This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/820e72-5706-4620-a990-20a3218b98cd/1/TUc2gbf6MWuXY9TL4fj7htCzvew.roa File: TUc2gbf6MWuXY9TL4fj7htCzvew.roa (raw, json) Hash identifier: It/V0gupbk0YCdz0m2E/YgmbfksuMYBsp7YPvJMD+P0= Subject key identifier: 4D:47:36:81:B7:FA:31:6B:97:63:D4:CB:E1:F8:FB:86:D0:B3:BD:EC Certificate issuer: /CN=0b90e376944d30294dea41f21fb7f1e1ca368a93 Certificate serial: 019B7BA4C19567E2DA0D9A455E60D7F774EC Authority key identifier: 0B:90:E3:76:94:4D:30:29:4D:EA:41:F2:1F:B7:F1:E1:CA:36:8A:93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C5DjdpRNMClN6kHyH7fx4co2ipM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/820e72-5706-4620-a990-20a3218b98cd/1/TUc2gbf6MWuXY9TL4fj7htCzvew.roa Signing time: Thu 01 Jan 2026 22:19:13 +0000 ROA not before: Thu 01 Jan 2026 22:19:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210736 IP address blocks: 93.123.45.0/24 maxlen: 24 2a14:e580::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/820e72-5706-4620-a990-20a3218b98cd/1/C5DjdpRNMClN6kHyH7fx4co2ipM.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/820e72-5706-4620-a990-20a3218b98cd/1/C5DjdpRNMClN6kHyH7fx4co2ipM.mft rsync://rpki.ripe.net/repository/DEFAULT/C5DjdpRNMClN6kHyH7fx4co2ipM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:c1:95:67:e2:da:0d:9a:45:5e:60:d7:f7:74:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b90e376944d30294dea41f21fb7f1e1ca368a93 Validity Not Before: Jan 1 22:19:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d473681b7fa316b9763d4cbe1f8fb86d0b3bdec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:77:c5:c8:6e:43:23:9a:c1:1f:21:da:3b:2e: 89:20:9e:e6:24:f6:05:79:9e:92:8e:d8:09:1a:70: bf:5c:b3:bb:b1:31:c4:c5:15:6a:ce:cf:3a:ca:a3: 9e:d7:eb:6e:a9:2e:ab:c2:03:1a:ab:5e:8c:e4:7c: cd:8f:8d:a7:92:ee:e3:64:74:34:d0:ab:39:6c:d5: f5:f7:c4:6a:06:be:97:a5:f1:d8:30:d9:1f:95:46: 15:10:48:d1:e3:77:c0:74:51:8e:46:e1:fc:77:96: 62:7e:e9:aa:eb:4b:70:ab:bf:77:f1:76:a4:fa:a7: ca:b5:a0:60:14:c3:15:ff:6a:1c:37:b3:3f:91:44: 4a:e5:c5:5a:b0:94:f2:b2:ed:46:1c:85:a0:8e:df: c3:c4:5f:7a:b5:5d:6c:4d:bd:1b:cc:a1:86:9f:b6: 15:a1:c4:23:68:12:1e:d3:c0:25:ec:26:5b:94:5d: 7c:64:ee:1b:15:75:6d:2e:5a:55:41:6f:da:d8:ce: 73:1a:ff:2a:cb:15:40:ff:3d:4c:47:05:0b:31:c4: cb:fe:89:72:fc:9f:52:4f:07:03:19:b6:73:a6:3a: 5e:2c:f2:15:0a:ce:b8:69:f6:ef:3a:e5:26:66:97: fc:21:96:09:63:a1:fc:0b:90:52:d2:9e:be:04:e3: b1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:47:36:81:B7:FA:31:6B:97:63:D4:CB:E1:F8:FB:86:D0:B3:BD:EC X509v3 Authority Key Identifier: keyid:0B:90:E3:76:94:4D:30:29:4D:EA:41:F2:1F:B7:F1:E1:CA:36:8A:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C5DjdpRNMClN6kHyH7fx4co2ipM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/820e72-5706-4620-a990-20a3218b98cd/1/TUc2gbf6MWuXY9TL4fj7htCzvew.