This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tzgGVBMmarO1G7atc7y_MVM_V4g.roa File: tzgGVBMmarO1G7atc7y_MVM_V4g.roa (raw, json) Hash identifier: uq1DUdGJ8u9gTt2ttQK9CuW68OwqtG66wJRsKtSAn+Y= Subject key identifier: B7:38:06:54:13:26:6A:B3:B5:1B:B6:AD:73:BC:BF:31:53:3F:57:88 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F849D81DB19D7D198326A29B95169AE Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tzgGVBMmarO1G7atc7y_MVM_V4g.roa Signing time: Fri 02 Jan 2026 16:22:36 +0000 ROA not before: Fri 02 Jan 2026 16:22:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41917 IP address blocks: 146.120.101.0/24 maxlen: 24 2a02:128:4300::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:9d:81:db:19:d7:d1:98:32:6a:29:b9:51:69:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b738065413266ab3b51bb6ad73bcbf31533f5788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c0:5d:87:8f:08:32:0c:8c:83:d5:ea:f1:fc: 28:1d:2a:bd:49:88:55:54:fa:58:6b:98:8f:69:c5: e5:3c:46:60:37:e8:83:88:07:25:43:a1:3e:43:2e: e9:26:02:01:6e:5d:91:55:51:19:e8:65:51:e8:cf: 53:06:b0:73:87:b0:48:6b:d1:93:42:ad:e9:63:e6: 7c:57:ef:0d:2a:35:02:19:60:23:6a:7b:1b:78:1a: d7:54:8d:ea:ed:09:30:b7:ad:3b:3c:4d:73:da:9b: d4:d1:e0:26:04:0e:ea:b9:6f:a4:c2:49:fc:8e:6c: 80:49:22:88:08:15:78:ea:95:bb:24:ab:82:75:05: 29:61:e3:4c:43:73:d1:e4:58:ee:5d:43:ce:eb:fb: f8:b9:e5:2b:02:b4:c6:4e:ee:bf:7e:6c:c1:cb:8a: 5b:a1:90:6a:b6:e9:fd:a4:78:f5:ab:f5:1b:2e:a6: 5a:f2:4c:ba:b4:83:f1:8a:60:5e:37:2b:2e:13:18: ee:8f:d2:6a:bc:59:68:0e:9e:b0:78:31:11:83:60: 9a:9d:a3:36:72:8d:0b:cf:54:03:24:6e:40:65:57: 8c:8e:07:52:2e:15:29:b6:23:43:1e:d6:5c:a5:8c: e2:0d:a3:4d:5e:8b:5b:6e:7d:d3:2e:43:0d:d1:ba: 25:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:38:06:54:13:26:6A:B3:B5:1B:B6:AD:73:BC:BF:31:53:3F:57:88 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tzgGVBMmarO1G7atc7y_MVM_V4g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.120.101.0/24 IPv6: 2a02:128:4300::/44 Signature Algorithm: sha256WithRSAEncryption 70:52:e5:1a:d0:19:26:f4:4d:d2:e7:f9:fb:7c:e3:b6:88:c6: 3e:00:3c:87:b3:64:a0:0a:62:48:4a:df:c4:a7:5c:0b:72:7a: 4d:51:8f:fe:47:34:89:bf:bd:02:72:d3:ac:9c:3c:fd:25:97: 2e:3d:2d:40:f6:13:18:c2:bf:20:5d:6a:dc:fd:99:9e:32:32: 1b:70:10:00:04:ad:fd:14:03:07:85:aa:0c:c9:bb:9d:6c:f1: 1f:29:95:04:d9:31:0d:cf:ed:d2:6f:56:5d:d6:cc:f9:75:32: d3:44:de:05:df:45:87:1b:0e:24:ca:f9:15:67:3b:98:62:c8: b2:2d:cc:44:76:73:60:f1:49:f9:18:e5:87:e8:bd:06:02:4a: 26:0a:a2:05:67:48:71:f0:57:2a:4a:24:ec:09:43:ca:be:32: 25:15:a4:5c:8d:d3:b0:3a:c4:ce:fd:67:6b:82:f9:6e:eb:f7: d7:13:a9:b0:b7:38:04:92:8f:23:3f:0f:cd:3e:33:b9:e4:ee: f2:89:ca:fd:a7:40:e8:65:72:54:1b:3e:7d:f1:83:3a:1d:4b: 5d:23:98:91:72:d3:49:3f:c9:01:9c:b3:6c:7a:e6:04:34:8c: c7:1b:61:c3:c5:85:fc:dc:64:be:c0:9e:c4:66:ac:34:10:f6: 4f:20:5b:45 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/hJ2B2xnX0Zgyaim5UWmuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNzM4MDY1NDEzMjY2YWIzYjUxYmI2YWQ3M2JjYmYzMTUzM2Y1Nzg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMBdh48IMgyMg9Xq8fwoHSq9SYhV VPpYa5iPacXlPEZgN+iDiAclQ6E+Qy7pJgIBbl2RVVEZ6GVR6M9TBrBzh7BIa9GT Qq3pY+Z8V+8NKjUCGWAjansbeBrXVI3q7Qkwt607PE1z2pvU0eAmBA7quW+kwkn8 jmyASSKICBV46pW7JKuCdQUpYeNMQ3PR5FjuXUPO6/v4ueUrArTGTu6/fmzBy4pb oZBqtun9pHj1q/UbLqZa8ky6tIPximBeNysuExjuj9JqvFloDp6weDERg2CanaM2 co0Lz1QDJG5AZVeMjgdSLhUptiNDHtZcpYziDaNNXotbbn3TLkMN0bol7wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLc4BlQTJmqztRu2rXO8vzFTP1eIMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvdHpnR1ZCTW1hck8xRzdhdGM3eV9NVk1fVjRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAknhlMA8E AgACMAkDBwQqAgEoQwAwDQYJKoZIhvcNAQELBQADggEBAHBS5RrQGSb0TdLn+ft8 47aIxj4APIezZKAKYkhK38SnXAtyek1Rj/5HNIm/vQJy06ycPP0lly49LUD2ExjC vyBdatz9mZ4yMhtwEAAErf0UAweFqgzJu51s8R8plQTZMQ3P7dJvVl3WzPl1MtNE 3gXfRYcbDiTK+RVnO5hiyLItzER2c2DxSfkY5YfovQYCSiYKogVnSHHwVypKJOwJ Q8q+MiUVpFyN07A6xM79Z2uC+W7r99cTqbC3OASSjyM/D80+M7nk7vKJyv2nQOhl clQbPn3xgzodS10jmJFy00k/yQGcs2x65gQ0jMcbYcPFhfzcZL7AnsRmrDQQ9k8g W0U= -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:39 2026 by rpki-client