This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/7dab6a-947b-4a12-8a27-0e1efd5a3746/1/tvttSBr7BAYjU6B6SYrmyrXgmPc.roa File: tvttSBr7BAYjU6B6SYrmyrXgmPc.roa (raw, json) Hash identifier: cY0rsNXodbspFudhEGa5CSODCsQ4WfZrUF/qlRWnO7I= Subject key identifier: B6:FB:6D:48:1A:FB:04:06:23:53:A0:7A:49:8A:E6:CA:B5:E0:98:F7 Certificate issuer: /CN=43f06c3698724b37fe1a1711417dbd88ebbf0a91 Certificate serial: 019B7B3670FFFDE644C45A991A30CFC02A50 Authority key identifier: 43:F0:6C:36:98:72:4B:37:FE:1A:17:11:41:7D:BD:88:EB:BF:0A:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q_BsNphySzf-GhcRQX29iOu_CpE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/7dab6a-947b-4a12-8a27-0e1efd5a3746/1/tvttSBr7BAYjU6B6SYrmyrXgmPc.roa Signing time: Thu 01 Jan 2026 20:18:44 +0000 ROA not before: Thu 01 Jan 2026 20:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213374 IP address blocks: 185.29.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/7dab6a-947b-4a12-8a27-0e1efd5a3746/1/Q_BsNphySzf-GhcRQX29iOu_CpE.crl rsync://rpki.ripe.net/repository/DEFAULT/60/7dab6a-947b-4a12-8a27-0e1efd5a3746/1/Q_BsNphySzf-GhcRQX29iOu_CpE.mft rsync://rpki.ripe.net/repository/DEFAULT/Q_BsNphySzf-GhcRQX29iOu_CpE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:70:ff:fd:e6:44:c4:5a:99:1a:30:cf:c0:2a:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43f06c3698724b37fe1a1711417dbd88ebbf0a91 Validity Not Before: Jan 1 20:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b6fb6d481afb04062353a07a498ae6cab5e098f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a5:72:f2:53:d2:4f:1c:bc:88:d4:4d:c8:31: ac:42:ad:d0:24:09:34:5c:02:ef:88:2a:78:67:a9: 32:eb:a3:a4:cb:a1:98:9a:e3:41:72:07:00:6f:3d: 0b:c8:2a:4f:2d:d3:f0:28:66:2a:9b:93:25:b1:cd: b5:e6:04:85:af:32:59:bf:7c:80:1c:e3:17:45:89: 79:92:b1:16:d3:d1:6d:b1:21:2b:54:1b:e7:3a:68: 45:25:49:57:23:4a:64:59:a4:ca:72:13:81:a7:36: 2b:11:c5:3c:1f:41:15:99:94:a8:e8:82:da:6d:4b: ed:bc:00:a8:a1:4c:e0:99:0c:93:c7:c8:40:62:08: 55:83:22:1a:67:1f:1a:73:ce:70:a8:fa:cd:47:f7: fe:30:4e:f4:1e:7d:73:2e:9c:22:73:62:7f:b8:d5: 20:85:ff:99:94:b5:fd:15:fd:de:66:9f:54:69:af: bb:f3:89:af:f8:d0:79:ef:57:a6:30:26:e0:a1:fe: 4d:57:2c:9f:c9:dc:be:0e:65:43:05:db:cc:4e:49: b2:c6:06:77:a6:18:0e:b3:d4:c3:b6:9a:60:3e:0c: 80:c9:e3:65:d6:b3:f8:68:7a:b7:73:5e:8b:de:f7: c9:01:20:45:d5:ca:4c:87:5a:d2:00:ee:b0:5b:31: 79:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:FB:6D:48:1A:FB:04:06:23:53:A0:7A:49:8A:E6:CA:B5:E0:98:F7 X509v3 Authority Key Identifier: keyid:43:F0:6C:36:98:72:4B:37:FE:1A:17:11:41:7D:BD:88:EB:BF:0A:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q_BsNphySzf-GhcRQX29iOu_CpE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/7dab6a-947b-4a12-8a27-0e1efd5a3746/1/tvttSBr7BAYjU6B6SYrmyrXgmPc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/7dab6a-947b-4a12-8a27-0e1efd5a3746/1/Q_BsNphySzf-GhcRQX29iOu_CpE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.29.133.