This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/8f44c6-7791-4054-a5e5-1ef76442f49a/1/TVdDTIsyLlfmbrYuR9urFia7Kl4.roa File: TVdDTIsyLlfmbrYuR9urFia7Kl4.roa (raw, json) Hash identifier: 4Fv8uKqQZhEYXbziIHF6wwJA7WCIhujnQrmtz+ccn6A= Subject key identifier: 4D:57:43:4C:8B:32:2E:57:E6:6E:B6:2E:47:DB:AB:16:26:BB:2A:5E Certificate issuer: /CN=13701ebe06799de0969899205150e532deffe7b5 Certificate serial: 019B797E2CD4AF599484DE30EEABD893E0C0 Authority key identifier: 13:70:1E:BE:06:79:9D:E0:96:98:99:20:51:50:E5:32:DE:FF:E7:B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E3AevgZ5neCWmJkgUVDlMt7_57U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/8f44c6-7791-4054-a5e5-1ef76442f49a/1/TVdDTIsyLlfmbrYuR9urFia7Kl4.roa Signing time: Thu 01 Jan 2026 12:17:50 +0000 ROA not before: Thu 01 Jan 2026 12:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35787 IP address blocks: 91.202.228.0/22 maxlen: 22 91.202.228.0/24 maxlen: 24 91.202.229.0/24 maxlen: 24 91.202.230.0/24 maxlen: 24 91.202.231.0/24 maxlen: 24 91.219.120.0/22 maxlen: 22 91.219.120.0/24 maxlen: 24 91.219.121.0/24 maxlen: 24 91.219.122.0/24 maxlen: 24 91.219.123.0/24 maxlen: 24 194.88.154.0/23 maxlen: 23 194.88.154.0/24 maxlen: 24 194.88.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/8f44c6-7791-4054-a5e5-1ef76442f49a/1/E3AevgZ5neCWmJkgUVDlMt7_57U.crl rsync://rpki.ripe.net/repository/DEFAULT/69/8f44c6-7791-4054-a5e5-1ef76442f49a/1/E3AevgZ5neCWmJkgUVDlMt7_57U.mft rsync://rpki.ripe.net/repository/DEFAULT/E3AevgZ5neCWmJkgUVDlMt7_57U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:2c:d4:af:59:94:84:de:30:ee:ab:d8:93:e0:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13701ebe06799de0969899205150e532deffe7b5 Validity Not Before: Jan 1 12:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d57434c8b322e57e66eb62e47dbab1626bb2a5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:01:f7:48:2c:16:d7:30:d7:a8:1d:77:18:87: 9a:14:e5:57:1c:d8:15:b2:e7:91:e7:8a:5b:01:3f: 3c:77:a2:20:6f:60:3a:db:cc:ae:39:e0:ac:9f:f8: 0f:3e:3d:d9:9f:a4:25:f5:c3:73:4b:3a:87:ff:33: 76:69:4d:30:78:1a:50:c5:27:98:37:8f:aa:b6:89: 2b:36:34:2f:38:46:d7:f8:bb:f6:be:6d:ad:4c:eb: 33:fd:bd:cd:5b:4a:59:36:9f:4e:9e:0c:46:0d:29: 73:3a:da:86:d7:8c:ed:a7:89:ab:db:c8:5c:97:aa: bb:69:eb:1e:bc:f8:ec:b0:b3:32:24:43:f6:aa:03: 5f:5a:b2:29:c6:66:d3:d9:4b:4a:dc:87:45:08:ca: 03:78:06:c4:94:22:ed:77:0b:08:d0:6e:12:5d:9d: 1c:6f:e9:30:8b:21:52:9d:f8:65:4c:e2:d0:41:03: 28:bd:6a:1b:9a:45:8b:a7:92:61:05:9c:14:1a:1d: 10:47:d2:77:7d:c7:65:6d:e5:99:1d:3d:c5:e3:45: c1:82:3d:56:93:03:fd:38:cd:4c:69:50:0e:af:1f: 04:25:8c:23:c2:ed:28:e0:a8:70:d5:35:ea:62:30: 00:1e:db:f3:7f:c5:db:d7:66:44:fb:df:68:31:c0: 50:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:57:43:4C:8B:32:2E:57:E6:6E:B6:2E:47:DB:AB:16:26:BB:2A:5E X509v3 Authority Key Identifier: keyid:13:70:1E:BE:06:79:9D:E0:96:98:99:20:51:50:E5:32:DE:FF:E7:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E3AevgZ5neCWmJkgUVDlMt7_57U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/8f44c6-7791-4054-a5e5-1ef76442f49a/1/TVdDTIsyLlfmbrYuR9urFia7Kl4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/8f44c6-7791-4054-a5e5-1ef76442f49a/1/E3AevgZ5neCWmJkgUVDlMt7_57U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.202.228.0/22 91.219.120.0/22 194.88.154.