This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/TUHp0yldZUy2noEeejLALiKlsOA.roa File: TUHp0yldZUy2noEeejLALiKlsOA.roa (raw, json) Hash identifier: hJdNCDGT+WfObUpSa1plMcdJasirz1T8A6b/aK4MsFo= Subject key identifier: 4D:41:E9:D3:29:5D:65:4C:B6:9E:81:1E:7A:32:C0:2E:22:A5:B0:E0 Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10 Certificate serial: 019B77593E51E59FBC180F63D65BD3EE4E88 Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/TUHp0yldZUy2noEeejLALiKlsOA.roa Signing time: Thu 01 Jan 2026 02:18:15 +0000 ROA not before: Thu 01 Jan 2026 02:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 141039 IP address blocks: 45.82.33.0/24 maxlen: 24 185.65.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.mft rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:3e:51:e5:9f:bc:18:0f:63:d6:5b:d3:ee:4e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10 Validity Not Before: Jan 1 02:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d41e9d3295d654cb69e811e7a32c02e22a5b0e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:41:38:b5:59:f6:e0:ba:ba:5e:99:10:60:d2: 37:07:75:39:69:f8:1a:01:c4:73:fa:fc:44:02:a5: 80:8b:d6:f4:78:e4:7b:d7:2b:45:eb:aa:77:99:87: 43:8e:97:4f:88:31:48:ee:de:b5:61:64:32:b6:7a: 70:6a:92:92:0b:c7:fa:70:82:26:e3:45:b8:f3:db: 29:a8:1c:d0:02:f5:ed:a4:34:9d:8f:35:80:9b:6b: 2b:6e:1e:80:f2:c5:7e:0b:f2:3a:46:cf:5f:e3:b0: f3:1d:e1:30:69:87:ad:77:07:86:6f:4e:ad:73:e9: cc:40:a1:84:7c:fe:35:49:e6:bf:91:ec:31:de:2d: 84:3a:ce:1b:49:f3:32:a9:db:ea:ae:55:49:0c:dd: cd:27:ab:60:5f:a4:29:47:d6:f5:01:a7:97:3b:56: c3:19:9b:b8:a1:82:6f:03:26:0e:ce:76:86:5d:ec: c4:3a:9e:38:2e:65:e4:ca:65:34:b5:61:35:31:8d: c4:d8:fb:55:c6:5a:c4:e4:67:41:79:eb:71:be:5c: 37:c1:0c:87:a6:bd:2f:f6:fa:39:cb:7c:21:d8:ba: 7a:7f:79:1a:57:40:2a:8d:1a:ad:2f:d2:78:60:b1: a5:ff:64:92:14:c8:bf:5f:ec:66:71:02:51:14:d6: c9:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:41:E9:D3:29:5D:65:4C:B6:9E:81:1E:7A:32:C0:2E:22:A5:B0:E0 X509v3 Authority Key Identifier: keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/TUHp0yldZUy2noEeejLALiKlsOA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.82.33.0/24 185.65.50.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:a1:3b:7c:76:04:97:20:e9:72:90:2e:3d:c9:3d:95:85:45: 24:41:7f:9d:02:32:05:95:70:93:d2:f2:e9:a3:8e:b6:40:83: 0f:29:f1:a0:7d:7a:f0:ed:74:b9:ed:48:d6:f8:44:2f:2c:f2: 1d:dc:32:a3:31:96:a1:be:86:88:4c:b6:5e:df:e3:4a:e1:07: 72:40:de:fd:04:ea:7c:a0:83:e8:4c:f8:8b:df:f5:3a:21:bd: 49:8b:79:78:2c:4d:4f:cf:c3:a3:94:ec:4e:da:3a:c3:b4:ca: cf:66:6e:a1:6f:bb:e5:24:23:9c:32:e6:bb:06:90:bc:0a:a2: 51:d8:f2:45:3c:c4:16:d3:0c:5d:c0:fc:2d:b6:c2:03:7d:89: 92:c4:f9:db:34:0c:84:51:aa:c3:11:73:92:d9:bc:35:f0:ed: 9d:a3:02:96:a6:09:ef:35:3d:2f:1c:4a:9c:aa:15:34:03:d0: aa:a5:be:fe:24:4d:8d:17:70:68:b9:15:d6:6f:04:ff:1b:4f: 16:4e:15:5c:64:e0:d9:8f:88:f6:8b:9b:cd:08:86:c0:6c:7f: ac:0f:b2:ed:a0:67:98:9d:84:7e:92:c6:ef:e0:ef:5d:aa:5e: b0:75:ea:2c:75:12:11:15:9d:9f:87:d1:bd:77:af:fa:e1:18: 45:e2:5b:32 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WT5R5Z+8GA9j1lvT7k6IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyNTRhOWYzYTI2NjUxM2RkYzY5MzVkOGJlMDIyZTdlNTIz MGVhMTAwHhcNMjYwMTAxMDIxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDQxZTlkMzI5NWQ2NTRjYjY5ZTgxMWU3YTMyYzAyZTIyYTViMGUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4EE4tVn24Lq6XpkQYNI3B3U5afga AcRz+vxEAqWAi9b0eOR71ytF66p3mYdDjpdPiDFI7t61YWQytnpwapKSC8f6cIIm 40W489spqBzQAvXtpDSdjzWAm2srbh6A8sV+C/I6Rs9f47DzHeEwaYetdweGb06t c+nMQKGEfP41Sea/kewx3i2EOs4bSfMyqdvqrlVJDN3NJ6tgX6QpR9b1AaeXO1bD GZu4oYJvAyYOznaGXezEOp44LmXkymU0tWE1MY3E2PtVxlrE5GdBeetxvlw3wQyH pr0v9vo5y3wh2Lp6f3kaV0AqjRqtL9J4YLGl/2SSFMi/X+xmcQJRFNbJmQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFE1B6dMpXWVMtp6BHnoywC4ipbDgMB8GA1UdIwQY MBaAFKJUqfOiZlE93Gk12L4CLn5SMOoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2xTcDg2Sm1VVDNjYVRYWXZnSXVmbEl3NmhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iNjAzNzMtODE4ZS00MGE5LTkzMTkt YWRkZjBlMTg0OWViLzEvVFVIcDB5bGRaVXkybm9FZWVqTEFMaUtsc09BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9iNjAzNzMtODE4ZS00MGE5LTkzMTktYWRkZjBlMTg0OWVi LzEvb2xTcDg2Sm1VVDNjYVRYWXZnSXVmbEl3NmhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALVIhAwQA uUEyMA0GCSqGSIb3DQEBCwUAA4IBAQCfoTt8dgSXIOlykC49yT2VhUUkQX+dAjIF lXCT0vLpo462QIMPKfGgfXrw7XS57UjW+EQvLPId3DKjMZahvoaITLZe3+NK4Qdy QN79BOp8oIPoTPiL3/U6Ib1Ji3l4LE1Pz8OjlOxO2jrDtMrPZm6hb7vlJCOcMua7 BpC8CqJR2PJFPMQW0wxdwPwttsIDfYmSxPnbNAyEUarDEXOS2bw18O2dowKWpgnv NT0vHEqcqhU0A9Cqpb7+JE2NF3BouRXWbwT/G08WThVcZODZj4j2i5vNCIbAbH+s D7LtoGeYnYR+ksbv4O9dql6wdeosdRIRFZ2fh9G9d6/64RhF4lsy -----END CERTIFICATE-----Generated at Sun Jan 25 10:20:02 2026 by rpki-client