This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/363ba7-89e3-495f-aa2e-c1eb73ffd416/1/TZ8ebUDvVSJ909itJWgZrOe21gA.roa File: TZ8ebUDvVSJ909itJWgZrOe21gA.roa (raw, json) Hash identifier: Lbig1GSFrk10qV21/rpvsSSWNduF4FEdkvJj9QTS+kg= Subject key identifier: 4D:9F:1E:6D:40:EF:55:22:7D:D3:D8:AD:25:68:19:AC:E7:B6:D6:00 Certificate issuer: /CN=c36806ea062f6053841288b446e2e0ded5b2f2e7 Certificate serial: 019B79EC78677020887187853166BC4A583F Authority key identifier: C3:68:06:EA:06:2F:60:53:84:12:88:B4:46:E2:E0:DE:D5:B2:F2:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w2gG6gYvYFOEEoi0RuLg3tWy8uc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/363ba7-89e3-495f-aa2e-c1eb73ffd416/1/TZ8ebUDvVSJ909itJWgZrOe21gA.roa Signing time: Thu 01 Jan 2026 14:18:18 +0000 ROA not before: Thu 01 Jan 2026 14:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202605 IP address blocks: 185.156.36.0/22 maxlen: 22 2a07:9a00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/363ba7-89e3-495f-aa2e-c1eb73ffd416/1/w2gG6gYvYFOEEoi0RuLg3tWy8uc.crl rsync://rpki.ripe.net/repository/DEFAULT/42/363ba7-89e3-495f-aa2e-c1eb73ffd416/1/w2gG6gYvYFOEEoi0RuLg3tWy8uc.mft rsync://rpki.ripe.net/repository/DEFAULT/w2gG6gYvYFOEEoi0RuLg3tWy8uc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:78:67:70:20:88:71:87:85:31:66:bc:4a:58:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c36806ea062f6053841288b446e2e0ded5b2f2e7 Validity Not Before: Jan 1 14:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d9f1e6d40ef55227dd3d8ad256819ace7b6d600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8d:b0:22:b7:77:a1:fc:d8:fe:40:59:f1:47: 33:92:d2:60:0b:d0:22:7b:fc:51:35:df:70:5a:01: 09:1b:f9:12:0a:57:62:22:39:4f:96:5f:54:57:f6: 3b:33:24:81:1d:d3:41:5a:aa:9e:4e:70:95:ab:49: c7:3e:eb:db:8f:c8:02:0c:7b:e6:58:8d:d3:23:73: ac:00:9f:b8:de:a4:f3:f9:f5:dc:ae:09:43:37:a5: 3d:8b:52:cd:35:4b:17:b2:eb:c6:05:43:6e:c2:8c: a6:da:a5:dc:1c:a0:e9:96:5f:b5:a3:12:3d:9e:75: f5:09:ae:fc:cc:89:29:d6:c1:a7:3e:fa:00:4d:c6: 9e:d3:b7:20:96:3f:08:1d:db:bd:b1:6e:9c:80:93: 80:13:7a:6e:ae:01:4f:4a:93:96:aa:b8:db:94:d2: 3e:23:f7:60:2b:34:48:99:6c:3a:a6:c6:87:70:eb: 85:e9:2b:8e:f4:47:63:6c:f8:74:3a:fa:0e:e1:fb: f0:23:31:48:92:92:bd:74:90:93:18:74:2d:71:3f: 23:56:6c:e5:3b:e6:20:95:ee:91:a5:6e:78:5d:db: da:ab:ac:be:62:23:62:fe:0f:83:a1:7e:64:93:65: 6f:4b:76:ec:69:9f:61:63:20:7f:a3:85:13:e1:38: 16:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:9F:1E:6D:40:EF:55:22:7D:D3:D8:AD:25:68:19:AC:E7:B6:D6:00 X509v3 Authority Key Identifier: keyid:C3:68:06:EA:06:2F:60:53:84:12:88:B4:46:E2:E0:DE:D5:B2:F2:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w2gG6gYvYFOEEoi0RuLg3tWy8uc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/363ba7-89e3-495f-aa2e-c1eb73ffd416/1/TZ8ebUDvVSJ909itJWgZrOe21gA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/363ba7-89e3-495f-aa2e-c1eb73ffd416/1/w2gG6gYvYFOEEoi0RuLg3tWy8uc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.156.36.0/22 