This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/Toi74ngMk8iMkETT7QmeelInLio.roa File: Toi74ngMk8iMkETT7QmeelInLio.roa (raw, json) Hash identifier: cdnyZv5QV1TwjMBRgbJCcQqcC2938hSblX1iGXnlsPg= Subject key identifier: 4E:88:BB:E2:78:0C:93:C8:8C:90:44:D3:ED:09:9E:7A:52:27:2E:2A Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6 Certificate serial: 019B7CEDA1C232A66FDD4C887CBA77B0BE41 Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/Toi74ngMk8iMkETT7QmeelInLio.roa Signing time: Fri 02 Jan 2026 04:18:26 +0000 ROA not before: Fri 02 Jan 2026 04:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213079 IP address blocks: 147.234.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.mft rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:a1:c2:32:a6:6f:dd:4c:88:7c:ba:77:b0:be:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6 Validity Not Before: Jan 2 04:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4e88bbe2780c93c88c9044d3ed099e7a52272e2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:3b:24:d2:63:44:a6:b8:0d:8b:22:5c:4e:d3: 4d:36:39:97:d3:60:e8:1c:90:81:6e:61:8d:30:da: 28:01:9f:74:0c:95:a1:84:0c:34:8b:74:05:c2:ac: 9b:a1:92:74:80:67:11:87:80:1e:52:78:f2:3b:11: da:89:86:0e:ed:34:77:0b:92:3c:69:f0:56:07:2b: 3c:44:eb:37:7f:69:96:3d:7c:f2:1c:d7:34:7d:6b: 07:75:d4:c1:fb:e7:24:d0:53:21:f5:10:89:f5:b9: 04:bb:aa:bb:4d:1d:b0:bc:39:64:a0:e2:9e:d1:3e: cb:7b:eb:11:e5:fa:a8:aa:2f:0a:5e:0a:3e:ba:e1: 13:51:da:9f:c4:1e:c5:db:e1:0c:7c:b6:b2:85:bc: 53:4a:41:c2:2e:07:1e:ef:39:e9:5f:cd:5c:9c:02: 70:6f:37:13:a5:99:72:dd:c3:79:9c:b7:eb:65:3f: 5f:bb:a9:5d:b9:52:ca:35:91:f5:c4:12:f8:ee:18: 95:6b:26:16:00:0a:cc:0e:e0:6d:d5:80:70:f7:47: e6:36:48:57:ca:6b:ae:cb:8f:19:b2:b9:b3:3e:c2: bf:56:5c:d9:70:f3:94:d6:a1:1d:08:e5:0e:cc:35: 08:e3:c7:7a:ed:63:90:02:65:95:79:dd:ca:62:cb: 3a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:88:BB:E2:78:0C:93:C8:8C:90:44:D3:ED:09:9E:7A:52:27:2E:2A X509v3 Authority Key Identifier: keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/Toi74ngMk8iMkETT7QmeelInLio.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.234.85.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:55:bd:4d:ad:6a:ec:7a:49:1f:9a:e1:7a:4f:21:c7:0b:6d: b6:58:da:4a:0c:bf:23:fa:04:92:71:bb:bf:55:82:f6:f5:91: 10:e3:33:90:6c:11:c6:7f:0f:bb:af:ff:6e:83:7d:5a:f5:fa: f5:11:95:0d:b8:1c:cc:ef:0c:9b:7e:3a:f8:f8:07:ee:b5:e5: c4:54:d6:a9:6b:1e:50:47:5b:35:d3:06:ac:66:e4:06:f2:c6: a0:b3:96:92:b8:57:56:cc:89:e6:7a:f0:9b:ea:d1:4c:fe:38: e7:7b:33:ee:5c:8b:08:81:79:97:1a:56:89:7d:b5:8a:82:54: f5:81:0e:d5:0e:8e:83:f1:2d:6d:a1:26:8f:93:62:a6:2a:b7: ba:9d:75:b2:5a:d9:b4:a5:70:fe:aa:86:5c:16:4e:65:5f:74: c7:ca:9f:c1:4d:d4:2d:6f:b8:ba:37:06:b7:73:31:5f:e1:50: eb:a7:c5:60:51:af:9d:98:12:fc:5c:c3:da:71:c3:2e:0c:ca: c5:0b:2d:e6:5d:a8:5b:b0:de:6a:4f:f5:c9:d8:9c:6c:3e:be: c0:c9:7e:07:c0:9d:49:9d:ab:8f:20:f0:54:f0:62:54:08:87: 2f:83:66:06:a3:fe:f2:da:0c:f5:2f:e6:93:44:5e:c2:ae:b6: d0:a5:79:2a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87aHCMqZv3UyIfLp3sL5BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxYmFkNzRlN2Y2YzA5NDlhMjczNmE1NzQ3ODQ5NmQ3ZDhi NDUwZTYwHhcNMjYwMTAyMDQxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZTg4YmJlMjc4MGM5M2M4OGM5MDQ0ZDNlZDA5OWU3YTUyMjcyZTJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDsk0mNEprgNiyJcTtNNNjmX02Do HJCBbmGNMNooAZ90DJWhhAw0i3QFwqyboZJ0gGcRh4AeUnjyOxHaiYYO7TR3C5I8 afBWBys8ROs3f2mWPXzyHNc0fWsHddTB++ck0FMh9RCJ9bkEu6q7TR2wvDlkoOKe 0T7Le+sR5fqoqi8KXgo+uuETUdqfxB7F2+EMfLayhbxTSkHCLgce7znpX81cnAJw bzcTpZly3cN5nLfrZT9fu6lduVLKNZH1xBL47hiVayYWAArMDuBt1YBw90fmNkhX ymuuy48ZsrmzPsK/VlzZcPOU1qEdCOUOzDUI48d67WOQAmWVed3KYss6XwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE6Iu+J4DJPIjJBE0+0JnnpSJy4qMB8GA1UdIwQY MBaAFCG6105/bAlJonNqV0eEltfYtFDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQt NDQzMzIyOWE4NDczLzEvVG9pNzRuZ01rOGlNa0VUVDdRbWVlbEluTGlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQtNDQzMzIyOWE4NDcz LzEvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk+pVMA0G CSqGSIb3DQEBCwUAA4IBAQA6Vb1NrWrsekkfmuF6TyHHC222WNpKDL8j+gSScbu/ VYL29ZEQ4zOQbBHGfw+7r/9ug31a9fr1EZUNuBzM7wybfjr4+AfuteXEVNapax5Q R1s10wasZuQG8sags5aSuFdWzInmevCb6tFM/jjnezPuXIsIgXmXGlaJfbWKglT1 gQ7VDo6D8S1toSaPk2KmKre6nXWyWtm0pXD+qoZcFk5lX3THyp/BTdQtb7i6Nwa3 czFf4VDrp8VgUa+dmBL8XMPaccMuDMrFCy3mXahbsN5qT/XJ2JxsPr7AyX4HwJ1J nauPIPBU8GJUCIcvg2YGo/7y2gz1L+aTRF7CrrbQpXkq -----END CERTIFICATE-----Generated at Mon Jan 26 23:44:09 2026 by rpki-client