This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/TzTjCc4J2RbbM44brOMVTM9nbW4.roa File: TzTjCc4J2RbbM44brOMVTM9nbW4.roa (raw, json) Hash identifier: UxYT8KfLgilGcmAFZSBgF3+eCPwbVYJ01EP7yIXWi5A= Subject key identifier: 4F:34:E3:09:CE:09:D9:16:DB:33:8E:1B:AC:E3:15:4C:CF:67:6D:6E Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071 Certificate serial: 019A76E7B85B0CB73943A91BDDE0DFB15C5C Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/TzTjCc4J2RbbM44brOMVTM9nbW4.roa Signing time: Wed 12 Nov 2025 07:11:28 +0000 ROA not before: Wed 12 Nov 2025 07:11:28 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 39686 IP address blocks: 2a07:3500:11e0::/48 maxlen: 48 2a07:3501:1031::/48 maxlen: 48 2a07:3501:1032::/47 maxlen: 47 2a07:3501:1050::/48 maxlen: 48 2a07:3501:1060::/48 maxlen: 48 2a07:3502:10e0::/48 maxlen: 48 2a07:3502:11c0::/48 maxlen: 48 2a07:3502:1210::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.mft rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:76:e7:b8:5b:0c:b7:39:43:a9:1b:dd:e0:df:b1:5c:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071 Validity Not Before: Nov 12 07:11:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4f34e309ce09d916db338e1bace3154ccf676d6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:90:2a:a7:b9:86:bc:bf:ea:6f:65:24:3e:d1: 23:8c:eb:91:8a:7f:a9:27:9e:9a:f2:24:f0:cd:84: b1:d0:5a:eb:4f:95:b3:6f:99:b5:9e:11:00:49:d4: 76:82:4d:65:4f:59:a0:d4:0e:6f:c4:3c:01:d1:a9: f5:47:7f:60:6d:65:94:3a:65:96:3f:f6:ef:cb:f0: 14:f4:45:ab:4f:67:5f:b0:91:19:b7:0c:d2:93:f7: dc:1e:a7:07:2d:01:7c:6f:70:d5:23:17:b7:79:df: 87:67:3f:1b:72:f0:e4:a9:c5:96:d1:62:d1:d7:54: 55:f9:1b:70:cd:fe:36:f8:9e:47:a7:60:5a:4a:f8: c9:3c:ed:03:36:44:d4:e9:18:81:d2:cf:a9:90:d8: b7:37:2b:06:a1:2b:4b:45:8f:fb:af:8b:af:19:df: 89:d6:9f:37:92:fd:ca:c5:26:6c:0d:fc:21:4e:06: a3:21:79:91:7e:b2:cd:88:76:3c:2b:23:33:78:bd: 51:94:cf:3a:ea:0f:4d:4a:b2:3a:52:a1:5a:26:d3: 3f:ce:a4:d8:fb:29:94:e1:52:fe:91:b8:44:27:b4: 0f:42:bd:97:f8:f4:70:84:ba:08:ab:23:c5:07:c6: 75:b0:09:8c:61:80:e0:59:d2:db:79:b5:9f:8e:22: 00:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:34:E3:09:CE:09:D9:16:DB:33:8E:1B:AC:E3:15:4C:CF:67:6D:6E X509v3 Authority Key Identifier: keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/TzTjCc4J2RbbM44brOMVTM9nbW4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:3500:11e0::/48 2a07:3501:1031::-2a07:3501:1033:ffff:ffff:ffff:ffff:ffff 2a07:3501:1050::/48 2a07:3501:1060::/48 2a07:3502:10e0::/48 2a07:3502:11c0::/48 