This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/ebd67c-009a-45fc-8ff7-2e70ded9d94f/1/tTH9z8mwGJDfT_IMVoZEr9XeyPo.roa File: tTH9z8mwGJDfT_IMVoZEr9XeyPo.roa (raw, json) Hash identifier: dBYpyH5AjRb6Djna2Zc1jF8y+nZctTiJ8dcSq4LnTek= Subject key identifier: B5:31:FD:CF:C9:B0:18:90:DF:4F:F2:0C:56:86:44:AF:D5:DE:C8:FA Certificate issuer: /CN=ba8723651cabcf0009cf281a2a51c5b4e905622f Certificate serial: 019B7C80373731A162763098343F8472D919 Authority key identifier: BA:87:23:65:1C:AB:CF:00:09:CF:28:1A:2A:51:C5:B4:E9:05:62:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uocjZRyrzwAJzygaKlHFtOkFYi8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/ebd67c-009a-45fc-8ff7-2e70ded9d94f/1/tTH9z8mwGJDfT_IMVoZEr9XeyPo.roa Signing time: Fri 02 Jan 2026 02:18:56 +0000 ROA not before: Fri 02 Jan 2026 02:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212997 IP address blocks: 185.18.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/ebd67c-009a-45fc-8ff7-2e70ded9d94f/1/uocjZRyrzwAJzygaKlHFtOkFYi8.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/ebd67c-009a-45fc-8ff7-2e70ded9d94f/1/uocjZRyrzwAJzygaKlHFtOkFYi8.mft rsync://rpki.ripe.net/repository/DEFAULT/uocjZRyrzwAJzygaKlHFtOkFYi8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:37:37:31:a1:62:76:30:98:34:3f:84:72:d9:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba8723651cabcf0009cf281a2a51c5b4e905622f Validity Not Before: Jan 2 02:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b531fdcfc9b01890df4ff20c568644afd5dec8fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ff:e4:74:d7:8c:5c:e6:c2:a6:a6:b6:28:57: a4:d7:8d:ac:b8:2b:88:a0:38:36:05:82:be:23:b7: ba:40:45:7b:d9:06:aa:bd:87:e5:6d:8f:2b:a4:53: 25:a9:06:a6:1f:6d:b4:2b:df:6d:11:de:5b:b3:86: 78:7b:d2:88:66:40:d5:08:75:d8:b5:0d:ca:ad:27: 06:3c:02:a0:46:b4:bf:3b:b4:54:e1:f9:22:a7:46: 4e:28:5f:f3:16:13:fe:06:38:78:a8:f3:34:9f:cc: fb:c2:14:7d:79:77:78:ee:cf:38:f2:87:4a:5d:d7: 99:0d:16:78:c6:ac:6f:01:61:a6:bc:ec:bf:ad:2a: 4c:65:5f:13:24:38:b3:45:12:e9:c5:1a:4d:7f:dd: bc:e7:99:98:50:59:22:33:23:1b:d4:ae:eb:e0:91: b9:65:64:fd:62:e5:ff:06:6c:47:64:19:b3:03:24: 36:ee:39:39:56:9c:39:cc:11:aa:31:67:d9:da:7c: 07:52:59:99:6f:e1:b8:88:14:26:12:97:97:66:b0: 55:c4:6f:16:83:95:97:e2:c1:6c:dc:6c:5a:40:93: 93:d5:52:0a:e5:c8:c7:27:70:f4:a5:67:37:be:b2: 08:e2:65:e3:dd:62:b2:52:46:f4:74:e7:49:67:7a: ae:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:31:FD:CF:C9:B0:18:90:DF:4F:F2:0C:56:86:44:AF:D5:DE:C8:FA X509v3 Authority Key Identifier: keyid:BA:87:23:65:1C:AB:CF:00:09:CF:28:1A:2A:51:C5:B4:E9:05:62:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uocjZRyrzwAJzygaKlHFtOkFYi8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/ebd67c-009a-45fc-8ff7-2e70ded9d94f/1/tTH9z8mwGJDfT_IMVoZEr9XeyPo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/ebd67c-009a-45fc-8ff7-2e70ded9d94f/1/uocjZRyrzwAJzygaKlHFtOkFYi8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.18.235.0/24 