This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/9765b7-be44-465c-9755-c202f717d447/1/TQDW0DxTU7CzvSKr8TtyPhHtPTc.roa File: TQDW0DxTU7CzvSKr8TtyPhHtPTc.roa (raw, json) Hash identifier: 1+s5vjQlLwZnrQX0hqnsI0i09wdeDnUbTWGOuKMahfw= Subject key identifier: 4D:00:D6:D0:3C:53:53:B0:B3:BD:22:AB:F1:3B:72:3E:11:ED:3D:37 Certificate issuer: /CN=1c2b2b36fb722509465ed9d948c2bf891160cd0e Certificate serial: 019B79ECD1DAC1AE0432B330928DFD201ACD Authority key identifier: 1C:2B:2B:36:FB:72:25:09:46:5E:D9:D9:48:C2:BF:89:11:60:CD:0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCsrNvtyJQlGXtnZSMK_iRFgzQ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/9765b7-be44-465c-9755-c202f717d447/1/TQDW0DxTU7CzvSKr8TtyPhHtPTc.roa Signing time: Thu 01 Jan 2026 14:18:41 +0000 ROA not before: Thu 01 Jan 2026 14:18:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8412 IP address blocks: 91.232.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/9765b7-be44-465c-9755-c202f717d447/1/HCsrNvtyJQlGXtnZSMK_iRFgzQ4.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/9765b7-be44-465c-9755-c202f717d447/1/HCsrNvtyJQlGXtnZSMK_iRFgzQ4.mft rsync://rpki.ripe.net/repository/DEFAULT/HCsrNvtyJQlGXtnZSMK_iRFgzQ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:d1:da:c1:ae:04:32:b3:30:92:8d:fd:20:1a:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c2b2b36fb722509465ed9d948c2bf891160cd0e Validity Not Before: Jan 1 14:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d00d6d03c5353b0b3bd22abf13b723e11ed3d37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e9:bb:52:26:0d:56:cf:cd:5e:62:44:06:df: 72:a2:e0:74:c8:72:f2:58:69:c1:de:0f:c5:83:47: ff:01:c5:75:4c:b8:e4:02:cb:1d:4e:56:4d:77:a6: 1c:2a:74:6e:99:d4:36:bd:41:42:8c:98:b3:71:4a: a2:39:cb:6b:ca:84:63:25:3f:cf:ca:3e:46:55:22: d2:f2:a1:51:38:d9:06:4d:84:ff:12:24:28:5f:87: 66:72:4d:75:54:60:dd:61:43:27:e2:9c:4e:9f:8a: 30:f2:4c:cc:04:d8:5b:79:87:2d:b4:3c:15:8b:60: ed:79:dd:bf:de:53:2b:a2:e9:2c:6f:61:f7:e0:43: 76:6b:2d:bf:fe:49:f8:0e:60:2c:19:89:ae:10:6b: 33:fc:f3:b3:07:a3:3e:e9:53:ec:6b:42:f7:1d:eb: 95:59:3f:ad:e1:5a:e0:cc:8b:21:ef:75:42:63:4d: dd:36:e6:72:06:ae:bb:ab:b1:bc:ed:18:5e:89:2a: ce:2f:d9:60:73:85:a1:63:96:64:ce:21:c7:fc:26: 0b:1f:77:ab:e2:38:2d:ac:d7:58:85:34:a6:db:a2: 9a:99:07:3b:f2:08:af:ba:a6:a1:bf:28:01:49:25: 7c:23:04:e4:a7:33:8c:49:b0:7e:40:ad:05:fc:52: 0e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:00:D6:D0:3C:53:53:B0:B3:BD:22:AB:F1:3B:72:3E:11:ED:3D:37 X509v3 Authority Key Identifier: keyid:1C:2B:2B:36:FB:72:25:09:46:5E:D9:D9:48:C2:BF:89:11:60:CD:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCsrNvtyJQlGXtnZSMK_iRFgzQ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/9765b7-be44-465c-9755-c202f717d447/1/TQDW0DxTU7CzvSKr8TtyPhHtPTc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/9765b7-be44-465c-9755-c202f717d447/1/HCsrNvtyJQlGXtnZSMK_iRFgzQ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.232.163.0/24 