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:ff:b0:42:19:f2:5d:06:cd:ff:ea:b2:dd:70:ab:2b:0a:f1: ab:5e:d2:96:b4:f7:a5:ef:10:07:aa:b7:b8:11:f4:37:83:b2: e9:8f:64:c4:c3:d5:96:42:d2:41:45:28:bc:86:7a:05:3f:a9: f7:7a:e4:f1:a2:d6:48:9f:86:9c:97:a1:b9:1e:62:75:0f:e2: 98:31:c3:ab:8a:8e:31:89:8a:4b:fb:4f:5d:0b:b8:82:4a:31: ca:f4:0b:3c:76:55:c1:ff:f3:d5:6b:e9:ea:a0:95:02:95:60: a0:e7:25:3a:e2:47:dd:b3:f0:ba:8c:eb:bf:cb:af:02:31:d0: 08:a5:8a:67:75:26:41:0e:8f:6a:65:dd:7d:f7:4b:86:ef:ef: e6:84:88:fa:ba:e6:87:50:0a:f3:15:e0:cd:58:0a:3a:cb:85: cd:6b:5e:67:b5:02:68:fc:65:15:44:19:4f:f5:13:a7:83:27: ee:5f:4a:7b:02:cb:0e:6c:17:ea:e5:58:3c:a0:5b:0a:55:14: ce:05:80:9c:39:34:76:6d:c8:e3:50:8d:87:c9:0e:4d:3d:42: a7:57:13:07:d6:ab:1a:ca:ed:62:df:b1:d9:3f:6e:74:1f:7d: 00:d6:98:bf:56:da:0a:67:b3:1e:ca:3d:f3:12:50:3a:56:e6: 46:6b:fe:7c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NnD//eZExFqZGjDPwCpQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzZjA2YzM2OTg3MjRiMzdmZTFhMTcxMTQxN2RiZDg4ZWJi ZjBhOTEwHhcNMjYwMTAxMjAxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNmZiNmQ0ODFhZmIwNDA2MjM1M2EwN2E0OThhZTZjYWI1ZTA5OGY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKVy8lPSTxy8iNRNyDGsQq3QJAk0 XALviCp4Z6ky66Oky6GYmuNBcgcAbz0LyCpPLdPwKGYqm5Mlsc215gSFrzJZv3yA HOMXRYl5krEW09FtsSErVBvnOmhFJUlXI0pkWaTKchOBpzYrEcU8H0EVmZSo6ILa bUvtvACooUzgmQyTx8hAYghVgyIaZx8ac85wqPrNR/f+ME70Hn1zLpwic2J/uNUg hf+ZlLX9Ff3eZp9Uaa+784mv+NB571emMCbgof5NVyyfydy+DmVDBdvMTkmyxgZ3 phgOs9TDtppgPgyAyeNl1rP4aHq3c16L3vfJASBF1cpMh1rSAO6wWzF5BwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLb7bUga+wQGI1OgekmK5sq14Jj3MB8GA1UdIwQY MBaAFEPwbDaYcks3/hoXEUF9vYjrvwqRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUV9Cc05waHlTemYtR2hjUlFYMjlpT3VfQ3BFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC83ZGFiNmEtOTQ3Yi00YTEyLThhMjct MGUxZWZkNWEzNzQ2LzEvdHZ0dFNCcjdCQVlqVTZCNlNZcm15clhnbVBjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC83ZGFiNmEtOTQ3Yi00YTEyLThhMjctMGUxZWZkNWEzNzQ2 LzEvUV9Cc05waHlTemYtR2hjUlFYMjlpT3VfQ3BFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuR2FMA0G CSqGSIb3DQEBCwUAA4IBAQAb/7BCGfJdBs3/6rLdcKsrCvGrXtKWtPel7xAHqre4 EfQ3g7Lpj2TEw9WWQtJBRSi8hnoFP6n3euTxotZIn4acl6G5HmJ1D+KYMcOrio4x iYpL+09dC7iCSjHK9As8dlXB//PVa+nqoJUClWCg5yU64kfds/C6jOu/y68CMdAI pYpndSZBDo9qZd1990uG7+/mhIj6uuaHUArzFeDNWAo6y4XNa15ntQJo/GUVRBlP 9ROngyfuX0p7AssObBfq5Vg8oFsKVRTOBYCcOTR2bcjjUI2HyQ5NPUKnVxMH1qsa yu1i37HZP250H30A1pi/VtoKZ7Meyj3zElA6VuZGa/58 -----END CERTIFICATE-----Generated at Mon Jan 26 16:23:27 2026 by rpki-client