This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/130d95-5641-4ada-80c0-da3e1192cdf6/1/TWakFFxyHlxGlKeAOjVcTSyZ6SA.roa File: TWakFFxyHlxGlKeAOjVcTSyZ6SA.roa (raw, json) Hash identifier: BZq7O+Mhn+xCPfei58CegAajAJORNlD7rbKNI0C8wGU= Subject key identifier: 4D:66:A4:14:5C:72:1E:5C:46:94:A7:80:3A:35:5C:4D:2C:99:E9:20 Certificate issuer: /CN=2eebb691b24f2879253e3a6a45e0b5c52673b09d Certificate serial: 019AE80B09F7B689883EDB8C74C06DF28084 Authority key identifier: 2E:EB:B6:91:B2:4F:28:79:25:3E:3A:6A:45:E0:B5:C5:26:73:B0:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Luu2kbJPKHklPjpqReC1xSZzsJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/130d95-5641-4ada-80c0-da3e1192cdf6/1/TWakFFxyHlxGlKeAOjVcTSyZ6SA.roa Signing time: Thu 04 Dec 2025 06:27:08 +0000 ROA not before: Thu 04 Dec 2025 06:27:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 202799 IP address blocks: 89.19.220.0/24 maxlen: 24 89.19.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/130d95-5641-4ada-80c0-da3e1192cdf6/1/Luu2kbJPKHklPjpqReC1xSZzsJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/33/130d95-5641-4ada-80c0-da3e1192cdf6/1/Luu2kbJPKHklPjpqReC1xSZzsJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/Luu2kbJPKHklPjpqReC1xSZzsJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 09:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e8:0b:09:f7:b6:89:88:3e:db:8c:74:c0:6d:f2:80:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2eebb691b24f2879253e3a6a45e0b5c52673b09d Validity Not Before: Dec 4 06:27:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4d66a4145c721e5c4694a7803a355c4d2c99e920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e1:e5:f5:84:1a:bd:7b:4e:79:ea:3a:38:0e: 8c:17:c8:0f:4f:5f:3b:5e:69:a7:00:52:c5:36:e7: 84:1a:2d:ad:7d:27:35:8b:1d:6f:20:14:29:81:f4: 3b:00:13:01:b0:c0:e9:d9:55:18:b9:1a:93:79:b0: 24:fa:29:7f:de:81:8d:24:c4:db:74:08:cf:71:2a: 12:dd:be:6a:8b:bb:e5:eb:3f:e8:ee:df:f5:ad:1b: ed:ff:e6:71:ec:a0:64:d9:88:c2:c4:7e:19:ef:a9: 5e:d0:31:19:f4:1e:b1:7d:e2:29:02:72:0f:4d:0b: 8b:7a:a6:a3:a1:74:63:f0:29:2d:ac:40:db:2a:95: 94:1c:5b:ac:20:82:cd:e7:4b:2d:4e:65:5f:01:16: 68:c9:e0:01:07:12:50:5b:98:38:a3:0f:29:6a:2f: e6:2d:e6:c0:e3:02:32:60:31:4e:5b:17:90:6e:7b: d3:72:0e:4d:ad:a8:09:e0:13:24:7b:fc:26:ac:00: 17:82:25:95:25:a9:60:ba:5e:ad:fc:36:d0:24:3b: 5c:09:db:a0:bd:68:99:f9:6b:0d:54:8c:21:fa:d8: da:c5:d1:1d:20:49:c9:ff:93:cd:c5:40:77:02:be: 69:34:44:79:db:cd:4c:76:00:d8:ee:c7:6b:3c:fd: 0b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:66:A4:14:5C:72:1E:5C:46:94:A7:80:3A:35:5C:4D:2C:99:E9:20 X509v3 Authority Key Identifier: keyid:2E:EB:B6:91:B2:4F:28:79:25:3E:3A:6A:45:E0:B5:C5:26:73:B0:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Luu2kbJPKHklPjpqReC1xSZzsJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/130d95-5641-4ada-80c0-da3e1192cdf6/1/TWakFFxyHlxGlKeAOjVcTSyZ6SA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/130d95-5641-4ada-80c0-da3e1192cdf6/1/Luu2kbJPKHklPjpqReC1xSZzsJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.19.220.