This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/tVTj2VfcWC8MlPPtw5H08Ah033c.roa File: tVTj2VfcWC8MlPPtw5H08Ah033c.roa (raw, json) Hash identifier: vnVztEiFiRrUOyK2US2Elxv/6sJ52wKVTB11SJJl2Kg= Subject key identifier: B5:54:E3:D9:57:DC:58:2F:0C:94:F3:ED:C3:91:F4:F0:08:74:DF:77 Certificate issuer: /CN=a42000c4f4ec4a03cd4d3657e01b70034ec23b97 Certificate serial: 019B783510A51E63139A1864E5A1231FC716 Authority key identifier: A4:20:00:C4:F4:EC:4A:03:CD:4D:36:57:E0:1B:70:03:4E:C2:3B:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCAAxPTsSgPNTTZX4BtwA07CO5c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/tVTj2VfcWC8MlPPtw5H08Ah033c.roa Signing time: Thu 01 Jan 2026 06:18:22 +0000 ROA not before: Thu 01 Jan 2026 06:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56460 IP address blocks: 178.218.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/pCAAxPTsSgPNTTZX4BtwA07CO5c.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/pCAAxPTsSgPNTTZX4BtwA07CO5c.mft rsync://rpki.ripe.net/repository/DEFAULT/pCAAxPTsSgPNTTZX4BtwA07CO5c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:10:a5:1e:63:13:9a:18:64:e5:a1:23:1f:c7:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a42000c4f4ec4a03cd4d3657e01b70034ec23b97 Validity Not Before: Jan 1 06:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b554e3d957dc582f0c94f3edc391f4f00874df77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:93:cd:36:ef:2f:ff:87:78:56:4c:16:ca:76: e7:4b:30:5c:b5:86:68:cb:b9:06:9e:7a:c0:76:91: 19:77:82:02:d9:19:e1:0a:9b:f8:76:e4:3a:af:a4: 5e:3d:33:53:ac:12:8f:a2:44:13:bc:7e:f7:d8:4f: e6:20:c0:72:b9:02:e1:b7:bb:bb:fd:f8:fc:12:64: 95:24:6d:13:dc:7c:b1:79:ed:30:92:64:4c:5f:f4: 39:29:f2:37:f1:75:34:59:b5:c4:e7:41:6c:2f:08: bb:f7:93:ff:d4:81:a7:e5:0c:df:09:b6:fa:98:50: d3:59:09:ea:9c:aa:97:5c:d3:30:7a:a4:78:53:59: 8e:5c:58:83:ed:a2:96:b6:8a:84:c3:32:4a:22:5d: f0:21:49:6e:44:36:22:30:a0:f8:51:b1:99:64:eb: 0f:a5:ca:82:5d:a9:3e:d8:bd:29:cf:d0:b1:f5:9d: 50:3f:e0:d2:b9:8a:e8:ad:1c:0a:e6:2e:53:74:8f: d4:26:51:ea:e3:f0:a1:c0:b5:3b:2f:05:1c:51:ee: b0:03:3d:1c:8f:3d:26:33:63:37:5b:a0:66:8f:87: 3c:fc:a2:67:74:91:c2:76:fb:a1:54:06:7e:a9:f5: 66:2d:45:5b:87:9c:85:b7:f6:ab:a7:64:00:7d:70: 47:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:54:E3:D9:57:DC:58:2F:0C:94:F3:ED:C3:91:F4:F0:08:74:DF:77 X509v3 Authority Key Identifier: keyid:A4:20:00:C4:F4:EC:4A:03:CD:4D:36:57:E0:1B:70:03:4E:C2:3B:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCAAxPTsSgPNTTZX4BtwA07CO5c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/tVTj2VfcWC8MlPPtw5H08Ah033c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/pCAAxPTsSgPNTTZX4BtwA07CO5c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.218.240.0/22 