This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/TUL77rDv9QOYpMzaK40ng1dWWec.roa File: TUL77rDv9QOYpMzaK40ng1dWWec.roa (raw, json) Hash identifier: vV9cJYHVG3dQHh7/hDNwlYIjogisDYi545JIS+gpMfI= Subject key identifier: 4D:42:FB:EE:B0:EF:F5:03:98:A4:CC:DA:2B:8D:27:83:57:56:59:E7 Certificate issuer: /CN=b9762db1282ffd084761232038f81f5d29e640d5 Certificate serial: 019B392699CBC5B68F1AE5A9A1A1FA638D69 Authority key identifier: B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/TUL77rDv9QOYpMzaK40ng1dWWec.roa Signing time: Sat 20 Dec 2025 00:26:29 +0000 ROA not before: Sat 20 Dec 2025 00:26:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 185.139.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.crl rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.mft rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:26:99:cb:c5:b6:8f:1a:e5:a9:a1:a1:fa:63:8d:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9762db1282ffd084761232038f81f5d29e640d5 Validity Not Before: Dec 20 00:26:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4d42fbeeb0eff50398a4ccda2b8d2783575659e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:68:59:42:77:62:c7:95:a2:73:21:ff:82:2e: 09:53:5d:07:ca:8b:e3:84:57:52:4b:c8:66:0a:d8: 62:14:f4:fc:70:19:a8:d5:53:5b:0f:3e:ab:6b:06: 64:2d:f7:32:5f:ff:cf:19:af:90:ab:33:f8:94:ae: 47:6d:a8:24:b4:b4:97:48:53:64:eb:90:a6:0a:66: cf:82:51:45:28:da:b3:c2:91:b7:be:f8:85:ff:1e: 71:26:19:2b:78:4b:51:88:c4:99:10:b0:37:70:fa: 2b:64:17:52:08:e8:68:b5:a8:65:37:43:85:cf:23: aa:8a:4e:2f:09:67:a8:75:bc:30:5c:f6:46:69:09: 71:2d:5f:bd:34:40:e7:1f:c4:ef:5d:9f:15:2e:4a: 37:9f:b9:a0:a3:53:2c:c1:0f:38:8b:53:f9:a7:a7: d0:16:ea:af:48:19:7c:9a:97:c7:4a:67:5e:aa:22: 95:73:39:8c:7f:a9:0b:5d:5e:78:11:80:30:a3:cc: 9e:40:d6:b2:dc:01:a5:cd:9f:63:32:19:04:53:a2: 7b:33:74:7f:ff:0d:12:b3:ea:6d:dd:2e:71:8a:11: f1:9e:28:ca:25:58:5c:53:06:3b:24:45:b0:a5:46: 2f:fc:af:0e:b0:ba:d7:54:f5:e1:46:02:59:7d:c0: 1c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:42:FB:EE:B0:EF:F5:03:98:A4:CC:DA:2B:8D:27:83:57:56:59:E7 X509v3 Authority Key Identifier: keyid:B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/TUL77rDv9QOYpMzaK40ng1dWWec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.139.35.0/24 Signature Algorithm: sha256WithRSAEncryption 65:d8:16:c3:f6:38:fc:9e:36:ce:fc:46:aa:2d:f2:cb:ef:e0: f7:9e:4c:fd:ae:8c:79:b5:36:95:65:30:d6:b4:87:f0:15:5d: 35:cb:dd:44:24:10:78:0f:46:89:61:aa:a6:0a:7d:69:03:5a: 6e:f0:08:49:00:33:11:03:9a:b7:2b:3c:87:4b:79:f1:41:db: 12:8b:10:1f:56:96:c4:19:99:30:67:9b:88:66:4e:a1:8d:db: db:b9:81:64:a3:57:8f:6b:0b:d8:5f:6f:80:54:4d:cc:64:52: 1a:a9:4b:72:e3:0b:14:31:e7:31:8c:b0:a7:9c:45:9e:f2:ee: 50:ff:68:6a:0b:74:50:3c:40:0a:37:25:f2:3d:07:a1:0d:01: 60:63:b7:f2:e4:69:fd:3c:25:ef:d8:27:e8:7d:cf:19:e7:83: 20:5a:ae:b2:1f:01:6e:e2:14:41:30:27:63:74:f1:1c:d5:72: 34:fb:28:21:8a:c3:f5:f4:71:76:7f:c9:15:9c:f2:f5:6d:b3: bb:b3:fa:c9:d6:8b:49:da:86:4e:90:ec:ff:86:66:76:d3:4f: 3a:b1:69:c9:f8:89:29:56:a0:7d:c9:b4:2e:14:5b:85:c3:cd: b0:f0:68:33:ea:81:b0:3f:e9:c2:d7:52:27:40:0b:4d:35:24: 5d:87:1f:79 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZs5JpnLxbaPGuWpoaH6Y41pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5NzYyZGIxMjgyZmZkMDg0NzYxMjMyMDM4ZjgxZjVkMjll NjQwZDUwHhcNMjUxMjIwMDAyNjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDQyZmJlZWIwZWZmNTAzOThhNGNjZGEyYjhkMjc4MzU3NTY1OWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2hZQndix5WicyH/gi4JU10Hyovj hFdSS8hmCthiFPT8cBmo1VNbDz6rawZkLfcyX//PGa+QqzP4lK5HbagktLSXSFNk 65CmCmbPglFFKNqzwpG3vviF/x5xJhkreEtRiMSZELA3cPorZBdSCOhotahlN0OF zyOqik4vCWeodbwwXPZGaQlxLV+9NEDnH8TvXZ8VLko3n7mgo1MswQ84i1P5p6fQ FuqvSBl8mpfHSmdeqiKVczmMf6kLXV54EYAwo8yeQNay3AGlzZ9jMhkEU6J7M3R/ /w0Ss+pt3S5xihHxnijKJVhcUwY7JEWwpUYv/K8OsLrXVPXhRgJZfcAc7wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE1C++6w7/UDmKTM2iuNJ4NXVlnnMB8GA1UdIwQY MBaAFLl2LbEoL/0IR2EjIDj4H10p5kDVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVhZdHNTZ3ZfUWhIWVNNZ09QZ2ZYU25tUU5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9mODE5MTUtNDA1ZS00YjU0LTljYjQt NzBhNTU2YmE4YTExLzEvVFVMNzdyRHY5UU9ZcE16YUs0MG5nMWRXV2VjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS9mODE5MTUtNDA1ZS00YjU0LTljYjQtNzBhNTU2YmE4YTEx LzEvdVhZdHNTZ3ZfUWhIWVNNZ09QZ2ZYU25tUU5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYsjMA0G CSqGSIb3DQEBCwUAA4IBAQBl2BbD9jj8njbO/EaqLfLL7+D3nkz9rox5tTaVZTDW tIfwFV01y91EJBB4D0aJYaqmCn1pA1pu8AhJADMRA5q3KzyHS3nxQdsSixAfVpbE GZkwZ5uIZk6hjdvbuYFko1ePawvYX2+AVE3MZFIaqUty4wsUMecxjLCnnEWe8u5Q /2hqC3RQPEAKNyXyPQehDQFgY7fy5Gn9PCXv2Cfofc8Z54MgWq6yHwFu4hRBMCdj dPEc1XI0+yghisP19HF2f8kVnPL1bbO7s/rJ1otJ2oZOkOz/hmZ20086sWnJ+Ikp VqB9ybQuFFuFw82w8Ggz6oGwP+nC11InQAtNNSRdhx95 -----END CERTIFICATE-----Generated at Sat Dec 20 21:03:22 2025 by rpki-client