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:16:9d:81:db:17:2b:a7:ed:d3:c3:3d:de:a0:a9:90:8d:32: 5f:77:c5:36:19:48:31:75:b0:9c:b0:ce:8d:34:99:35:e7:b8: 09:63:04:55:9e:b0:a1:58:23:53:4c:f0:cb:1d:8b:66:9a:e9: d2:0c:18:90:71:e9:76:f3:8b:8d:d4:35:12:5c:a7:5d:87:79: a5:bb:6c:6c:75:59:d1:47:dc:ef:01:85:21:fd:95:9f:f5:71: f5:70:5d:d5:35:32:52:95:d9:40:9d:2e:e6:35:09:cb:55:cc: a5:85:e1:5e:2b:9b:76:1d:c9:c2:cd:6d:93:17:6f:44:41:6d: 06:83:f5:45:1c:ce:a9:68:45:19:6e:3a:08:d6:eb:80:27:ec: ec:fa:9d:eb:98:ab:7c:3e:9a:9c:13:53:86:04:8e:cc:0f:27: 34:f3:0e:14:1d:28:0d:93:88:e8:c3:20:32:b7:98:83:60:a8: bf:66:93:94:cc:1d:04:cf:f7:4d:62:42:03:9d:8f:17:4d:e8: 37:c1:ae:8b:ec:5b:d5:84:c1:5f:e0:fa:88:9c:72:10:55:5e: fa:60:3e:d5:cf:7c:50:e0:c5:cd:62:37:12:71:de:e8:98:1b: f5:37:47:f6:83:ab:4e:92:55:07:ad:7d:6b:02:a1:22:9f:fb: c9:44:5d:5b -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt5fizUr1mUhN4w7qvYk+DAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzNzAxZWJlMDY3OTlkZTA5Njk4OTkyMDUxNTBlNTMyZGVm ZmU3YjUwHhcNMjYwMTAxMTIxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDU3NDM0YzhiMzIyZTU3ZTY2ZWI2MmU0N2RiYWIxNjI2YmIyYTVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6wH3SCwW1zDXqB13GIeaFOVXHNgV sueR54pbAT88d6Igb2A628yuOeCsn/gPPj3Zn6Ql9cNzSzqH/zN2aU0weBpQxSeY N4+qtokrNjQvOEbX+Lv2vm2tTOsz/b3NW0pZNp9OngxGDSlzOtqG14ztp4mr28hc l6q7aesevPjssLMyJEP2qgNfWrIpxmbT2UtK3IdFCMoDeAbElCLtdwsI0G4SXZ0c b+kwiyFSnfhlTOLQQQMovWobmkWLp5JhBZwUGh0QR9J3fcdlbeWZHT3F40XBgj1W kwP9OM1MaVAOrx8EJYwjwu0o4Khw1TXqYjAAHtvzf8Xb12ZE+99oMcBQOwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFE1XQ0yLMi5X5m62LkfbqxYmuypeMB8GA1UdIwQY MBaAFBNwHr4GeZ3glpiZIFFQ5TLe/+e1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRTNBZXZnWjVuZUNXbUprZ1VWRGxNdDdfNTdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS84ZjQ0YzYtNzc5MS00MDU0LWE1ZTUt MWVmNzY0NDJmNDlhLzEvVFZkRFRJc3lMbGZtYnJZdVI5dXJGaWE3S2w0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS84ZjQ0YzYtNzc5MS00MDU0LWE1ZTUtMWVmNzY0NDJmNDlh LzEvRTNBZXZnWjVuZUNXbUprZ1VWRGxNdDdfNTdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCW8rkAwQC W9t4AwQBwliaMA0GCSqGSIb3DQEBCwUAA4IBAQCbFp2B2xcrp+3Twz3eoKmQjTJf d8U2GUgxdbCcsM6NNJk157gJYwRVnrChWCNTTPDLHYtmmunSDBiQcel284uN1DUS XKddh3mlu2xsdVnRR9zvAYUh/ZWf9XH1cF3VNTJSldlAnS7mNQnLVcylheFeK5t2 HcnCzW2TF29EQW0Gg/VFHM6paEUZbjoI1uuAJ+zs+p3rmKt8PpqcE1OGBI7MDyc0 8w4UHSgNk4jowyAyt5iDYKi/ZpOUzB0Ez/dNYkIDnY8XTeg3wa6L7FvVhMFf4PqI nHIQVV76YD7Vz3xQ4MXNYjcScd7omBv1N0f2g6tOklUHrX1rAqEin/vJRF1b -----END CERTIFICATE-----Generated at Mon Jan 26 08:43:04 2026 by rpki-client