This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/b2698c-6409-459c-b046-ea6f705d2c0d/1/T0pinHQE9eLRbdmXpvSn-pLDjUA.roa File: T0pinHQE9eLRbdmXpvSn-pLDjUA.roa (raw, json) Hash identifier: fpKBkag1Eq814ryw6TGAsVdMfo9isfHsmaeJ5gB+g6M= Subject key identifier: 4F:4A:62:9C:74:04:F5:E2:D1:6D:D9:97:A6:F4:A7:FA:92:C3:8D:40 Certificate issuer: /CN=e23cb7d9e521e6469fd7e2ad13603fb7eebfe0e0 Certificate serial: 019B7CEE3EDB384BBEFDA61AE60683D4C4B2 Authority key identifier: E2:3C:B7:D9:E5:21:E6:46:9F:D7:E2:AD:13:60:3F:B7:EE:BF:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4jy32eUh5kaf1-KtE2A_t-6_4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/b2698c-6409-459c-b046-ea6f705d2c0d/1/T0pinHQE9eLRbdmXpvSn-pLDjUA.roa Signing time: Fri 02 Jan 2026 04:19:07 +0000 ROA not before: Fri 02 Jan 2026 04:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31117 IP address blocks: 91.148.0.0/18 maxlen: 18 185.242.56.0/22 maxlen: 22 2a03:1d80::/29 maxlen: 29 2a03:1d87:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/b2698c-6409-459c-b046-ea6f705d2c0d/1/4jy32eUh5kaf1-KtE2A_t-6_4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/b2698c-6409-459c-b046-ea6f705d2c0d/1/4jy32eUh5kaf1-KtE2A_t-6_4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/4jy32eUh5kaf1-KtE2A_t-6_4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:3e:db:38:4b:be:fd:a6:1a:e6:06:83:d4:c4:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e23cb7d9e521e6469fd7e2ad13603fb7eebfe0e0 Validity Not Before: Jan 2 04:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4f4a629c7404f5e2d16dd997a6f4a7fa92c38d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0d:28:1d:d4:d1:91:d3:d6:5d:2c:ef:36:7b: ea:12:d5:a3:df:1e:68:8e:87:79:50:a1:e4:23:a3: ac:3d:4b:af:81:f7:df:ee:23:8b:ed:48:29:a7:97: 2e:4e:93:b7:6c:9f:1a:d0:65:30:fc:1b:5f:e0:7b: 6c:0f:d8:14:c2:75:5e:2b:a8:ec:1d:dd:53:90:7e: 73:20:4d:f1:37:46:64:83:e6:c4:42:5d:16:e8:73: 33:11:d4:cf:7b:ca:90:f9:e7:8f:df:b0:52:6f:db: 52:0a:86:ac:81:b7:6f:31:0f:a2:fe:42:01:3a:59: a8:20:74:2f:f8:da:cb:a5:73:26:ce:5e:4e:33:81: fa:ae:5b:6d:34:d0:67:f9:16:76:7a:b5:e1:d2:b8: 22:77:ed:5f:eb:aa:b7:fe:be:62:a7:04:9a:1e:81: e0:e8:64:d1:6a:ae:d0:3d:9b:8c:47:fe:97:1e:e4: 31:62:1c:29:78:5c:72:32:74:ee:e9:43:46:5e:81: da:af:cf:6f:56:ef:e4:00:bf:81:6d:17:47:bb:4c: d7:9e:bc:21:d1:46:ed:14:77:52:b8:26:00:ea:ea: 21:4b:56:7b:28:b0:73:96:b9:97:cb:43:24:64:6d: d7:b7:9d:67:a2:8b:11:f3:8c:9b:c5:cf:ae:a8:ba: af:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:4A:62:9C:74:04:F5:E2:D1:6D:D9:97:A6:F4:A7:FA:92:C3:8D:40 X509v3 Authority Key Identifier: keyid:E2:3C:B7:D9:E5:21:E6:46:9F:D7:E2:AD:13:60:3F:B7:EE:BF:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4jy32eUh5kaf1-KtE2A_t-6_4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/b2698c-6409-459c-b046-ea6f705d2c0d/1/T0pinHQE9eLRbdmXpvSn-pLDjUA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/b2698c-6409-459c-b046-ea6f705d2c0d/1/4jy32eUh5kaf1-KtE2A_t-6_4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.148.0.0/18 