IPv6: 2a07:9a00::/29 Signature Algorithm: sha256WithRSAEncryption 46:c6:dd:1f:0e:e2:19:dc:8f:9f:56:70:4a:23:3e:54:fa:2e: 9d:e9:95:d1:40:85:8f:3e:b2:9c:ed:cb:70:34:85:06:23:e1: 25:95:cb:5e:a6:bb:82:7c:bc:4a:09:08:34:a8:8a:5f:89:55: 68:dd:b0:d5:6d:e6:30:b0:a9:72:da:ad:67:66:4f:5d:ce:a6: 5c:2d:0f:86:05:39:e7:e7:53:89:94:5b:78:44:0c:b0:c2:92: ab:61:55:b7:cb:d1:29:fd:c7:1b:56:f0:ea:94:2c:16:b2:9c: 55:ea:cf:6d:6a:20:0d:ef:37:45:4c:eb:b6:81:db:9a:7a:61: 13:97:b9:ab:5b:65:20:9f:7b:cd:8a:98:7b:85:c7:35:02:41: 6d:80:02:11:15:1c:18:9e:f5:35:6e:fd:a0:a8:5c:7b:80:d5: 91:bd:46:fa:93:6e:ec:cc:74:b7:6b:1d:8b:26:64:67:c7:6e: 8e:4f:67:e7:e9:bd:49:95:95:1c:6d:45:3f:ef:54:30:32:c2: 84:76:4f:f0:de:fc:be:4d:5a:c8:79:11:60:24:58:76:d8:33: 54:ba:e2:49:df:7c:e4:87:7b:a9:6d:d7:47:78:c1:d7:ac:0e: 52:fa:bc:1d:4e:82:ae:10:f8:d5:06:be:f9:c9:86:b2:bd:99: 4b:d0:c8:b3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57HhncCCIcYeFMWa8Slg/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzNjgwNmVhMDYyZjYwNTM4NDEyODhiNDQ2ZTJlMGRlZDVi MmYyZTcwHhcNMjYwMTAxMTQxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDlmMWU2ZDQwZWY1NTIyN2RkM2Q4YWQyNTY4MTlhY2U3YjZkNjAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzI2wIrd3ofzY/kBZ8UczktJgC9Ai e/xRNd9wWgEJG/kSCldiIjlPll9UV/Y7MySBHdNBWqqeTnCVq0nHPuvbj8gCDHvm WI3TI3OsAJ+43qTz+fXcrglDN6U9i1LNNUsXsuvGBUNuwoym2qXcHKDpll+1oxI9 nnX1Ca78zIkp1sGnPvoATcae07cglj8IHdu9sW6cgJOAE3purgFPSpOWqrjblNI+ I/dgKzRImWw6psaHcOuF6SuO9EdjbPh0OvoO4fvwIzFIkpK9dJCTGHQtcT8jVmzl O+Ygle6RpW54Xdvaq6y+YiNi/g+DoX5kk2VvS3bsaZ9hYyB/o4UT4TgWjQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFE2fHm1A71UifdPYrSVoGaznttYAMB8GA1UdIwQY MBaAFMNoBuoGL2BThBKItEbi4N7VsvLnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzJnRzZnWXZZRk9FRW9pMFJ1TGczdFd5OHVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8zNjNiYTctODllMy00OTVmLWFhMmUt YzFlYjczZmZkNDE2LzEvVFo4ZWJVRHZWU0o5MDlpdEpXZ1pyT2UyMWdBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8zNjNiYTctODllMy00OTVmLWFhMmUtYzFlYjczZmZkNDE2 LzEvdzJnRzZnWXZZRk9FRW9pMFJ1TGczdFd5OHVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZwkMA0E AgACMAcDBQMqB5oAMA0GCSqGSIb3DQEBCwUAA4IBAQBGxt0fDuIZ3I+fVnBKIz5U +i6d6ZXRQIWPPrKc7ctwNIUGI+EllctepruCfLxKCQg0qIpfiVVo3bDVbeYwsKly 2q1nZk9dzqZcLQ+GBTnn51OJlFt4RAywwpKrYVW3y9Ep/ccbVvDqlCwWspxV6s9t aiAN7zdFTOu2gduaemETl7mrW2Ugn3vNiph7hcc1AkFtgAIRFRwYnvU1bv2gqFx7 gNWRvUb6k27szHS3ax2LJmRnx26OT2fn6b1JlZUcbUU/71QwMsKEdk/w3vy+TVrI eRFgJFh22DNUuuJJ33zkh3upbddHeMHXrA5S+rwdToKuEPjVBr75yYayvZlL0Miz -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:05 2026 by rpki-client