This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7a0151-ce20-48e6-9053-333a384d417d/1/tBScmKuEM3CY-0j6UOJC8exaQRY.roa File: tBScmKuEM3CY-0j6UOJC8exaQRY.roa (raw, json) Hash identifier: 9gJqYwprFzWOCPewHOcv/LCR44zjyS1oQM6ha0bacY8= Subject key identifier: B4:14:9C:98:AB:84:33:70:98:FB:48:FA:50:E2:42:F1:EC:5A:41:16 Certificate issuer: /CN=0384e88fb79a3776cb0583e2b67a0bec6dfc68b8 Certificate serial: 019B8EBD23CA5D212BB3D46D1A2D544D7A0A Authority key identifier: 03:84:E8:8F:B7:9A:37:76:CB:05:83:E2:B6:7A:0B:EC:6D:FC:68:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A4Toj7eaN3bLBYPitnoL7G38aLg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7a0151-ce20-48e6-9053-333a384d417d/1/tBScmKuEM3CY-0j6UOJC8exaQRY.roa Signing time: Mon 05 Jan 2026 15:18:38 +0000 ROA not before: Mon 05 Jan 2026 15:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6753 IP address blocks: 176.118.193.0/24 maxlen: 24 185.53.249.0/24 maxlen: 24 185.115.205.0/24 maxlen: 24 185.239.175.0/24 maxlen: 24 192.35.206.0/24 maxlen: 24 198.135.220.0/24 maxlen: 24 212.11.93.0/24 maxlen: 24 212.104.211.0/24 maxlen: 24 2a0c:a300::/29 maxlen: 29 2a12:ea80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7a0151-ce20-48e6-9053-333a384d417d/1/A4Toj7eaN3bLBYPitnoL7G38aLg.crl rsync://rpki.ripe.net/repository/DEFAULT/69/7a0151-ce20-48e6-9053-333a384d417d/1/A4Toj7eaN3bLBYPitnoL7G38aLg.mft rsync://rpki.ripe.net/repository/DEFAULT/A4Toj7eaN3bLBYPitnoL7G38aLg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:8e:bd:23:ca:5d:21:2b:b3:d4:6d:1a:2d:54:4d:7a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0384e88fb79a3776cb0583e2b67a0bec6dfc68b8 Validity Not Before: Jan 5 15:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4149c98ab84337098fb48fa50e242f1ec5a4116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6b:cf:c5:93:1b:04:fc:da:40:f1:c8:75:2c: 36:39:3e:e6:27:da:68:ee:3d:13:29:42:8c:34:35: 66:b0:cb:90:f8:7e:b4:f1:be:6a:26:52:12:32:13: 7f:d5:b6:44:c0:68:57:84:5a:ba:d5:4b:ae:48:c9: 6f:34:e2:5e:a6:5e:cf:0c:bb:35:8a:c2:e9:cb:0c: 3e:36:be:94:75:7e:7d:38:73:20:a9:eb:c9:d0:f3: 2b:41:81:fc:48:50:64:81:6e:5d:c4:96:05:14:b3: e3:8f:2b:f8:f5:0b:6f:be:bc:d0:7c:bd:b7:ad:47: da:ca:e6:69:1e:21:a6:c6:c6:59:7c:88:e2:cd:b9: 6a:e5:ba:79:0b:bd:f5:b5:25:2f:a1:5f:9f:8d:9c: f8:e4:f7:ee:2b:db:96:f5:c6:62:01:b9:f9:4c:86: 43:b2:c5:c8:3c:11:da:5d:c7:e4:04:7b:22:cd:71: 7a:e2:60:c0:82:91:cb:ff:da:b2:b0:45:bd:3a:bc: bf:2a:95:d1:d4:bd:2b:1e:b5:d6:46:20:1b:b4:c0: 23:d9:a7:cb:dd:fd:4a:4a:3f:6a:4e:fb:9c:e0:b0: 52:b1:73:13:cd:d7:c1:85:51:65:cb:0d:47:f7:ba: f6:21:1e:8e:c3:ce:5b:3f:d3:d2:24:94:2e:f3:f9: 32:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:14:9C:98:AB:84:33:70:98:FB:48:FA:50:E2:42:F1:EC:5A:41:16 X509v3 Authority Key Identifier: keyid:03:84:E8:8F:B7:9A:37:76:CB:05:83:E2:B6:7A:0B:EC:6D:FC:68:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A4Toj7eaN3bLBYPitnoL7G38aLg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a0151-ce20-48e6-9053-333a384d417d/1/tBScmKuEM3CY-0j6UOJC8exaQRY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a0151-ce20-48e6-9053-333a384d417d/1/A4Toj7eaN3bLBYPitnoL7G38aLg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.118.193.0/24 