This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/TTS80Z1y-A6Wn6RHS9U2VwA1dAI.roa File: TTS80Z1y-A6Wn6RHS9U2VwA1dAI.roa (raw, json) Hash identifier: XaSvFikEZpf+bViNQBT/sXuBrCkdNvMkMtL8XShKIh8= Subject key identifier: 4D:34:BC:D1:9D:72:F8:0E:96:9F:A4:47:4B:D5:36:57:00:35:74:02 Certificate issuer: /CN=107807c2518915138f555123605c0133dfdbb4fa Certificate serial: 019B7C80CA2A7D977B7A6F08DAC51901DB6B Authority key identifier: 10:78:07:C2:51:89:15:13:8F:55:51:23:60:5C:01:33:DF:DB:B4:FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHgHwlGJFROPVVEjYFwBM9_btPo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/TTS80Z1y-A6Wn6RHS9U2VwA1dAI.roa Signing time: Fri 02 Jan 2026 02:19:33 +0000 ROA not before: Fri 02 Jan 2026 02:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55002 IP address blocks: 132.70.14.0/24 maxlen: 24 132.70.15.0/24 maxlen: 24 132.70.60.0/24 maxlen: 24 132.70.61.0/24 maxlen: 24 132.70.62.0/24 maxlen: 24 132.70.63.0/24 maxlen: 24 132.70.162.0/24 maxlen: 24 132.70.163.0/24 maxlen: 24 132.70.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/EHgHwlGJFROPVVEjYFwBM9_btPo.crl rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/EHgHwlGJFROPVVEjYFwBM9_btPo.mft rsync://rpki.ripe.net/repository/DEFAULT/EHgHwlGJFROPVVEjYFwBM9_btPo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 11:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:ca:2a:7d:97:7b:7a:6f:08:da:c5:19:01:db:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=107807c2518915138f555123605c0133dfdbb4fa Validity Not Before: Jan 2 02:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d34bcd19d72f80e969fa4474bd5365700357402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b5:80:69:55:1e:97:9c:50:2e:6f:15:56:f2: f1:9d:07:58:00:e9:41:8f:9f:df:a7:64:f5:f8:ed: 62:52:c0:9a:a6:af:38:af:24:f0:50:39:c2:0e:fd: ed:cc:fc:88:28:7f:a5:f4:45:b1:28:79:ab:79:35: fb:b5:b1:8c:7a:0f:48:07:ad:46:a4:47:3e:90:b7: 56:ed:11:9d:56:6f:65:50:8f:8e:72:c8:25:95:3f: 3e:c2:ec:7b:ad:1d:80:03:08:90:55:71:60:2e:7e: f0:86:0e:42:fc:00:63:48:ce:ce:8f:58:c7:ba:be: 60:01:a5:f4:92:35:b2:89:3d:b6:73:6e:aa:96:c1: 3a:62:d9:8b:20:09:be:ff:02:83:af:5b:64:3c:97: d6:3c:99:10:36:30:f7:59:ac:f0:1a:91:31:a4:82: a3:14:30:30:95:c3:78:47:83:68:bb:de:57:4d:11: 22:26:43:94:26:63:67:49:bd:9e:52:72:b6:b4:43: 07:b6:df:b1:79:52:00:8b:25:ad:43:46:ef:5c:25: ef:ef:2e:70:2e:ac:aa:28:ce:db:f7:48:b4:e4:20: 34:fa:41:ee:dc:64:fb:ee:08:f5:e6:de:15:bf:39: 0d:6a:c1:e7:fb:74:93:75:1b:b1:0e:90:9e:33:ae: eb:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:34:BC:D1:9D:72:F8:0E:96:9F:A4:47:4B:D5:36:57:00:35:74:02 X509v3 Authority Key Identifier: keyid:10:78:07:C2:51:89:15:13:8F:55:51:23:60:5C:01:33:DF:DB:B4:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHgHwlGJFROPVVEjYFwBM9_btPo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/TTS80Z1y-A6Wn6RHS9U2VwA1dAI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/EHgHwlGJFROPVVEjYFwBM9_btPo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 132.70.14.0/23 132.70.60.0/22 132.70.162.0/23 132.70.196.