This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/TlfmAzV7GWwY3rXMRpeYUl7aKdw.roa File: TlfmAzV7GWwY3rXMRpeYUl7aKdw.roa (raw, json) Hash identifier: 5eOHO+lm41+VyItnXbH9JnN/kNKtBVpRjgRNWcBchwM= Subject key identifier: 4E:57:E6:03:35:7B:19:6C:18:DE:B5:CC:46:97:98:52:5E:DA:29:DC Certificate issuer: /CN=5bf63362fedee1c89135d5434d37b7375ed5a108 Certificate serial: 019B7AC7BC997FEB6E8C32CBC29390C187D1 Authority key identifier: 5B:F6:33:62:FE:DE:E1:C8:91:35:D5:43:4D:37:B7:37:5E:D5:A1:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W_YzYv7e4ciRNdVDTTe3N17VoQg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/TlfmAzV7GWwY3rXMRpeYUl7aKdw.roa Signing time: Thu 01 Jan 2026 18:17:48 +0000 ROA not before: Thu 01 Jan 2026 18:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31518 IP address blocks: 185.255.188.0/22 maxlen: 22 194.113.141.0/24 maxlen: 24 2001:67c:4a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/W_YzYv7e4ciRNdVDTTe3N17VoQg.crl rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/W_YzYv7e4ciRNdVDTTe3N17VoQg.mft rsync://rpki.ripe.net/repository/DEFAULT/W_YzYv7e4ciRNdVDTTe3N17VoQg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:bc:99:7f:eb:6e:8c:32:cb:c2:93:90:c1:87:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5bf63362fedee1c89135d5434d37b7375ed5a108 Validity Not Before: Jan 1 18:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4e57e603357b196c18deb5cc469798525eda29dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1f:17:88:31:5b:7f:57:98:8a:fd:9a:f4:6b: 16:e2:cb:95:2b:e1:ab:d1:bc:9b:b3:08:d5:08:fb: 63:82:40:cb:6d:20:81:70:40:70:8a:85:53:f7:e4: 0e:ab:4b:bc:05:12:de:02:0d:ce:04:6b:1a:0a:af: ea:c7:95:9d:dd:aa:19:12:21:99:6c:5e:61:68:2c: 98:d7:4d:49:45:61:d2:f2:5c:4e:c1:e6:ed:d7:1a: 78:2d:70:f3:b3:52:dd:f1:ca:33:d5:a4:be:d1:32: c1:fa:bc:af:36:69:19:3c:8f:7a:c2:48:84:2d:18: 7b:cf:5f:05:6a:4e:56:e4:68:ea:5f:e1:7c:1f:08: 53:75:0c:48:73:bf:f0:37:dd:14:a1:a9:c9:0a:fb: 69:eb:00:cd:74:be:47:32:06:23:43:38:34:ac:0b: 1a:f3:4b:05:c4:88:22:55:0d:54:ba:e5:84:9a:d9: 15:43:84:27:03:a4:ee:0c:0f:1b:27:14:ac:9e:ba: 69:15:3f:f4:c4:db:09:c8:80:84:26:b8:49:a4:79: 52:56:31:c9:62:dd:ea:0d:0c:fb:7b:de:81:ac:19: 11:dd:92:d6:fd:31:7d:47:53:53:22:bd:01:32:ee: fc:5d:80:9d:9e:09:8c:45:77:a8:0a:cd:b5:57:bb: 0b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:57:E6:03:35:7B:19:6C:18:DE:B5:CC:46:97:98:52:5E:DA:29:DC X509v3 Authority Key Identifier: keyid:5B:F6:33:62:FE:DE:E1:C8:91:35:D5:43:4D:37:B7:37:5E:D5:A1:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W_YzYv7e4ciRNdVDTTe3N17VoQg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/TlfmAzV7GWwY3rXMRpeYUl7aKdw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/W_YzYv7e4ciRNdVDTTe3N17VoQg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.255.188.0/22 