This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/TEEJpugeYt1F43E2tJGuUV3FeZA.roa File: TEEJpugeYt1F43E2tJGuUV3FeZA.roa (raw, json) Hash identifier: DLdME2cAIv/rSNCUPiFiPYf01huYXXEj3+nEaRucgYU= Subject key identifier: 4C:41:09:A6:E8:1E:62:DD:45:E3:71:36:B4:91:AE:51:5D:C5:79:90 Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288 Certificate serial: 019B7BA3E108E5D712D46E575E2D1A9B5BED Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/TEEJpugeYt1F43E2tJGuUV3FeZA.roa Signing time: Thu 01 Jan 2026 22:18:16 +0000 ROA not before: Thu 01 Jan 2026 22:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19551 IP address blocks: 213.253.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.mft rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 21:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:e1:08:e5:d7:12:d4:6e:57:5e:2d:1a:9b:5b:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288 Validity Not Before: Jan 1 22:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4c4109a6e81e62dd45e37136b491ae515dc57990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e2:c9:93:19:bd:14:26:93:26:d7:8e:aa:bc: 08:5a:46:0f:d4:1f:87:8f:6e:c8:0f:94:f7:77:29: b4:6b:d4:1a:67:45:02:82:2b:0c:6c:04:d6:71:c2: 44:d4:bc:34:e1:0c:18:17:e3:33:25:93:fd:30:e9: f0:71:41:ba:01:40:66:8a:f2:dd:a7:f3:8a:3e:0b: 97:79:f8:23:4d:a0:65:b6:dc:92:87:fe:a5:8e:32: 5a:72:a8:eb:75:7a:7b:8c:22:d7:9f:5c:41:f9:c3: 21:97:08:2d:5e:20:a9:b1:b5:fc:16:06:24:a0:3b: 71:b6:7b:a1:fa:bf:38:da:b3:5a:3b:f2:ee:76:5f: e5:92:a6:8d:cb:bf:40:89:17:78:d6:b1:82:27:e5: 92:a9:81:e8:8d:42:26:10:3b:37:94:17:7d:28:47: 7a:a0:84:6e:cf:31:16:69:dc:72:dc:32:7a:04:71: 64:3b:24:8a:b8:44:d2:f1:89:e4:b7:de:fa:01:3c: 1d:0c:6f:ec:66:38:38:23:4b:dd:a9:dc:83:6a:6a: c1:31:32:31:4d:39:aa:25:0f:3b:33:a2:c2:6f:09: 81:80:cb:6d:98:37:2f:99:f8:f7:b9:90:f5:d3:82: 91:22:cf:cb:be:b8:bc:9c:20:93:27:3c:4b:5d:82: 7e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:41:09:A6:E8:1E:62:DD:45:E3:71:36:B4:91:AE:51:5D:C5:79:90 X509v3 Authority Key Identifier: keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/TEEJpugeYt1F43E2tJGuUV3FeZA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.253.215.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:65:ea:00:25:57:9e:67:84:55:b3:ac:59:fa:c4:45:71:52: 1e:89:20:4e:40:f8:03:19:af:c7:68:c3:2f:b4:ec:a6:fb:94: b8:e5:d2:5e:1e:b0:b3:af:eb:f0:bb:d5:04:46:c2:43:11:6f: b6:40:54:01:db:9c:2b:df:dd:41:01:dd:32:32:5d:ef:9a:36: 21:87:ea:45:9b:ba:34:52:72:40:63:56:88:3d:8d:70:93:f7: d1:71:8c:2e:88:49:d7:48:0b:20:63:a9:25:5e:3a:de:70:3e: eb:7e:cd:98:51:9d:f0:58:f0:31:fa:e4:4d:6e:e5:28:dd:27: 29:5b:65:85:8e:78:0b:2c:92:55:8a:b8:fe:1b:24:81:e7:f2: 0f:5f:7c:17:40:0d:25:8e:11:e2:72:83:30:4b:de:6f:c2:5e: 4e:52:74:07:08:51:49:18:f4:d4:fa:ea:65:21:9b:73:06:85: fd:10:2e:60:29:01:d2:59:36:55:7b:1e:14:86:3d:2b:4e:37: 89:30:2f:8b:44:34:89:58:b1:18:ff:fd:af:f0:af:39:4b:5e: 38:ca:16:e9:86:c3:fe:4a:cd:12:1c:a4:2f:43:03:dd:47:3f: 56:c3:b3:2b:58:61:d7:be:09:21:d6:36:c7:5d:00:19:68:2b: 91:f9:fc:cc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o+EI5dcS1G5XXi0am1vtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYjA5N2EzNmMyMzI1ZDEwMzFmZjQwOTFiYTAwYTg2NDU5 ZDQyODgwHhcNMjYwMTAxMjIxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YzQxMDlhNmU4MWU2MmRkNDVlMzcxMzZiNDkxYWU1MTVkYzU3OTkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6eLJkxm9FCaTJteOqrwIWkYP1B+H j27ID5T3dym0a9QaZ0UCgisMbATWccJE1Lw04QwYF+MzJZP9MOnwcUG6AUBmivLd p/OKPguXefgjTaBlttySh/6ljjJacqjrdXp7jCLXn1xB+cMhlwgtXiCpsbX8FgYk oDtxtnuh+r842rNaO/Ludl/lkqaNy79AiRd41rGCJ+WSqYHojUImEDs3lBd9KEd6 oIRuzzEWadxy3DJ6BHFkOySKuETS8Ynkt976ATwdDG/sZjg4I0vdqdyDamrBMTIx TTmqJQ87M6LCbwmBgMttmDcvmfj3uZD104KRIs/Lvri8nCCTJzxLXYJ+JwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFExBCaboHmLdReNxNrSRrlFdxXmQMB8GA1UdIwQY MBaAFL+wl6NsIyXRAx/0CRugCoZFnUKIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2It ZWNjNDliZGMyYWQ4LzEvVEVFSnB1Z2VZdDFGNDNFMnRKR3VVVjNGZVpBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2ItZWNjNDliZGMyYWQ4 LzEvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1f3XMA0G CSqGSIb3DQEBCwUAA4IBAQAbZeoAJVeeZ4RVs6xZ+sRFcVIeiSBOQPgDGa/HaMMv tOym+5S45dJeHrCzr+vwu9UERsJDEW+2QFQB25wr391BAd0yMl3vmjYhh+pFm7o0 UnJAY1aIPY1wk/fRcYwuiEnXSAsgY6klXjrecD7rfs2YUZ3wWPAx+uRNbuUo3Scp W2WFjngLLJJVirj+GySB5/IPX3wXQA0ljhHicoMwS95vwl5OUnQHCFFJGPTU+upl IZtzBoX9EC5gKQHSWTZVex4Uhj0rTjeJMC+LRDSJWLEY//2v8K85S144yhbphsP+ Ss0SHKQvQwPdRz9Ww7MrWGHXvgkh1jbHXQAZaCuR+fzM -----END CERTIFICATE-----Generated at Tue Jan 20 07:46:28 2026 by rpki-client