This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TruTHPtp41oRfD5QoPHjytLHXMo.roa File: TruTHPtp41oRfD5QoPHjytLHXMo.roa (raw, json) Hash identifier: FrNNSoioLFbU4qLMINY5qXCh0T1zBVuLnaa/spX0H+s= Subject key identifier: 4E:BB:93:1C:FB:69:E3:5A:11:7C:3E:50:A0:F1:E3:CA:D2:C7:5C:CA Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B035D096DB63BBC1FF386ED52EE346BB0 Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TruTHPtp41oRfD5QoPHjytLHXMo.roa Signing time: Tue 09 Dec 2025 13:46:27 +0000 ROA not before: Tue 09 Dec 2025 13:46:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215943 IP address blocks: 84.252.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 02:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:03:5d:09:6d:b6:3b:bc:1f:f3:86:ed:52:ee:34:6b:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Dec 9 13:46:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4ebb931cfb69e35a117c3e50a0f1e3cad2c75cca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:30:a0:32:ec:5a:ba:16:de:98:27:4a:19:ee: c7:be:e7:5b:ad:28:dc:9b:90:73:83:a0:a5:03:e0: 57:7f:98:7b:f1:3e:b6:56:7d:e5:bc:13:17:94:a5: 82:3d:d7:6d:13:45:c4:2e:27:80:97:7b:87:0f:da: 47:f5:40:2c:dd:c7:14:7b:4e:61:e7:fb:91:0c:dc: 96:39:62:6c:8f:6f:a5:e4:88:50:48:21:18:8d:f1: fd:5f:c6:e5:1b:37:08:cf:99:12:02:e3:da:bc:78: 5d:1f:95:04:e2:19:02:c2:eb:fb:7b:32:25:b3:f8: 19:2a:b8:92:fe:74:f4:0e:7b:a5:17:61:39:34:5e: 4c:06:92:4c:28:19:a7:d7:d9:10:fe:7b:c0:53:91: 40:ad:27:dd:52:ba:8c:cc:ba:7a:0b:bb:01:77:ee: 7d:85:45:d2:16:06:02:d7:14:95:28:73:4e:92:04: fa:c2:1f:59:dd:b3:1e:f3:a3:23:b7:f3:2f:47:7a: 9a:59:26:c6:6c:73:bf:99:fe:58:c4:fb:ff:12:21: f6:5c:94:f8:b9:db:40:01:03:46:7a:e4:a9:0d:7b: 09:da:9f:56:27:e5:f3:f0:bb:fd:0f:0e:e8:9c:a0: 98:f7:3d:31:b7:70:81:8c:e2:ff:1c:b0:7d:b5:95: 15:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:BB:93:1C:FB:69:E3:5A:11:7C:3E:50:A0:F1:E3:CA:D2:C7:5C:CA X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TruTHPtp41oRfD5QoPHjytLHXMo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.252.68.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:34:08:ee:91:d4:cd:80:41:bd:59:71:ff:50:66:c1:25:8b: d7:ee:f0:c2:a6:51:e4:98:e2:8e:4d:38:db:06:56:a5:8f:bb: 81:12:64:5a:40:c9:f0:2a:e1:3c:ad:c2:e6:7d:b8:c7:35:b6: cd:eb:95:ec:b0:b5:80:fc:dc:c6:c6:e7:a1:98:c3:57:f1:5d: 64:9c:1e:1e:d7:ab:76:8a:7b:09:5e:c9:cc:4f:58:f6:5d:a2: aa:86:a1:48:9a:aa:7b:82:24:39:60:ff:82:53:97:4d:9d:04: 83:e9:c5:e6:a0:82:12:7e:ac:85:8e:38:c8:06:40:a2:ff:26: 7f:ae:17:1e:32:e3:43:6f:88:11:76:cb:41:8d:fe:32:ab:bb: d8:e6:45:87:b7:07:5f:37:a0:2e:d4:4a:38:a8:86:b5:9c:23: b5:a6:44:fa:89:b5:1f:98:12:65:7e:e4:38:23:6a:e1:92:66: c6:ba:1f:d4:e6:f6:02:6f:fc:c5:38:eb:3d:57:4a:a3:5f:02: 69:92:09:fe:69:f3:6a:11:ac:e6:2b:9a:08:99:6e:49:2b:8c: 0d:31:b0:49:ef:e7:e2:72:3a:6d:e2:e1:bd:d4:42:8f:f8:ba: 89:37:d0:bf:b4:73:3b:c5:78:1f:ce:03:60:ca:ee:32:02:4e: 95:63:e1:ec -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsDXQlttju8H/OG7VLuNGuwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjUxMjA5MTM0NjI3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZWJiOTMxY2ZiNjllMzVhMTE3YzNlNTBhMGYxZTNjYWQyYzc1Y2NhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2zCgMuxauhbemCdKGe7HvudbrSjc m5Bzg6ClA+BXf5h78T62Vn3lvBMXlKWCPddtE0XELieAl3uHD9pH9UAs3ccUe05h 5/uRDNyWOWJsj2+l5IhQSCEYjfH9X8blGzcIz5kSAuPavHhdH5UE4hkCwuv7ezIl s/gZKriS/nT0DnulF2E5NF5MBpJMKBmn19kQ/nvAU5FArSfdUrqMzLp6C7sBd+59 hUXSFgYC1xSVKHNOkgT6wh9Z3bMe86Mjt/MvR3qaWSbGbHO/mf5YxPv/EiH2XJT4 udtAAQNGeuSpDXsJ2p9WJ+Xz8Lv9Dw7onKCY9z0xt3CBjOL/HLB9tZUVAQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE67kxz7aeNaEXw+UKDx48rSx1zKMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvVHJ1VEhQdHA0MW9SZkQ1UW9QSGp5dExIWE1vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVPxEMA0G CSqGSIb3DQEBCwUAA4IBAQAvNAjukdTNgEG9WXH/UGbBJYvX7vDCplHkmOKOTTjb Blalj7uBEmRaQMnwKuE8rcLmfbjHNbbN65XssLWA/NzGxuehmMNX8V1knB4e16t2 insJXsnMT1j2XaKqhqFImqp7giQ5YP+CU5dNnQSD6cXmoIISfqyFjjjIBkCi/yZ/ rhceMuNDb4gRdstBjf4yq7vY5kWHtwdfN6Au1Eo4qIa1nCO1pkT6ibUfmBJlfuQ4 I2rhkmbGuh/U5vYCb/zFOOs9V0qjXwJpkgn+afNqEazmK5oImW5JK4wNMbBJ7+fi cjpt4uG91EKP+LqJN9C/tHM7xXgfzgNgyu4yAk6VY+Hs -----END CERTIFICATE-----Generated at Thu Dec 18 11:28:14 2025 by rpki-client