185.53.249.0/24 185.115.205.0/24 185.239.175.0/24 192.35.206.0/24 198.135.220.0/24 212.11.93.0/24 212.104.211.0/24 IPv6: 2a0c:a300::/29 2a12:ea80::/29 Signature Algorithm: sha256WithRSAEncryption 23:f5:40:10:3e:23:e1:fe:e6:10:c0:2d:0c:a4:14:cd:b6:0a: 3d:12:e8:9f:bd:ef:e6:59:62:dc:18:ff:17:c1:e4:51:8a:1a: 4c:e5:4f:c2:77:c9:e7:af:4c:15:dc:99:15:51:2b:03:bb:3f: 9f:e1:1f:e7:d6:c6:90:8f:17:07:f2:bc:9c:a1:8a:65:5c:8d: 69:48:97:72:80:1d:ad:a2:8e:5a:1c:b4:d5:42:66:f3:3d:9c: 92:75:e1:cc:d8:d6:bc:71:cd:28:41:af:a7:95:66:03:51:1a: cc:0c:51:7e:65:56:29:e2:2e:42:32:e2:9f:d7:b8:d7:98:81: 1a:9e:05:71:c4:e4:db:85:a5:bc:75:6a:2b:bb:56:16:63:7c: f3:1f:63:ce:e5:46:cc:82:9b:9b:33:84:b5:3b:e0:f9:f3:1c: e1:a4:7f:94:8e:1b:a7:eb:fd:cf:fa:bc:47:b0:2d:64:22:db: 21:2a:72:ba:cd:69:48:86:bf:fa:80:7b:90:23:3e:5a:c2:f8: 5c:6b:3f:92:1b:73:bd:9f:68:fc:3b:d4:de:fe:33:19:31:8b: db:e0:55:49:77:5a:c8:12:db:88:a5:43:82:68:21:4d:05:eb: af:e2:be:0e:79:05:69:9f:d4:f3:36:3f:69:00:b1:69:c0:06: 3f:4b:bc:01 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgISAZuOvSPKXSErs9RtGi1UTXoKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzODRlODhmYjc5YTM3NzZjYjA1ODNlMmI2N2EwYmVjNmRm YzY4YjgwHhcNMjYwMTA1MTUxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDE0OWM5OGFiODQzMzcwOThmYjQ4ZmE1MGUyNDJmMWVjNWE0MTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWvPxZMbBPzaQPHIdSw2OT7mJ9po 7j0TKUKMNDVmsMuQ+H608b5qJlISMhN/1bZEwGhXhFq61UuuSMlvNOJepl7PDLs1 isLpyww+Nr6UdX59OHMgqevJ0PMrQYH8SFBkgW5dxJYFFLPjjyv49QtvvrzQfL23 rUfayuZpHiGmxsZZfIjizblq5bp5C731tSUvoV+fjZz45PfuK9uW9cZiAbn5TIZD ssXIPBHaXcfkBHsizXF64mDAgpHL/9qysEW9Ory/KpXR1L0rHrXWRiAbtMAj2afL 3f1KSj9qTvuc4LBSsXMTzdfBhVFlyw1H97r2IR6Ow85bP9PSJJQu8/ky5wIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFLQUnJirhDNwmPtI+lDiQvHsWkEWMB8GA1UdIwQY MBaAFAOE6I+3mjd2ywWD4rZ6C+xt/Gi4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQTRUb2o3ZWFOM2JMQllQaXRub0w3RzM4YUxnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS83YTAxNTEtY2UyMC00OGU2LTkwNTMt MzMzYTM4NGQ0MTdkLzEvdEJTY21LdUVNM0NZLTBqNlVPSkM4ZXhhUVJZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS83YTAxNTEtY2UyMC00OGU2LTkwNTMtMzMzYTM4NGQ0MTdk LzEvQTRUb2o3ZWFOM2JMQllQaXRub0w3RzM4YUxnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF8GCCsGAQUFBwEHAQH/BFAwTjA2BAIAATAwAwQAsHbBAwQA uTX5AwQAuXPNAwQAue+vAwQAwCPOAwQAxofcAwQA1AtdAwQA1GjTMBQEAgACMA4D BQMqDKMAAwUDKhLqgDANBgkqhkiG9w0BAQsFAAOCAQEAI/VAED4j4f7mEMAtDKQU zbYKPRLon73v5lli3Bj/F8HkUYoaTOVPwnfJ569MFdyZFVErA7s/n+Ef59bGkI8X B/K8nKGKZVyNaUiXcoAdraKOWhy01UJm8z2cknXhzNjWvHHNKEGvp5VmA1EazAxR fmVWKeIuQjLin9e415iBGp4FccTk24WlvHVqK7tWFmN88x9jzuVGzIKbmzOEtTvg +fMc4aR/lI4bp+v9z/q8R7AtZCLbISpyus1pSIa/+oB7kCM+WsL4XGs/khtzvZ9o /DvU3v4zGTGL2+BVSXdayBLbiKVDgmghTQXrr+K+DnkFaZ/U8zY/aQCxacAGP0u8 AQ== -----END CERTIFICATE-----Generated at Sun Jan 25 13:03:17 2026 by rpki-client