This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/85ee8d-1d25-453a-bbbd-c8e15540c806/1/TboL8PiKmGO2xSdCzYOzLLLsrgo.roa File: TboL8PiKmGO2xSdCzYOzLLLsrgo.roa (raw, json) Hash identifier: L+TeEKzIHBiCwRJJ12WlexzFz32tqwEp+pqXfiwcHm0= Subject key identifier: 4D:BA:0B:F0:F8:8A:98:63:B6:C5:27:42:CD:83:B3:2C:B2:EC:AE:0A Certificate issuer: /CN=54137c32249107f26b1741451cf10039380b8bc3 Certificate serial: 019B7D5BDD98BAF4E1053871F5947F6F7F04 Authority key identifier: 54:13:7C:32:24:91:07:F2:6B:17:41:45:1C:F1:00:39:38:0B:8B:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VBN8MiSRB_JrF0FFHPEAOTgLi8M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/85ee8d-1d25-453a-bbbd-c8e15540c806/1/TboL8PiKmGO2xSdCzYOzLLLsrgo.roa Signing time: Fri 02 Jan 2026 06:18:51 +0000 ROA not before: Fri 02 Jan 2026 06:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206392 IP address blocks: 2a14:eb80::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/85ee8d-1d25-453a-bbbd-c8e15540c806/1/VBN8MiSRB_JrF0FFHPEAOTgLi8M.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/85ee8d-1d25-453a-bbbd-c8e15540c806/1/VBN8MiSRB_JrF0FFHPEAOTgLi8M.mft rsync://rpki.ripe.net/repository/DEFAULT/VBN8MiSRB_JrF0FFHPEAOTgLi8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:dd:98:ba:f4:e1:05:38:71:f5:94:7f:6f:7f:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54137c32249107f26b1741451cf10039380b8bc3 Validity Not Before: Jan 2 06:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4dba0bf0f88a9863b6c52742cd83b32cb2ecae0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:3f:79:c8:02:a8:65:1f:37:fc:8a:34:34:2f: b4:37:3e:85:21:bd:88:e5:43:a2:75:57:be:82:00: df:fa:e3:44:4e:35:25:af:42:fd:73:37:92:a3:16: 40:62:76:a2:6e:31:a6:65:89:39:29:36:67:27:c4: c6:5e:8c:b2:f0:9d:f1:29:85:b4:af:86:ab:6d:4d: cf:31:b2:01:a3:08:65:8c:6b:e6:77:43:de:4c:9e: e2:fc:f9:d6:5e:06:85:67:6f:72:06:ce:8b:c2:57: 66:6e:30:85:c8:f5:7c:61:10:31:f2:bb:aa:6b:e0: f4:ec:5c:02:80:c2:46:48:0f:9e:aa:1f:54:27:36: 4f:25:ab:80:17:f8:71:b5:0f:a9:6a:62:6b:d3:e9: 45:fd:43:f0:57:cc:fa:4e:30:13:fd:94:f5:e3:5e: 89:88:3c:53:06:71:34:95:13:a5:37:4f:fb:db:49: 27:8e:bb:e4:73:1f:27:8e:df:42:1e:90:8d:b9:ea: 9d:7a:41:6c:b1:91:27:d6:1f:14:d7:70:fe:2c:6b: f5:0e:0b:16:5c:3d:8c:46:ff:3a:39:02:44:6d:54: 95:1e:f4:2e:de:97:41:60:ec:b0:3b:54:d4:4c:b0: c0:33:52:8d:97:e5:58:4d:07:e3:fe:3e:7b:d2:08: 00:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BA:0B:F0:F8:8A:98:63:B6:C5:27:42:CD:83:B3:2C:B2:EC:AE:0A X509v3 Authority Key Identifier: keyid:54:13:7C:32:24:91:07:F2:6B:17:41:45:1C:F1:00:39:38:0B:8B:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VBN8MiSRB_JrF0FFHPEAOTgLi8M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/85ee8d-1d25-453a-bbbd-c8e15540c806/1/TboL8PiKmGO2xSdCzYOzLLLsrgo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/85ee8d-1d25-453a-bbbd-c8e15540c806/1/VBN8MiSRB_JrF0FFHPEAOTgLi8M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:eb80::/29 