This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3527b0-d67e-415d-8140-6ac10b4d2bbc/1/tOXIM_UKk48wJZ7VMtkwvlrqHuM.roa File: tOXIM_UKk48wJZ7VMtkwvlrqHuM.roa (raw, json) Hash identifier: YwRhYkrIDO2b6TPx5Ws8xbL48qbasailmg+aD1VygMs= Subject key identifier: B4:E5:C8:33:F5:0A:93:8F:30:25:9E:D5:32:D9:30:BE:5A:EA:1E:E3 Certificate issuer: /CN=f0e9ac9cf905a16c5afa0e5035ffa7a2352e13f4 Certificate serial: 019B7D5C52D5DC7CF5617C9488552C09C44E Authority key identifier: F0:E9:AC:9C:F9:05:A1:6C:5A:FA:0E:50:35:FF:A7:A2:35:2E:13:F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8OmsnPkFoWxa-g5QNf-nojUuE_Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3527b0-d67e-415d-8140-6ac10b4d2bbc/1/tOXIM_UKk48wJZ7VMtkwvlrqHuM.roa Signing time: Fri 02 Jan 2026 06:19:21 +0000 ROA not before: Fri 02 Jan 2026 06:19:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34519 IP address blocks: 193.58.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3527b0-d67e-415d-8140-6ac10b4d2bbc/1/8OmsnPkFoWxa-g5QNf-nojUuE_Q.crl rsync://rpki.ripe.net/repository/DEFAULT/56/3527b0-d67e-415d-8140-6ac10b4d2bbc/1/8OmsnPkFoWxa-g5QNf-nojUuE_Q.mft rsync://rpki.ripe.net/repository/DEFAULT/8OmsnPkFoWxa-g5QNf-nojUuE_Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:52:d5:dc:7c:f5:61:7c:94:88:55:2c:09:c4:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f0e9ac9cf905a16c5afa0e5035ffa7a2352e13f4 Validity Not Before: Jan 2 06:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4e5c833f50a938f30259ed532d930be5aea1ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0b:25:04:c5:9e:b9:2b:87:59:b8:68:f6:45: 91:b6:c0:97:65:a6:79:bb:85:54:7a:9d:1e:e5:3b: b5:9b:3c:3f:ad:0e:ca:7a:d3:16:63:f6:2f:ed:47: 91:db:86:56:30:7b:65:1a:1c:45:80:58:0e:55:29: d6:00:1b:c4:44:29:3b:d2:0e:3f:7e:22:bb:05:50: e7:58:0e:63:c0:38:5b:a5:e9:9e:96:fa:69:48:eb: 4e:4d:8f:51:0d:c1:ab:0c:63:5b:e1:53:ae:8d:50: f1:ae:8b:3f:29:e2:94:fd:aa:0c:8e:7e:c6:22:05: 59:80:91:3c:11:f8:22:00:2d:5f:b6:53:12:78:2a: fb:61:94:65:d9:5f:bf:ab:cd:d9:d4:90:d4:61:28: 4c:49:0b:74:c9:fd:bb:3e:0d:04:82:47:7e:22:20: 30:3d:bf:c3:fd:71:0c:60:fc:76:3d:3d:89:4f:01: 43:0c:c2:e3:2f:be:ad:e0:3d:95:87:33:ea:83:4b: 93:54:a1:a9:b9:0b:43:d2:52:8e:81:55:ca:bc:3c: 75:aa:82:db:e2:60:21:8f:a5:c6:65:f5:0d:3c:bd: 8d:c5:7f:36:4b:84:cc:f5:ad:f4:f2:1f:fd:80:e6: 1f:45:e2:0c:17:55:1b:e3:ed:ba:43:1f:6e:60:35: 8e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E5:C8:33:F5:0A:93:8F:30:25:9E:D5:32:D9:30:BE:5A:EA:1E:E3 X509v3 Authority Key Identifier: keyid:F0:E9:AC:9C:F9:05:A1:6C:5A:FA:0E:50:35:FF:A7:A2:35:2E:13:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8OmsnPkFoWxa-g5QNf-nojUuE_Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3527b0-d67e-415d-8140-6ac10b4d2bbc/1/tOXIM_UKk48wJZ7VMtkwvlrqHuM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3527b0-d67e-415d-8140-6ac10b4d2bbc/1/8OmsnPkFoWxa-g5QNf-nojUuE_Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.58.252.0/24 