This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/iTldB4zEBvTcpwV7r2_yT9tL9f0.roa File: iTldB4zEBvTcpwV7r2_yT9tL9f0.roa (raw, json) Hash identifier: OFds1nswtHe57QbWsYL+F1pMF391WdX7IZtfFU0BiUE= Subject key identifier: 89:39:5D:07:8C:C4:06:F4:DC:A7:05:7B:AF:6F:F2:4F:DB:4B:F5:FD Certificate issuer: /CN=1bd2d463ae15346d5edd7937b8bfa8e09b14376d Certificate serial: 019B7BA3917117CA21485579EAE4A44A44A6 Authority key identifier: 1B:D2:D4:63:AE:15:34:6D:5E:DD:79:37:B8:BF:A8:E0:9B:14:37:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G9LUY64VNG1e3Xk3uL-o4JsUN20.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/iTldB4zEBvTcpwV7r2_yT9tL9f0.roa Signing time: Thu 01 Jan 2026 22:17:55 +0000 ROA not before: Thu 01 Jan 2026 22:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211270 IP address blocks: 194.61.34.0/23 maxlen: 23 194.61.34.0/24 maxlen: 24 194.61.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/G9LUY64VNG1e3Xk3uL-o4JsUN20.crl rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/G9LUY64VNG1e3Xk3uL-o4JsUN20.mft rsync://rpki.ripe.net/repository/DEFAULT/G9LUY64VNG1e3Xk3uL-o4JsUN20.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:91:71:17:ca:21:48:55:79:ea:e4:a4:4a:44:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1bd2d463ae15346d5edd7937b8bfa8e09b14376d Validity Not Before: Jan 1 22:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89395d078cc406f4dca7057baf6ff24fdb4bf5fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:23:6e:7a:8e:70:c9:62:4a:8e:97:3d:84:9f: 91:cc:ca:27:f1:9e:42:32:4f:04:19:5f:2b:63:d5: 9f:b0:a5:3a:e0:8f:9b:d6:3b:28:30:ac:7d:89:b6: 4a:58:c9:0d:92:3e:d0:d2:6b:dc:5a:f9:cb:db:3a: 1f:d3:1c:79:1a:25:4c:a1:a6:d5:e3:b6:73:a2:0b: 5f:55:e9:1b:7d:e9:bb:40:ea:ee:6e:47:58:b2:43: c5:a8:55:2b:89:2f:e8:a5:cb:5a:ba:7a:72:94:6c: eb:8a:12:b9:99:ea:06:b8:f3:3b:bc:f3:1b:fe:53: 26:3b:85:f5:9a:f4:2f:a1:19:c6:9c:37:cd:ba:4f: ad:5f:59:97:30:00:c3:92:f9:fd:b8:7f:42:18:46: f3:49:9b:e5:6e:09:15:b4:bd:17:7f:16:5f:eb:b2: fc:a8:f5:9b:c6:3d:a2:02:26:f3:d4:e0:93:00:12: 37:b9:47:6f:71:d1:80:78:61:3d:f7:ea:4e:69:25: a9:e0:71:83:13:41:3c:42:3b:86:b3:82:f5:8f:22: 4b:31:97:9c:fb:4d:e2:f0:a7:e4:92:a4:d9:7e:7a: 25:4c:9f:4d:34:c2:84:74:25:07:3c:23:fb:b1:c2: fe:26:58:39:be:1d:a1:cd:68:fc:bb:34:eb:5d:ad: 62:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:39:5D:07:8C:C4:06:F4:DC:A7:05:7B:AF:6F:F2:4F:DB:4B:F5:FD X509v3 Authority Key Identifier: keyid:1B:D2:D4:63:AE:15:34:6D:5E:DD:79:37:B8:BF:A8:E0:9B:14:37:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G9LUY64VNG1e3Xk3uL-o4JsUN20.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/iTldB4zEBvTcpwV7r2_yT9tL9f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/G9LUY64VNG1e3Xk3uL-o4JsUN20.