This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/TzZ8DBm3Hp04BY0B397tAwAsJ1A.roa File: TzZ8DBm3Hp04BY0B397tAwAsJ1A.roa (raw, json) Hash identifier: 8hOHuxX3j27ZIrYwIouhG6F7KAUYojmRWpf6OzaimAU= Subject key identifier: 4F:36:7C:0C:19:B7:1E:9D:38:05:8D:01:DF:DE:ED:03:00:2C:27:50 Certificate issuer: /CN=a3688305fed5c99760aec7c894c6ba21e4ead675 Certificate serial: 019B7DCA79AF43D19F580A52AD2CE29392FB Authority key identifier: A3:68:83:05:FE:D5:C9:97:60:AE:C7:C8:94:C6:BA:21:E4:EA:D6:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/TzZ8DBm3Hp04BY0B397tAwAsJ1A.roa Signing time: Fri 02 Jan 2026 08:19:40 +0000 ROA not before: Fri 02 Jan 2026 08:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47692 IP address blocks: 5.183.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:79:af:43:d1:9f:58:0a:52:ad:2c:e2:93:92:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3688305fed5c99760aec7c894c6ba21e4ead675 Validity Not Before: Jan 2 08:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4f367c0c19b71e9d38058d01dfdeed03002c2750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d0:83:82:74:5e:7b:b6:4f:2f:89:c7:9d:34: 16:b6:c9:cb:6e:ed:10:98:55:95:27:ac:24:7e:a5: 4b:2a:f5:2a:04:78:aa:3f:83:a2:8f:46:bd:98:ca: 2d:34:98:e4:4a:84:b3:90:fe:cd:5d:15:a2:ae:4c: bc:fa:77:bb:69:32:c3:a2:0d:a3:2f:1b:7a:25:f5: b8:63:93:a9:22:b7:fe:53:26:a1:4f:75:a5:28:d3: 8f:dd:ce:33:a1:ba:d9:3e:2e:29:c1:fc:66:8f:1e: 7b:98:c5:be:7a:66:da:79:e7:ff:4a:8a:af:86:d3: c1:58:0f:59:f8:33:bf:19:e6:ad:0b:71:5b:fd:0f: 5c:11:c5:5c:e1:07:46:5e:1e:21:a1:d8:60:36:65: cb:a6:e8:ae:df:79:03:a2:75:c7:51:0f:56:12:f2: 0c:3a:77:50:59:40:73:4b:ba:d3:85:fb:36:9e:cd: 0d:b0:ba:a5:3d:63:98:14:b0:51:b6:95:d2:62:0f: d9:a9:d8:f8:b0:96:82:23:9d:23:3d:0e:d2:5a:4a: a7:f7:5b:b5:91:bb:3f:eb:b1:93:4c:55:b8:ef:13: f1:0e:76:8e:75:cd:58:e6:fd:cd:14:9d:70:71:45: 5b:20:01:81:e9:e3:0f:d9:01:23:74:ff:39:f0:16: 74:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:36:7C:0C:19:B7:1E:9D:38:05:8D:01:DF:DE:ED:03:00:2C:27:50 X509v3 Authority Key Identifier: keyid:A3:68:83:05:FE:D5:C9:97:60:AE:C7:C8:94:C6:BA:21:E4:EA:D6:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/TzZ8DBm3Hp04BY0B397tAwAsJ1A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.183.172.0/24 Signature Algorithm: sha256WithRSAEncryption 00:f9:cf:d5:8c:de:8c:86:a8:86:98:bf:a1:60:0c:48:70:6c: a2:6d:3f:8b:3b:e9:ba:9f:6c:68:6e:59:db:be:03:e2:86:fd: 