This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/trwy9YK-SnrnYyYORbn93V30iRo.roa File: trwy9YK-SnrnYyYORbn93V30iRo.roa (raw, json) Hash identifier: LTdq87i4sWmABMo13psUfyUJvjXH3JCzB1hcKoT/PNU= Subject key identifier: B6:BC:32:F5:82:BE:4A:7A:E7:63:26:0E:45:B9:FD:DD:5D:F4:89:1A Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd Certificate serial: 019B791087550F5768BAD715360834C8BBA1 Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/trwy9YK-SnrnYyYORbn93V30iRo.roa Signing time: Thu 01 Jan 2026 10:18:04 +0000 ROA not before: Thu 01 Jan 2026 10:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201867 IP address blocks: 213.198.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.mft rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:87:55:0f:57:68:ba:d7:15:36:08:34:c8:bb:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd Validity Not Before: Jan 1 10:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b6bc32f582be4a7ae763260e45b9fddd5df4891a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:02:80:5d:e4:a8:13:cf:dd:e5:5e:a1:06:50: 7c:7e:33:6a:03:30:94:fe:ba:64:78:de:2f:34:82: b9:ae:40:29:8c:e3:7d:92:83:c3:cc:03:50:40:25: 22:cc:e9:06:32:27:88:00:2c:d1:1f:43:23:aa:90: 83:22:ff:77:8d:2c:1e:31:4e:4e:02:06:35:7a:9d: f5:f4:e2:eb:91:20:97:65:22:5f:c1:a5:9c:a5:21: d2:06:cd:c6:38:39:10:a4:52:4c:26:29:05:51:66: b3:1b:30:60:11:f7:43:18:86:0f:b4:51:8a:06:ae: a5:a0:4d:15:89:4b:28:f0:67:1a:03:e6:65:25:b2: fb:b9:b8:ba:a8:a1:0d:84:75:53:42:84:fc:61:fd: 11:51:96:88:30:0f:f1:6a:18:93:96:7a:ae:d3:d9: 9e:62:69:04:44:81:2a:1d:b8:a8:0d:ab:5a:7f:10: 1b:98:c3:11:e3:0d:bb:e8:84:e3:af:fa:67:b4:28: 18:e5:56:ba:73:d4:68:f4:9a:9f:c2:62:2e:29:c4: 0b:a4:89:59:b0:8e:b7:8c:7a:e7:ed:6f:6c:4d:79: 81:79:c0:cd:b5:bd:c8:60:ba:f3:64:bd:a7:06:54: ab:27:ae:97:d7:e4:e9:c8:fd:a6:4c:d2:23:c1:73: 97:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:BC:32:F5:82:BE:4A:7A:E7:63:26:0E:45:B9:FD:DD:5D:F4:89:1A X509v3 Authority Key Identifier: keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/trwy9YK-SnrnYyYORbn93V30iRo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.198.29.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:19:92:87:03:02:82:c6:29:84:73:87:f3:01:35:a3:d6:87: a6:c9:05:2e:6c:6b:a6:62:5c:b6:23:29:5a:d0:f7:73:05:f6: 7a:f9:27:48:5b:c5:f5:38:d8:7f:7d:6c:07:c5:37:16:9f:df: 1c:7d:35:28:95:a7:04:0e:bc:57:a1:8f:48:ab:e0:df:d9:3e: 0a:e2:44:5d:40:a1:83:4a:d2:a5:b8:2d:d1:d0:62:ee:91:80: 2c:7d:e4:ef:de:65:03:7b:12:47:44:2f:b3:65:bf:3c:8e:93: af:de:83:53:41:ca:0d:05:7c:f8:eb:84:14:70:8d:53:11:1d: fb:9e:67:0d:95:78:e7:60:4f:0a:98:5e:46:d7:65:33:cf:a1: 68:53:96:01:37:af:12:53:a4:67:c5:1b:18:0b:61:d3:20:c9: 62:30:6f:ce:5b:d8:9d:ab:b3:9d:13:10:3e:6b:fc:a5:df:44: 15:16:cb:be:f3:be:52:77:39:1e:83:4b:26:65:95:17:5f:30: 92:b5:62:a2:29:67:84:ed:c4:d1:5a:14:a5:e1:d4:95:af:f0: f5:a0:ed:91:aa:ac:6f:1d:15:cd:90:4f:b1:81:54:3b:a5:c7: 66:f8:ef:2a:3a:e2:96:dc:00:5d:82:42:76:d1:10:97:27:62: 7d:bd:a5:de -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EIdVD1doutcVNgg0yLuhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkNWEyOTIxZmJlYjhhNDQ4ZTdhZTFlYzVhMTFiOGFiODk4 ZDIyZmQwHhcNMjYwMTAxMTAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNmJjMzJmNTgyYmU0YTdhZTc2MzI2MGU0NWI5ZmRkZDVkZjQ4OTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1AKAXeSoE8/d5V6hBlB8fjNqAzCU /rpkeN4vNIK5rkApjON9koPDzANQQCUizOkGMieIACzRH0MjqpCDIv93jSweMU5O AgY1ep319OLrkSCXZSJfwaWcpSHSBs3GODkQpFJMJikFUWazGzBgEfdDGIYPtFGK Bq6loE0ViUso8GcaA+ZlJbL7ubi6qKENhHVTQoT8Yf0RUZaIMA/xahiTlnqu09me YmkERIEqHbioDatafxAbmMMR4w276ITjr/pntCgY5Va6c9Ro9JqfwmIuKcQLpIlZ sI63jHrn7W9sTXmBecDNtb3IYLrzZL2nBlSrJ66X1+TpyP2mTNIjwXOXwwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLa8MvWCvkp652MmDkW5/d1d9IkaMB8GA1UdIwQY MBaAFE1aKSH764pEjnrh7FoRuKuJjSL9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFZvcElmdnJpa1NPZXVIc1doRzRxNG1OSXYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9lZThiOTgtNzI0MC00YjYyLWFjYzUt NzgwYTI1Y2QwZGQ5LzEvdHJ3eTlZSy1TbnJuWXlZT1JibjkzVjMwaVJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9lZThiOTgtNzI0MC00YjYyLWFjYzUtNzgwYTI1Y2QwZGQ5 LzEvVFZvcElmdnJpa1NPZXVIc1doRzRxNG1OSXYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1cYdMA0G CSqGSIb3DQEBCwUAA4IBAQB8GZKHAwKCximEc4fzATWj1oemyQUubGumYly2Iyla 0PdzBfZ6+SdIW8X1ONh/fWwHxTcWn98cfTUolacEDrxXoY9Iq+Df2T4K4kRdQKGD StKluC3R0GLukYAsfeTv3mUDexJHRC+zZb88jpOv3oNTQcoNBXz464QUcI1TER37 nmcNlXjnYE8KmF5G12Uzz6FoU5YBN68SU6RnxRsYC2HTIMliMG/OW9idq7OdExA+ a/yl30QVFsu+875Sdzkeg0smZZUXXzCStWKiKWeE7cTRWhSl4dSVr/D1oO2Rqqxv HRXNkE+xgVQ7pcdm+O8qOuKW3ABdgkJ20RCXJ2J9vaXe -----END CERTIFICATE-----Generated at Mon Jan 12 12:27:28 2026 by rpki-client