Signature Algorithm: sha256WithRSAEncryption 75:29:20:63:ad:f0:55:14:4e:8e:bb:45:f4:18:28:a2:84:a9: d3:17:b7:5c:2b:5c:85:af:d2:c9:15:f2:7a:60:2f:e1:b6:58: 20:5a:a8:60:de:eb:a0:b9:37:aa:5e:0d:cd:b1:db:8f:89:b2: 13:65:ce:c3:71:e9:00:cc:29:dd:97:c0:73:a9:cd:64:4f:23: 4e:51:d2:02:9e:c1:0d:8a:cd:7e:fe:6f:88:db:76:a8:d7:0d: 11:d4:bb:71:0c:3d:9d:d5:c4:dd:f2:ef:25:10:e5:92:8f:94: fc:64:17:3a:54:89:b6:7c:46:7b:91:91:69:4b:e6:8f:0d:5a: ee:c9:0a:45:f8:bb:c2:dd:d8:f7:88:eb:6c:f6:e8:45:c8:a5: ab:de:a8:34:d2:c1:40:48:76:58:3e:f5:67:20:d5:17:c4:56: d2:92:ac:46:ff:d9:d1:e5:eb:fd:f0:91:ea:73:42:10:02:69: 8a:45:73:9f:36:b9:19:8e:9c:78:83:24:7f:4e:38:a2:18:1a: a6:e3:48:0e:f3:a9:c8:71:1d:5e:a1:6f:50:8a:66:b4:80:09: bf:9d:6c:11:b3:bd:4b:9e:62:82:3f:fa:ad:de:d1:2f:69:63: 6c:94:2c:2e:3d:20:0b:ea:db:d6:3b:cd:2f:ec:27:17:1e:48: 41:ae:c4:89 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XFLV3Hz1YXyUiFUsCcROMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwZTlhYzljZjkwNWExNmM1YWZhMGU1MDM1ZmZhN2EyMzUy ZTEzZjQwHhcNMjYwMTAyMDYxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGU1YzgzM2Y1MGE5MzhmMzAyNTllZDUzMmQ5MzBiZTVhZWExZWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwslBMWeuSuHWbho9kWRtsCXZaZ5 u4VUep0e5Tu1mzw/rQ7KetMWY/Yv7UeR24ZWMHtlGhxFgFgOVSnWABvERCk70g4/ fiK7BVDnWA5jwDhbpemelvppSOtOTY9RDcGrDGNb4VOujVDxros/KeKU/aoMjn7G IgVZgJE8EfgiAC1ftlMSeCr7YZRl2V+/q83Z1JDUYShMSQt0yf27Pg0Egkd+IiAw Pb/D/XEMYPx2PT2JTwFDDMLjL76t4D2VhzPqg0uTVKGpuQtD0lKOgVXKvDx1qoLb 4mAhj6XGZfUNPL2NxX82S4TM9a308h/9gOYfReIMF1Ub4+26Qx9uYDWOIwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLTlyDP1CpOPMCWe1TLZML5a6h7jMB8GA1UdIwQY MBaAFPDprJz5BaFsWvoOUDX/p6I1LhP0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOE9tc25Qa0ZvV3hhLWc1UU5mLW5valV1RV9RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8zNTI3YjAtZDY3ZS00MTVkLTgxNDAt NmFjMTBiNGQyYmJjLzEvdE9YSU1fVUtrNDh3Slo3Vk10a3d2bHJxSHVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni8zNTI3YjAtZDY3ZS00MTVkLTgxNDAtNmFjMTBiNGQyYmJj LzEvOE9tc25Qa0ZvV3hhLWc1UU5mLW5valV1RV9RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTr8MA0G CSqGSIb3DQEBCwUAA4IBAQB1KSBjrfBVFE6Ou0X0GCiihKnTF7dcK1yFr9LJFfJ6 YC/htlggWqhg3uuguTeqXg3NsduPibITZc7DcekAzCndl8Bzqc1kTyNOUdICnsEN is1+/m+I23ao1w0R1LtxDD2d1cTd8u8lEOWSj5T8ZBc6VIm2fEZ7kZFpS+aPDVru yQpF+LvC3dj3iOts9uhFyKWr3qg00sFASHZYPvVnINUXxFbSkqxG/9nR5ev98JHq c0IQAmmKRXOfNrkZjpx4gyR/TjiiGBqm40gO86nIcR1eoW9Qima0gAm/nWwRs71L nmKCP/qt3tEvaWNslCwuPSAL6tvWO80v7CcXHkhBrsSJ -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:29 2026 by rpki-client