Signature Algorithm: sha256WithRSAEncryption c9:39:28:e7:5c:c5:6a:85:59:03:0e:53:ba:78:c8:da:e0:79: 2b:9a:36:7e:8e:3c:7c:75:07:db:e2:92:9e:19:58:ee:f4:ee: d8:ce:88:a2:50:5c:c3:fc:41:31:aa:09:83:82:4c:b0:d4:d6: f2:75:6d:54:af:90:6a:11:cf:16:67:f5:61:5f:73:65:2d:6b: 4d:95:5d:9c:22:1e:02:12:49:e0:a1:29:94:d3:bb:31:b4:9d: cf:8c:39:32:eb:43:5c:1f:24:8b:b0:f0:06:6a:6b:dc:51:e5: 96:ba:a9:be:47:e4:36:0d:a6:13:9d:f3:3b:15:65:ee:3f:47: 3d:42:2d:9f:ab:c2:c2:2f:76:5c:f5:1b:73:83:e6:e7:7e:1f: 2c:0a:1f:ce:9f:4b:70:8e:ca:00:e1:33:49:8c:25:7d:5b:f3: a2:50:59:d7:b2:0d:d9:72:d8:c8:79:2a:67:28:08:f3:a1:08: 0f:44:0f:36:2c:56:65:48:0f:a1:37:c6:94:6a:bf:5b:07:a5: f6:55:0e:51:0f:6e:26:40:3f:6e:ad:8f:54:e1:5c:2e:df:52: 8a:d9:8f:26:a9:7c:8e:60:bd:81:a6:67:25:97:e1:f6:4c:24: bd:50:d0:94:a2:76:c2:a0:d0:95:5a:8d:f6:87:12:66:64:dd: dd:4e:22:57 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gDc3MaFidjCYND+EctkZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhODcyMzY1MWNhYmNmMDAwOWNmMjgxYTJhNTFjNWI0ZTkw NTYyMmYwHhcNMjYwMTAyMDIxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTMxZmRjZmM5YjAxODkwZGY0ZmYyMGM1Njg2NDRhZmQ1ZGVjOGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtv/kdNeMXObCpqa2KFek142suCuI oDg2BYK+I7e6QEV72QaqvYflbY8rpFMlqQamH220K99tEd5bs4Z4e9KIZkDVCHXY tQ3KrScGPAKgRrS/O7RU4fkip0ZOKF/zFhP+Bjh4qPM0n8z7whR9eXd47s848odK XdeZDRZ4xqxvAWGmvOy/rSpMZV8TJDizRRLpxRpNf92855mYUFkiMyMb1K7r4JG5 ZWT9YuX/BmxHZBmzAyQ27jk5Vpw5zBGqMWfZ2nwHUlmZb+G4iBQmEpeXZrBVxG8W g5WX4sFs3GxaQJOT1VIK5cjHJ3D0pWc3vrII4mXj3WKyUkb0dOdJZ3quQQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLUx/c/JsBiQ30/yDFaGRK/V3sj6MB8GA1UdIwQY MBaAFLqHI2Ucq88ACc8oGipRxbTpBWIvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW9jalpSeXJ6d0FKenlnYUtsSEZ0T2tGWWk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9lYmQ2N2MtMDA5YS00NWZjLThmZjct MmU3MGRlZDlkOTRmLzEvdFRIOXo4bXdHSkRmVF9JTVZvWkVyOVhleVBvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi9lYmQ2N2MtMDA5YS00NWZjLThmZjctMmU3MGRlZDlkOTRm LzEvdW9jalpSeXJ6d0FKenlnYUtsSEZ0T2tGWWk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRLrMA0G CSqGSIb3DQEBCwUAA4IBAQDJOSjnXMVqhVkDDlO6eMja4HkrmjZ+jjx8dQfb4pKe GVju9O7YzoiiUFzD/EExqgmDgkyw1NbydW1Ur5BqEc8WZ/VhX3NlLWtNlV2cIh4C EkngoSmU07sxtJ3PjDky60NcHySLsPAGamvcUeWWuqm+R+Q2DaYTnfM7FWXuP0c9 Qi2fq8LCL3Zc9Rtzg+bnfh8sCh/On0twjsoA4TNJjCV9W/OiUFnXsg3ZctjIeSpn KAjzoQgPRA82LFZlSA+hN8aUar9bB6X2VQ5RD24mQD9urY9U4Vwu31KK2Y8mqXyO YL2Bpmcll+H2TCS9UNCUonbCoNCVWo32hxJmZN3dTiJX -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:53 2026 by rpki-client