This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/TwPZpAeXGnujqKX63NNyTVolGjY.roa File: TwPZpAeXGnujqKX63NNyTVolGjY.roa (raw, json) Hash identifier: t5YScQeuwakw1G7S59ihqGpOKsrzHd0cKWBUudQpYdo= Subject key identifier: 4F:03:D9:A4:07:97:1A:7B:A3:A8:A5:FA:DC:D3:72:4D:5A:25:1A:36 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B7BA41742909951958B88165AEECB525E Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/TwPZpAeXGnujqKX63NNyTVolGjY.roa Signing time: Thu 01 Jan 2026 22:18:29 +0000 ROA not before: Thu 01 Jan 2026 22:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209592 IP address blocks: 176.118.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:17:42:90:99:51:95:8b:88:16:5a:ee:cb:52:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Jan 1 22:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4f03d9a407971a7ba3a8a5fadcd3724d5a251a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:79:c9:04:a1:50:1c:eb:4a:69:21:29:4b:3a: f1:69:84:6d:14:19:fa:28:a6:ed:a4:f2:7c:a1:d3: 64:a3:4c:f5:7e:bb:4c:cb:02:77:91:e4:ca:21:27: 2b:f4:ae:22:f8:9c:8a:22:3d:58:bb:41:2d:2f:fd: 20:4d:79:fd:2c:af:f5:38:54:25:59:39:00:35:22: 6b:fe:0f:1c:ff:fb:3a:06:61:f4:61:06:17:47:75: ae:eb:4d:2a:4d:b8:a7:cd:99:bb:e4:7d:b1:76:b5: 50:89:95:6c:83:e0:ba:88:4f:9c:2f:ce:5c:b7:b2: d5:14:c8:78:a9:50:d4:0e:3b:3c:47:55:55:37:68: d7:99:d0:0e:62:bf:58:bc:18:36:59:ae:03:05:da: 22:3e:8e:f3:b5:9e:c8:15:1b:71:b5:29:5f:f5:cd: a1:39:31:1c:68:53:6b:c8:6b:36:ea:95:ca:8c:0c: 1f:ce:76:77:8f:c2:a9:a9:80:ea:ca:ca:a3:35:13: a3:c9:7e:fa:fc:c4:46:69:f4:a6:b0:64:fb:74:2b: 57:a9:16:11:f1:e8:8c:03:73:14:48:89:4e:d1:53: 85:6d:36:c7:b3:f9:1f:2c:f3:06:31:cc:bb:f2:61: 70:e1:0f:d5:22:76:d0:14:f0:f3:8b:14:64:1e:e5: 39:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:03:D9:A4:07:97:1A:7B:A3:A8:A5:FA:DC:D3:72:4D:5A:25:1A:36 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/TwPZpAeXGnujqKX63NNyTVolGjY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.118.197.0/24 Signature Algorithm: sha256WithRSAEncryption 82:4e:f3:de:3a:2e:95:14:98:02:fa:c4:e0:64:81:8f:0f:25: 4c:78:96:61:04:45:87:2e:df:67:87:a0:83:82:39:d8:c6:8c: 0d:9d:7e:85:0c:a7:9b:ea:2c:70:02:c5:f0:f6:c8:15:e1:8f: 3c:ab:60:ba:ac:dc:52:3f:f3:98:22:c8:77:b6:69:95:d6:49: be:47:ca:d2:0e:e6:93:be:34:ac:14:96:6c:cc:94:e0:c1:e3: 26:55:a6:cd:6f:75:3f:be:a1:40:01:fa:d5:8b:ae:55:9a:67: 48:68:8d:72:f0:4b:4f:c6:8d:de:19:3c:4b:d3:02:82:b1:70: 72:f7:5a:a0:44:10:72:4b:29:24:ff:f8:41:7e:55:27:ba:39: 61:e1:6e:43:f2:10:7e:af:7f:37:43:fd:61:35:69:25:a4:95: 03:67:28:36:48:6e:bc:d0:59:f8:80:8d:76:eb:c8:2b:60:64: 41:06:b0:57:20:da:8b:ff:d8:35:91:67:ce:75:34:7a:16:4c: f5:67:44:b2:f9:ea:2c:fb:75:56:0e:58:26:97:1e:58:23:91: 00:64:5e:a4:f2:8d:59:f8:16:0e:e5:bf:1f:de:d8:f1:62:e7: df:d3:09:39:75:b4:f7:97:a5:81:61:35:ff:5d:2d:dd:4c:e1: 25:84:e9:71 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pBdCkJlRlYuIFlruy1JeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjYwMTAxMjIxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZjAzZDlhNDA3OTcxYTdiYTNhOGE1ZmFkY2QzNzI0ZDVhMjUxYTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2nnJBKFQHOtKaSEpSzrxaYRtFBn6 KKbtpPJ8odNko0z1frtMywJ3keTKIScr9K4i+JyKIj1Yu0EtL/0gTXn9LK/1OFQl WTkANSJr/g8c//s6BmH0YQYXR3Wu600qTbinzZm75H2xdrVQiZVsg+C6iE+cL85c t7LVFMh4qVDUDjs8R1VVN2jXmdAOYr9YvBg2Wa4DBdoiPo7ztZ7IFRtxtSlf9c2h OTEcaFNryGs26pXKjAwfznZ3j8KpqYDqysqjNROjyX76/MRGafSmsGT7dCtXqRYR 8eiMA3MUSIlO0VOFbTbHs/kfLPMGMcy78mFw4Q/VInbQFPDzixRkHuU5WQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE8D2aQHlxp7o6il+tzTck1aJRo2MB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvVHdQWnBBZVhHbnVqcUtYNjNOTnlUVm9sR2pZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHbFMA0G CSqGSIb3DQEBCwUAA4IBAQCCTvPeOi6VFJgC+sTgZIGPDyVMeJZhBEWHLt9nh6CD gjnYxowNnX6FDKeb6ixwAsXw9sgV4Y88q2C6rNxSP/OYIsh3tmmV1km+R8rSDuaT vjSsFJZszJTgweMmVabNb3U/vqFAAfrVi65VmmdIaI1y8EtPxo3eGTxL0wKCsXBy 91qgRBBySykk//hBflUnujlh4W5D8hB+r383Q/1hNWklpJUDZyg2SG680Fn4gI12 68grYGRBBrBXINqL/9g1kWfOdTR6Fkz1Z0Sy+eos+3VWDlgmlx5YI5EAZF6k8o1Z +BYO5b8f3tjxYuff0wk5dbT3l6WBYTX/XS3dTOElhOlx -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:48 2026 by rpki-client