This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/TQW4zD8K0vBl16MI3IxT8Xtlivw.roa File: TQW4zD8K0vBl16MI3IxT8Xtlivw.roa (raw, json) Hash identifier: 8QTOlJVZ39Tpkv2V9vgaCs5dPhtyiGWy37iuwYkyjaM= Subject key identifier: 4D:05:B8:CC:3F:0A:D2:F0:65:D7:A3:08:DC:8C:53:F1:7B:65:8A:FC Certificate issuer: /CN=c9633fa6fc66b43639c056d02174f80c2426614b Certificate serial: 019B7F15689160DFF269FBB6753860B11DA0 Authority key identifier: C9:63:3F:A6:FC:66:B4:36:39:C0:56:D0:21:74:F8:0C:24:26:61:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yWM_pvxmtDY5wFbQIXT4DCQmYUs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/TQW4zD8K0vBl16MI3IxT8Xtlivw.roa Signing time: Fri 02 Jan 2026 14:21:08 +0000 ROA not before: Fri 02 Jan 2026 14:21:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 133530 IP address blocks: 185.166.140.0/24 maxlen: 24 2a0a:ea00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/yWM_pvxmtDY5wFbQIXT4DCQmYUs.crl rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/yWM_pvxmtDY5wFbQIXT4DCQmYUs.mft rsync://rpki.ripe.net/repository/DEFAULT/yWM_pvxmtDY5wFbQIXT4DCQmYUs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:68:91:60:df:f2:69:fb:b6:75:38:60:b1:1d:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9633fa6fc66b43639c056d02174f80c2426614b Validity Not Before: Jan 2 14:21:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d05b8cc3f0ad2f065d7a308dc8c53f17b658afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cb:4d:4f:50:12:eb:bc:8a:8a:a6:89:d9:cf: 20:a7:1c:10:52:55:54:52:f0:fc:b5:ed:15:3d:f5: 29:5b:af:a8:80:26:69:f8:39:27:06:6a:ee:d8:4a: 1c:b1:f6:b2:82:74:dc:69:a4:cf:b1:3f:38:ab:81: 71:f3:65:6e:b0:f2:84:aa:e4:69:2a:e2:ed:21:12: 3c:7f:c8:f8:e8:38:49:65:40:96:9e:c3:9d:de:8b: b3:e3:57:ac:cd:d9:06:6e:65:e0:35:34:86:3f:aa: 5b:5d:01:dd:a2:61:c1:df:63:d5:cc:a1:9b:c8:02: d5:5b:ea:dd:b9:c6:13:88:71:94:39:bf:91:35:fb: be:6c:38:da:38:5c:6d:eb:c0:df:b9:7e:da:a6:4e: 8e:3b:45:fd:70:e7:1c:4e:7a:f0:63:6f:a3:da:8d: 5e:d1:56:e8:13:3d:a7:4a:1b:93:f9:1b:b1:43:01: 65:52:63:72:71:56:49:02:c9:2f:31:cb:e2:20:8b: 11:a9:dd:40:51:42:55:74:40:a9:57:d7:5a:c7:d6: f4:94:d8:60:55:eb:be:68:7a:75:29:27:d6:a6:90: fe:5c:88:c1:0a:45:97:74:81:95:a2:3b:2b:d8:30: 34:72:2b:66:e4:c4:61:08:39:b2:90:93:ce:56:11: b6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:05:B8:CC:3F:0A:D2:F0:65:D7:A3:08:DC:8C:53:F1:7B:65:8A:FC X509v3 Authority Key Identifier: keyid:C9:63:3F:A6:FC:66:B4:36:39:C0:56:D0:21:74:F8:0C:24:26:61:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yWM_pvxmtDY5wFbQIXT4DCQmYUs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/TQW4zD8K0vBl16MI3IxT8Xtlivw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/yWM_pvxmtDY5wFbQIXT4DCQmYUs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.166.140.0/24 