This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/0ba59b-ff4f-438c-8417-5fa380749497/1/tHXazgBXsceuUAJhoJGckJWKiyM.roa File: tHXazgBXsceuUAJhoJGckJWKiyM.roa (raw, json) Hash identifier: 6b1NPFovjCL0B3snTScPHML/dlS9QVd+EflwMNuX4WE= Subject key identifier: B4:75:DA:CE:00:57:B1:C7:AE:50:02:61:A0:91:9C:90:95:8A:8B:23 Certificate issuer: /CN=2457f73bf02f754b1e6317ee9a4f3e88637f1aa7 Certificate serial: 019B7FF2BC0C73F6287CDFD41E35A212FD4F Authority key identifier: 24:57:F7:3B:F0:2F:75:4B:1E:63:17:EE:9A:4F:3E:88:63:7F:1A:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFf3O_AvdUseYxfumk8-iGN_Gqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/0ba59b-ff4f-438c-8417-5fa380749497/1/tHXazgBXsceuUAJhoJGckJWKiyM.roa Signing time: Fri 02 Jan 2026 18:22:52 +0000 ROA not before: Fri 02 Jan 2026 18:22:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15576 IP address blocks: 203.56.114.0/23 maxlen: 23 2a14:3e44::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/0ba59b-ff4f-438c-8417-5fa380749497/1/JFf3O_AvdUseYxfumk8-iGN_Gqc.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/0ba59b-ff4f-438c-8417-5fa380749497/1/JFf3O_AvdUseYxfumk8-iGN_Gqc.mft rsync://rpki.ripe.net/repository/DEFAULT/JFf3O_AvdUseYxfumk8-iGN_Gqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:bc:0c:73:f6:28:7c:df:d4:1e:35:a2:12:fd:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2457f73bf02f754b1e6317ee9a4f3e88637f1aa7 Validity Not Before: Jan 2 18:22:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b475dace0057b1c7ae500261a0919c90958a8b23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d4:9f:77:76:4b:0f:97:42:16:04:06:eb:98: bc:1b:a8:f1:b3:11:ad:de:15:6b:45:ee:4b:9a:e8: 5a:b7:9c:4c:74:6c:f1:41:6a:3c:0a:7c:21:11:3a: 8b:fd:06:7e:e0:50:2f:c7:a7:58:7d:87:cd:fd:2b: 98:1e:69:f8:44:bd:ff:d6:1b:eb:06:b8:8a:b0:15: f8:3a:6b:53:99:b0:fc:36:c5:18:e1:c1:c0:a7:27: 11:93:b5:f1:be:59:96:e2:39:0f:2a:bc:a2:85:c8: 90:c2:54:ef:81:96:e6:b0:33:9d:d5:2f:d6:89:6f: bc:65:06:10:8b:54:8d:47:56:63:5a:28:12:b6:e3: 2e:63:9e:9d:18:f0:69:b6:32:58:1c:5a:ff:fe:75: 61:6c:ed:c9:e0:89:f9:b6:09:db:b3:c3:f6:66:1f: fc:86:42:b9:00:95:3a:18:fe:ae:3e:76:b5:66:7c: f4:05:cb:39:f2:6b:ae:9d:65:d6:74:d5:53:6d:a4: b1:e3:d8:61:3d:0a:44:de:53:49:d9:04:85:69:10: 81:7b:46:4e:36:58:0b:4b:fe:09:80:68:3b:f5:38: df:0d:4f:71:c4:c4:2a:bf:90:5d:70:c5:8c:c4:09: 93:98:0d:c2:0c:9f:b5:79:c8:da:d0:82:47:02:8f: a8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:75:DA:CE:00:57:B1:C7:AE:50:02:61:A0:91:9C:90:95:8A:8B:23 X509v3 Authority Key Identifier: keyid:24:57:F7:3B:F0:2F:75:4B:1E:63:17:EE:9A:4F:3E:88:63:7F:1A:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFf3O_AvdUseYxfumk8-iGN_Gqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/0ba59b-ff4f-438c-8417-5fa380749497/1/tHXazgBXsceuUAJhoJGckJWKiyM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/0ba59b-ff4f-438c-8417-5fa380749497/1/JFf3O_AvdUseYxfumk8-iGN_Gqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.56.114.0/23 