This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d21e02-54b7-49de-b15f-729298212f54/1/TZyd9M7POjrFC5osBmVH2sTt8PA.roa File: TZyd9M7POjrFC5osBmVH2sTt8PA.roa (raw, json) Hash identifier: gBvyor7yL3zPJ1KHwvIudHG9wt9BLFSD3z8aiaroqt8= Subject key identifier: 4D:9C:9D:F4:CE:CF:3A:3A:C5:0B:9A:2C:06:65:47:DA:C4:ED:F0:F0 Certificate issuer: /CN=9135be8ef0dce9d1e67071ab7cb07cf50d53f617 Certificate serial: 019B7E384DEE1B6EBFA2FBA5B981045B2730 Authority key identifier: 91:35:BE:8E:F0:DC:E9:D1:E6:70:71:AB:7C:B0:7C:F5:0D:53:F6:17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTW-jvDc6dHmcHGrfLB89Q1T9hc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d21e02-54b7-49de-b15f-729298212f54/1/TZyd9M7POjrFC5osBmVH2sTt8PA.roa Signing time: Fri 02 Jan 2026 10:19:37 +0000 ROA not before: Fri 02 Jan 2026 10:19:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42359 IP address blocks: 194.0.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/d21e02-54b7-49de-b15f-729298212f54/1/kTW-jvDc6dHmcHGrfLB89Q1T9hc.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/d21e02-54b7-49de-b15f-729298212f54/1/kTW-jvDc6dHmcHGrfLB89Q1T9hc.mft rsync://rpki.ripe.net/repository/DEFAULT/kTW-jvDc6dHmcHGrfLB89Q1T9hc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:4d:ee:1b:6e:bf:a2:fb:a5:b9:81:04:5b:27:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9135be8ef0dce9d1e67071ab7cb07cf50d53f617 Validity Not Before: Jan 2 10:19:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d9c9df4cecf3a3ac50b9a2c066547dac4edf0f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:bb:c6:ad:78:d8:f6:69:8e:16:2c:2a:98:8a: 1e:5f:31:fa:75:a6:20:56:55:3f:f1:d1:8f:3f:fc: 58:23:e1:bb:f2:7d:a7:1d:a9:68:e1:85:5b:cd:1f: b7:2a:63:36:00:d9:6b:df:ac:21:43:39:d8:df:74: e3:ed:22:70:18:12:38:6f:2a:df:98:f9:47:0e:56: b2:dd:57:64:5d:6b:d4:35:21:c1:14:01:e7:12:4d: a6:4e:15:83:25:da:d7:c2:9a:4d:05:7a:15:14:2f: 70:a7:cd:ca:4a:2f:b0:90:7b:58:6c:2f:7f:4c:df: c8:00:67:24:af:cd:61:bc:ab:d9:9d:54:82:7e:e2: dc:83:f1:0a:01:4b:fb:1f:8e:0c:e0:ef:cc:54:95: dd:f0:32:d9:34:12:1a:02:dc:26:df:34:5c:78:56: c6:63:8b:db:a3:45:e3:fc:7b:0d:4c:71:14:86:8e: f8:5f:79:75:7e:48:cb:33:bc:c1:c8:d0:b3:d8:7c: 0e:65:7d:5c:85:e9:77:c4:28:14:c6:04:b1:74:57: de:12:2a:ee:c1:fb:f7:5b:e7:7d:54:0b:fa:c0:d9: 54:4d:49:5e:1a:75:0f:27:81:dd:8a:37:57:e7:de: c5:20:b7:62:f8:4f:fc:5c:c5:0a:96:81:63:0a:2e: a9:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:9C:9D:F4:CE:CF:3A:3A:C5:0B:9A:2C:06:65:47:DA:C4:ED:F0:F0 X509v3 Authority Key Identifier: keyid:91:35:BE:8E:F0:DC:E9:D1:E6:70:71:AB:7C:B0:7C:F5:0D:53:F6:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTW-jvDc6dHmcHGrfLB89Q1T9hc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d21e02-54b7-49de-b15f-729298212f54/1/TZyd9M7POjrFC5osBmVH2sTt8PA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d21e02-54b7-49de-b15f-729298212f54/1/kTW-jvDc6dHmcHGrfLB89Q1T9hc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.0.214.0/24 