This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/119d34-407a-429e-9056-7628cbaf0ec8/1/CaTSYTlklPzPsh9aXKnEhvNOdQk.roa File: CaTSYTlklPzPsh9aXKnEhvNOdQk.roa (raw, json) Hash identifier: Yu5TNxvfV86Q2+HBX8uXoTCoY5GYvgt5wYG6MqwG8M0= Subject key identifier: 09:A4:D2:61:39:64:94:FC:CF:B2:1F:5A:5C:A9:C4:86:F3:4E:75:09 Certificate issuer: /CN=ab98a8263e063b8a7bd3d7180e7a4aa64953441c Certificate serial: 019B76EB8F6D938B0AA41E20A3711235B59E Authority key identifier: AB:98:A8:26:3E:06:3B:8A:7B:D3:D7:18:0E:7A:4A:A6:49:53:44:1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q5ioJj4GO4p709cYDnpKpklTRBw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/119d34-407a-429e-9056-7628cbaf0ec8/1/CaTSYTlklPzPsh9aXKnEhvNOdQk.roa Signing time: Thu 01 Jan 2026 00:18:27 +0000 ROA not before: Thu 01 Jan 2026 00:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214898 IP address blocks: 145.250.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/119d34-407a-429e-9056-7628cbaf0ec8/1/q5ioJj4GO4p709cYDnpKpklTRBw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/119d34-407a-429e-9056-7628cbaf0ec8/1/q5ioJj4GO4p709cYDnpKpklTRBw.mft rsync://rpki.ripe.net/repository/DEFAULT/q5ioJj4GO4p709cYDnpKpklTRBw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:8f:6d:93:8b:0a:a4:1e:20:a3:71:12:35:b5:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab98a8263e063b8a7bd3d7180e7a4aa64953441c Validity Not Before: Jan 1 00:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=09a4d261396494fccfb21f5a5ca9c486f34e7509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f4:2b:f0:04:e0:11:6a:96:a2:3c:23:18:62: 0d:0e:de:73:ba:4f:45:ca:0b:18:30:e7:a7:d0:31: 96:d2:48:9f:59:70:9a:b3:27:59:c6:e9:28:d9:78: e5:0c:04:c2:4f:57:d0:ec:e9:03:26:a3:cc:a0:7a: e9:9e:ac:93:14:28:46:b1:5f:84:23:a5:46:f3:47: a7:eb:37:f8:de:67:b6:64:be:03:70:88:0f:b6:e4: 48:36:84:98:70:11:d8:99:b9:79:b8:f1:2f:3a:dc: 31:fe:f4:32:2a:3d:29:df:27:65:b1:0d:59:6a:55: 88:7d:b6:ee:67:10:78:94:82:f8:e9:f8:cd:65:56: 2c:65:07:ab:9c:f5:7b:5b:22:f6:5b:ca:11:d6:a8: da:6d:4e:46:05:a6:08:27:94:f2:d9:40:8a:40:5a: e5:7f:d8:cb:58:6e:1a:8e:24:75:3a:8d:ef:fc:09: d9:b6:24:43:97:1a:70:14:15:32:11:8f:4b:a0:88: 3a:25:6c:80:28:a7:53:b0:4d:c1:9d:06:29:a6:4b: 4b:89:1d:a1:3f:01:13:52:45:e7:09:51:d3:7e:98: 14:db:6a:85:20:0d:97:d3:29:5e:f8:cc:48:d3:9e: ba:af:10:4a:d1:c1:79:c5:b1:0a:66:5f:c1:f7:8f: 5e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A4:D2:61:39:64:94:FC:CF:B2:1F:5A:5C:A9:C4:86:F3:4E:75:09 X509v3 Authority Key Identifier: keyid:AB:98:A8:26:3E:06:3B:8A:7B:D3:D7:18:0E:7A:4A:A6:49:53:44:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q5ioJj4GO4p709cYDnpKpklTRBw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/119d34-407a-429e-9056-7628cbaf0ec8/1/CaTSYTlklPzPsh9aXKnEhvNOdQk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/119d34-407a-429e-9056-7628cbaf0ec8/1/q5ioJj4GO4p709cYDnpKpklTRBw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.250.0.0/17 