This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/tuXw29v5vK7QAMRKGI125TsbCbc.roa File: tuXw29v5vK7QAMRKGI125TsbCbc.roa (raw, json) Hash identifier: MRuL7z/iQ/MmbkZTVJT0wZjjfZN5DbocT9jk1GLBqmk= Subject key identifier: B6:E5:F0:DB:DB:F9:BC:AE:D0:00:C4:4A:18:8D:76:E5:3B:1B:09:B7 Certificate issuer: /CN=2fd379353e3c948dfd98da0a59e9792353a4d0e3 Certificate serial: 019B7F1546E4E53BF9CCB29C2036E99F984C Authority key identifier: 2F:D3:79:35:3E:3C:94:8D:FD:98:DA:0A:59:E9:79:23:53:A4:D0:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L9N5NT48lI39mNoKWel5I1Ok0OM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/tuXw29v5vK7QAMRKGI125TsbCbc.roa Signing time: Fri 02 Jan 2026 14:20:59 +0000 ROA not before: Fri 02 Jan 2026 14:20:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15169 IP address blocks: 176.116.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/L9N5NT48lI39mNoKWel5I1Ok0OM.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/L9N5NT48lI39mNoKWel5I1Ok0OM.mft rsync://rpki.ripe.net/repository/DEFAULT/L9N5NT48lI39mNoKWel5I1Ok0OM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:46:e4:e5:3b:f9:cc:b2:9c:20:36:e9:9f:98:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fd379353e3c948dfd98da0a59e9792353a4d0e3 Validity Not Before: Jan 2 14:20:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b6e5f0dbdbf9bcaed000c44a188d76e53b1b09b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fd:d3:f4:8a:75:fc:32:e5:c4:83:fb:7d:a7: 5c:90:52:a1:58:d4:5f:c5:43:79:92:62:cb:cb:d1: 2e:f0:ed:23:80:c4:c4:65:ca:cf:2f:c7:35:6a:88: 48:15:07:97:eb:b8:c4:16:37:dd:77:c7:75:08:84: d8:cc:40:99:c1:49:35:c6:44:d5:0a:7e:2d:b3:02: b6:89:c3:72:74:67:c3:33:08:cb:93:39:b6:b2:01: 46:18:43:97:de:14:64:03:97:29:fc:0a:47:2f:da: 98:d9:0d:37:1f:fe:c8:9d:b5:6c:49:e1:bb:fe:d7: 3c:7d:52:cd:9b:51:4a:71:0e:a0:32:bd:5f:a3:f5: 9c:77:81:69:bf:9f:19:41:78:d9:c6:06:c9:7a:38: 46:0a:a4:84:bf:22:77:9b:1a:35:77:cd:47:b4:d6: b5:06:df:b7:c1:ed:98:15:81:d7:64:9f:ff:a8:ca: 59:3d:2f:35:87:e5:ad:49:87:6a:79:51:43:fe:ce: 9b:37:1a:68:e3:9c:28:65:ba:6a:5c:f7:aa:b2:3e: 88:56:2b:bb:73:78:7b:15:25:b2:4b:13:9a:7c:22: d0:f0:75:6f:13:e8:4a:60:69:7a:2a:2d:08:5b:29: af:ff:06:3a:39:dd:a0:51:aa:47:7f:7d:f4:00:e3: c1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:E5:F0:DB:DB:F9:BC:AE:D0:00:C4:4A:18:8D:76:E5:3B:1B:09:B7 X509v3 Authority Key Identifier: keyid:2F:D3:79:35:3E:3C:94:8D:FD:98:DA:0A:59:E9:79:23:53:A4:D0:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L9N5NT48lI39mNoKWel5I1Ok0OM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/tuXw29v5vK7QAMRKGI125TsbCbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/13288a-d928-462b-94ba-9e22561bca88/1/L9N5NT48lI39mNoKWel5I1Ok0OM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.116.16.0/24 