This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/TYwN3t32Z7xKSSbdeezcjvxtZPw.roa File: TYwN3t32Z7xKSSbdeezcjvxtZPw.roa (raw, json) Hash identifier: vACqWvZBDZtntkC9z+JDWdjz/Gh+6JNnrhSbEy009gw= Subject key identifier: 4D:8C:0D:DE:DD:F6:67:BC:4A:49:26:DD:79:EC:DC:8E:FC:6D:64:FC Certificate issuer: /CN=c375113fd4bfbd38b1043843c30926a110cc0f51 Certificate serial: 019B7F14FCFD2EA8AB10D70F3F2C25644E8E Authority key identifier: C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/TYwN3t32Z7xKSSbdeezcjvxtZPw.roa Signing time: Fri 02 Jan 2026 14:20:40 +0000 ROA not before: Fri 02 Jan 2026 14:20:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42417 IP address blocks: 193.239.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:fc:fd:2e:a8:ab:10:d7:0f:3f:2c:25:64:4e:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c375113fd4bfbd38b1043843c30926a110cc0f51 Validity Not Before: Jan 2 14:20:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d8c0ddeddf667bc4a4926dd79ecdc8efc6d64fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:29:8d:28:f9:d1:28:46:cc:f1:df:a7:2b:f1: 69:4e:7b:ca:ef:1d:3c:48:af:2a:3a:e2:24:14:1d: b7:ca:fa:d4:81:38:8f:1c:35:e4:16:8b:e3:a3:5a: 50:0e:4e:08:55:d8:32:ab:da:65:09:72:80:9b:c7: 64:7f:bc:77:bf:85:b7:34:f1:35:b1:d1:c3:1a:b8: 51:ae:46:59:be:ea:ac:1b:4b:5d:85:78:fd:1a:d5: fc:ab:57:e0:54:b0:e3:ce:3c:df:bc:1f:f2:6d:12: 2d:b5:90:d1:92:27:ff:be:82:47:91:c5:b7:7a:75: 5a:4d:40:29:92:c7:0f:6f:7b:ea:51:56:ec:f5:e8: c3:cd:94:da:de:67:49:a9:3e:60:e2:58:66:79:64: 14:4a:5f:5a:5b:73:c6:73:ef:9d:76:a3:fb:66:ae: 61:18:c7:1f:e4:28:94:62:31:68:7b:2b:9f:50:e3: e1:0c:4d:a7:85:16:c7:1e:1e:73:ca:f8:aa:37:39: 37:17:8c:6a:f7:2a:7d:8b:b9:4b:c9:49:cd:ec:75: 3d:c8:88:0f:9b:f7:e8:f1:03:d1:2e:e6:5b:c4:0a: f2:cc:14:88:a4:9e:f5:5f:7f:09:2a:ec:56:a5:96: 93:82:d9:65:b1:ce:3c:b3:6c:a9:3c:fe:84:66:33: 1c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:8C:0D:DE:DD:F6:67:BC:4A:49:26:DD:79:EC:DC:8E:FC:6D:64:FC X509v3 Authority Key Identifier: keyid:C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/TYwN3t32Z7xKSSbdeezcjvxtZPw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.239.218.0/23 Signature Algorithm: sha256WithRSAEncryption 00:d9:d0:4d:ef:dc:37:29:90:fb:d6:f0:32:ed:b6:f7:93:0a: 1b:48:18:7a:ff:ab:7f:f0:a6:aa:d6:f5:bd:e3:a7:7c:c3:42: 91:b3:48:1c:62:dd:10:2e:4d:ac:91:55:1e:a1:a0:4e:e9:a4: