This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/c011ca-456b-4f51-bc8b-005cb4dca63f/1/tyhGCGUUUxBeIkOEmn5CIWeCMz0.roa File: tyhGCGUUUxBeIkOEmn5CIWeCMz0.roa (raw, json) Hash identifier: Mn4RuAcnVGGM8GO1ajZF2VYJS7eHnyi2wQ/w4qHvAaM= Subject key identifier: B7:28:46:08:65:14:53:10:5E:22:43:84:9A:7E:42:21:67:82:33:3D Certificate issuer: /CN=5ff4bc6137c540a89b9173cc2de32eb04c9e6eae Certificate serial: 019B78A2C0037C3B9730C291B536C57AE74E Authority key identifier: 5F:F4:BC:61:37:C5:40:A8:9B:91:73:CC:2D:E3:2E:B0:4C:9E:6E:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_S8YTfFQKibkXPMLeMusEyebq4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/c011ca-456b-4f51-bc8b-005cb4dca63f/1/tyhGCGUUUxBeIkOEmn5CIWeCMz0.roa Signing time: Thu 01 Jan 2026 08:18:10 +0000 ROA not before: Thu 01 Jan 2026 08:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 134963 IP address blocks: 5.61.68.0/24 maxlen: 24 5.61.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/c011ca-456b-4f51-bc8b-005cb4dca63f/1/X_S8YTfFQKibkXPMLeMusEyebq4.crl rsync://rpki.ripe.net/repository/DEFAULT/26/c011ca-456b-4f51-bc8b-005cb4dca63f/1/X_S8YTfFQKibkXPMLeMusEyebq4.mft rsync://rpki.ripe.net/repository/DEFAULT/X_S8YTfFQKibkXPMLeMusEyebq4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 17:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:c0:03:7c:3b:97:30:c2:91:b5:36:c5:7a:e7:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ff4bc6137c540a89b9173cc2de32eb04c9e6eae Validity Not Before: Jan 1 08:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b7284608651453105e2243849a7e42216782333d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cc:be:3a:66:c3:ae:2a:50:65:77:ff:fa:49: 8c:a8:4b:a2:8f:de:14:6b:f5:66:2f:af:b1:a0:c1: a9:5e:ad:04:c1:cf:4c:c5:29:c7:ae:f2:c1:f3:dd: da:cb:ce:6e:5c:3e:07:48:e2:fc:4a:f2:33:21:6d: b4:8a:70:c1:0a:bd:19:50:3c:73:94:f2:b9:6e:ca: 6f:01:49:54:65:38:d7:90:f1:bf:5e:99:0e:54:b3: fc:7c:23:f0:00:e2:47:44:8c:6a:ea:bd:f5:2b:84: 65:bc:de:d7:0c:15:c3:83:82:f1:5b:47:d2:23:3d: 38:ab:12:77:cd:3b:ab:01:20:d1:6a:5f:68:73:58: 7f:dc:6a:a0:9d:09:86:73:9b:3e:88:20:df:7b:35: 6c:df:2a:f5:e9:d3:d9:0f:14:c9:ed:af:ab:56:04: 37:cd:32:5f:fa:a3:f0:ac:f9:5d:6c:97:0c:a0:9c: 3a:6e:10:29:df:a2:06:cd:4c:39:56:e2:e8:a0:ce: 97:5d:9b:f3:be:d4:fd:a3:da:b0:c5:51:68:a3:f3: 39:55:12:09:a6:ac:26:6e:82:c0:18:03:06:6c:0d: 51:83:a8:b5:79:1b:63:c5:06:bb:69:2b:69:3d:2c: dc:97:20:ef:8d:a0:b7:0e:03:3b:b6:5d:20:53:c5: 98:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:28:46:08:65:14:53:10:5E:22:43:84:9A:7E:42:21:67:82:33:3D X509v3 Authority Key Identifier: