This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/9f54b5-a39a-4e60-8b1c-d1e460518483/1/TlB35RpoAYh9JfFwZIdprGXzgU8.roa File: TlB35RpoAYh9JfFwZIdprGXzgU8.roa (raw, json) Hash identifier: XzBThBrqkP0celJU8AjVVtRAPROC88dRjyzplXxnsx0= Subject key identifier: 4E:50:77:E5:1A:68:01:88:7D:25:F1:70:64:87:69:AC:65:F3:81:4F Certificate issuer: /CN=e5398c96f784781b2edc203c751c4e8798785fa1 Certificate serial: 019B79114C35C98375131D533439F7F43809 Authority key identifier: E5:39:8C:96:F7:84:78:1B:2E:DC:20:3C:75:1C:4E:87:98:78:5F:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5TmMlveEeBsu3CA8dRxOh5h4X6E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/9f54b5-a39a-4e60-8b1c-d1e460518483/1/TlB35RpoAYh9JfFwZIdprGXzgU8.roa Signing time: Thu 01 Jan 2026 10:18:55 +0000 ROA not before: Thu 01 Jan 2026 10:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52194 IP address blocks: 193.109.60.0/24 maxlen: 24 194.150.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/9f54b5-a39a-4e60-8b1c-d1e460518483/1/5TmMlveEeBsu3CA8dRxOh5h4X6E.crl rsync://rpki.ripe.net/repository/DEFAULT/95/9f54b5-a39a-4e60-8b1c-d1e460518483/1/5TmMlveEeBsu3CA8dRxOh5h4X6E.mft rsync://rpki.ripe.net/repository/DEFAULT/5TmMlveEeBsu3CA8dRxOh5h4X6E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:4c:35:c9:83:75:13:1d:53:34:39:f7:f4:38:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5398c96f784781b2edc203c751c4e8798785fa1 Validity Not Before: Jan 1 10:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4e5077e51a6801887d25f170648769ac65f3814f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:3c:0c:b7:cd:40:cc:a2:9e:26:9f:8c:dd:98: 04:39:78:92:20:9e:c4:34:4e:f7:1b:cc:0b:79:2f: 6b:fa:f8:8c:19:73:7b:08:b3:70:38:93:e2:63:82: 0b:b2:db:1f:5f:da:25:1b:10:a5:26:86:5b:34:e1: e9:a1:dc:76:9a:1f:70:74:31:68:65:ac:2a:70:08: df:d6:92:06:a2:99:e2:08:53:31:a6:89:84:c2:55: 18:ff:1c:a9:e2:74:36:24:f8:66:c1:27:8f:7d:e9: 85:f8:61:e5:7a:36:6e:43:2c:b4:4f:04:b2:76:21: ef:8f:f5:1c:fb:81:35:3e:97:b7:54:d3:1b:05:e3: 91:80:6b:72:6c:0b:7b:05:85:a3:a1:24:85:01:94: 96:46:08:3a:36:f7:51:97:1d:b5:b6:4f:1e:dc:c8: ea:c1:29:bc:b1:a2:af:a3:32:a4:f2:da:b2:e9:cc: f3:69:72:8a:27:00:a1:57:39:cc:c6:79:47:64:bf: c7:58:f4:c0:ce:8f:c7:55:13:3c:a1:9a:74:43:e6: 91:11:a4:cf:9c:7c:ae:7f:0d:be:12:c4:2f:2e:4e: e0:f2:83:fe:3c:00:59:15:8b:08:3a:a1:88:b4:49: 2e:8f:5c:43:5b:2c:9f:04:f9:75:08:94:65:a3:23: 48:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:50:77:E5:1A:68:01:88:7D:25:F1:70:64:87:69:AC:65:F3:81:4F X509v3 Authority Key Identifier: keyid:E5:39:8C:96:F7:84:78:1B:2E:DC:20:3C:75:1C:4E:87:98:78:5F:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5TmMlveEeBsu3CA8dRxOh5h4X6E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/9f54b5-a39a-4e60-8b1c-d1e460518483/1/TlB35RpoAYh9JfFwZIdprGXzgU8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/9f54b5-a39a-4e60-8b1c-d1e460518483/1/5TmMlveEeBsu3CA8dRxOh5h4X6E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.109.60.0/24 