IPv6: 2a0a:ea00::/32 Signature Algorithm: sha256WithRSAEncryption 23:2a:a6:12:7d:73:9c:16:2f:19:65:fa:00:b9:14:fa:91:a5: c7:f2:ee:ad:74:7f:29:09:f7:4c:37:d6:fb:3b:fa:8f:86:30: f7:d7:48:89:dc:ca:b2:2c:e2:42:09:1a:2e:b8:b1:e9:08:78: a5:9f:a7:30:58:85:2a:a6:e3:7e:d4:e6:01:6b:8b:b5:7f:54: 7b:5f:96:b3:a5:94:c6:cc:a5:bd:74:de:23:b1:4a:71:2b:17: af:bf:f5:53:ca:22:58:e9:9a:5f:3c:45:55:29:9b:42:fc:b0: c3:76:1f:ff:85:ae:87:ba:75:f5:9b:34:54:ee:0d:f5:40:03: ee:4f:03:8f:1d:fd:0f:ac:64:7f:44:6c:21:de:63:c2:44:9f: 18:05:81:c9:c8:34:0d:db:72:f7:06:40:c1:93:3f:54:2e:53: 4e:94:bf:5b:37:c8:0b:50:c2:79:c8:c8:1b:a3:22:38:8e:8f: aa:a9:30:c5:25:0d:d6:09:8f:ee:5e:14:9d:02:3e:ff:ec:0e: 2e:e9:03:9d:fc:c0:fd:a6:21:e3:c9:8a:4c:19:0c:95:05:e7: 75:cc:e1:35:54:ad:c2:0a:7d:00:2c:71:72:aa:ec:06:e6:75: ab:1d:4e:90:98:2e:c5:73:e0:a6:c4:65:ff:19:0d:b0:e2:ad: 80:c0:66:b2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FWiRYN/yafu2dThgsR2gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5NjMzZmE2ZmM2NmI0MzYzOWMwNTZkMDIxNzRmODBjMjQy NjYxNGIwHhcNMjYwMTAyMTQyMTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDA1YjhjYzNmMGFkMmYwNjVkN2EzMDhkYzhjNTNmMTdiNjU4YWZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMtNT1AS67yKiqaJ2c8gpxwQUlVU UvD8te0VPfUpW6+ogCZp+DknBmru2EocsfaygnTcaaTPsT84q4Fx82VusPKEquRp KuLtIRI8f8j46DhJZUCWnsOd3ouz41eszdkGbmXgNTSGP6pbXQHdomHB32PVzKGb yALVW+rducYTiHGUOb+RNfu+bDjaOFxt68DfuX7apk6OO0X9cOccTnrwY2+j2o1e 0VboEz2nShuT+RuxQwFlUmNycVZJAskvMcviIIsRqd1AUUJVdECpV9dax9b0lNhg Veu+aHp1KSfWppD+XIjBCkWXdIGVojsr2DA0citm5MRhCDmykJPOVhG22QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFE0FuMw/CtLwZdejCNyMU/F7ZYr8MB8GA1UdIwQY MBaAFMljP6b8ZrQ2OcBW0CF0+AwkJmFLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVdNX3B2eG10RFk1d0ZiUUlYVDREQ1FtWVVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi85Y2IzMjktMGZlOS00ZmZlLWJlNWYt MDM4YTU0ZTM5MTJmLzEvVFFXNHpEOEswdkJsMTZNSTNJeFQ4WHRsaXZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi85Y2IzMjktMGZlOS00ZmZlLWJlNWYtMDM4YTU0ZTM5MTJm LzEveVdNX3B2eG10RFk1d0ZiUUlYVDREQ1FtWVVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuaaMMA0E AgACMAcDBQAqCuoAMA0GCSqGSIb3DQEBCwUAA4IBAQAjKqYSfXOcFi8ZZfoAuRT6 kaXH8u6tdH8pCfdMN9b7O/qPhjD310iJ3MqyLOJCCRouuLHpCHiln6cwWIUqpuN+ 1OYBa4u1f1R7X5azpZTGzKW9dN4jsUpxKxevv/VTyiJY6ZpfPEVVKZtC/LDDdh// ha6HunX1mzRU7g31QAPuTwOPHf0PrGR/RGwh3mPCRJ8YBYHJyDQN23L3BkDBkz9U LlNOlL9bN8gLUMJ5yMgboyI4jo+qqTDFJQ3WCY/uXhSdAj7/7A4u6QOd/MD9piHj yYpMGQyVBed1zOE1VK3CCn0ALHFyquwG5nWrHU6QmC7Fc+CmxGX/GQ2w4q2AwGay -----END CERTIFICATE-----Generated at Sun Jan 25 19:38:26 2026 by rpki-client