This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/tLSGZw5-QpB_5fV81O2fLyOca60.roa File: tLSGZw5-QpB_5fV81O2fLyOca60.roa (raw, json) Hash identifier: QiSrJL6zpztpRwpWANYGtyIdsxsBMIWfzPt3CGOqWPA= Subject key identifier: B4:B4:86:67:0E:7E:42:90:7F:E5:F5:7C:D4:ED:9F:2F:23:9C:6B:AD Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Certificate serial: 019B79103F0DCD78F6DC3832A205024909F1 Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/tLSGZw5-QpB_5fV81O2fLyOca60.roa Signing time: Thu 01 Jan 2026 10:17:46 +0000 ROA not before: Thu 01 Jan 2026 10:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214271 IP address blocks: 195.216.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:3f:0d:cd:78:f6:dc:38:32:a2:05:02:49:09:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Validity Not Before: Jan 1 10:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4b486670e7e42907fe5f57cd4ed9f2f239c6bad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0d:18:b8:ed:6e:d6:6f:df:e1:b2:b0:54:f5: 13:bb:9a:fa:07:31:b0:90:80:98:ac:5b:2d:f4:97: fd:c9:76:77:29:5d:3a:f1:70:ba:e1:ed:62:dd:77: 6c:2f:0a:70:eb:7c:e2:8a:26:64:42:72:28:14:c2: 58:3d:aa:cf:d5:36:b9:7d:47:dc:cb:68:93:02:bc: e6:d9:eb:87:29:ac:26:c1:3d:b8:2b:20:7c:ab:1f: 3e:b7:5b:14:e7:87:84:aa:e8:eb:11:e9:1b:07:5a: b8:25:ff:f2:58:4e:23:10:4c:47:39:40:d5:9f:d4: 33:81:41:b7:22:72:b2:e5:75:7b:39:d0:c4:00:e3: ed:1d:b9:08:c1:5e:f1:b0:e2:27:4c:98:a0:0d:ac: 75:45:49:0e:a6:78:a9:6c:d6:1a:ec:a8:3d:10:f1: 41:d9:0a:b1:26:6b:1f:9d:4d:05:7e:a0:f5:4c:50: a3:4c:9a:37:af:96:a4:85:84:cc:4c:2c:bd:0c:ad: 8f:0c:8e:ea:4e:48:57:7f:30:ad:51:8d:66:26:4b: c4:d6:48:68:ba:3b:8a:91:7d:5b:f9:56:72:4a:b6: 49:4b:8e:c1:d3:39:9c:af:c1:51:fa:40:77:ca:ad: b1:74:32:c6:a7:63:25:fc:34:78:1f:b0:db:19:ac: 39:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B4:86:67:0E:7E:42:90:7F:E5:F5:7C:D4:ED:9F:2F:23:9C:6B:AD X509v3 Authority Key Identifier: keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/tLSGZw5-QpB_5fV81O2fLyOca60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.216.161.0/24 Signature Algorithm: sha256WithRSAEncryption 92:1f:68:1d:b4:0d:6f:ab:81:8a:8c:7f:05:66:05:ad:76:31: 3a:30:0e:eb:d1:b5:47:96:6c:85:b4:ed:ca:04:96:47:fc:ef: 15:b6:7e:39:12:4f:7b:ab:30:6e:f9:4f:4b:3a:40:ea:95:72: bc:56:3c:e7:7d:dd:b6:80:60:03:f0:25:66:6f:49:db:7f:a4: bd:87:f5:b9:88:2d:04:43:c8:aa:fe:fe:fb:8a:bb:c3:8a:57: c6:38:aa:d9:e8:df:3d:a2:73:1e:7a:af:cd:8e:97:a0:13:b4: 6a:43:c6:b2:9b:21:53:b5:1f:e9:20:91:7d:11:03:57:ec:1a: 72:69:fb:b0:15:90:e9:ed:9b:35:25:d9:72:12:89:b3:f5:5e: 83:69:dd:96:7f:5d:d2:59:4f:01:79:a8:2b:44:8c:61:ec:43: 96:c4:7a:e5:36:9b:b9:fc:f4:3b:f9:e6:79:47:b1:08:4e:78: 87:73:34:14:4c:48:88:02:35:c5:53:b2:37:34:a3:ad:8d:ab: ae:33:9a:74:8d:bb:bb:02:75:dc:88:7e:9f:c0:54:bb:8c:05: d8:04:4f:0d:6d:05:10:b9:6c:af:dc:ab:e9:0f:0d:4f:36:d9: 5f:f6:9b:1c:d9:b8:23:40:e9:09:09:e3:14:94:ae:9e:8b:0f: 6f:fa:1f:ab -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ED8NzXj23DgyogUCSQnxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1YjdkNjY5OTgzNWJmZTlhODA4MWRmYzExNGRmMWJmNmQy MTVkYTcwHhcNMjYwMTAxMTAxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGI0ODY2NzBlN2U0MjkwN2ZlNWY1N2NkNGVkOWYyZjIzOWM2YmFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQ0YuO1u1m/f4bKwVPUTu5r6BzGw kICYrFst9Jf9yXZ3KV068XC64e1i3XdsLwpw63ziiiZkQnIoFMJYParP1Ta5fUfc y2iTArzm2euHKawmwT24KyB8qx8+t1sU54eEqujrEekbB1q4Jf/yWE4jEExHOUDV n9QzgUG3InKy5XV7OdDEAOPtHbkIwV7xsOInTJigDax1RUkOpnipbNYa7Kg9EPFB 2QqxJmsfnU0FfqD1TFCjTJo3r5akhYTMTCy9DK2PDI7qTkhXfzCtUY1mJkvE1kho ujuKkX1b+VZySrZJS47B0zmcr8FR+kB3yq2xdDLGp2Ml/DR4H7DbGaw5hQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLS0hmcOfkKQf+X1fNTtny8jnGutMB8GA1UdIwQY MBaAFGW31mmYNb/pqAgd/BFN8b9tIV2nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDct OWU0MTNlYmY0MmYzLzEvdExTR1p3NS1RcEJfNWZWODFPMmZMeU9jYTYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDctOWU0MTNlYmY0MmYz LzEvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw9ihMA0G CSqGSIb3DQEBCwUAA4IBAQCSH2gdtA1vq4GKjH8FZgWtdjE6MA7r0bVHlmyFtO3K BJZH/O8Vtn45Ek97qzBu+U9LOkDqlXK8Vjznfd22gGAD8CVmb0nbf6S9h/W5iC0E Q8iq/v77irvDilfGOKrZ6N89onMeeq/NjpegE7RqQ8aymyFTtR/pIJF9EQNX7Bpy afuwFZDp7Zs1JdlyEomz9V6Dad2Wf13SWU8BeagrRIxh7EOWxHrlNpu5/PQ7+eZ5 R7EITniHczQUTEiIAjXFU7I3NKOtjauuM5p0jbu7AnXciH6fwFS7jAXYBE8NbQUQ uWyv3KvpDw1PNtlf9psc2bgjQOkJCeMUlK6eiw9v+h+r -----END CERTIFICATE-----Generated at Sun Jan 25 22:49:57 2026 by rpki-client