194.113.141.0/24 IPv6: 2001:67c:4a0::/48 Signature Algorithm: sha256WithRSAEncryption 9f:33:b5:5d:55:ff:aa:f7:71:43:c6:44:50:b1:35:5e:ff:fa: ba:bc:da:3e:f0:50:cf:a6:bb:9d:75:29:18:19:17:4e:f0:4d: ad:7a:f0:c1:f6:a2:b2:e9:6d:e7:75:da:f4:e8:f0:b5:c4:7e: 95:4b:48:67:f7:dc:af:6f:93:b5:38:5f:49:b1:d6:c0:47:f3: 43:57:bd:a8:4d:94:9d:3f:a6:ed:ee:48:ac:77:52:17:b8:af: 8a:91:fc:9b:7a:64:d4:f4:37:0c:0b:b4:3d:97:46:08:ec:ac: e7:4d:2e:04:e7:69:59:9a:bb:6b:10:df:77:85:4a:e4:b9:2b: d5:91:ab:43:6b:0a:3a:0a:e8:7d:4a:4b:4d:4d:dd:5f:5e:04: f8:83:de:46:ac:d8:88:8a:3c:f5:eb:9f:b5:f3:5b:af:94:f5: 88:6b:81:36:e6:73:a5:81:0d:87:11:c0:fb:90:a7:80:ce:c0: 85:2f:57:3b:90:08:d0:d8:09:a8:21:27:1e:75:33:c0:ab:ad: 1b:86:9e:56:04:c5:ee:50:c0:6e:be:d3:4f:ec:3f:78:f5:7b: 30:95:be:39:19:7f:8a:21:e4:14:b5:61:62:47:a2:99:6f:d0: d2:05:3b:e4:2b:3d:d7:c3:4f:d1:e9:43:85:4a:71:3f:b8:3d: 31:6a:6b:f6 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt6x7yZf+tujDLLwpOQwYfRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViZjYzMzYyZmVkZWUxYzg5MTM1ZDU0MzRkMzdiNzM3NWVk NWExMDgwHhcNMjYwMTAxMTgxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZTU3ZTYwMzM1N2IxOTZjMThkZWI1Y2M0Njk3OTg1MjVlZGEyOWRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqx8XiDFbf1eYiv2a9GsW4suVK+Gr 0bybswjVCPtjgkDLbSCBcEBwioVT9+QOq0u8BRLeAg3OBGsaCq/qx5Wd3aoZEiGZ bF5haCyY101JRWHS8lxOwebt1xp4LXDzs1Ld8coz1aS+0TLB+ryvNmkZPI96wkiE LRh7z18Fak5W5GjqX+F8HwhTdQxIc7/wN90UoanJCvtp6wDNdL5HMgYjQzg0rAsa 80sFxIgiVQ1UuuWEmtkVQ4QnA6TuDA8bJxSsnrppFT/0xNsJyICEJrhJpHlSVjHJ Yt3qDQz7e96BrBkR3ZLW/TF9R1NTIr0BMu78XYCdngmMRXeoCs21V7sLoQIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFE5X5gM1exlsGN61zEaXmFJe2incMB8GA1UdIwQY MBaAFFv2M2L+3uHIkTXVQ003tzde1aEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV19Zell2N2U0Y2lSTmRWRFRUZTNOMTdWb1FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy83NzA5ZTctODM3Mi00ODI0LWE4MWMt NmFkMGI2OWIyMDhmLzEvVGxmbUF6VjdHV3dZM3JYTVJwZVlVbDdhS2R3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy83NzA5ZTctODM3Mi00ODI0LWE4MWMtNmFkMGI2OWIyMDhm LzEvV19Zell2N2U0Y2lSTmRWRFRUZTNOMTdWb1FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQCuf+8AwQA wnGNMA8EAgACMAkDBwAgAQZ8BKAwDQYJKoZIhvcNAQELBQADggEBAJ8ztV1V/6r3 cUPGRFCxNV7/+rq82j7wUM+mu511KRgZF07wTa168MH2orLpbed12vTo8LXEfpVL SGf33K9vk7U4X0mx1sBH80NXvahNlJ0/pu3uSKx3Uhe4r4qR/Jt6ZNT0NwwLtD2X RgjsrOdNLgTnaVmau2sQ33eFSuS5K9WRq0NrCjoK6H1KS01N3V9eBPiD3kas2IiK PPXrn7XzW6+U9YhrgTbmc6WBDYcRwPuQp4DOwIUvVzuQCNDYCaghJx51M8CrrRuG nlYExe5QwG6+00/sP3j1ezCVvjkZf4oh5BS1YWJHoplv0NIFO+QrPdfDT9HpQ4VK cT+4PTFqa/Y= -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:02 2026 by rpki-client