e0:b1:f0:39:07:c4:35:c5:bd:2b:f9:75:2a:e3:c5:de:df:76: e7:8c:e4:16:0c:d8:15:20:00:2a:06:17:2e:df:23:23:93:77: 27:0d:89:8b:15:b2:5f:98:8a:02:62:50:44:0e:d7:0f:b1:6b: eb:83:a9:18:d5:5a:ac:ed:74:09:81:6e:86:ce:8a:52:59:2a: 31:0c:55:0d:7e:6d:ed:0b:bc:c6:d2:93:77:13:e6:af:b4:52: 4c:41:7a:8e:c5:ed:55:95:93:89:6b:28:17:57:3f:80:b2:31: 5b:86:8f:cd:cb:cc:a1:62:6a:e3:66:68:a0:c5:e3:84:01:94: d4:9e:d1:c9:94:5b:17:5b:76:f3:ce:c8:f4:ad:87:d7:b8:78: 9d:82:44:22:a8:c2:ae:16:3f:dc:5f:52:b9:15:88:86:77:4f: b7:ab:ef:68:53:50:f5:63:a0:52:1b:0d:92:a1:7e:f0:10:90: 7d:c1:11:56:6b:bd:ed:84:a0:fe:1e:e5:53:cf:41:24:5f:af: 3d:9a:13:fe -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FPz9LqirENcPPywlZE6OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzNzUxMTNmZDRiZmJkMzhiMTA0Mzg0M2MzMDkyNmExMTBj YzBmNTEwHhcNMjYwMTAyMTQyMDQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDhjMGRkZWRkZjY2N2JjNGE0OTI2ZGQ3OWVjZGM4ZWZjNmQ2NGZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCmNKPnRKEbM8d+nK/FpTnvK7x08 SK8qOuIkFB23yvrUgTiPHDXkFovjo1pQDk4IVdgyq9plCXKAm8dkf7x3v4W3NPE1 sdHDGrhRrkZZvuqsG0tdhXj9GtX8q1fgVLDjzjzfvB/ybRIttZDRkif/voJHkcW3 enVaTUApkscPb3vqUVbs9ejDzZTa3mdJqT5g4lhmeWQUSl9aW3PGc++ddqP7Zq5h GMcf5CiUYjFoeyufUOPhDE2nhRbHHh5zyviqNzk3F4xq9yp9i7lLyUnN7HU9yIgP m/fo8QPRLuZbxAryzBSIpJ71X38JKuxWpZaTgtllsc48s2ypPP6EZjMcsQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE2MDd7d9me8Skkm3Xns3I78bWT8MB8GA1UdIwQY MBaAFMN1ET/Uv704sQQ4Q8MJJqEQzA9RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzNVUlA5U192VGl4QkRoRHd3a21vUkRNRDFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9hZjljNzgtNmVkZS00MGRmLTg5YzEt Nzk3MjVmYTJlMTMzLzEvVFl3TjN0MzJaN3hLU1NiZGVlemNqdnh0WlB3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9hZjljNzgtNmVkZS00MGRmLTg5YzEtNzk3MjVmYTJlMTMz LzEvdzNVUlA5U192VGl4QkRoRHd3a21vUkRNRDFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwe/aMA0G CSqGSIb3DQEBCwUAA4IBAQAA2dBN79w3KZD71vAy7bb3kwobSBh6/6t/8Kaq1vW9 46d8w0KRs0gcYt0QLk2skVUeoaBO6aTgsfA5B8Q1xb0r+XUq48Xe33bnjOQWDNgV IAAqBhcu3yMjk3cnDYmLFbJfmIoCYlBEDtcPsWvrg6kY1Vqs7XQJgW6GzopSWSox DFUNfm3tC7zG0pN3E+avtFJMQXqOxe1VlZOJaygXVz+AsjFbho/Ny8yhYmrjZmig xeOEAZTUntHJlFsXW3bzzsj0rYfXuHidgkQiqMKuFj/cX1K5FYiGd0+3q+9oU1D1 Y6BSGw2SoX7wEJB9wRFWa73thKD+HuVTz0EkX689mhP+ -----END CERTIFICATE-----Generated at Mon Jan 26 04:55:25 2026 by rpki-client