185.242.56.0/22 IPv6: 2a03:1d80::/29 Signature Algorithm: sha256WithRSAEncryption 7a:ad:8b:86:aa:80:84:28:dc:21:f3:b4:ec:7b:cb:3c:81:47: 12:06:69:32:70:a6:2e:1d:3e:f3:1b:c7:8c:72:dd:56:0e:b1: 72:c4:9b:a0:2a:89:09:b7:f7:7c:33:2c:f9:46:d6:29:69:73: d0:7e:da:83:89:2c:20:a6:4c:d9:6c:07:ea:42:69:e0:c5:85: 8e:44:c5:cb:37:eb:b8:43:fa:9d:b7:d2:dd:a0:f0:bd:fc:c0: af:cb:cc:d4:f4:56:30:b3:e6:45:53:af:36:37:41:a9:53:51: 76:be:a4:f7:3a:4c:a9:4a:4a:2b:e6:76:a2:89:f4:50:b4:31: 87:f3:08:86:54:ed:f9:1e:e5:85:ad:cc:06:1f:34:34:41:be: 3a:37:9b:2b:2e:bd:66:9d:19:2d:da:fe:ae:16:4b:f6:a4:ca: ab:9a:b4:9c:ef:b8:a7:88:7d:1c:20:83:a3:ad:4b:12:1b:6c: eb:51:9d:cf:6b:f5:a1:00:7e:e9:5c:44:96:39:51:f8:09:61: f1:c4:04:07:e8:8c:5b:76:da:19:27:75:9b:8c:97:46:3c:00: 03:92:8b:33:d7:c2:2c:8e:15:08:3c:ae:86:dd:48:72:ce:d0: 17:b7:7c:a5:2e:05:83:3e:0f:50:06:75:c1:05:be:9c:a2:28: d3:72:87:af -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt87j7bOEu+/aYa5gaD1MSyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyM2NiN2Q5ZTUyMWU2NDY5ZmQ3ZTJhZDEzNjAzZmI3ZWVi ZmUwZTAwHhcNMjYwMTAyMDQxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZjRhNjI5Yzc0MDRmNWUyZDE2ZGQ5OTdhNmY0YTdmYTkyYzM4ZDQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2w0oHdTRkdPWXSzvNnvqEtWj3x5o jod5UKHkI6OsPUuvgfff7iOL7Ugpp5cuTpO3bJ8a0GUw/Btf4HtsD9gUwnVeK6js Hd1TkH5zIE3xN0Zkg+bEQl0W6HMzEdTPe8qQ+eeP37BSb9tSCoasgbdvMQ+i/kIB OlmoIHQv+NrLpXMmzl5OM4H6rlttNNBn+RZ2erXh0rgid+1f66q3/r5ipwSaHoHg 6GTRaq7QPZuMR/6XHuQxYhwpeFxyMnTu6UNGXoHar89vVu/kAL+BbRdHu0zXnrwh 0UbtFHdSuCYA6uohS1Z7KLBzlrmXy0MkZG3Xt51noosR84ybxc+uqLqvIQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFE9KYpx0BPXi0W3Zl6b0p/qSw41AMB8GA1UdIwQY MBaAFOI8t9nlIeZGn9firRNgP7fuv+DgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGp5MzJlVWg1a2FmMS1LdEUyQV90LTZfNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9iMjY5OGMtNjQwOS00NTljLWIwNDYt ZWE2ZjcwNWQyYzBkLzEvVDBwaW5IUUU5ZUxSYmRtWHB2U24tcExEalVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9iMjY5OGMtNjQwOS00NTljLWIwNDYtZWE2ZjcwNWQyYzBk LzEvNGp5MzJlVWg1a2FmMS1LdEUyQV90LTZfNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQGW5QAAwQC ufI4MA0EAgACMAcDBQMqAx2AMA0GCSqGSIb3DQEBCwUAA4IBAQB6rYuGqoCEKNwh 87Tse8s8gUcSBmkycKYuHT7zG8eMct1WDrFyxJugKokJt/d8Myz5RtYpaXPQftqD iSwgpkzZbAfqQmngxYWORMXLN+u4Q/qdt9LdoPC9/MCvy8zU9FYws+ZFU682N0Gp U1F2vqT3OkypSkor5naiifRQtDGH8wiGVO35HuWFrcwGHzQ0Qb46N5srLr1mnRkt 2v6uFkv2pMqrmrSc77iniH0cIIOjrUsSG2zrUZ3Pa/WhAH7pXESWOVH4CWHxxAQH 6IxbdtoZJ3WbjJdGPAADkosz18IsjhUIPK6G3UhyztAXt3ylLgWDPg9QBnXBBb6c oijTcoev -----END CERTIFICATE-----Generated at Mon Jan 26 14:44:28 2026 by rpki-client