This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/tn87L_C8rzbQROFAgU3hEjW5Xdc.roa File: tn87L_C8rzbQROFAgU3hEjW5Xdc.roa (raw, json) Hash identifier: xwZcSnsGIH0iHEUpLqHmnbQNTQUrl5QV500h2WcK+Uc= Subject key identifier: B6:7F:3B:2F:F0:BC:AF:36:D0:44:E1:40:81:4D:E1:12:35:B9:5D:D7 Certificate issuer: /CN=31eb9b2db4a3bddf8c92fc50b9713043dd56dc38 Certificate serial: 019B7AC8FD3E0068DE1340C9439272FB4DD0 Authority key identifier: 31:EB:9B:2D:B4:A3:BD:DF:8C:92:FC:50:B9:71:30:43:DD:56:DC:38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MeubLbSjvd-MkvxQuXEwQ91W3Dg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/tn87L_C8rzbQROFAgU3hEjW5Xdc.roa Signing time: Thu 01 Jan 2026 18:19:10 +0000 ROA not before: Thu 01 Jan 2026 18:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43009 IP address blocks: 81.23.248.0/24 maxlen: 24 81.23.249.0/24 maxlen: 24 81.23.250.0/24 maxlen: 24 81.23.251.0/24 maxlen: 24 81.23.252.0/24 maxlen: 24 81.23.253.0/24 maxlen: 24 81.23.254.0/24 maxlen: 24 81.23.255.0/24 maxlen: 24 185.255.8.0/24 maxlen: 24 185.255.9.0/24 maxlen: 24 185.255.10.0/24 maxlen: 24 185.255.11.0/24 maxlen: 24 193.105.74.0/24 maxlen: 24 202.22.160.0/24 maxlen: 24 202.22.161.0/24 maxlen: 24 202.22.162.0/24 maxlen: 24 202.22.163.0/24 maxlen: 24 202.22.164.0/24 maxlen: 24 202.22.165.0/24 maxlen: 24 202.22.166.0/24 maxlen: 24 202.22.168.0/24 maxlen: 24 202.22.169.0/24 maxlen: 24 202.22.171.0/24 maxlen: 24 202.22.172.0/24 maxlen: 24 202.22.173.0/24 maxlen: 24 202.22.174.0/24 maxlen: 24 202.22.175.0/24 maxlen: 24 2a0c:55c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/MeubLbSjvd-MkvxQuXEwQ91W3Dg.crl rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/MeubLbSjvd-MkvxQuXEwQ91W3Dg.mft rsync://rpki.ripe.net/repository/DEFAULT/MeubLbSjvd-MkvxQuXEwQ91W3Dg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:fd:3e:00:68:de:13:40:c9:43:92:72:fb:4d:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31eb9b2db4a3bddf8c92fc50b9713043dd56dc38 Validity Not Before: Jan 1 18:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b67f3b2ff0bcaf36d044e140814de11235b95dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a1:61:bc:4f:49:a9:d5:b5:5a:42:3f:a6:f2: 77:81:e2:94:71:7f:05:e8:8a:0e:10:cc:ab:35:06: ec:32:ca:60:6e:0e:9a:46:e9:fc:41:43:31:b4:f1: 4b:57:b5:7a:72:1f:0b:aa:6f:9b:93:ba:db:63:27: c1:e9:26:ed:02:17:ae:4f:62:fa:57:b8:f0:de:77: 52:f4:9e:f9:98:7e:dd:f1:24:fc:bb:56:ce:df:81: 94:f0:c6:ff:71:1e:7d:77:d3:e9:f2:86:41:7d:ff: a6:4e:e8:ef:86:e3:c5:ef:52:56:ef:49:32:88:81: 97:12:b2:8c:bc:56:15:7b:0a:81:59:84:62:23:9a: 5f:40:3b:d7:3b:f8:d2:d4:46:c1:0c:33:5b:9c:b9: bb:dd:f9:aa:07:e7:d3:33:9c:99:0f:4f:82:b1:a7: 3e:86:10:10:69:26:39:09:87:a4:dc:05:46:60:8e: 19:78:a3:47:8f:d6:41:d2:6a:69:45:22:db:d2:62: 47:d5:3b:05:83:02:e3:62:e1:a0:96:38:39:b9:e7: 9e:59:03:6b:a5:ee:21:35:01:22:34:0a:ca:17:56: c2:40:2b:32:36:a4:3b:55:37:9f:28:89:35:59:90: 76:f7:aa:d1:ce:1b:2a:b1:b4:6b:14:ef:3d:53:3b: 8a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:7F:3B:2F:F0:BC:AF:36:D0:44:E1:40:81:4D:E1:12:35:B9:5D:D7 X509v3 Authority Key Identifier: