This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/TrTbTHcGhlfNyclRzuN21X3Xda4.roa File: TrTbTHcGhlfNyclRzuN21X3Xda4.roa (raw, json) Hash identifier: if7cYf5/Jq71VAtwQgu9NNqK2Sc7lWY1tvrxjrOdx+c= Subject key identifier: 4E:B4:DB:4C:77:06:86:57:CD:C9:C9:51:CE:E3:76:D5:7D:D7:75:AE Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82C19C7654FF42064586A7C8EE5589 Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/TrTbTHcGhlfNyclRzuN21X3Xda4.roa Signing time: Fri 02 Jan 2026 16:20:34 +0000 ROA not before: Fri 02 Jan 2026 16:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62068 IP address blocks: 89.190.159.0/24 maxlen: 24 194.50.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:c1:9c:76:54:ff:42:06:45:86:a7:c8:ee:55:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4eb4db4c77068657cdc9c951cee376d57dd775ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:68:ef:79:ee:c3:59:22:3b:ba:fc:96:e0:e4: 50:8b:17:c1:71:23:62:ea:03:4c:87:ce:f1:5f:b3: 11:f1:e9:00:46:8b:7b:bc:06:9c:af:af:85:2b:aa: 09:59:d8:cd:9d:ad:3d:d4:8c:84:78:10:91:bf:6b: 8e:67:58:ce:5e:1c:17:39:54:e3:5b:5b:60:79:04: 22:c2:7a:4d:85:f6:39:25:09:b3:d7:a4:c5:0e:55: b5:90:28:66:d0:c4:ac:70:47:35:79:d4:63:99:16: ae:32:5a:74:86:52:4a:0f:bf:03:42:f1:59:69:42: 6e:ad:80:c1:d8:0b:4c:1f:13:95:6c:09:de:6e:70: 93:d0:68:2e:b0:ca:3e:8e:9a:4d:2e:91:f7:dd:9f: 55:82:98:2c:61:39:61:6f:20:15:f2:02:21:d1:6d: d7:4a:ba:52:9c:2f:49:53:7d:75:c4:61:0d:4b:24: 58:f4:a5:95:af:49:b0:b7:a3:81:ea:5b:77:72:50: 69:aa:95:1f:d9:25:59:31:a2:80:98:a9:17:9c:76: a6:d3:54:30:a8:9a:c1:28:2e:3d:e3:5e:7d:04:8e: ff:a5:42:ab:40:f2:1d:57:5d:c8:92:29:49:3d:c1: ee:47:e1:3b:ba:8b:c7:ed:86:68:14:02:b0:a8:fa: bf:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B4:DB:4C:77:06:86:57:CD:C9:C9:51:CE:E3:76:D5:7D:D7:75:AE X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/TrTbTHcGhlfNyclRzuN21X3Xda4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.190.159.0/24 194.50.16.0/24 Signature Algorithm: sha256WithRSAEncryption 76:72:59:eb:76:7c:2a:6d:bd:b2:af:c9:9c:e6:d8:3a:dd:af: 59:ed:5b:17:c0:1f:d8:a6:39:88:4a:db:ac:c6:68:04:31:cb: 83:7e:c8:89:25:0d:d7:5a:b7:89:01:9f:51:b4:2a:95:17:7f: da:a5:a5:07:ca:ca:41:2e:15:67:98:98:10:ed:05:ce:c0:75: 3d:d8:c0:1a:7b:25:20:10:03:d3:02:31:97:50:db:4c:98:50: db:1c:8e:75:f0:30:b1:d5:75:02:2e:4b:bc:b0:ec:2e:1b:43: e4:10:dc:b8:88:f8:35:fb:c5:12:a9:2e:21:87:7a:bf:0f:f3: 78:8a:e4:c5:26:f2:20:da:5e:28:53:77:b0:2b:0f:1f:1d:7d: 13:d4:18:ff:7b:a7:f3:1c:76:b3:19:91:e4:d5:d0:1c:cf:78: 36:ac:d9:19:55:60:ae:1d:a9:e5:85:31:5a:0d:74:e3:8a:6b: b9:ae:3c:bb:c9:a0:57:39:61:1a:28:96:f1:81:87:db:e0:b5: e0:3e:1e:1a:fd:86:3f:f6:d5:aa:5a:cc:40:f2:36:b3:0f:20: b9:fd:75:ad:29:40:3e:8b:0b:43:ab:f7:f5:18:b5:a0:4c:a5: 7d:64:ab:62:e1:4a:82:38:42:d3:3f:97:da:7e:24:c3:41:2f: 2c:2e:ec:22 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/gsGcdlT/QgZFhqfI7lWJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZWI0ZGI0Yzc3MDY4NjU3Y2RjOWM5NTFjZWUzNzZkNTdkZDc3NWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyGjvee7DWSI7uvyW4ORQixfBcSNi 6gNMh87xX7MR8ekARot7vAacr6+FK6oJWdjNna091IyEeBCRv2uOZ1jOXhwXOVTj W1tgeQQiwnpNhfY5JQmz16TFDlW1kChm0MSscEc1edRjmRauMlp0hlJKD78DQvFZ aUJurYDB2AtMHxOVbAnebnCT0GgusMo+jppNLpH33Z9VgpgsYTlhbyAV8gIh0W3X SrpSnC9JU311xGENSyRY9KWVr0mwt6OB6lt3clBpqpUf2SVZMaKAmKkXnHam01Qw qJrBKC494159BI7/pUKrQPIdV13IkilJPcHuR+E7uovH7YZoFAKwqPq/VQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFE6020x3BoZXzcnJUc7jdtV913WuMB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEvVHJUYlRIY0dobGZOeWNsUnp1TjIxWDNYZGE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWb6fAwQA wjIQMA0GCSqGSIb3DQEBCwUAA4IBAQB2clnrdnwqbb2yr8mc5tg63a9Z7VsXwB/Y pjmIStusxmgEMcuDfsiJJQ3XWreJAZ9RtCqVF3/apaUHyspBLhVnmJgQ7QXOwHU9 2MAaeyUgEAPTAjGXUNtMmFDbHI518DCx1XUCLku8sOwuG0PkENy4iPg1+8USqS4h h3q/D/N4iuTFJvIg2l4oU3ewKw8fHX0T1Bj/e6fzHHazGZHk1dAcz3g2rNkZVWCu HanlhTFaDXTjimu5rjy7yaBXOWEaKJbxgYfb4LXgPh4a/YY/9tWqWsxA8jazDyC5 /XWtKUA+iwtDq/f1GLWgTKV9ZKti4UqCOELTP5fafiTDQS8sLuwi -----END CERTIFICATE-----Generated at Tue Jan 20 15:17:53 2026 by rpki-client