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:ad:86:65:fa:da:5a:37:cd:42:37:71:52:74:13:45:7f:a5: d3:f8:3d:bd:58:e1:d1:e4:d9:87:49:3d:75:da:8e:b2:56:f6: be:28:9e:96:c7:a3:4c:49:e2:82:6d:07:7b:e6:0c:e1:e6:8c: 72:0b:34:51:04:fd:dc:30:95:e4:db:66:e4:40:67:90:fb:f9: 85:54:0e:f1:99:a1:1e:13:d2:9a:68:8d:c7:5e:f7:60:aa:e9: e8:72:7f:56:6d:a9:39:3e:ef:5e:40:43:e8:83:d7:f3:d2:6c: ef:22:7a:4b:dd:c2:0f:4a:21:ce:3c:a5:be:9d:3e:54:f8:be: f0:8e:df:b1:d6:88:d6:30:e6:80:91:b4:0f:6d:8c:83:af:1e: ac:7f:78:5b:14:c5:05:fa:f9:9d:86:de:8f:0c:e2:93:f2:61: f3:88:3b:8d:ed:92:cf:4d:8e:58:cd:5a:9d:e6:f7:4e:70:7f: ff:15:eb:b9:a7:a8:c1:8f:8f:c0:c4:aa:17:ef:49:e8:02:9a: e9:c8:f9:f8:7e:37:0b:2a:cd:1c:54:ec:1b:36:62:1b:87:91: b2:d4:9d:5c:b6:f2:de:bb:30:3d:55:b3:26:e5:ef:a4:62:11: 51:43:e4:54:b3:04:9e:53:42:19:c5:ba:fd:f4:8e:73:09:a3: b1:81:f3:ed -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZroCwn3tomIPtuMdMBt8oCEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlZWJiNjkxYjI0ZjI4NzkyNTNlM2E2YTQ1ZTBiNWM1MjY3 M2IwOWQwHhcNMjUxMjA0MDYyNzA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDY2YTQxNDVjNzIxZTVjNDY5NGE3ODAzYTM1NWM0ZDJjOTllOTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmOHl9YQavXtOeeo6OA6MF8gPT187 XmmnAFLFNueEGi2tfSc1ix1vIBQpgfQ7ABMBsMDp2VUYuRqTebAk+il/3oGNJMTb dAjPcSoS3b5qi7vl6z/o7t/1rRvt/+Zx7KBk2YjCxH4Z76le0DEZ9B6xfeIpAnIP TQuLeqajoXRj8CktrEDbKpWUHFusIILN50stTmVfARZoyeABBxJQW5g4ow8pai/m LebA4wIyYDFOWxeQbnvTcg5NragJ4BMke/wmrAAXgiWVJalgul6t/DbQJDtcCdug vWiZ+WsNVIwh+tjaxdEdIEnJ/5PNxUB3Ar5pNER5281MdgDY7sdrPP0LZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE1mpBRcch5cRpSngDo1XE0smekgMB8GA1UdIwQY MBaAFC7rtpGyTyh5JT46akXgtcUmc7CdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTHV1MmtiSlBLSGtsUGpwcVJlQzF4U1p6c0owLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8xMzBkOTUtNTY0MS00YWRhLTgwYzAt ZGEzZTExOTJjZGY2LzEvVFdha0ZGeHlIbHhHbEtlQU9qVmNUU3laNlNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8xMzBkOTUtNTY0MS00YWRhLTgwYzAtZGEzZTExOTJjZGY2 LzEvTHV1MmtiSlBLSGtsUGpwcVJlQzF4U1p6c0owLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBWRPcMA0G CSqGSIb3DQEBCwUAA4IBAQA6rYZl+tpaN81CN3FSdBNFf6XT+D29WOHR5NmHST11 2o6yVva+KJ6Wx6NMSeKCbQd75gzh5oxyCzRRBP3cMJXk22bkQGeQ+/mFVA7xmaEe E9KaaI3HXvdgqunocn9Wbak5Pu9eQEPog9fz0mzvInpL3cIPSiHOPKW+nT5U+L7w jt+x1ojWMOaAkbQPbYyDrx6sf3hbFMUF+vmdht6PDOKT8mHziDuN7ZLPTY5YzVqd 5vdOcH//Feu5p6jBj4/AxKoX70noAprpyPn4fjcLKs0cVOwbNmIbh5Gy1J1ctvLe uzA9VbMm5e+kYhFRQ+RUswSeU0IZxbr99I5zCaOxgfPt -----END CERTIFICATE-----Generated at Fri Dec 5 18:11:50 2025 by rpki-client