Signature Algorithm: sha256WithRSAEncryption 0a:7f:40:14:e1:55:79:85:55:13:23:f4:56:22:e6:a8:0f:23: 63:0b:0b:93:06:0d:d5:1a:b8:53:bb:0c:6d:3f:3c:cd:d8:41: 9d:bb:8b:b6:a2:ce:75:27:ac:f9:6a:6a:3d:c7:de:16:a6:b0: a2:50:f2:63:f2:c0:c5:23:4c:5d:83:9c:e1:40:44:49:c6:22: 53:32:1d:3d:3f:53:f2:a5:81:00:95:cb:65:7d:aa:d3:60:92: 40:ff:2f:93:06:0b:e2:ce:8e:ce:78:54:0b:4d:35:33:d4:af: f0:51:77:45:ef:38:47:f9:d6:b8:c5:2a:8e:8b:6a:13:6b:16: 54:e1:f4:9c:b0:c0:6e:07:69:eb:17:8e:90:90:fb:a4:55:8c: 4c:62:17:b9:40:e7:f9:2c:b5:99:37:33:5f:29:1c:b6:aa:58: f2:3d:27:82:42:1e:dd:02:2a:f4:25:f9:67:da:9b:c4:92:c2: b2:eb:27:bb:96:2f:52:16:34:a4:39:35:a8:e7:90:20:ab:75: a5:46:38:26:c7:b9:24:64:22:b9:2a:23:c0:20:1e:fc:35:1c: 08:41:c3:59:9e:3b:cd:7a:3c:51:79:fe:84:62:c6:2d:5e:06: c7:b9:e7:e9:86:4d:70:03:9e:71:65:0a:e1:03:cf:0e:ba:67: de:79:92:b4 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt9W92YuvThBThx9ZR/b38EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0MTM3YzMyMjQ5MTA3ZjI2YjE3NDE0NTFjZjEwMDM5Mzgw YjhiYzMwHhcNMjYwMTAyMDYxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZGJhMGJmMGY4OGE5ODYzYjZjNTI3NDJjZDgzYjMyY2IyZWNhZTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlz95yAKoZR83/Io0NC+0Nz6FIb2I 5UOidVe+ggDf+uNETjUlr0L9czeSoxZAYnaibjGmZYk5KTZnJ8TGXoyy8J3xKYW0 r4arbU3PMbIBowhljGvmd0PeTJ7i/PnWXgaFZ29yBs6LwldmbjCFyPV8YRAx8ruq a+D07FwCgMJGSA+eqh9UJzZPJauAF/hxtQ+pamJr0+lF/UPwV8z6TjAT/ZT1416J iDxTBnE0lROlN0/720knjrvkcx8njt9CHpCNueqdekFssZEn1h8U13D+LGv1DgsW XD2MRv86OQJEbVSVHvQu3pdBYOywO1TUTLDAM1KNl+VYTQfj/j570ggAfQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFE26C/D4iphjtsUnQs2Dsyyy7K4KMB8GA1UdIwQY MBaAFFQTfDIkkQfyaxdBRRzxADk4C4vDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkJOOE1pU1JCX0pyRjBGRkhQRUFPVGdMaThNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy84NWVlOGQtMWQyNS00NTNhLWJiYmQt YzhlMTU1NDBjODA2LzEvVGJvTDhQaUttR08yeFNkQ3pZT3pMTExzcmdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy84NWVlOGQtMWQyNS00NTNhLWJiYmQtYzhlMTU1NDBjODA2 LzEvVkJOOE1pU1JCX0pyRjBGRkhQRUFPVGdMaThNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhTrgDAN BgkqhkiG9w0BAQsFAAOCAQEACn9AFOFVeYVVEyP0ViLmqA8jYwsLkwYN1Rq4U7sM bT88zdhBnbuLtqLOdSes+WpqPcfeFqawolDyY/LAxSNMXYOc4UBEScYiUzIdPT9T 8qWBAJXLZX2q02CSQP8vkwYL4s6OznhUC001M9Sv8FF3Re84R/nWuMUqjotqE2sW VOH0nLDAbgdp6xeOkJD7pFWMTGIXuUDn+Sy1mTczXykctqpY8j0ngkIe3QIq9CX5 Z9qbxJLCsusnu5YvUhY0pDk1qOeQIKt1pUY4Jse5JGQiuSojwCAe/DUcCEHDWZ47 zXo8UXn+hGLGLV4Gx7nn6YZNcAOecWUK4QPPDrpn3nmStA== -----END CERTIFICATE-----Generated at Mon Feb 2 08:06:47 2026 by rpki-client