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:f5:37:ff:05:59:33:19:88:3f:fc:a5:9c:1b:55:75:c6:8b: 81:48:c8:f0:4d:a9:4b:c7:f7:03:87:a4:a6:80:e6:ab:02:a2: c8:e7:0e:79:c2:dd:03:33:b5:c1:e2:70:37:02:67:6c:3e:a8: 01:20:25:eb:db:f1:80:2b:ab:fd:48:6c:48:98:58:26:fd:ac: ed:f2:7c:72:ce:e4:33:e5:d5:19:66:1a:a8:17:b6:02:79:0f: 30:fe:ec:d7:71:ad:84:fe:c8:00:bf:7e:c9:aa:49:48:4e:51: cd:14:a8:ab:c8:ba:22:aa:cc:2c:ed:87:e2:a8:03:47:88:95: f3:d4:b0:8e:4b:44:92:60:22:2c:6f:73:f3:a3:37:b3:fc:b6: 34:67:1c:a6:bd:7a:a2:58:d7:83:8c:c4:e9:39:0e:58:6a:71: 00:42:21:29:70:6c:7e:4f:ad:d9:c7:67:76:0e:c5:4d:7a:b2: 83:39:71:13:ae:51:b0:5f:f9:d0:af:a8:58:d9:4e:e8:62:6b: df:bd:3b:85:b7:ce:54:14:22:33:bc:8c:2c:9d:a5:13:a5:a5: 3c:ca:fe:90:6c:eb:67:ba:14:dc:5d:b8:f7:e2:2a:01:36:bd: 9d:e1:d9:e9:ae:66:68:9b:2c:93:f8:16:42:2f:5d:c6:6b:66: f7:da:da:24 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt8gMoqfZd7em8I2sUZAdtrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwNzgwN2MyNTE4OTE1MTM4ZjU1NTEyMzYwNWMwMTMzZGZk YmI0ZmEwHhcNMjYwMTAyMDIxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDM0YmNkMTlkNzJmODBlOTY5ZmE0NDc0YmQ1MzY1NzAwMzU3NDAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bWAaVUel5xQLm8VVvLxnQdYAOlB j5/fp2T1+O1iUsCapq84ryTwUDnCDv3tzPyIKH+l9EWxKHmreTX7tbGMeg9IB61G pEc+kLdW7RGdVm9lUI+OcsgllT8+wux7rR2AAwiQVXFgLn7whg5C/ABjSM7Oj1jH ur5gAaX0kjWyiT22c26qlsE6YtmLIAm+/wKDr1tkPJfWPJkQNjD3WazwGpExpIKj FDAwlcN4R4Nou95XTREiJkOUJmNnSb2eUnK2tEMHtt+xeVIAiyWtQ0bvXCXv7y5w LqyqKM7b90i05CA0+kHu3GT77gj15t4VvzkNasHn+3STdRuxDpCeM67rFwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFE00vNGdcvgOlp+kR0vVNlcANXQCMB8GA1UdIwQY MBaAFBB4B8JRiRUTj1VRI2BcATPf27T6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUhnSHdsR0pGUk9QVlZFallGd0JNOV9idFBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8yODYwYTQtM2I5NC00Mjc0LWEzYTIt ZjlhYzE1ZTY2Mzg2LzEvVFRTODBaMXktQTZXbjZSSFM5VTJWd0ExZEFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS8yODYwYTQtM2I5NC00Mjc0LWEzYTItZjlhYzE1ZTY2Mzg2 LzEvRUhnSHdsR0pGUk9QVlZFallGd0JNOV9idFBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBhEYOAwQC hEY8AwQBhEaiAwQAhEbEMA0GCSqGSIb3DQEBCwUAA4IBAQBP9Tf/BVkzGYg//KWc G1V1xouBSMjwTalLx/cDh6SmgOarAqLI5w55wt0DM7XB4nA3AmdsPqgBICXr2/GA K6v9SGxImFgm/azt8nxyzuQz5dUZZhqoF7YCeQ8w/uzXca2E/sgAv37JqklITlHN FKiryLoiqsws7YfiqANHiJXz1LCOS0SSYCIsb3Pzozez/LY0ZxymvXqiWNeDjMTp OQ5YanEAQiEpcGx+T63Zx2d2DsVNerKDOXETrlGwX/nQr6hY2U7oYmvfvTuFt85U FCIzvIwsnaUTpaU8yv6QbOtnuhTcXbj34ioBNr2d4dnprmZomyyT+BZCL13Ga2b3 2tok -----END CERTIFICATE-----Generated at Tue Jan 20 14:15:35 2026 by rpki-client