:2e:b0:54:88:c2:a9:7f: 05:9b:a4:37:8d:80:a4:b4:0d:f0:ad:0a:d4:c7:d2:9f:b7:c6: 77:aa:27:68 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WQ9AkZmkn+KUJia2gM9JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx YjM2ZTgwHhcNMjYwMTAxMDIxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YzhiYzk4M2YwZmMyZjlmNDMxN2NmZWIxOTIzZTkwYWNiNGQ5ZjMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6RbF5Xg1uzAxQkF9dQi8fjPmcdvm kP3wpM8HZIThU1TIZ1a6UD6qeLeQxxM5vUYR8zJM3Ooe/bFrsLfFLrQ2+kLsnPIx AvMmYuv+xbcu7VIcw7DWLKnxOH4+PeDPxU8pNRWbcwvHLe8mVJ0UCgPsxH0U5vhc iBPFPtarCBb5x3+IoFHMPeI9LvXGmt/OpCh1dbvoZHVVLdkWYWIrRkKao8GgE9bT Y2rUG+arx30+wrM5Tmjnw19y0p7xHEJ1VoyCzGTF7hEgSqIEaONa0oNaRDKH14rA Pu6QTrnUfXYkBIWuo1sob41BRb75evAtYumS2IPatcxbIgKuIkGsGW6scwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEyLyYPw/C+fQxfP6xkj6QrLTZ8zMB8GA1UdIwQY MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt MDI0YjE2NTVjMjQ3LzEvVEl2SmdfRDhMNTlERjhfckdTUHBDc3RObnpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3 LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvHJbMA0G CSqGSIb3DQEBCwUAA4IBAQAnxSpaFHRBQSRLOu9tYQ72UHcQ6OjyKqmxvmG6Rqb1 Q0LESheh209pX1tdcUXQ8XCbr8aLkkkIktMJIIKk3dGcazkyK9vqVBdTt6Hk7mqR KaQ3Xg/Lf8+xl+2RqxuofNDTb7alUlQZzJ5qvn0xWHp4xrvmLisZUAXVwt2tD3+E sXxVpKSGfs/QnMfAF1idS42bOr5TbPiLc9R8OG8SuqlnPCDp9sWGHMulnkO55M+P +7BEPhV4S5OusvY6feS6BSW0foi2+30OrFOMY04Uwx4VIowjEGU+sjQ1jqulayWw QOvVni6wVIjCqX8Fm6Q3jYCktA3wrQrUx9Kft8Z3qido -----END CERTIFICATE-----Generated at Sun Jan 25 20:30:17 2026 by rpki-client