Signature Algorithm: sha256WithRSAEncryption 80:30:30:97:f6:77:36:62:83:6d:75:c3:73:8e:0d:bc:a9:85: 06:bc:f6:c4:20:93:ca:d4:3f:6a:46:b6:c5:90:9d:68:72:b0: fb:a3:38:3f:b8:3b:0c:67:ed:bd:22:22:87:d5:fc:06:23:55: b7:47:ab:16:60:09:8b:0f:a1:57:87:ca:ed:cc:08:bc:d7:46: 4c:ce:c9:68:90:ba:02:61:e1:bf:76:c6:57:2a:e9:c6:76:c4: 69:e6:59:6e:d3:f1:a7:7d:d0:28:2f:0c:b9:78:ed:2b:60:14: 04:df:e0:82:ef:60:de:a2:ee:cd:c5:20:9e:1b:c0:bb:ee:f6: c0:a0:1a:31:28:bc:50:38:c7:d6:de:47:00:8f:4f:25:70:ae: d4:23:f4:a1:f1:36:a9:0f:cf:bd:17:9d:7e:56:0b:1e:2a:cb: b2:35:52:7a:29:40:8e:49:30:c7:b0:64:6f:0c:12:80:d7:af: ed:31:c2:c8:87:4f:c9:0c:15:3c:5d:38:ba:ee:74:bc:4a:c9: 60:ba:4c:bc:62:44:72:19:90:60:8e:7e:e5:3f:6b:0b:d6:c6: 9a:f5:b9:8a:06:b7:4c:a6:ea:38:f6:51:7c:bc:f4:a5:b8:04: a8:2f:f2:47:2d:59:0f:d4:f9:a8:a7:ca:69:83:29:d0:f2:aa: b3:a2:72:dc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NRClHmMTmhhk5aEjH8cWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0MjAwMGM0ZjRlYzRhMDNjZDRkMzY1N2UwMWI3MDAzNGVj MjNiOTcwHhcNMjYwMTAxMDYxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTU0ZTNkOTU3ZGM1ODJmMGM5NGYzZWRjMzkxZjRmMDA4NzRkZjc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJPNNu8v/4d4VkwWynbnSzBctYZo y7kGnnrAdpEZd4IC2RnhCpv4duQ6r6RePTNTrBKPokQTvH732E/mIMByuQLht7u7 /fj8EmSVJG0T3Hyxee0wkmRMX/Q5KfI38XU0WbXE50FsLwi795P/1IGn5QzfCbb6 mFDTWQnqnKqXXNMweqR4U1mOXFiD7aKWtoqEwzJKIl3wIUluRDYiMKD4UbGZZOsP pcqCXak+2L0pz9Cx9Z1QP+DSuYrorRwK5i5TdI/UJlHq4/ChwLU7LwUcUe6wAz0c jz0mM2M3W6Bmj4c8/KJndJHCdvuhVAZ+qfVmLUVbh5yFt/arp2QAfXBHqQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLVU49lX3FgvDJTz7cOR9PAIdN93MB8GA1UdIwQY MBaAFKQgAMT07EoDzU02V+AbcANOwjuXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcENBQXhQVHNTZ1BOVFRaWDRCdHdBMDdDTzVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8xNjNkNzctNGZlYS00MTMxLWJlY2It MGYyMmQ4OTY4OWEwLzEvdFZUajJWZmNXQzhNbFBQdHc1SDA4QWgwMzNjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS8xNjNkNzctNGZlYS00MTMxLWJlY2ItMGYyMmQ4OTY4OWEw LzEvcENBQXhQVHNTZ1BOVFRaWDRCdHdBMDdDTzVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCstrwMA0G CSqGSIb3DQEBCwUAA4IBAQCAMDCX9nc2YoNtdcNzjg28qYUGvPbEIJPK1D9qRrbF kJ1ocrD7ozg/uDsMZ+29IiKH1fwGI1W3R6sWYAmLD6FXh8rtzAi810ZMzslokLoC YeG/dsZXKunGdsRp5llu0/GnfdAoLwy5eO0rYBQE3+CC72Deou7NxSCeG8C77vbA oBoxKLxQOMfW3kcAj08lcK7UI/Sh8TapD8+9F51+VgseKsuyNVJ6KUCOSTDHsGRv DBKA16/tMcLIh0/JDBU8XTi67nS8Sslguky8YkRyGZBgjn7lP2sL1saa9bmKBrdM puo49lF8vPSluASoL/JHLVkP1Pmop8ppgynQ8qqzonLc -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:07 2026 by rpki-client