194.150.222.0/23 Signature Algorithm: sha256WithRSAEncryption 17:9c:fe:f7:fc:95:3a:28:81:85:aa:f0:d7:97:ed:7c:6d:28: 99:50:58:26:90:0d:52:44:4d:e2:db:a1:24:7f:6b:d3:8e:1a: 0f:e3:5c:52:b2:f6:ff:89:c1:e6:69:72:31:93:f5:27:fd:92: 69:7d:26:d4:df:5b:72:f8:72:41:22:1d:36:f9:7b:76:54:d7: fc:a6:86:e9:8d:f2:7e:ee:49:55:23:0b:b4:99:e7:80:26:a2: f4:33:ab:88:85:a7:a9:11:c8:9d:dc:83:c8:d7:78:5f:08:7a: 75:b3:84:3b:71:75:b1:b7:b2:08:f8:70:ef:cf:67:a3:97:98: 92:33:80:2b:64:b3:fc:4f:06:11:35:64:1c:b2:67:63:d6:27: 94:db:a3:cb:33:05:af:fe:17:b9:07:2c:19:01:0d:af:57:72: 9a:78:21:3f:90:0d:5a:ab:49:6b:66:7a:30:58:21:48:44:1e: 60:fe:3f:c3:2c:78:fd:f0:ef:43:22:cd:0f:22:c5:ac:13:bf: 3a:e5:36:95:e7:99:ad:85:19:37:f6:79:5a:20:5f:f0:9b:39: 17:cb:84:83:d7:45:99:72:3b:87:1e:bc:12:5d:e7:d8:0f:56: 3b:d2:31:7d:7e:60:6a:17:e2:db:d8:46:1b:ab:64:c2:c2:c6: 53:28:c7:77 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5EUw1yYN1Ex1TNDn39DgJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1Mzk4Yzk2Zjc4NDc4MWIyZWRjMjAzYzc1MWM0ZTg3OTg3 ODVmYTEwHhcNMjYwMTAxMTAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZTUwNzdlNTFhNjgwMTg4N2QyNWYxNzA2NDg3NjlhYzY1ZjM4MTRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7TwMt81AzKKeJp+M3ZgEOXiSIJ7E NE73G8wLeS9r+viMGXN7CLNwOJPiY4ILstsfX9olGxClJoZbNOHpodx2mh9wdDFo ZawqcAjf1pIGopniCFMxpomEwlUY/xyp4nQ2JPhmwSePfemF+GHlejZuQyy0TwSy diHvj/Uc+4E1Ppe3VNMbBeORgGtybAt7BYWjoSSFAZSWRgg6NvdRlx21tk8e3Mjq wSm8saKvozKk8tqy6czzaXKKJwChVznMxnlHZL/HWPTAzo/HVRM8oZp0Q+aREaTP nHyufw2+EsQvLk7g8oP+PABZFYsIOqGItEkuj1xDWyyfBPl1CJRloyNIkQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFE5Qd+UaaAGIfSXxcGSHaaxl84FPMB8GA1UdIwQY MBaAFOU5jJb3hHgbLtwgPHUcToeYeF+hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVRtTWx2ZUVlQnN1M0NBOGRSeE9oNWg0WDZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS85ZjU0YjUtYTM5YS00ZTYwLThiMWMt ZDFlNDYwNTE4NDgzLzEvVGxCMzVScG9BWWg5SmZGd1pJZHByR1h6Z1U4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS85ZjU0YjUtYTM5YS00ZTYwLThiMWMtZDFlNDYwNTE4NDgz LzEvNVRtTWx2ZUVlQnN1M0NBOGRSeE9oNWg0WDZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwW08AwQB wpbeMA0GCSqGSIb3DQEBCwUAA4IBAQAXnP73/JU6KIGFqvDXl+18bSiZUFgmkA1S RE3i26Ekf2vTjhoP41xSsvb/icHmaXIxk/Un/ZJpfSbU31ty+HJBIh02+Xt2VNf8 pobpjfJ+7klVIwu0meeAJqL0M6uIhaepEcid3IPI13hfCHp1s4Q7cXWxt7II+HDv z2ejl5iSM4ArZLP8TwYRNWQcsmdj1ieU26PLMwWv/he5BywZAQ2vV3KaeCE/kA1a q0lrZnowWCFIRB5g/j/DLHj98O9DIs0PIsWsE7865TaV55mthRk39nlaIF/wmzkX y4SD10WZcjuHHrwSXefYD1Y70jF9fmBqF+Lb2EYbq2TCwsZTKMd3 -----END CERTIFICATE-----Generated at Sun Jan 25 13:05:44 2026 by rpki-client