This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/tMR1t93phtdgfyoXDUK4UjJ3mDY.roa File: tMR1t93phtdgfyoXDUK4UjJ3mDY.roa (raw, json) Hash identifier: nRohpq/RZtKLeM9ZLaQ2z+rfMzrqIrZpqSFmYiTkb00= Subject key identifier: B4:C4:75:B7:DD:E9:86:D7:60:7F:2A:17:0D:42:B8:52:32:77:98:36 Certificate issuer: /CN=eeb59b791c7a11d232a95c7ef169285caea695bc Certificate serial: 019B7BA4EF3567FEE2E0AC2A61128A5E8967 Authority key identifier: EE:B5:9B:79:1C:7A:11:D2:32:A9:5C:7E:F1:69:28:5C:AE:A6:95:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rWbeRx6EdIyqVx-8WkoXK6mlbw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/tMR1t93phtdgfyoXDUK4UjJ3mDY.roa Signing time: Thu 01 Jan 2026 22:19:25 +0000 ROA not before: Thu 01 Jan 2026 22:19:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207167 IP address blocks: 85.209.28.0/22 maxlen: 22 185.59.144.0/22 maxlen: 22 185.179.32.0/24 maxlen: 24 185.179.33.0/24 maxlen: 24 185.234.132.0/22 maxlen: 22 2a02:6c20::/32 maxlen: 32 2a0a:7780::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/7rWbeRx6EdIyqVx-8WkoXK6mlbw.crl rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/7rWbeRx6EdIyqVx-8WkoXK6mlbw.mft rsync://rpki.ripe.net/repository/DEFAULT/7rWbeRx6EdIyqVx-8WkoXK6mlbw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:ef:35:67:fe:e2:e0:ac:2a:61:12:8a:5e:89:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eeb59b791c7a11d232a95c7ef169285caea695bc Validity Not Before: Jan 1 22:19:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4c475b7dde986d7607f2a170d42b85232779836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:65:b3:99:59:f4:21:95:62:cf:97:96:57:ed: 0d:06:8e:9e:a4:ef:1b:de:02:19:b7:ca:40:5d:56: 24:53:8e:9a:b8:77:a6:b6:33:d4:43:c3:1d:d2:f6: 9e:ce:ed:66:96:08:05:f8:e6:de:e4:06:a9:83:e3: 79:36:7a:0f:71:e6:7a:8e:c7:e4:a8:04:5a:f9:aa: df:16:aa:99:d7:6e:10:e1:20:29:bc:f6:60:bb:fd: e4:1f:86:ba:df:5b:52:92:02:30:04:5e:49:27:51: 0f:53:d8:e6:d9:fa:95:a5:12:10:74:2f:b0:53:95: 71:98:4e:a7:61:a8:d3:22:d8:91:60:ed:6a:13:14: 0c:7f:03:31:33:0a:bb:43:cb:da:fa:87:10:e1:9f: 78:d9:5b:33:a0:9c:30:a6:80:d3:7e:32:e6:0e:fb: 00:e1:70:ca:4b:19:ec:aa:05:d6:07:9d:9d:ea:e8: e7:11:a0:d1:a9:d4:31:65:41:c1:0b:3d:e6:7f:60: c0:33:dd:9d:35:b5:f8:63:f1:3a:7c:9d:7e:9b:de: b2:b4:0b:84:04:3d:41:7f:06:ad:c5:76:cc:d9:8d: c2:de:cc:04:60:1e:70:fe:f4:e8:25:2a:95:7a:80: c2:86:51:82:dc:3a:9d:f2:ca:22:4a:31:e9:2d:04: 7e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C4:75:B7:DD:E9:86:D7:60:7F:2A:17:0D:42:B8:52:32:77:98:36 X509v3 Authority Key Identifier: keyid:EE:B5:9B:79:1C:7A:11:D2:32:A9:5C:7E:F1:69:28:5C:AE:A6:95:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rWbeRx6EdIyqVx-8WkoXK6mlbw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/tMR1t93phtdgfyoXDUK4UjJ3mDY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/7rWbeRx6EdIyqVx-8WkoXK6mlbw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.209.28.0/22 