26:51:6d:cd:38:4b:6f:ec:b7:e7:a6:0d:c1:5b:88:4b:d3:d6: 59:ba:1b:5a:c9:d2:31:f0:22:f0:3a:32:73:b1:73:83:73:9e: 8d:82:f2:e9:eb:5f:8c:46:47:15:79:c9:c2:a9:35:22:e6:70: 80:04:cf:56:06:ed:d8:a5:25:77:89:a1:65:6f:d8:7a:f6:34: 39:b6:52:84:80:f8:da:59:c9:7d:18:93:73:15:6f:4f:08:a8: e7:ee:80:bb:bf:af:bf:e6:fd:02:cb:39:bc:31:d7:62:c1:53: 5f:33:db:7d:61:8e:fc:64:92:27:f4:45:8f:23:53:99:94:d2: 2b:b0:5f:10:94:46:02:e5:b5:e9:88:bd:b8:06:49:61:bd:ef: 9a:ca:e2:37:27:3c:80:3c:c5:ed:c4:24:25:0d:ec:ab:83:43: 91:b6:a0:86:0a:d0:95:cf:3e:3c:86:a6:6f:d5:44:02:3d:44: 4e:7a:20:4b:ff:b1:0c:b2:7b:22:10:19:8b:e5:6e:23:e1:d5: cc:8c:97:b1:d3:d5:15:b7:6d:0b:9a:a3:4b:18:19:d3:c9:b0: 9c:dd:c4:e3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9ynmvQ9GfWApSrSzik5L7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzNjg4MzA1ZmVkNWM5OTc2MGFlYzdjODk0YzZiYTIxZTRl YWQ2NzUwHhcNMjYwMTAyMDgxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZjM2N2MwYzE5YjcxZTlkMzgwNThkMDFkZmRlZWQwMzAwMmMyNzUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtCDgnRee7ZPL4nHnTQWtsnLbu0Q mFWVJ6wkfqVLKvUqBHiqP4Oij0a9mMotNJjkSoSzkP7NXRWirky8+ne7aTLDog2j Lxt6JfW4Y5OpIrf+UyahT3WlKNOP3c4zobrZPi4pwfxmjx57mMW+embaeef/Soqv htPBWA9Z+DO/GeatC3Fb/Q9cEcVc4QdGXh4hodhgNmXLpuiu33kDonXHUQ9WEvIM OndQWUBzS7rThfs2ns0NsLqlPWOYFLBRtpXSYg/Zqdj4sJaCI50jPQ7SWkqn91u1 kbs/67GTTFW47xPxDnaOdc1Y5v3NFJ1wcUVbIAGB6eMP2QEjdP858BZ0lQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE82fAwZtx6dOAWNAd/e7QMALCdQMB8GA1UdIwQY MBaAFKNogwX+1cmXYK7HyJTGuiHk6tZ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzJpREJmN1Z5WmRncnNmSWxNYTZJZVRxMW5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9mOWUyNTctMDE2Mi00ZGVmLTk2YWQt ZGVjOTc5NmY2MjIzLzEvVHpaOERCbTNIcDA0QlkwQjM5N3RBd0FzSjFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9mOWUyNTctMDE2Mi00ZGVmLTk2YWQtZGVjOTc5NmY2MjIz LzEvbzJpREJmN1Z5WmRncnNmSWxNYTZJZVRxMW5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbesMA0G CSqGSIb3DQEBCwUAA4IBAQAA+c/VjN6MhqiGmL+hYAxIcGyibT+LO+m6n2xoblnb vgPihv0mUW3NOEtv7Lfnpg3BW4hL09ZZuhtaydIx8CLwOjJzsXODc56NgvLp61+M RkcVecnCqTUi5nCABM9WBu3YpSV3iaFlb9h69jQ5tlKEgPjaWcl9GJNzFW9PCKjn 7oC7v6+/5v0Cyzm8MddiwVNfM9t9YY78ZJIn9EWPI1OZlNIrsF8QlEYC5bXpiL24 Bklhve+ayuI3JzyAPMXtxCQlDeyrg0ORtqCGCtCVzz48hqZv1UQCPUROeiBL/7EM snsiEBmL5W4j4dXMjJex09UVt20LmqNLGBnTybCc3cTj -----END CERTIFICATE-----Generated at Sun Jan 25 13:03:32 2026 by rpki-client