This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/4GnNaMU7ozZwZhW2J2112doh_tw.roa File: 4GnNaMU7ozZwZhW2J2112doh_tw.roa (raw, json) Hash identifier: WMA3aYgk7G+X7flrtEOgH24fD1TLzYLGipLG5KR0H5o= Subject key identifier: E0:69:CD:68:C5:3B:A3:36:70:66:15:B6:27:6D:75:D9:DA:21:FE:DC Certificate issuer: /CN=aefe1c859409ac5de7414c48f86739913be6b7e5 Certificate serial: 019B7DCA31B4DE007A9BAC5935DC42D72DF4 Authority key identifier: AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/4GnNaMU7ozZwZhW2J2112doh_tw.roa Signing time: Fri 02 Jan 2026 08:19:21 +0000 ROA not before: Fri 02 Jan 2026 08:19:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48612 IP address blocks: 62.118.96.0/23 maxlen: 23 85.140.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/rv4chZQJrF3nQUxI-Gc5kTvmt-U.crl rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/rv4chZQJrF3nQUxI-Gc5kTvmt-U.mft rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:31:b4:de:00:7a:9b:ac:59:35:dc:42:d7:2d:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aefe1c859409ac5de7414c48f86739913be6b7e5 Validity Not Before: Jan 2 08:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e069cd68c53ba336706615b6276d75d9da21fedc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c2:c2:72:47:46:41:91:96:17:50:2e:00:06: 9c:8c:dd:fa:c1:ba:0f:20:01:12:db:91:5e:41:27: ec:5e:31:0a:35:89:b4:56:fc:3f:8a:61:a5:d4:85: 41:01:23:d7:58:07:9a:24:a9:7d:ec:2b:41:75:8b: 81:55:40:2c:cd:72:a1:39:fa:3e:d6:bf:0e:ea:cf: e6:80:3c:ba:7a:31:cb:89:d8:ee:33:90:e9:c5:d4: 2b:c0:90:2b:31:d1:f3:f1:63:c5:9e:ee:44:fd:91: 53:61:05:3e:1c:2f:58:e1:c0:dc:7f:5c:19:50:7e: 95:76:50:ae:79:b3:a8:f8:8c:2f:56:63:27:c4:00: 65:dd:79:fc:4b:a3:90:04:f1:21:5d:ba:7a:6b:8a: 9a:cb:84:5a:f5:14:e1:6c:73:4c:9a:0c:ad:3a:cb: 7b:c7:a9:ce:08:40:0e:26:df:95:18:de:fa:1f:6c: 38:c4:64:95:90:e3:ff:e2:cb:f1:71:e2:80:66:d5: 8a:7e:30:bc:1d:ee:76:db:1a:cf:14:fa:24:89:e3: 32:cb:c4:28:25:77:fd:62:e8:39:67:c0:c3:af:c7: 05:2f:86:9a:f7:63:6f:94:dd:34:3c:66:fb:cb:da: 52:84:27:47:02:02:df:25:85:33:5a:f3:f0:6f:72: 96:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:69:CD:68:C5:3B:A3:36:70:66:15:B6:27:6D:75:D9:DA:21:FE:DC X509v3 Authority Key Identifier: keyid:AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/4GnNaMU7ozZwZhW2J2112doh_tw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/rv4chZQJrF3nQUxI-Gc5kTvmt-U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.118.96.0/23 85.140.126.