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.61.34.0/23 Signature Algorithm: sha256WithRSAEncryption 42:df:97:5e:7b:d0:77:70:d2:d0:be:2d:65:9d:d1:1a:2c:8c: 72:ac:6d:9c:10:03:51:52:83:c2:8d:c9:85:5d:74:6f:29:88: fb:d8:66:b9:3a:33:33:35:d9:bb:82:e6:44:f5:15:a9:16:7c: c1:3e:74:e6:27:ea:21:00:39:35:a9:a4:ec:d2:5c:07:1f:99: a1:53:d2:c0:e6:0a:99:38:0e:f4:7f:a3:a7:68:3e:90:91:0b: be:7a:dc:92:f5:a5:0d:0c:c0:e3:67:fd:72:85:55:8b:5f:23: e0:e9:2e:83:df:0f:a6:54:7d:91:f2:15:d8:fd:f6:61:b7:e9: 33:39:a8:71:58:a2:4e:aa:0f:82:31:df:48:6e:5f:c5:fb:17: 5c:85:a1:eb:86:d1:fe:3e:13:42:66:9b:be:77:2b:16:9b:b5: a9:35:05:c4:51:33:f7:3e:4a:6a:b6:cb:15:42:93:6c:c3:6c: c9:ec:de:97:0c:b9:03:e6:19:63:67:30:70:2a:8e:2d:ee:7b: 78:87:a8:64:d0:fd:19:7a:61:8f:2c:d7:86:99:c8:72:3c:d7: e0:6a:a6:a2:c1:1b:f0:ce:d1:66:f2:4f:31:fe:18:9b:ba:81: 9f:71:46:4c:c4:53:e6:80:c5:e2:6b:6d:e6:d3:6e:ea:c3:c8: 1a:dd:9a:2e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o5FxF8ohSFV56uSkSkSmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiZDJkNDYzYWUxNTM0NmQ1ZWRkNzkzN2I4YmZhOGUwOWIx NDM3NmQwHhcNMjYwMTAxMjIxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTM5NWQwNzhjYzQwNmY0ZGNhNzA1N2JhZjZmZjI0ZmRiNGJmNWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAniNueo5wyWJKjpc9hJ+RzMon8Z5C Mk8EGV8rY9WfsKU64I+b1jsoMKx9ibZKWMkNkj7Q0mvcWvnL2zof0xx5GiVMoabV 47ZzogtfVekbfem7QOrubkdYskPFqFUriS/opctaunpylGzrihK5meoGuPM7vPMb /lMmO4X1mvQvoRnGnDfNuk+tX1mXMADDkvn9uH9CGEbzSZvlbgkVtL0XfxZf67L8 qPWbxj2iAibz1OCTABI3uUdvcdGAeGE99+pOaSWp4HGDE0E8QjuGs4L1jyJLMZec +03i8KfkkqTZfnolTJ9NNMKEdCUHPCP7scL+Jlg5vh2hzWj8uzTrXa1ifQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIk5XQeMxAb03KcFe69v8k/bS/X9MB8GA1UdIwQY MBaAFBvS1GOuFTRtXt15N7i/qOCbFDdtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzlMVVk2NFZORzFlM1hrM3VMLW80SnNVTjIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC83MGM0NzctYThjZC00YTcyLWI2Njkt MWY5M2MyMzlhMDEyLzEvaVRsZEI0ekVCdlRjcHdWN3IyX3lUOXRMOWYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC83MGM0NzctYThjZC00YTcyLWI2NjktMWY5M2MyMzlhMDEy LzEvRzlMVVk2NFZORzFlM1hrM3VMLW80SnNVTjIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwj0iMA0G CSqGSIb3DQEBCwUAA4IBAQBC35dee9B3cNLQvi1lndEaLIxyrG2cEANRUoPCjcmF XXRvKYj72Ga5OjMzNdm7guZE9RWpFnzBPnTmJ+ohADk1qaTs0lwHH5mhU9LA5gqZ OA70f6OnaD6QkQu+etyS9aUNDMDjZ/1yhVWLXyPg6S6D3w+mVH2R8hXY/fZht+kz OahxWKJOqg+CMd9Ibl/F+xdchaHrhtH+PhNCZpu+dysWm7WpNQXEUTP3PkpqtssV QpNsw2zJ7N6XDLkD5hljZzBwKo4t7nt4h6hk0P0ZemGPLNeGmchyPNfgaqaiwRvw ztFm8k8x/hibuoGfcUZMxFPmgMXia23m027qw8ga3Zou -----END CERTIFICATE-----Generated at Mon Jan 26 01:43:43 2026 by rpki-client