keyid:5F:F4:BC:61:37:C5:40:A8:9B:91:73:CC:2D:E3:2E:B0:4C:9E:6E:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_S8YTfFQKibkXPMLeMusEyebq4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c011ca-456b-4f51-bc8b-005cb4dca63f/1/tyhGCGUUUxBeIkOEmn5CIWeCMz0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c011ca-456b-4f51-bc8b-005cb4dca63f/1/X_S8YTfFQKibkXPMLeMusEyebq4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.61.68.0/23 Signature Algorithm: sha256WithRSAEncryption 20:3b:16:a5:44:a8:86:b4:ce:7a:fc:d1:35:f4:48:26:56:47: 69:b0:a1:86:84:b8:95:b1:ff:ce:78:b2:55:49:76:e8:ab:77: 5c:41:3e:ca:5f:c1:de:6c:6c:1d:5c:48:ca:de:d7:aa:d9:4b: 1e:91:55:c4:d8:db:c9:a2:02:6a:f1:3b:3d:a1:7a:42:44:72: 68:1c:32:b4:58:bd:47:ae:4f:06:73:68:72:11:d6:f3:d5:7c: a0:65:18:7b:df:bc:47:eb:ed:b4:d4:bd:8d:22:2b:c5:29:7c: 69:39:0e:e0:6f:a3:18:e2:57:37:0f:01:8e:f2:64:f3:7e:52: da:f0:49:9a:b6:ae:d9:35:1e:c6:78:c6:36:5b:ab:a4:e6:af: 23:af:b4:04:be:93:ee:ad:49:0a:97:70:3a:97:dd:6e:c6:8c: 82:60:a4:87:c4:b6:38:f0:fe:95:d0:85:f7:10:83:3f:89:cf: 3b:d2:78:5e:1b:a9:19:f4:fe:13:1b:33:9d:3c:4a:05:20:c8: 0e:1f:4c:cd:9c:77:9f:5f:80:f8:e8:bb:61:be:00:7d:6c:09: 70:91:2d:4b:d7:94:03:f8:a0:54:6d:61:83:2a:11:6a:dd:6a: d9:5f:01:9f:b3:8c:56:46:af:a8:11:e4:28:82:48:52:d1:6b: 32:e0:ae:3d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4osADfDuXMMKRtTbFeudOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmZjRiYzYxMzdjNTQwYTg5YjkxNzNjYzJkZTMyZWIwNGM5 ZTZlYWUwHhcNMjYwMTAxMDgxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNzI4NDYwODY1MTQ1MzEwNWUyMjQzODQ5YTdlNDIyMTY3ODIzMzNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycy+OmbDripQZXf/+kmMqEuij94U a/VmL6+xoMGpXq0Ewc9MxSnHrvLB893ay85uXD4HSOL8SvIzIW20inDBCr0ZUDxz lPK5bspvAUlUZTjXkPG/XpkOVLP8fCPwAOJHRIxq6r31K4RlvN7XDBXDg4LxW0fS Iz04qxJ3zTurASDRal9oc1h/3GqgnQmGc5s+iCDfezVs3yr16dPZDxTJ7a+rVgQ3 zTJf+qPwrPldbJcMoJw6bhAp36IGzUw5VuLooM6XXZvzvtT9o9qwxVFoo/M5VRIJ pqwmboLAGAMGbA1Rg6i1eRtjxQa7aStpPSzclyDvjaC3DgM7tl0gU8WYVwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLcoRghlFFMQXiJDhJp+QiFngjM9MB8GA1UdIwQY MBaAFF/0vGE3xUCom5FzzC3jLrBMnm6uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWF9TOFlUZkZRS2lia1hQTUxlTXVzRXllYnE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9jMDExY2EtNDU2Yi00ZjUxLWJjOGIt MDA1Y2I0ZGNhNjNmLzEvdHloR0NHVVVVeEJlSWtPRW1uNUNJV2VDTXowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi9jMDExY2EtNDU2Yi00ZjUxLWJjOGItMDA1Y2I0ZGNhNjNm LzEvWF9TOFlUZkZRS2lia1hQTUxlTXVzRXllYnE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBT1EMA0G CSqGSIb3DQEBCwUAA4IBAQAgOxalRKiGtM56/NE19EgmVkdpsKGGhLiVsf/OeLJV SXboq3dcQT7KX8HebGwdXEjK3teq2UsekVXE2NvJogJq8Ts9oXpCRHJoHDK0WL1H rk8Gc2hyEdbz1XygZRh737xH6+201L2NIivFKXxpOQ7gb6MY4lc3DwGO8mTzflLa 8Ematq7ZNR7GeMY2W6uk5q8jr7QEvpPurUkKl3A6l91uxoyCYKSHxLY48P6V0IX3 EIM/ic870nheG6kZ9P4TGzOdPEoFIMgOH0zNnHefX4D46LthvgB9bAlwkS1L15QD +KBUbWGDKhFq3WrZXwGfs4xWRq+oEeQogkhS0Wsy4K49 -----END CERTIFICATE-----Generated at Thu Jan 1 19:06:43 2026 by rpki-client