This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/taGvD6SXjEvbaJGn53r208xaYEE.roa File: taGvD6SXjEvbaJGn53r208xaYEE.roa (raw, json) Hash identifier: ZQ0KwDgCJCESxM+NdArXimzLNrqIKiJF2FQZvSP0rrE= Subject key identifier: B5:A1:AF:0F:A4:97:8C:4B:DB:68:91:A7:E7:7A:F6:D3:CC:5A:60:41 Certificate issuer: /CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46 Certificate serial: 019B76EB9CD7B9F2F7B876DF1F03BE311C10 Authority key identifier: E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/taGvD6SXjEvbaJGn53r208xaYEE.roa Signing time: Thu 01 Jan 2026 00:18:31 +0000 ROA not before: Thu 01 Jan 2026 00:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3223 IP address blocks: 185.62.188.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.mft rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:9c:d7:b9:f2:f7:b8:76:df:1f:03:be:31:1c:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46 Validity Not Before: Jan 1 00:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b5a1af0fa4978c4bdb6891a7e77af6d3cc5a6041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a0:54:3a:44:9a:66:18:cb:4f:3e:b4:ec:18: a9:d3:72:c3:ee:0d:69:2e:35:33:c5:ac:b5:96:d2: cb:71:6b:a8:48:dd:66:88:77:ee:87:75:8c:70:b8: b5:8d:f8:c5:c3:46:32:38:91:4c:85:c1:3f:66:45: c6:52:31:2c:4d:e0:7a:b2:80:63:7d:7f:0e:ee:78: 7f:1a:19:5e:6d:99:84:fb:6d:77:ee:9d:27:2e:34: 36:1c:66:1f:6f:cd:e9:c5:4b:2f:56:c9:9f:10:a5: ee:f2:e5:b2:c9:f4:13:78:95:50:d8:7f:63:e9:2f: 3f:46:ef:be:c0:52:b9:8f:25:fc:1b:33:93:74:11: c1:d6:e7:ae:c5:d2:f8:0f:b0:da:f3:b3:b9:09:6b: b7:7b:e6:b4:4b:0f:40:d3:82:26:d1:d9:98:c6:55: 2a:85:5b:52:9d:66:b9:b3:ee:5e:e6:df:93:19:d2: bd:0e:6a:33:2e:16:d3:39:77:9c:71:df:87:94:06: df:62:ba:dc:f1:a5:54:09:9d:b5:7e:ab:07:48:18: b7:0c:79:c3:a3:25:56:62:bd:5c:57:a8:87:f2:0f: 7b:3a:fa:92:2b:4b:82:d8:e0:f3:8c:b4:27:98:27: 06:c7:71:ed:91:8b:42:fd:88:7b:aa:f0:a8:24:35: a0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:A1:AF:0F:A4:97:8C:4B:DB:68:91:A7:E7:7A:F6:D3:CC:5A:60:41 X509v3 Authority Key Identifier: keyid:E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/taGvD6SXjEvbaJGn53r208xaYEE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.62.188.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:12:4f:65:2b:6e:12:72:4c:7d:48:2d:12:f2:72:c9:6b:3e: d6:6b:04:e4:12:fd:49:d4:a9:85:b2:3b:93:9b:74:83:61:a0: 25:dc:6f:53:0e:96:17:c1:4d:7b:9b:42:d7:47:8f:2c:c7:d4: 3d:d0:0b:4f:0d:5a:3f:d2:79:1b:67:7c:7a:50:70:10:8f:0c: 6e:3b:49:bf:ba:3f:4e:b9:93:b4:09:16:3a:66:0d:01:4a:33: 27:f0:f2:4a:7e:67:fa:5e:d5:75:90:7c:ed:e2:7f:93:93:90: d8:64:9d:63:e9:26:da:9e:87:b8:40:f0:78:5c:a0:f3:79:e2: ea:c5:31:cf:88:d2:f3:ca:32:aa:88:e6:45:22:18:e7:cb:e6: 0f:33:4a:03:83:92:c5:0b:a6:44:b4:95:a6:6d:29:5d:75:4a: 86:33:5e:a5:da:0b:f9:65:2b:c4:37:fe:e1:ad:89:87:a6:64: ae:0d:1c:d5:e0:2a:b6:0b:c0:81:a9:4e:79:f1:ac:a2:0d:56: b0:be:b8:40:f1:bb:ad:19:44:e3:1b:66:0c:f7:96:58:8a:6f: 46:2a:b2:12:be:35:67:94:42:c4:82:82:a4:dc:c0:86:c3:04: 87:fb:50:d1:e5:01:5f:29:43:18:e4:85:e2:87:d8:77:b5:4b: 2d:eb:e7:08 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt265zXufL3uHbfHwO+MRwQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxMzhlYzI0MmE0M2U5YzlkNGNlYjI1ZGM5MGU1NDUzMzcz ZDNmNDYwHhcNMjYwMTAxMDAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNWExYWYwZmE0OTc4YzRiZGI2ODkxYTdlNzdhZjZkM2NjNWE2MDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqBUOkSaZhjLTz607Bip03LD7g1p LjUzxay1ltLLcWuoSN1miHfuh3WMcLi1jfjFw0YyOJFMhcE/ZkXGUjEsTeB6soBj fX8O7nh/GhlebZmE+2137p0nLjQ2HGYfb83pxUsvVsmfEKXu8uWyyfQTeJVQ2H9j 6S8/Ru++wFK5jyX8GzOTdBHB1ueuxdL4D7Da87O5CWu3e+a0Sw9A04Im0dmYxlUq hVtSnWa5s+5e5t+TGdK9DmozLhbTOXeccd+HlAbfYrrc8aVUCZ21fqsHSBi3DHnD oyVWYr1cV6iH8g97OvqSK0uC2ODzjLQnmCcGx3HtkYtC/Yh7qvCoJDWgdwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLWhrw+kl4xL22iRp+d69tPMWmBBMB8GA1UdIwQY MBaAFOE47CQqQ+nJ1M6yXckOVFM3PT9GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFRqc0pDcEQ2Y25VenJKZHlRNVVVemM5UDBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8wYjdmZDMtOTBmMC00NWQxLThhNTgt Njc4NWNkNDU2ODcxLzEvdGFHdkQ2U1hqRXZiYUpHbjUzcjIwOHhhWUVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8wYjdmZDMtOTBmMC00NWQxLThhNTgtNjc4NWNkNDU2ODcx LzEvNFRqc0pDcEQ2Y25VenJKZHlRNVVVemM5UDBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuT68MA0G CSqGSIb3DQEBCwUAA4IBAQAqEk9lK24Sckx9SC0S8nLJaz7WawTkEv1J1KmFsjuT m3SDYaAl3G9TDpYXwU17m0LXR48sx9Q90AtPDVo/0nkbZ3x6UHAQjwxuO0m/uj9O uZO0CRY6Zg0BSjMn8PJKfmf6XtV1kHzt4n+Tk5DYZJ1j6Sbanoe4QPB4XKDzeeLq xTHPiNLzyjKqiOZFIhjny+YPM0oDg5LFC6ZEtJWmbSlddUqGM16l2gv5ZSvEN/7h rYmHpmSuDRzV4Cq2C8CBqU558ayiDVawvrhA8butGUTjG2YM95ZYim9GKrISvjVn lELEgoKk3MCGwwSH+1DR5QFfKUMY5IXih9h3tUst6+cI -----END CERTIFICATE-----Generated at Tue Jan 20 01:22:06 2026 by rpki-client