This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TpE0DuP8Mw6CTXYw4ySwlEKf3f8.roa File: TpE0DuP8Mw6CTXYw4ySwlEKf3f8.roa (raw, json) Hash identifier: IATIDCMEa6O9YiZhEYOaf75cWoMv6GvzQS0vn1Zk4es= Subject key identifier: 4E:91:34:0E:E3:FC:33:0E:82:4D:76:30:E3:24:B0:94:42:9F:DD:FF Certificate issuer: /CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c Certificate serial: 019B7DC959612E0AC729E737480DAB3C08EB Authority key identifier: 4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TpE0DuP8Mw6CTXYw4ySwlEKf3f8.roa Signing time: Fri 02 Jan 2026 08:18:26 +0000 ROA not before: Fri 02 Jan 2026 08:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207031 IP address blocks: 185.168.72.0/22 maxlen: 22 2a0b:f200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.mft rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:59:61:2e:0a:c7:29:e7:37:48:0d:ab:3c:08:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c Validity Not Before: Jan 2 08:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4e91340ee3fc330e824d7630e324b094429fddff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e0:fc:bc:d8:45:3e:55:41:18:22:60:1c:54: ff:f0:b2:28:57:8e:22:4a:15:8f:02:aa:ed:94:7c: f3:54:c3:1c:89:4e:47:4f:40:3c:8f:4b:96:03:ac: 11:4b:48:87:eb:30:a9:1e:f3:30:13:34:99:22:64: 7b:b1:ab:99:64:0e:b8:9b:d6:ea:e6:95:bd:6c:4a: d2:e8:89:31:60:06:4d:ee:ea:ef:91:6a:16:b8:67: 7f:57:8e:b6:68:4f:ff:b0:8c:22:c7:39:ee:ab:aa: 4d:8c:02:75:00:57:17:df:26:45:12:f3:7c:e5:0c: a7:c2:00:18:b8:ef:fd:d1:7e:d5:9b:45:d6:a7:13: 08:a0:5e:1b:ac:f2:05:6c:a3:ab:d6:57:1b:a0:68: 14:36:0d:ba:25:8a:a9:6d:b7:91:2c:83:85:ab:a8: 26:ac:51:ff:fb:51:f0:92:02:b9:b1:f7:56:b1:8f: 27:f5:ca:6c:bf:31:a0:b5:69:7c:2b:9c:48:23:53: 7e:db:91:50:12:e5:1e:19:e0:85:e8:c0:3a:78:19: 43:3b:48:c2:88:3a:d1:6d:17:58:73:a4:5f:c4:db: 32:76:11:51:b1:07:3e:57:35:bd:45:d1:b1:18:3e: c8:8c:5b:8a:18:43:06:16:b5:fb:23:c9:2c:df:7a: ec:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:91:34:0E:E3:FC:33:0E:82:4D:76:30:E3:24:B0:94:42:9F:DD:FF X509v3 Authority Key Identifier: keyid:4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TpE0DuP8Mw6CTXYw4ySwlEKf3f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.168.72.0/22 IPv6: 2a0b:f200::/32 Signature Algorithm: sha256WithRSAEncryption be:32:82:54:96:72:92:48:ab:b0:14:a3:4a:f5:73:e4:72:96: c5:e7:e2:f3:e3:7f:9c:31:6d:ec:72:e7:db:a1:d6:7e:8a:42: c3:04:11:bf:ea:4f:b8:8a:cf:f5:f7:24:b9:e8:92:bd:ba:f1: a7:b3:a5:d8:02:82:05:8f:cc:65:cb:c7:81:75:1e:72:0b:7f: 03:79:d2:42:c6:3f:84:12:de:6d:61:5f:8e:ba:7e:e0:22:36: 10:5a:8a:8b:bf:a9:05:91:bd:8d:20:d2:44:b9:e3:b7:7a:0e: 97:44:3d:1f:11:05:8e:c7:b6:8c:c0:bf:f1:1f:45:ea:88:32: cc:10:42:54:1a:ba:da:d3:fb:d6:b4:5e:f4:5d:5e:a5:a9:05: fa:52:2c:f1:bd:1a:a1:4e:da:05:da:67:df:53:1f:6b:5c:54: 9e:ef:51:28:58:09:39:c2:9f:50:f0:53:37:e0:cf:e9:57:3d: c0:5e:42:3e:10:ce:cc:8b:57:e2:b7:52:e3:40:b3:a3:8a:2d: d3:64:c4:0f:1b:9a:cb:68:2a:69:c6:67:69:34:dc:78:7e:86: 7b:b1:ac:39:3a:a9:99:16:43:e7:8f:9c:e8:99:d1:d6:9f:b1: e0:4e:0a:03:c2:78:b6:51:61:f8:ad:bc:62:90:93:1e:42:de: e8:2d:c1:8e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9yVlhLgrHKec3SA2rPAjrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMGFkZTU0YzI3ZTZmY2RkYWNlMjYyYzRmZGY3OTBmMzIw ZmVkOWMwHhcNMjYwMTAyMDgxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZTkxMzQwZWUzZmMzMzBlODI0ZDc2MzBlMzI0YjA5NDQyOWZkZGZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+D8vNhFPlVBGCJgHFT/8LIoV44i ShWPAqrtlHzzVMMciU5HT0A8j0uWA6wRS0iH6zCpHvMwEzSZImR7sauZZA64m9bq 5pW9bErS6IkxYAZN7urvkWoWuGd/V462aE//sIwixznuq6pNjAJ1AFcX3yZFEvN8 5QynwgAYuO/90X7Vm0XWpxMIoF4brPIFbKOr1lcboGgUNg26JYqpbbeRLIOFq6gm rFH/+1HwkgK5sfdWsY8n9cpsvzGgtWl8K5xII1N+25FQEuUeGeCF6MA6eBlDO0jC iDrRbRdYc6RfxNsydhFRsQc+VzW9RdGxGD7IjFuKGEMGFrX7I8ks33rspQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFE6RNA7j/DMOgk12MOMksJRCn93/MB8GA1UdIwQY MBaAFE0K3lTCfm/N2s4mLE/feQ8yD+2cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFFyZVZNSi1iODNhemlZc1Q5OTVEeklQN1p3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC84ZWZkOGItZTUxNi00YzQ5LTkyY2It ODkyOTZjY2IzNWY1LzEvVHBFMER1UDhNdzZDVFhZdzR5U3dsRUtmM2Y4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC84ZWZkOGItZTUxNi00YzQ5LTkyY2ItODkyOTZjY2IzNWY1 LzEvVFFyZVZNSi1iODNhemlZc1Q5OTVEeklQN1p3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuahIMA0E AgACMAcDBQAqC/IAMA0GCSqGSIb3DQEBCwUAA4IBAQC+MoJUlnKSSKuwFKNK9XPk cpbF5+Lz43+cMW3scufbodZ+ikLDBBG/6k+4is/19yS56JK9uvGns6XYAoIFj8xl y8eBdR5yC38DedJCxj+EEt5tYV+Oun7gIjYQWoqLv6kFkb2NINJEueO3eg6XRD0f EQWOx7aMwL/xH0XqiDLMEEJUGrra0/vWtF70XV6lqQX6UizxvRqhTtoF2mffUx9r XFSe71EoWAk5wp9Q8FM34M/pVz3AXkI+EM7Mi1fit1LjQLOjii3TZMQPG5rLaCpp xmdpNNx4foZ7saw5OqmZFkPnj5zomdHWn7HgTgoDwni2UWH4rbxikJMeQt7oLcGO -----END CERTIFICATE-----Generated at Mon Jan 26 10:53:02 2026 by rpki-client