Signature Algorithm: sha256WithRSAEncryption 00:93:3c:d5:24:ac:94:ac:1e:21:28:19:4e:d3:76:50:e7:cc: 87:80:de:b3:58:41:71:f7:9a:76:fc:6d:71:30:9c:b9:32:32: 25:54:43:22:93:7a:82:3f:52:f6:b0:22:c6:5b:d9:03:d5:a6: eb:ed:18:26:28:46:30:2c:a8:22:9a:99:36:9b:ca:f0:27:f9: 15:23:ec:6e:e7:ce:18:93:40:38:c8:e8:9f:58:25:bc:69:65: 75:97:79:de:3f:f1:5e:6f:20:f9:38:4e:c5:93:14:5c:92:3f: fb:a3:40:94:95:2e:07:5b:ee:ab:2b:e8:2f:dd:ed:2e:a9:c4: f6:17:28:60:d1:04:4d:fa:93:3e:f4:35:02:6f:78:0b:15:f5: a8:37:5d:08:f8:3e:9c:b1:20:26:46:9d:f3:44:bd:02:38:70: 9a:b2:9f:2d:2d:28:79:76:50:25:4d:6d:ae:ac:df:43:87:0b: ed:2e:65:9e:77:3e:39:3e:74:dc:aa:ba:01:5f:d2:1e:29:7b: b7:38:ad:c5:e9:d7:85:70:56:d5:2f:99:1d:f3:41:28:f9:31: d2:07:e5:cd:d7:59:87:34:2c:7f:86:7a:fd:75:ab:98:98:10: 95:df:59:1b:60:2d:de:40:4f:61:4c:4f:39:7f:60:86:b9:80: c1:ff:bb:52 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57NHawa4EMrMwko39IBrNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMmIyYjM2ZmI3MjI1MDk0NjVlZDlkOTQ4YzJiZjg5MTE2 MGNkMGUwHhcNMjYwMTAxMTQxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDAwZDZkMDNjNTM1M2IwYjNiZDIyYWJmMTNiNzIzZTExZWQzZDM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4em7UiYNVs/NXmJEBt9youB0yHLy WGnB3g/Fg0f/AcV1TLjkAssdTlZNd6YcKnRumdQ2vUFCjJizcUqiOctryoRjJT/P yj5GVSLS8qFRONkGTYT/EiQoX4dmck11VGDdYUMn4pxOn4ow8kzMBNhbeYcttDwV i2Dted2/3lMrouksb2H34EN2ay2//kn4DmAsGYmuEGsz/POzB6M+6VPsa0L3HeuV WT+t4VrgzIsh73VCY03dNuZyBq67q7G87RheiSrOL9lgc4WhY5ZkziHH/CYLH3er 4jgtrNdYhTSm26KamQc78givuqahvygBSSV8IwTkpzOMSbB+QK0F/FIOFwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE0A1tA8U1Ows70iq/E7cj4R7T03MB8GA1UdIwQY MBaAFBwrKzb7ciUJRl7Z2UjCv4kRYM0OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSENzck52dHlKUWxHWHRuWlNNS19pUkZnelE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC85NzY1YjctYmU0NC00NjVjLTk3NTUt YzIwMmY3MTdkNDQ3LzEvVFFEVzBEeFRVN0N6dlNLcjhUdHlQaEh0UFRjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC85NzY1YjctYmU0NC00NjVjLTk3NTUtYzIwMmY3MTdkNDQ3 LzEvSENzck52dHlKUWxHWHRuWlNNS19pUkZnelE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+ijMA0G CSqGSIb3DQEBCwUAA4IBAQAAkzzVJKyUrB4hKBlO03ZQ58yHgN6zWEFx95p2/G1x MJy5MjIlVEMik3qCP1L2sCLGW9kD1abr7RgmKEYwLKgimpk2m8rwJ/kVI+xu584Y k0A4yOifWCW8aWV1l3neP/FebyD5OE7FkxRckj/7o0CUlS4HW+6rK+gv3e0uqcT2 Fyhg0QRN+pM+9DUCb3gLFfWoN10I+D6csSAmRp3zRL0COHCasp8tLSh5dlAlTW2u rN9DhwvtLmWedz45PnTcqroBX9IeKXu3OK3F6deFcFbVL5kd80Eo+THSB+XN11mH NCx/hnr9dauYmBCV31kbYC3eQE9hTE85f2CGuYDB/7tS -----END CERTIFICATE-----Generated at Mon Jan 26 10:54:27 2026 by rpki-client