185.59.144.0/22 185.179.32.0/23 185.234.132.0/22 IPv6: 2a02:6c20::/32 2a0a:7780::/29 Signature Algorithm: sha256WithRSAEncryption 7f:6c:db:d2:1b:80:3f:07:96:83:93:4a:46:1f:b8:6d:4f:f0: b5:c9:7e:a3:f0:69:b6:5f:8a:7c:39:c2:c6:10:e8:c9:fc:c5: f1:41:5d:14:34:6c:82:42:d0:26:72:0e:a3:f6:62:43:d6:3f: d9:11:a1:9c:df:dd:b3:44:f2:dc:09:40:f6:92:1f:a9:f0:c0: f4:2f:8e:ff:86:45:3f:e1:c1:2a:9e:ba:48:ac:3b:5f:45:2c: 1d:a8:29:42:47:9c:70:ef:c1:e7:03:83:6a:6d:40:22:85:09: 97:a0:62:22:30:7a:49:f0:1a:89:28:e4:32:99:bf:b5:d2:1f: ea:9f:ef:1e:49:d1:c0:ef:10:87:0e:07:cd:00:39:c7:f4:1a: c1:51:d9:f4:03:56:11:be:e2:ac:a9:10:a5:2b:fb:fa:28:14: 96:c2:4a:bf:72:b1:b1:05:c2:a5:fd:64:72:f2:ae:10:78:21: 18:c5:92:50:c7:ad:df:ca:92:9c:81:47:87:25:8e:03:1d:39: 00:3f:60:d1:92:3c:45:b2:74:fe:73:c9:0e:cd:1c:e3:8a:9a: 19:54:55:95:d5:6c:d3:eb:f6:df:95:f0:b0:1d:20:c7:6e:e9: 2f:98:9e:c6:48:28:4e:0c:57:96:4a:bd:58:18:e1:ab:8a:96: 28:16:52:61 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt7pO81Z/7i4KwqYRKKXolnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlYjU5Yjc5MWM3YTExZDIzMmE5NWM3ZWYxNjkyODVjYWVh Njk1YmMwHhcNMjYwMTAxMjIxOTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGM0NzViN2RkZTk4NmQ3NjA3ZjJhMTcwZDQyYjg1MjMyNzc5ODM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGWzmVn0IZViz5eWV+0NBo6epO8b 3gIZt8pAXVYkU46auHemtjPUQ8Md0vaezu1mlggF+Obe5Aapg+N5NnoPceZ6jsfk qARa+arfFqqZ124Q4SApvPZgu/3kH4a631tSkgIwBF5JJ1EPU9jm2fqVpRIQdC+w U5VxmE6nYajTItiRYO1qExQMfwMxMwq7Q8va+ocQ4Z942VszoJwwpoDTfjLmDvsA 4XDKSxnsqgXWB52d6ujnEaDRqdQxZUHBCz3mf2DAM92dNbX4Y/E6fJ1+m96ytAuE BD1BfwatxXbM2Y3C3swEYB5w/vToJSqVeoDChlGC3Dqd8soiSjHpLQR+bQIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFLTEdbfd6YbXYH8qFw1CuFIyd5g2MB8GA1UdIwQY MBaAFO61m3kcehHSMqlcfvFpKFyuppW8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3JXYmVSeDZFZEl5cVZ4LThXa29YSzZtbGJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lZmZmNzEtN2QxMS00YTFhLThhZDMt YTY3ZDhjN2VkN2NhLzEvdE1SMXQ5M3BodGRnZnlvWERVSzRVakozbURZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9lZmZmNzEtN2QxMS00YTFhLThhZDMtYTY3ZDhjN2VkN2Nh LzEvN3JXYmVSeDZFZEl5cVZ4LThXa29YSzZtbGJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAeBAIAATAYAwQCVdEcAwQC uTuQAwQBubMgAwQCueqEMBQEAgACMA4DBQAqAmwgAwUDKgp3gDANBgkqhkiG9w0B AQsFAAOCAQEAf2zb0huAPweWg5NKRh+4bU/wtcl+o/Bptl+KfDnCxhDoyfzF8UFd FDRsgkLQJnIOo/ZiQ9Y/2RGhnN/ds0Ty3AlA9pIfqfDA9C+O/4ZFP+HBKp66SKw7 X0UsHagpQkeccO/B5wODam1AIoUJl6BiIjB6SfAaiSjkMpm/tdIf6p/vHknRwO8Q hw4HzQA5x/QawVHZ9ANWEb7irKkQpSv7+igUlsJKv3KxsQXCpf1kcvKuEHghGMWS UMet38qSnIFHhyWOAx05AD9g0ZI8RbJ0/nPJDs0c44qaGVRVldVs0+v235XwsB0g x27pL5iexkgoTgxXlkq9WBjhq4qWKBZSYQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:20 2026 by rpki-client