Signature Algorithm: sha256WithRSAEncryption 41:28:81:d8:f6:eb:1b:55:bf:b5:da:c2:15:9c:85:23:bc:c6: 45:01:f6:e9:5b:a0:87:8a:d7:ea:4b:0b:16:be:a2:d8:dc:86: e0:bf:15:a0:a3:0a:60:fb:bc:2e:27:25:7f:67:59:01:b2:0f: 2b:79:00:f5:24:c3:ec:7a:4f:72:6a:f1:66:d5:8f:71:a3:6e: 75:ec:64:88:df:89:92:48:fe:de:28:67:fc:c0:ee:99:c5:9e: ee:14:98:a3:41:a5:e1:6e:a9:ea:b1:03:f6:bf:bd:0f:64:0f: 03:70:31:fc:51:62:c7:62:15:82:54:52:72:01:1a:08:6b:4f: 20:11:0b:46:c6:03:98:f5:bb:d2:59:9d:95:4a:0e:ae:fd:55: 89:3e:1c:c5:1d:7d:b9:42:d8:df:61:3d:51:41:a3:41:e1:19: 87:ad:cb:d7:4f:ae:fb:1e:51:76:1c:88:55:8a:6c:81:f0:0c: 4e:64:1c:9a:6e:94:a4:7d:b2:be:a8:68:8c:34:00:94:f9:2d: 12:e7:93:c8:3d:d6:90:4f:fa:60:96:9d:5c:a5:12:02:18:5c: b9:a7:71:48:12:08:03:57:4c:5b:f0:79:4e:3a:00:8c:2b:4b: 76:d0:35:f7:16:9c:fd:a1:26:1e:0d:ef:b7:8c:e9:73:5f:fa: 8c:cd:2a:89 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OE3uG26/ovuluYEEWycwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMzViZThlZjBkY2U5ZDFlNjcwNzFhYjdjYjA3Y2Y1MGQ1 M2Y2MTcwHhcNMjYwMTAyMTAxOTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDljOWRmNGNlY2YzYTNhYzUwYjlhMmMwNjY1NDdkYWM0ZWRmMGYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LvGrXjY9mmOFiwqmIoeXzH6daYg VlU/8dGPP/xYI+G78n2nHalo4YVbzR+3KmM2ANlr36whQznY33Tj7SJwGBI4byrf mPlHDlay3VdkXWvUNSHBFAHnEk2mThWDJdrXwppNBXoVFC9wp83KSi+wkHtYbC9/ TN/IAGckr81hvKvZnVSCfuLcg/EKAUv7H44M4O/MVJXd8DLZNBIaAtwm3zRceFbG Y4vbo0Xj/HsNTHEUho74X3l1fkjLM7zByNCz2HwOZX1chel3xCgUxgSxdFfeEiru wfv3W+d9VAv6wNlUTUleGnUPJ4HdijdX597FILdi+E/8XMUKloFjCi6p6wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE2cnfTOzzo6xQuaLAZlR9rE7fDwMB8GA1UdIwQY MBaAFJE1vo7w3OnR5nBxq3ywfPUNU/YXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1RXLWp2RGM2ZEhtY0hHcmZMQjg5UTFUOWhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9kMjFlMDItNTRiNy00OWRlLWIxNWYt NzI5Mjk4MjEyZjU0LzEvVFp5ZDlNN1BPanJGQzVvc0JtVkgyc1R0OFBBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy9kMjFlMDItNTRiNy00OWRlLWIxNWYtNzI5Mjk4MjEyZjU0 LzEva1RXLWp2RGM2ZEhtY0hHcmZMQjg5UTFUOWhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgDWMA0G CSqGSIb3DQEBCwUAA4IBAQBBKIHY9usbVb+12sIVnIUjvMZFAfbpW6CHitfqSwsW vqLY3IbgvxWgowpg+7wuJyV/Z1kBsg8reQD1JMPsek9yavFm1Y9xo2517GSI34mS SP7eKGf8wO6ZxZ7uFJijQaXhbqnqsQP2v70PZA8DcDH8UWLHYhWCVFJyARoIa08g EQtGxgOY9bvSWZ2VSg6u/VWJPhzFHX25QtjfYT1RQaNB4RmHrcvXT677HlF2HIhV imyB8AxOZByabpSkfbK+qGiMNACU+S0S55PIPdaQT/pglp1cpRICGFy5p3FIEggD V0xb8HlOOgCMK0t20DX3Fpz9oSYeDe+3jOlzX/qMzSqJ -----END CERTIFICATE-----Generated at Mon Jan 26 06:03:24 2026 by rpki-client