This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/TChtOWXP5rDAuK6NV6tv7auvF7Q.roa File: TChtOWXP5rDAuK6NV6tv7auvF7Q.roa (raw, json) Hash identifier: pq1QqomaO3nc5jB5KnEvKykVFs4pGuLKdsu09ntm450= Subject key identifier: 4C:28:6D:39:65:CF:E6:B0:C0:B8:AE:8D:57:AB:6F:ED:AB:AF:17:B4 Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9 Certificate serial: 019B7C80A42BC7A0D4FD0296D8B99975CBCD Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/TChtOWXP5rDAuK6NV6tv7auvF7Q.roa Signing time: Fri 02 Jan 2026 02:19:23 +0000 ROA not before: Fri 02 Jan 2026 02:19:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214941 IP address blocks: 85.204.125.0/24 maxlen: 24 89.43.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.mft rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:a4:2b:c7:a0:d4:fd:02:96:d8:b9:99:75:cb:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9 Validity Not Before: Jan 2 02:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4c286d3965cfe6b0c0b8ae8d57ab6fedabaf17b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cf:b2:b7:cb:bf:15:1a:2b:d7:d2:30:74:b1: 12:48:c0:18:f5:bb:b0:22:91:87:e8:a7:70:e8:af: 33:1f:7c:14:74:a2:42:68:9b:94:0a:81:36:f0:d0: e9:70:44:25:50:97:a0:07:47:c3:0b:18:3e:2c:6d: 19:12:64:5e:28:56:d5:93:73:42:a6:4d:05:1a:05: ed:d2:be:b3:eb:80:c3:6a:e3:52:e6:8a:1a:69:b1: e5:e1:59:45:28:df:75:b4:4c:e3:75:c8:44:19:61: 57:fb:1e:f7:95:f7:ef:7b:f7:8f:31:0e:a0:0d:65: 2c:15:8f:fe:9d:4d:c3:ac:8a:0c:1a:4e:55:0f:ce: 46:aa:61:60:ef:a3:62:e2:c9:e7:1f:4f:f7:7e:6d: cc:4f:59:b1:f6:56:67:5d:7c:a1:49:cf:86:13:0b: 02:a9:91:0f:7c:37:33:62:83:ce:37:bc:24:d3:12: 40:0e:d9:78:73:2f:1f:ea:5b:b6:db:c8:d3:97:94: 66:55:c4:34:5a:1d:95:55:56:73:96:43:37:26:07: 68:b6:63:a3:67:48:2b:9f:fa:57:fe:00:74:31:58: 77:ba:ca:6b:f2:5b:38:f0:56:bc:cf:99:f9:9e:a8: 29:3c:d9:7c:67:bc:38:6a:f4:b0:67:26:95:1c:11: 9f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:28:6D:39:65:CF:E6:B0:C0:B8:AE:8D:57:AB:6F:ED:AB:AF:17:B4 X509v3 Authority Key Identifier: keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/TChtOWXP5rDAuK6NV6tv7auvF7Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.204.125.0/24 89.43.46.0/24 Signature Algorithm: sha256WithRSAEncryption 58:d9:b8:31:24:7b:e0:13:3e:45:5e:88:e0:37:20:76:e1:5c: c7:9e:de:95:0d:87:ec:73:a1:40:5b:20:82:87:88:5e:2d:00: 4c:0d:05:a3:f6:c7:de:21:99:81:29:de:e2:c2:da:a5:d2:24: ae:2f:af:8f:12:84:7e:c2:43:23:d9:94:49:a7:18:63:e6:38: c1:f3:30:b0:18:da:de:eb:9f:94:f8:0e:f9:5a:dc:d8:28:80: 9f:d2:84:d7:d5:d0:18:6a:1f:fb:6f:eb:be:c7:b6:a7:76:8c: f4:e8:6a:f1:df:de:be:b5:69:ee:6d:71:f5:c5:4a:61:6f:00: 9f:a5:a8:79:ee:70:53:d1:b1:ce:ab:a3:84:45:94:d4:f5:ec: 61:e8:6d:36:47:6f:6f:c9:b0:ee:5a:42:b9:70:60:68:e4:90: 4b:ae:a1:6f:63:af:02:58:68:e7:58:75:64:01:c1:ee:b4:3a: 13:bf:91:ab:c1:f3:81:bf:dc:91:98:fa:2d:06:5c:6a:8b:93: 3c:fa:80:4f:3b:28:f4:c5:12:fe:95:7d:53:10:36:f0:af:82: fc:8d:b5:88:6a:d3:87:df:e8:6e:93:8e:c9:62:1c:40:ea:7b: ee:f0:0b:cb:ca:4d:d4:1d:a7:a1:3a:6f:dc:66:61:bf:1f:ab: 4d:8a:74:f8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gKQrx6DU/QKW2LmZdcvNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlNTg5NTJkMzkzOTM1ZjBkM2JjZTgxNGZkOTE3OGQwNDY5 M2FlYjkwHhcNMjYwMTAyMDIxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YzI4NmQzOTY1Y2ZlNmIwYzBiOGFlOGQ1N2FiNmZlZGFiYWYxN2I0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt8+yt8u/FRor19IwdLESSMAY9buw IpGH6Kdw6K8zH3wUdKJCaJuUCoE28NDpcEQlUJegB0fDCxg+LG0ZEmReKFbVk3NC pk0FGgXt0r6z64DDauNS5ooaabHl4VlFKN91tEzjdchEGWFX+x73lffve/ePMQ6g DWUsFY/+nU3DrIoMGk5VD85GqmFg76Ni4snnH0/3fm3MT1mx9lZnXXyhSc+GEwsC qZEPfDczYoPON7wk0xJADtl4cy8f6lu228jTl5RmVcQ0Wh2VVVZzlkM3JgdotmOj Z0grn/pX/gB0MVh3uspr8ls48Fa8z5n5nqgpPNl8Z7w4avSwZyaVHBGfNQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEwobTllz+awwLiujVerb+2rrxe0MB8GA1UdIwQY MBaAFP5YlS05OTXw07zoFP2ReNBGk665MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUt NWQ0OGI2NWNlNTczLzEvVENodE9XWFA1ckRBdUs2TlY2dHY3YXV2RjdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUtNWQ0OGI2NWNlNTcz LzEvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVcx9AwQA WSsuMA0GCSqGSIb3DQEBCwUAA4IBAQBY2bgxJHvgEz5FXojgNyB24VzHnt6VDYfs c6FAWyCCh4heLQBMDQWj9sfeIZmBKd7iwtql0iSuL6+PEoR+wkMj2ZRJpxhj5jjB 8zCwGNre65+U+A75WtzYKICf0oTX1dAYah/7b+u+x7andoz06Grx396+tWnubXH1 xUphbwCfpah57nBT0bHOq6OERZTU9exh6G02R29vybDuWkK5cGBo5JBLrqFvY68C WGjnWHVkAcHutDoTv5GrwfOBv9yRmPotBlxqi5M8+oBPOyj0xRL+lX1TEDbwr4L8 jbWIatOH3+huk47JYhxA6nvu8AvLyk3UHaehOm/cZmG/H6tNinT4 -----END CERTIFICATE-----Generated at Wed Jan 21 10:48:13 2026 by rpki-client