2a07:3502:1210::/46 Signature Algorithm: sha256WithRSAEncryption 3c:2e:a4:30:23:f6:a0:6c:bb:32:e9:9c:bd:98:db:77:30:8f: c5:ea:e7:de:54:3a:da:1c:cd:96:54:10:29:16:0b:3b:a2:3d: 20:3e:c4:8b:d0:bc:d3:48:23:55:83:30:44:62:be:b1:e3:aa: 23:40:44:14:52:ab:54:5d:36:e4:7b:a0:e6:cb:23:82:e8:05: 06:1d:aa:6e:45:f4:c4:a2:b3:61:08:0e:6b:b4:90:f4:ab:9d: 86:4d:79:24:fb:8f:48:f6:7c:f8:48:45:47:4d:ba:93:36:87: 59:06:1e:fe:52:fc:1a:43:d5:98:b5:fa:1c:b0:d0:23:53:33: a7:9e:75:e3:50:d5:ce:ae:79:14:d0:d0:50:1a:ac:ce:cc:c7: be:7a:1f:1a:2b:e8:3f:ea:cd:13:c2:50:a6:27:00:dc:96:e4: 67:e0:36:01:c2:11:5b:33:66:7b:62:c2:f9:77:7c:e8:9c:e4: 7f:ab:27:f7:cd:1e:ef:38:c7:f5:98:8b:09:14:e6:a8:6f:c6: 7f:16:33:bd:44:ba:43:c2:9c:72:50:37:56:45:81:3b:f8:13: f4:e7:66:51:ea:d9:49:44:c8:0b:c9:29:f3:4e:29:02:e6:d1: 1e:7b:1e:e3:c3:e1:6e:02:94:43:ea:36:d5:44:6b:ec:e2:20: 06:55:e0:d5 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgISAZp257hbDLc5Q6kb3eDfsVxcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNWQyOGQxNjYyNmJjNWRjYWJmMmU5MTU0MzU3ODJiOTZl MTQwNzEwHhcNMjUxMTEyMDcxMTI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZjM0ZTMwOWNlMDlkOTE2ZGIzMzhlMWJhY2UzMTU0Y2NmNjc2ZDZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZAqp7mGvL/qb2UkPtEjjOuRin+p J56a8iTwzYSx0FrrT5Wzb5m1nhEASdR2gk1lT1mg1A5vxDwB0an1R39gbWWUOmWW P/bvy/AU9EWrT2dfsJEZtwzSk/fcHqcHLQF8b3DVIxe3ed+HZz8bcvDkqcWW0WLR 11RV+Rtwzf42+J5Hp2BaSvjJPO0DNkTU6RiB0s+pkNi3NysGoStLRY/7r4uvGd+J 1p83kv3KxSZsDfwhTgajIXmRfrLNiHY8KyMzeL1RlM866g9NSrI6UqFaJtM/zqTY +ymU4VL+kbhEJ7QPQr2X+PRwhLoIqyPFB8Z1sAmMYYDgWdLbebWfjiIAiwIDAQAB o4ICTTCCAkkwHQYDVR0OBBYEFE804wnOCdkW2zOOG6zjFUzPZ21uMB8GA1UdIwQY MBaAFLBdKNFmJrxdyr8ukVQ1eCuW4UBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEt YWQ1NzU1MjJiMzY1LzEvVHpUakNjNEoyUmJiTTQ0YnJPTVZUTTluYlc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEtYWQ1NzU1MjJiMzY1 LzEvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGMGCCsGAQUFBwEHAQH/BFQwUjBQBAIAAjBKAwcAKgc1ABHg MBIDBwAqBzUBEDEDBwIqBzUBEDADBwAqBzUBEFADBwAqBzUBEGADBwAqBzUCEOAD BwAqBzUCEcADBwIqBzUCEhAwDQYJKoZIhvcNAQELBQADggEBADwupDAj9qBsuzLp nL2Y23cwj8Xq595UOtoczZZUECkWCzuiPSA+xIvQvNNII1WDMERivrHjqiNARBRS q1RdNuR7oObLI4LoBQYdqm5F9MSis2EIDmu0kPSrnYZNeST7j0j2fPhIRUdNupM2 h1kGHv5S/BpD1Zi1+hyw0CNTM6eedeNQ1c6ueRTQ0FAarM7Mx756Hxor6D/qzRPC UKYnANyW5GfgNgHCEVszZntiwvl3fOic5H+rJ/fNHu84x/WYiwkU5qhvxn8WM71E ukPCnHJQN1ZFgTv4E/TnZlHq2UlEyAvJKfNOKQLm0R57HuPD4W4ClEPqNtVEa+zi IAZV4NU= -----END CERTIFICATE-----Generated at Sat Dec 6 18:39:25 2025 by rpki-client