Signature Algorithm: sha256WithRSAEncryption 72:bb:5a:3d:3d:d4:19:93:90:ab:78:0f:14:68:23:73:26:f0: 89:09:75:30:ce:e2:67:83:a0:55:68:60:92:72:c5:96:8b:40: ab:5d:5d:7d:b7:6c:17:73:6b:83:fb:ab:4e:d3:2f:bd:7d:de: eb:8f:79:57:35:36:fb:b6:96:2f:cf:d3:1d:f6:11:66:a1:03: 69:72:53:84:5b:35:a6:e8:aa:5b:4f:80:4d:aa:d7:d5:1f:51: 2f:fa:f5:70:4a:18:95:11:be:4b:c7:aa:38:17:c8:0a:54:5d: 91:7b:14:c6:5b:bb:3f:9f:ef:d8:a6:98:d5:af:26:5b:fc:05: bf:77:ae:b0:5f:f4:dc:ec:24:dd:06:d4:d4:21:c5:12:ac:7a: 99:e9:d6:36:e7:c4:f1:88:b8:de:79:d9:a2:cb:19:df:cb:96: a1:2a:05:a0:97:43:f5:10:a5:d5:86:93:d9:b7:f9:1f:87:03: 82:eb:3a:fe:78:62:2a:c5:b7:aa:d6:2c:84:71:25:61:13:3d: f4:20:73:ad:1b:2d:04:0a:1e:af:c2:ca:13:5d:e0:50:d1:11: 54:1a:49:70:40:83:f5:70:9a:b3:89:26:12:8f:90:c2:0d:29: 00:3b:85:14:4a:10:53:1a:15:8c:f7:93:d4:12:79:9a:4f:72: 6d:be:55:10 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FUbk5Tv5zLKcIDbpn5hMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmZDM3OTM1M2UzYzk0OGRmZDk4ZGEwYTU5ZTk3OTIzNTNh NGQwZTMwHhcNMjYwMTAyMTQyMDU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNmU1ZjBkYmRiZjliY2FlZDAwMGM0NGExODhkNzZlNTNiMWIwOWI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/3T9Ip1/DLlxIP7fadckFKhWNRf xUN5kmLLy9Eu8O0jgMTEZcrPL8c1aohIFQeX67jEFjfdd8d1CITYzECZwUk1xkTV Cn4tswK2icNydGfDMwjLkzm2sgFGGEOX3hRkA5cp/ApHL9qY2Q03H/7InbVsSeG7 /tc8fVLNm1FKcQ6gMr1fo/Wcd4Fpv58ZQXjZxgbJejhGCqSEvyJ3mxo1d81HtNa1 Bt+3we2YFYHXZJ//qMpZPS81h+WtSYdqeVFD/s6bNxpo45woZbpqXPeqsj6IViu7 c3h7FSWySxOafCLQ8HVvE+hKYGl6Ki0IWymv/wY6Od2gUapHf330AOPBJwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLbl8Nvb+byu0ADEShiNduU7Gwm3MB8GA1UdIwQY MBaAFC/TeTU+PJSN/ZjaClnpeSNTpNDjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDlONU5UNDhsSTM5bU5vS1dlbDVJMU9rME9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8xMzI4OGEtZDkyOC00NjJiLTk0YmEt OWUyMjU2MWJjYTg4LzEvdHVYdzI5djV2SzdRQU1SS0dJMTI1VHNiQ2JjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS8xMzI4OGEtZDkyOC00NjJiLTk0YmEtOWUyMjU2MWJjYTg4 LzEvTDlONU5UNDhsSTM5bU5vS1dlbDVJMU9rME9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHQQMA0G CSqGSIb3DQEBCwUAA4IBAQByu1o9PdQZk5CreA8UaCNzJvCJCXUwzuJng6BVaGCS csWWi0CrXV19t2wXc2uD+6tO0y+9fd7rj3lXNTb7tpYvz9Md9hFmoQNpclOEWzWm 6KpbT4BNqtfVH1Ev+vVwShiVEb5Lx6o4F8gKVF2RexTGW7s/n+/YppjVryZb/AW/ d66wX/Tc7CTdBtTUIcUSrHqZ6dY258TxiLjeedmiyxnfy5ahKgWgl0P1EKXVhpPZ t/kfhwOC6zr+eGIqxbeq1iyEcSVhEz30IHOtGy0ECh6vwsoTXeBQ0RFUGklwQIP1 cJqziSYSj5DCDSkAO4UUShBTGhWM95PUEnmaT3JtvlUQ -----END CERTIFICATE-----Generated at Sun Jan 25 19:59:55 2026 by rpki-client