This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tml7s1FEM_9KEwjG1ZFBVK9B8KM.roa File: tml7s1FEM_9KEwjG1ZFBVK9B8KM.roa (raw, json) Hash identifier: n8PMHdIGzbLhBNN6Xpxhp4apLQiZy0TRKprVqL0yAqc= Subject key identifier: B6:69:7B:B3:51:44:33:FF:4A:13:08:C6:D5:91:41:54:AF:41:F0:A3 Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430 Certificate serial: 019B7FF19D5E6733452F24D0C13BEE53387A Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tml7s1FEM_9KEwjG1ZFBVK9B8KM.roa Signing time: Fri 02 Jan 2026 18:21:39 +0000 ROA not before: Fri 02 Jan 2026 18:21:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215535 IP address blocks: 46.38.132.0/24 maxlen: 24 46.38.133.0/24 maxlen: 24 46.38.134.0/24 maxlen: 24 46.38.135.0/24 maxlen: 24 46.38.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.mft rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:9d:5e:67:33:45:2f:24:d0:c1:3b:ee:53:38:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430 Validity Not Before: Jan 2 18:21:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b6697bb3514433ff4a1308c6d5914154af41f0a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c0:b7:99:e6:19:01:9a:98:b9:db:91:17:8f: f1:82:fa:75:c5:42:73:88:ee:b6:54:f7:18:25:e9: 92:e2:0d:5c:ec:ce:61:79:50:b3:2f:59:f5:46:3a: 68:69:94:dc:3e:89:90:f3:4e:f5:02:eb:06:c4:96: be:c4:63:92:58:3a:ed:77:50:9a:fe:c4:e9:86:6e: f9:a0:68:63:b6:24:0a:66:1c:a0:c2:8a:3e:c9:a7: 4b:92:3b:bf:7d:d8:59:17:6f:03:11:af:36:35:3a: 73:6e:4b:ca:ee:5f:7b:3c:12:29:17:e6:4c:56:57: 05:0f:90:8f:57:c5:85:d4:e1:b7:2d:88:af:1b:1c: 1e:0a:f4:ab:a5:93:8f:85:ba:a2:a0:16:91:7e:a2: 5c:95:80:85:03:64:6a:ce:bc:2c:60:3a:a6:a7:b1: 6a:cc:f7:cd:56:c3:0f:3d:7b:10:81:0a:d8:08:06: d7:2b:c4:b8:c2:6e:cd:f0:da:32:4a:ec:60:e0:b6: 48:0a:96:86:cb:f4:5c:54:7b:d5:f3:33:f9:44:b6: b8:57:8a:9d:ad:45:88:af:fe:53:1b:d6:21:3e:30: 21:45:9f:9e:4c:30:fc:12:64:38:c1:da:74:e4:f6: 0b:85:59:6a:f7:ee:5c:39:e0:99:92:03:f4:32:25: a7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:69:7B:B3:51:44:33:FF:4A:13:08:C6:D5:91:41:54:AF:41:F0:A3 X509v3 Authority Key Identifier: keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tml7s1FEM_9KEwjG1ZFBVK9B8KM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.38.132.0/22 46.38.158.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:f8:a3:5d:82:02:40:38:a4:cf:b5:f7:94:88:6e:a4:a0:0e: 05:79:e0:26:01:c5:26:df:6f:39:28:11:4e:1c:d1:0a:9b:db: b6:05:ef:e9:f0:08:9d:32:a1:78:d7:95:4f:a8:1f:9a:f7:24: fb:3c:75:56:ae:29:ff:a5:e2:45:cb:34:a2:d5:50:70:9c:9e: 64:90:41:53:c7:80:01:86:a9:7b:a6:0f:69:a7:80:c6:b4:de: 3a:c2:e1:c2:d9:a9:ef:77:d3:e2:b5:0d:22:48:58:44:be:67: 25:08:90:37:d2:3b:f9:13:e8:83:b7:d6:8b:0f:69:7f:b9:75: 05:ca:6d:59:e0:3c:9e:5a:5b:58:e6:3f:15:73:17:2f:4f:da: 48:56:9d:f6:27:d4:2d:13:10:a3:27:04:0a:d6:e2:6b:85:7b: d9:e5:95:bb:52:9c:bf:dc:a9:2d:f8:73:71:7a:24:d3:c6:69: 6d:9a:3f:1d:fc:be:64:31:f3:bb:90:63:5c:89:be:e0:f9:01: b1:ad:2b:47:d4:09:27:85:35:22:4b:b8:15:78:da:5e:1f:96: 50:a3:75:f9:f3:39:05:59:91:2c:8c:c1:58:42:48:4e:cc:2b: 62:a4:96:5e:5c:76:9f:f6:a3:db:5c:c8:4a:a9:bd:8b:32:74: 0e:a1:5d:e4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/8Z1eZzNFLyTQwTvuUzh6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj NWY0MzAwHhcNMjYwMTAyMTgyMTM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNjY5N2JiMzUxNDQzM2ZmNGExMzA4YzZkNTkxNDE1NGFmNDFmMGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt8C3meYZAZqYuduRF4/xgvp1xUJz iO62VPcYJemS4g1c7M5heVCzL1n1RjpoaZTcPomQ8071AusGxJa+xGOSWDrtd1Ca /sTphm75oGhjtiQKZhygwoo+yadLkju/fdhZF28DEa82NTpzbkvK7l97PBIpF+ZM VlcFD5CPV8WF1OG3LYivGxweCvSrpZOPhbqioBaRfqJclYCFA2RqzrwsYDqmp7Fq zPfNVsMPPXsQgQrYCAbXK8S4wm7N8NoySuxg4LZICpaGy/RcVHvV8zP5RLa4V4qd rUWIr/5TG9YhPjAhRZ+eTDD8EmQ4wdp05PYLhVlq9+5cOeCZkgP0MiWnwQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLZpe7NRRDP/ShMIxtWRQVSvQfCjMB8GA1UdIwQY MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt MmEwOWNjNTNhODA1LzEvdG1sN3MxRkVNXzlLRXdqRzFaRkJWSzlCOEtNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1 LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLiaEAwQA LiaeMA0GCSqGSIb3DQEBCwUAA4IBAQAN+KNdggJAOKTPtfeUiG6koA4FeeAmAcUm 3285KBFOHNEKm9u2Be/p8AidMqF415VPqB+a9yT7PHVWrin/peJFyzSi1VBwnJ5k kEFTx4ABhql7pg9pp4DGtN46wuHC2anvd9PitQ0iSFhEvmclCJA30jv5E+iDt9aL D2l/uXUFym1Z4DyeWltY5j8VcxcvT9pIVp32J9QtExCjJwQK1uJrhXvZ5ZW7Upy/ 3Kkt+HNxeiTTxmltmj8d/L5kMfO7kGNcib7g+QGxrStH1AknhTUiS7gVeNpeH5ZQ o3X58zkFWZEsjMFYQkhOzCtipJZeXHaf9qPbXMhKqb2LMnQOoV3k -----END CERTIFICATE-----Generated at Wed Jan 21 04:03:41 2026 by rpki-client