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:2f:b6:08:c4:52:64:be:7b:15:84:85:77:26:df:ff:33:98: 15:09:0f:5e:50:a1:4d:a9:2a:4e:62:64:4c:73:00:c4:79:5b: c6:14:08:21:0a:7c:d4:3b:1c:92:07:c1:bb:42:14:05:99:0d: 68:33:46:2a:89:6e:8b:b9:33:4e:05:8f:ff:97:28:80:46:d0: 15:92:62:15:66:8a:3f:17:d4:7d:47:84:5a:54:22:bc:5a:0d: 0b:0b:2a:a3:dd:9a:4e:f1:bc:d8:a1:6c:ad:88:00:a0:4c:90: b9:69:d4:7c:ef:f6:83:03:36:2c:c2:f5:4f:4a:e4:17:f4:9d: 0d:88:06:84:fd:08:c9:e5:aa:bb:2c:88:c3:fc:a5:11:46:5c: 85:c6:13:af:84:4d:90:91:f5:54:48:9a:94:f2:69:27:35:85: 2e:be:78:46:f0:3b:60:de:e6:61:53:dd:82:5e:52:af:18:e0: ae:fa:49:a2:1b:30:ed:70:c6:37:d1:76:21:48:ff:98:b1:24: 4d:06:0e:43:2a:55:4d:c4:17:b9:82:ac:2b:01:4b:26:07:8b: 3a:7b:35:6a:25:df:26:6b:be:74:f0:58:42:93:37:9a:6c:66: ec:c1:9a:61:2a:e5:d6:74:bd:85:ac:9d:ac:c4:69:34:ba:e8: 4c:76:23:b3 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9yjG03gB6m6xZNdxC1y30MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlZmUxYzg1OTQwOWFjNWRlNzQxNGM0OGY4NjczOTkxM2Jl NmI3ZTUwHhcNMjYwMTAyMDgxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMDY5Y2Q2OGM1M2JhMzM2NzA2NjE1YjYyNzZkNzVkOWRhMjFmZWRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8LCckdGQZGWF1AuAAacjN36wboP IAES25FeQSfsXjEKNYm0Vvw/imGl1IVBASPXWAeaJKl97CtBdYuBVUAszXKhOfo+ 1r8O6s/mgDy6ejHLidjuM5DpxdQrwJArMdHz8WPFnu5E/ZFTYQU+HC9Y4cDcf1wZ UH6VdlCuebOo+IwvVmMnxABl3Xn8S6OQBPEhXbp6a4qay4Ra9RThbHNMmgytOst7 x6nOCEAOJt+VGN76H2w4xGSVkOP/4svxceKAZtWKfjC8He522xrPFPokieMyy8Qo JXf9Yug5Z8DDr8cFL4aa92NvlN00PGb7y9pShCdHAgLfJYUzWvPwb3KWmQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOBpzWjFO6M2cGYVtidtddnaIf7cMB8GA1UdIwQY MBaAFK7+HIWUCaxd50FMSPhnOZE75rflMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnY0Y2haUUpyRjNuUVV4SS1HYzVrVHZtdC1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS80NTFmMDQtZTNjOS00NGVhLWE2YTEt NDI4NDU4Njc5Y2U0LzEvNEduTmFNVTdvelp3WmhXMkoyMTEyZG9oX3R3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS80NTFmMDQtZTNjOS00NGVhLWE2YTEtNDI4NDU4Njc5Y2U0 LzEvcnY0Y2haUUpyRjNuUVV4SS1HYzVrVHZtdC1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBPnZgAwQA VYx+MA0GCSqGSIb3DQEBCwUAA4IBAQA+L7YIxFJkvnsVhIV3Jt//M5gVCQ9eUKFN qSpOYmRMcwDEeVvGFAghCnzUOxySB8G7QhQFmQ1oM0YqiW6LuTNOBY//lyiARtAV kmIVZoo/F9R9R4RaVCK8Wg0LCyqj3ZpO8bzYoWytiACgTJC5adR87/aDAzYswvVP SuQX9J0NiAaE/QjJ5aq7LIjD/KURRlyFxhOvhE2QkfVUSJqU8mknNYUuvnhG8Dtg 3uZhU92CXlKvGOCu+kmiGzDtcMY30XYhSP+YsSRNBg5DKlVNxBe5gqwrAUsmB4s6 ezVqJd8ma7508FhCkzeabGbswZphKuXWdL2FrJ2sxGk0uuhMdiOz -----END CERTIFICATE-----Generated at Tue Feb 10 01:44:17 2026 by rpki-client