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/820e72-5706-4620-a990-20a3218b98cd/1/C5DjdpRNMClN6kHyH7fx4co2ipM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.123.45.0/24 IPv6: 2a14:e580::/29 Signature Algorithm: sha256WithRSAEncryption 8b:e7:19:57:4c:75:ed:33:c6:13:1d:3a:18:94:16:b6:2d:cc: 7f:59:ce:27:89:93:42:96:0d:84:9c:c2:90:be:98:18:fb:c1: b9:a3:d6:af:29:a7:1b:ae:b3:7e:b4:be:3e:e3:33:7c:8e:19: 22:63:70:5d:29:2d:a1:cc:e2:fc:6d:81:49:41:0f:21:1c:28: 52:31:9d:73:91:db:75:6e:67:7c:a3:41:ad:51:08:e3:85:8a: 18:f5:c8:73:67:3d:e9:c2:f4:c6:94:b4:46:84:1e:d6:9a:3b: 59:50:30:2c:40:d2:8d:e8:21:25:f5:f2:6e:2c:50:1a:f8:00: e7:06:17:c5:bb:0d:42:cb:1f:ea:fc:06:08:d7:d1:94:66:f2: 6d:3d:8d:f6:29:03:8b:15:4b:6d:e2:dc:d0:67:66:97:59:63: b8:86:fc:e2:c4:7d:62:a2:ef:ae:73:cd:b4:6b:9c:03:f8:6c: fb:d3:66:75:00:cf:dc:56:52:3e:d8:9a:4b:f4:ce:fb:71:89: 7d:d0:fc:14:92:24:14:22:8d:db:e7:a8:5f:53:cf:d3:da:52: 96:d5:c2:1f:57:4a:07:dc:86:c2:c5:49:f4:7d:a6:2f:8d:0b: a6:03:2a:02:30:8b:43:47:0e:27:b2:37:ae:a8:24:db:62:0a: e1:85:74:90 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pMGVZ+LaDZpFXmDX93TsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiOTBlMzc2OTQ0ZDMwMjk0ZGVhNDFmMjFmYjdmMWUxY2Ez NjhhOTMwHhcNMjYwMTAxMjIxOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDQ3MzY4MWI3ZmEzMTZiOTc2M2Q0Y2JlMWY4ZmI4NmQwYjNiZGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA33fFyG5DI5rBHyHaOy6JIJ7mJPYF eZ6SjtgJGnC/XLO7sTHExRVqzs86yqOe1+tuqS6rwgMaq16M5HzNj42nku7jZHQ0 0Ks5bNX198RqBr6XpfHYMNkflUYVEEjR43fAdFGORuH8d5Zifumq60twq7938Xak +qfKtaBgFMMV/2ocN7M/kURK5cVasJTysu1GHIWgjt/DxF96tV1sTb0bzKGGn7YV ocQjaBIe08Al7CZblF18ZO4bFXVtLlpVQW/a2M5zGv8qyxVA/z1MRwULMcTL/oly /J9STwcDGbZzpjpeLPIVCs64afbvOuUmZpf8IZYJY6H8C5BS0p6+BOOx4QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFE1HNoG3+jFrl2PUy+H4+4bQs73sMB8GA1UdIwQY MBaAFAuQ43aUTTApTepB8h+38eHKNoqTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQzVEamRwUk5NQ2xONmtIeUg3Zng0Y28yaXBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy84MjBlNzItNTcwNi00NjIwLWE5OTAt MjBhMzIxOGI5OGNkLzEvVFVjMmdiZjZNV3VYWTlUTDRmajdodEN6dmV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy84MjBlNzItNTcwNi00NjIwLWE5OTAtMjBhMzIxOGI5OGNk LzEvQzVEamRwUk5NQ2xONmtIeUg3Zng0Y28yaXBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAXXstMA0E AgACMAcDBQMqFOWAMA0GCSqGSIb3DQEBCwUAA4IBAQCL5xlXTHXtM8YTHToYlBa2 Lcx/Wc4niZNClg2EnMKQvpgY+8G5o9avKacbrrN+tL4+4zN8jhkiY3BdKS2hzOL8 bYFJQQ8hHChSMZ1zkdt1bmd8o0GtUQjjhYoY9chzZz3pwvTGlLRGhB7WmjtZUDAs QNKN6CEl9fJuLFAa+ADnBhfFuw1Cyx/q/AYI19GUZvJtPY32KQOLFUtt4tzQZ2aX WWO4hvzixH1iou+uc820a5wD+Gz702Z1AM/cVlI+2JpL9M77cYl90PwUkiQUIo3b 56hfU8/T2lKW1cIfV0oH3IbCxUn0faYvjQumAyoCMItDRw4nsjeuqCTbYgrhhXSQ -----END CERTIFICATE-----Generated at Wed Jan 21 10:28:40 2026 by rpki-client