IPv6: 2a14:3e44::/32 Signature Algorithm: sha256WithRSAEncryption 03:ff:48:21:0e:3b:5a:f1:87:bf:f1:69:c5:d3:7d:0b:72:1a: 41:96:03:c8:51:14:57:8f:b9:e1:5b:00:b6:af:98:00:47:5c: 1f:de:b6:4f:88:04:b2:4c:29:06:ca:0b:16:ad:7b:29:c4:47: c7:9b:11:93:62:a7:52:f1:c0:e0:28:3b:83:b1:6b:5c:a9:06: 4e:4b:2a:b2:ed:45:fb:09:1d:e6:21:1e:a8:db:88:61:20:b1: 0b:43:ec:01:f8:15:cb:2e:23:52:51:c1:0c:0f:26:0d:15:c5: ea:27:30:d3:12:40:a9:66:94:3a:9e:5f:ba:9a:74:dd:b1:1f: 31:63:02:cd:c8:6d:7e:9d:06:08:96:b5:3f:3f:88:a4:00:56: a7:05:86:f7:94:ed:fd:fa:f6:77:4a:d0:9b:1e:13:37:d0:f8: 9a:d2:3e:e1:af:b3:19:2d:93:9d:d6:7d:ce:0d:95:42:9e:6c: e1:43:e3:21:ab:e8:67:c0:17:49:7c:6a:94:c4:28:82:31:46: 36:04:06:36:04:1b:e3:e4:41:82:a6:4f:7d:b0:2e:10:45:5a: 64:ec:b3:9f:24:94:a8:58:82:00:ea:ec:0d:46:e6:d9:e5:e8: 16:ac:95:b2:5b:7b:d2:ef:ce:b8:9d:52:36:13:c9:d2:f1:43: 41:9f:e9:48 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/8rwMc/YofN/UHjWiEv1PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0NTdmNzNiZjAyZjc1NGIxZTYzMTdlZTlhNGYzZTg4NjM3 ZjFhYTcwHhcNMjYwMTAyMTgyMjUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDc1ZGFjZTAwNTdiMWM3YWU1MDAyNjFhMDkxOWM5MDk1OGE4YjIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltSfd3ZLD5dCFgQG65i8G6jxsxGt 3hVrRe5Lmuhat5xMdGzxQWo8CnwhETqL/QZ+4FAvx6dYfYfN/SuYHmn4RL3/1hvr BriKsBX4OmtTmbD8NsUY4cHApycRk7XxvlmW4jkPKryihciQwlTvgZbmsDOd1S/W iW+8ZQYQi1SNR1ZjWigStuMuY56dGPBptjJYHFr//nVhbO3J4In5tgnbs8P2Zh/8 hkK5AJU6GP6uPna1Znz0Bcs58muunWXWdNVTbaSx49hhPQpE3lNJ2QSFaRCBe0ZO NlgLS/4JgGg79TjfDU9xxMQqv5BdcMWMxAmTmA3CDJ+1ecja0IJHAo+oPQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLR12s4AV7HHrlACYaCRnJCViosjMB8GA1UdIwQY MBaAFCRX9zvwL3VLHmMX7ppPPohjfxqnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkZmM09fQXZkVXNlWXhmdW1rOC1pR05fR3FjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8wYmE1OWItZmY0Zi00MzhjLTg0MTct NWZhMzgwNzQ5NDk3LzEvdEhYYXpnQlhzY2V1VUFKaG9KR2NrSldLaXlNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS8wYmE1OWItZmY0Zi00MzhjLTg0MTctNWZhMzgwNzQ5NDk3 LzEvSkZmM09fQXZkVXNlWXhmdW1rOC1pR05fR3FjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQByzhyMA0E AgACMAcDBQAqFD5EMA0GCSqGSIb3DQEBCwUAA4IBAQAD/0ghDjta8Ye/8WnF030L chpBlgPIURRXj7nhWwC2r5gAR1wf3rZPiASyTCkGygsWrXspxEfHmxGTYqdS8cDg KDuDsWtcqQZOSyqy7UX7CR3mIR6o24hhILELQ+wB+BXLLiNSUcEMDyYNFcXqJzDT EkCpZpQ6nl+6mnTdsR8xYwLNyG1+nQYIlrU/P4ikAFanBYb3lO39+vZ3StCbHhM3 0Pia0j7hr7MZLZOd1n3ODZVCnmzhQ+Mhq+hnwBdJfGqUxCiCMUY2BAY2BBvj5EGC pk99sC4QRVpk7LOfJJSoWIIA6uwNRubZ5egWrJWyW3vS7864nVI2E8nS8UNBn+lI -----END CERTIFICATE-----Generated at Mon Jan 26 15:58:36 2026 by rpki-client