keyid:31:EB:9B:2D:B4:A3:BD:DF:8C:92:FC:50:B9:71:30:43:DD:56:DC:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MeubLbSjvd-MkvxQuXEwQ91W3Dg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/tn87L_C8rzbQROFAgU3hEjW5Xdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/MeubLbSjvd-MkvxQuXEwQ91W3Dg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.23.248.0/21 185.255.8.0/22 193.105.74.0/24 202.22.160.0-202.22.166.255 202.22.168.0/23 202.22.171.0-202.22.175.255 IPv6: 2a0c:55c0:1::/48 Signature Algorithm: sha256WithRSAEncryption 36:ef:a4:49:b6:88:ba:5a:7d:0b:44:1a:f2:82:e7:af:19:2a: e1:46:54:50:f0:23:fb:03:3c:b1:da:62:d0:02:61:d5:ac:38: 3e:e2:de:96:1d:33:26:a4:47:cb:b3:0f:11:e7:83:f3:c4:c2: 6e:54:8a:ca:95:ba:fa:b7:46:00:12:75:7e:09:c1:12:94:f8: d6:80:ac:8a:3a:ba:16:a8:bc:11:95:da:23:4d:c5:73:26:24: 47:27:2f:de:68:42:dc:ab:96:c9:9c:c5:7c:47:b1:6a:01:e8: 5c:d1:01:38:99:37:fb:25:41:ae:0c:7d:53:68:57:f6:a6:e4: 00:47:d5:e9:aa:dc:4d:3f:29:e0:08:9c:ad:ea:5c:d4:5b:47: b4:1e:a6:49:dd:93:35:f4:d2:f2:d3:2a:c0:90:fb:6d:dc:12: 5d:12:f5:6f:79:3b:9e:0c:8a:e3:94:2a:03:39:b9:f4:0c:d2: 9a:f5:fc:d5:1f:ef:12:08:0c:0d:02:d8:f8:59:7b:4f:e5:41: be:42:db:29:d8:be:29:59:63:fe:1c:5a:3c:c0:61:0a:f5:e9: 59:7f:3e:4e:92:bf:a1:cc:3a:14:ee:b5:ec:87:2d:97:70:3f: 84:f6:8a:68:77:14:25:99:54:6a:f5:d0:f1:2b:3d:a2:ef:9d: 90:58:7f:63 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgISAZt6yP0+AGjeE0DJQ5Jy+03QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxZWI5YjJkYjRhM2JkZGY4YzkyZmM1MGI5NzEzMDQzZGQ1 NmRjMzgwHhcNMjYwMTAxMTgxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNjdmM2IyZmYwYmNhZjM2ZDA0NGUxNDA4MTRkZTExMjM1Yjk1ZGQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqFhvE9JqdW1WkI/pvJ3geKUcX8F 6IoOEMyrNQbsMspgbg6aRun8QUMxtPFLV7V6ch8Lqm+bk7rbYyfB6SbtAheuT2L6 V7jw3ndS9J75mH7d8ST8u1bO34GU8Mb/cR59d9Pp8oZBff+mTujvhuPF71JW70ky iIGXErKMvFYVewqBWYRiI5pfQDvXO/jS1EbBDDNbnLm73fmqB+fTM5yZD0+Csac+ hhAQaSY5CYek3AVGYI4ZeKNHj9ZB0mppRSLb0mJH1TsFgwLjYuGgljg5ueeeWQNr pe4hNQEiNArKF1bCQCsyNqQ7VTefKIk1WZB296rRzhsqsbRrFO89UzuKAwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLZ/Oy/wvK820EThQIFN4RI1uV3XMB8GA1UdIwQY MBaAFDHrmy20o73fjJL8ULlxMEPdVtw4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWV1YkxiU2p2ZC1Na3Z4UXVYRXdROTFXM0RnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yNDcwMDUtNTU5ZC00ZWI0LWIzZTgt YmQyNGYwMDM1NzhmLzEvdG44N0xfQzhyemJRUk9GQWdVM2hFalc1WGRjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yNDcwMDUtNTU5ZC00ZWI0LWIzZTgtYmQyNGYwMDM1Nzhm LzEvTWV1YkxiU2p2ZC1Na3Z4UXVYRXdROTFXM0RnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTA6BAIAATA0AwQDURf4AwQC uf8IAwQAwWlKMAwDBAXKFqADBADKFqYDBAHKFqgwDAMEAMoWqwMEBMoWoDAPBAIA AjAJAwcAKgxVwAABMA0GCSqGSIb3DQEBCwUAA4IBAQA276RJtoi6Wn0LRBryguev GSrhRlRQ8CP7Azyx2mLQAmHVrDg+4t6WHTMmpEfLsw8R54PzxMJuVIrKlbr6t0YA EnV+CcESlPjWgKyKOroWqLwRldojTcVzJiRHJy/eaELcq5bJnMV8R7FqAehc0QE4 mTf7JUGuDH1TaFf2puQAR9XpqtxNPyngCJyt6lzUW0e0HqZJ3ZM19NLy0yrAkPtt 3BJdEvVveTueDIrjlCoDObn0DNKa9fzVH+8SCAwNAtj4WXtP5UG+Qtsp2L4pWWP+ HFo8wGEK9elZfz5Okr+hzDoU7rXshy2XcD+E9opodxQlmVRq9dDxKz2i752QWH9j -----END CERTIFICATE-----Generated at Sun Jan 25 16:54:31 2026 by rpki-client