This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/TM5VkZiuCQFhlCTuTDiqt2hHOiI.roa File: TM5VkZiuCQFhlCTuTDiqt2hHOiI.roa (raw, json) Hash identifier: Uj+s0ytc6HH2YJFkDxTD9d5q1+tOjVsh1FxTZk6i+wg= Subject key identifier: 4C:CE:55:91:98:AE:09:01:61:94:24:EE:4C:38:AA:B7:68:47:3A:22 Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3 Certificate serial: 019B797E43BB23FB0F79DCBCD4B09203CDEB Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/TM5VkZiuCQFhlCTuTDiqt2hHOiI.roa Signing time: Thu 01 Jan 2026 12:17:56 +0000 ROA not before: Thu 01 Jan 2026 12:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201464 IP address blocks: 185.74.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.mft rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:43:bb:23:fb:0f:79:dc:bc:d4:b0:92:03:cd:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3 Validity Not Before: Jan 1 12:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4cce559198ae0901619424ee4c38aab768473a22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2c:81:c7:77:fe:b1:14:4b:35:3e:cd:e1:87: 18:c7:41:16:29:9e:f3:48:2e:e8:b8:3f:88:f5:86: b5:4b:cb:d5:da:6c:40:4d:3d:50:07:e3:93:8a:91: 97:15:f7:2d:8c:82:6d:50:cf:58:b3:8b:46:89:f3: 6c:f4:d7:e6:76:22:95:94:f9:4c:1f:06:9e:5b:84: 2c:3c:3e:07:c6:23:8d:1a:6c:91:0a:1d:13:e2:7a: cf:ac:01:5b:f7:36:b8:80:71:dd:e4:06:cb:f4:e7: b5:9b:38:95:ef:47:0d:08:4b:d9:8d:df:67:ae:75: 1f:0c:b3:f1:4c:18:74:8e:88:6b:e5:1a:b3:b9:37: ab:2b:4a:46:3d:62:8a:0f:b2:c9:72:24:82:be:30: 4e:37:2d:d6:7f:19:42:3e:34:fe:ac:23:4b:33:56: 3f:e3:29:c1:72:61:03:b3:39:65:82:62:99:1e:bc: 37:2d:d3:77:20:e9:50:27:96:f8:81:26:e7:6f:d6: 0e:89:f2:29:3f:18:9d:de:4f:c8:65:f4:15:eb:37: 14:d1:be:6e:c9:9e:9b:b3:21:41:65:70:c8:89:6e: 7d:df:03:b8:d3:16:9e:58:32:a6:d7:e5:ba:1e:ff: bb:0d:1f:e6:cd:88:d0:64:5d:ff:32:16:ea:d4:83: 78:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:CE:55:91:98:AE:09:01:61:94:24:EE:4C:38:AA:B7:68:47:3A:22 X509v3 Authority Key Identifier: keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/TM5VkZiuCQFhlCTuTDiqt2hHOiI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.74.61.0/24 Signature Algorithm: sha256WithRSAEncryption 27:ac:ac:8f:25:23:fd:ad:cc:f8:b5:06:b7:45:97:aa:fc:27: ff:cd:fa:6e:23:85:c0:84:e9:f0:1d:40:e9:15:ff:d1:65:fc: e1:02:4e:44:6f:19:d3:30:4e:81:2c:ae:ae:a2:e4:63:fe:7c: 99:fd:cb:76:80:97:15:41:03:70:7f:ed:74:74:b0:a9:41:9f: 38:5b:84:27:cd:7b:29:bc:fb:b6:d6:72:b7:d8:24:c4:f7:17: 82:ae:b8:0a:3b:4c:a8:4b:34:51:2a:49:3e:02:59:1c:aa:b8: de:65:61:89:38:a4:ab:2c:fb:72:f7:f9:36:82:fa:bd:c9:b9: 73:f8:c6:e7:4b:5f:1b:11:1d:9b:fb:dd:64:16:42:6e:9b:7d: 05:c1:2f:08:60:a3:d5:d0:63:bd:58:5f:8c:2c:77:d0:f2:07: 34:db:d5:10:cc:44:76:29:54:22:78:02:35:4d:62:7c:15:20: 76:56:c2:bf:2f:8b:30:d3:0a:c0:41:07:7b:3d:6e:f4:ab:a0: 6f:4a:29:52:09:b2:49:8b:18:00:4c:8b:e5:d7:74:d8:ea:45: 70:eb:71:c1:34:91:8a:62:ed:00:17:2f:15:e5:05:18:c2:69: 01:77:94:e8:77:91:2f:85:4e:fc:a6:fe:17:2e:d4:00:b0:59: 09:87:e9:81 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fkO7I/sPedy81LCSA83rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1OWYwZjVmZjYyMGUwZGI1MzExZjY0NzM2OTA5OTczYWM2 MGY2ZjMwHhcNMjYwMTAxMTIxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0Y2NlNTU5MTk4YWUwOTAxNjE5NDI0ZWU0YzM4YWFiNzY4NDczYTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzyyBx3f+sRRLNT7N4YcYx0EWKZ7z SC7ouD+I9Ya1S8vV2mxATT1QB+OTipGXFfctjIJtUM9Ys4tGifNs9NfmdiKVlPlM HwaeW4QsPD4HxiONGmyRCh0T4nrPrAFb9za4gHHd5AbL9Oe1mziV70cNCEvZjd9n rnUfDLPxTBh0johr5RqzuTerK0pGPWKKD7LJciSCvjBONy3WfxlCPjT+rCNLM1Y/ 4ynBcmEDszllgmKZHrw3LdN3IOlQJ5b4gSbnb9YOifIpPxid3k/IZfQV6zcU0b5u yZ6bsyFBZXDIiW593wO40xaeWDKm1+W6Hv+7DR/mzYjQZF3/Mhbq1IN4JQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEzOVZGYrgkBYZQk7kw4qrdoRzoiMB8GA1UdIwQY MBaAFDWfD1/2IODbUxH2RzaQmXOsYPbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2It ZDFhYmY0ZWUzMmNiLzEvVE01VmtaaXVDUUZobENUdVREaXF0MmhIT2lJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2ItZDFhYmY0ZWUzMmNi LzEvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUo9MA0G CSqGSIb3DQEBCwUAA4IBAQAnrKyPJSP9rcz4tQa3RZeq/Cf/zfpuI4XAhOnwHUDp Ff/RZfzhAk5EbxnTME6BLK6uouRj/nyZ/ct2gJcVQQNwf+10dLCpQZ84W4QnzXsp vPu21nK32CTE9xeCrrgKO0yoSzRRKkk+AlkcqrjeZWGJOKSrLPty9/k2gvq9yblz +MbnS18bER2b+91kFkJum30FwS8IYKPV0GO9WF+MLHfQ8gc029UQzER2KVQieAI1 TWJ8FSB2VsK/L4sw0wrAQQd7PW70q6BvSilSCbJJixgATIvl13TY6kVw63HBNJGK Yu0AFy8V5QUYwmkBd5Tod5EvhU78pv4XLtQAsFkJh+mB -----END CERTIFICATE-----Generated at Sun Jan 25 23:31:35 2026 by rpki-client