Signature Algorithm: sha256WithRSAEncryption 44:32:15:3b:57:31:e7:0e:27:88:cc:a6:ef:d7:13:59:8b:be: 5b:bb:e7:2d:63:16:87:76:ff:82:53:57:b6:0c:fc:bb:25:5b: ec:22:c5:34:22:6a:20:91:33:55:f4:49:96:8d:b0:d5:00:25: aa:3f:00:4a:97:7a:cf:f6:e1:a6:13:2e:a2:61:5a:f8:44:b3: fd:fd:8f:58:f6:d0:fd:01:b8:f4:44:e6:f1:b5:cb:55:3b:40: 63:e0:f3:be:01:5d:95:33:57:cc:73:97:22:c2:60:f8:aa:5d: 25:37:3e:0b:ac:d1:06:bb:8e:a9:a9:32:5e:ef:81:43:b0:e0: 04:e7:41:bd:c3:b6:88:50:47:de:8e:bd:68:ea:c0:c2:07:9e: 1c:72:9d:ad:5f:a2:76:75:23:97:1e:99:df:50:de:22:17:75: 92:2f:ff:51:54:ed:01:b6:01:e2:69:1f:b5:60:6d:be:ee:65: 0e:5b:b2:fb:59:a2:5e:ca:17:95:23:ae:38:8a:85:49:de:fa: c7:14:c6:09:10:70:17:9c:8d:62:af:5f:41:74:6f:66:60:67: 53:3f:df:c0:9f:2c:02:10:7b:af:a0:97:ec:db:d7:c2:45:13: 0e:cd:f5:f7:b4:2e:ea:c5:99:f7:7d:cd:73:b6:15:4c:ed:3e: 4a:99:2d:cb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt2649tk4sKpB4go3ESNbWeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiOThhODI2M2UwNjNiOGE3YmQzZDcxODBlN2E0YWE2NDk1 MzQ0MWMwHhcNMjYwMTAxMDAxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOWE0ZDI2MTM5NjQ5NGZjY2ZiMjFmNWE1Y2E5YzQ4NmYzNGU3NTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/Qr8ATgEWqWojwjGGINDt5zuk9F ygsYMOen0DGW0kifWXCasydZxuko2XjlDATCT1fQ7OkDJqPMoHrpnqyTFChGsV+E I6VG80en6zf43me2ZL4DcIgPtuRINoSYcBHYmbl5uPEvOtwx/vQyKj0p3ydlsQ1Z alWIfbbuZxB4lIL46fjNZVYsZQernPV7WyL2W8oR1qjabU5GBaYIJ5Ty2UCKQFrl f9jLWG4ajiR1Oo3v/AnZtiRDlxpwFBUyEY9LoIg6JWyAKKdTsE3BnQYppktLiR2h PwETUkXnCVHTfpgU22qFIA2X0yle+MxI0566rxBK0cF5xbEKZl/B949e0QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAmk0mE5ZJT8z7IfWlypxIbzTnUJMB8GA1UdIwQY MBaAFKuYqCY+BjuKe9PXGA56SqZJU0QcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTVpb0pqNEdPNHA3MDljWURucEtwa2xUUkJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8xMTlkMzQtNDA3YS00MjllLTkwNTYt NzYyOGNiYWYwZWM4LzEvQ2FUU1lUbGtsUHpQc2g5YVhLbkVodk5PZFFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8xMTlkMzQtNDA3YS00MjllLTkwNTYtNzYyOGNiYWYwZWM4 LzEvcTVpb0pqNEdPNHA3MDljWURucEtwa2xUUkJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHkfoAMA0G CSqGSIb3DQEBCwUAA4IBAQBEMhU7VzHnDieIzKbv1xNZi75bu+ctYxaHdv+CU1e2 DPy7JVvsIsU0ImogkTNV9EmWjbDVACWqPwBKl3rP9uGmEy6iYVr4RLP9/Y9Y9tD9 Abj0RObxtctVO0Bj4PO+AV2VM1fMc5ciwmD4ql0lNz4LrNEGu46pqTJe74FDsOAE 50G9w7aIUEfejr1o6sDCB54ccp2tX6J2dSOXHpnfUN4iF3WSL/9RVO0BtgHiaR+1 YG2+7mUOW7L7WaJeyheVI644ioVJ3vrHFMYJEHAXnI1ir19BdG9mYGdTP9/AnywC EHuvoJfs29fCRRMOzfX3tC7qxZn3fc1zthVM7T5KmS3L -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:50 2026 by rpki-client