This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/TwDGNabrQ4BtQQP1KQdM8sDVsCY.roa File: TwDGNabrQ4BtQQP1KQdM8sDVsCY.roa (raw, json) Hash identifier: YuoVDH8VyBCYtcLKpsI0fQUsaouGOS4lvVymXvIc/cg= Subject key identifier: 4F:00:C6:35:A6:EB:43:80:6D:41:03:F5:29:07:4C:F2:C0:D5:B0:26 Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Certificate serial: 019B7F8552EBD08BB6D9BA3D405A86540CB9 Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/TwDGNabrQ4BtQQP1KQdM8sDVsCY.roa Signing time: Fri 02 Jan 2026 16:23:22 +0000 ROA not before: Fri 02 Jan 2026 16:23:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50053 IP address blocks: 194.87.37.0/24 maxlen: 24 195.133.17.0/24 maxlen: 24 195.133.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:52:eb:d0:8b:b6:d9:ba:3d:40:5a:86:54:0c:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Validity Not Before: Jan 2 16:23:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4f00c635a6eb43806d4103f529074cf2c0d5b026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:50:95:ae:a6:c4:86:b9:c4:04:8d:99:a2:61: 8a:85:0c:e8:12:fd:9c:4f:02:1e:fb:7e:b2:ed:f3: e8:cd:d2:ab:a4:e0:ce:56:e2:6b:24:a3:26:e3:03: 5d:4b:09:05:eb:15:1e:6d:31:2f:ea:96:af:1a:16: 1c:60:54:08:0e:16:52:16:86:87:c4:a0:2f:af:da: 88:5c:a3:93:9d:7f:e6:ce:98:1f:b5:23:2a:31:c3: 55:23:f4:fc:95:df:4a:de:12:27:2a:4e:88:be:dd: 23:ec:0f:8e:a2:bc:51:75:12:61:30:be:74:da:09: de:c3:39:c8:e5:04:8c:d6:dc:3e:a1:73:6f:01:f0: fd:59:46:5a:df:56:2c:00:8a:e0:f4:c3:a9:21:8e: 73:ae:f2:d4:cb:20:bd:f5:76:2e:44:c8:3f:cd:ad: b5:89:b3:a7:04:89:61:8c:71:4a:93:c1:7d:21:82: 1c:40:b3:13:ef:e8:e2:e0:e3:3d:ab:cb:01:19:23: 3a:c4:d5:98:ac:13:85:36:61:17:46:3d:73:87:53: 29:6e:27:c8:7a:68:29:ad:87:fe:d6:ad:14:41:dc: d8:4f:b3:b8:96:c0:33:6c:74:e8:38:12:00:30:ae: f8:b9:ae:6c:b8:d1:3a:cf:dc:83:28:27:8b:8a:07: ac:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:00:C6:35:A6:EB:43:80:6D:41:03:F5:29:07:4C:F2:C0:D5:B0:26 X509v3 Authority Key Identifier: keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/TwDGNabrQ4BtQQP1KQdM8sDVsCY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.87.37.0/24 195.133.17.0/24 195.133.39.0/24 Signature Algorithm: sha256WithRSAEncryption 42:0f:c5:57:d6:4c:4e:03:53:45:8b:cb:3b:7e:8a:20:be:47: a7:40:d9:30:a2:fa:80:07:40:ee:e3:86:11:3a:ff:5d:0b:d1: ad:28:f9:6c:92:91:84:e3:3a:85:77:1f:54:1d:74:04:57:f8: 36:55:e4:be:60:c2:aa:77:9e:42:37:bf:7c:ab:63:b2:02:de: 0a:cd:72:a6:82:75:62:bd:2d:52:37:93:c2:0f:b8:22:5f:09: 03:26:7e:95:8a:66:30:12:a7:e7:43:a6:05:34:00:33:44:ec: e2:e9:f5:af:ef:60:73:6a:d6:76:c7:f1:02:9b:c6:f3:23:d9: 21:b3:d5:c1:6d:25:8e:bb:aa:cc:61:ef:0e:82:77:9b:4b:67: a0:e5:ab:05:9f:fe:b5:e3:ac:e0:ac:4d:9a:68:22:61:b7:45: ad:b3:97:90:13:6d:b7:62:7d:5d:d1:4f:8c:ba:ad:e7:fa:d5: 5e:88:47:5b:c3:49:c8:08:03:95:1c:c3:8f:51:15:96:15:28: e3:b2:03:01:a0:2c:57:e2:a7:2c:0a:3c:c1:c3:b7:90:59:b1: fb:de:2b:16:34:d2:7f:57:01:f1:ed:64:b8:43:5d:49:d2:89: b4:dc:a3:50:51:fb:12:1c:4e:a1:36:ea:69:48:4f:29:af:c9: e2:d7:41:aa -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt/hVLr0Iu22bo9QFqGVAy5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw ZTFhYzcwHhcNMjYwMTAyMTYyMzIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZjAwYzYzNWE2ZWI0MzgwNmQ0MTAzZjUyOTA3NGNmMmMwZDViMDI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFCVrqbEhrnEBI2ZomGKhQzoEv2c TwIe+36y7fPozdKrpODOVuJrJKMm4wNdSwkF6xUebTEv6pavGhYcYFQIDhZSFoaH xKAvr9qIXKOTnX/mzpgftSMqMcNVI/T8ld9K3hInKk6Ivt0j7A+OorxRdRJhML50 2gnewznI5QSM1tw+oXNvAfD9WUZa31YsAIrg9MOpIY5zrvLUyyC99XYuRMg/za21 ibOnBIlhjHFKk8F9IYIcQLMT7+ji4OM9q8sBGSM6xNWYrBOFNmEXRj1zh1MpbifI emgprYf+1q0UQdzYT7O4lsAzbHToOBIAMK74ua5suNE6z9yDKCeLigesAQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFE8AxjWm60OAbUED9SkHTPLA1bAmMB8GA1UdIwQY MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt NWE0MjQyOGYxMTQzLzEvVHdER05hYnJRNEJ0UVFQMUtRZE04c0RWc0NZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAwlclAwQA w4URAwQAw4UnMA0GCSqGSIb3DQEBCwUAA4IBAQBCD8VX1kxOA1NFi8s7foogvken QNkwovqAB0Du44YROv9dC9GtKPlskpGE4zqFdx9UHXQEV/g2VeS+YMKqd55CN798 q2OyAt4KzXKmgnVivS1SN5PCD7giXwkDJn6VimYwEqfnQ6YFNAAzROzi6fWv72Bz atZ2x/ECm8bzI9khs9XBbSWOu6rMYe8OgnebS2eg5asFn/6146zgrE2aaCJht0Wt s5eQE223Yn1d0U+Muq3n+tVeiEdbw0nICAOVHMOPURWWFSjjsgMBoCxX4qcsCjzB w7eQWbH73isWNNJ/VwHx7WS4Q11J0om03KNQUfsSHE6hNuppSE8pr8ni10Gq -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:41 2026 by rpki-client