This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/b1015d-4122-4174-82a5-4bbf645b10d3/1/Tbg0HfFs7tC-ThaNMYM7wld_cPc.roa File: Tbg0HfFs7tC-ThaNMYM7wld_cPc.roa (raw, json) Hash identifier: dG1QErPruWJ0Jgl8mQY86EnlNMjWn0dAZ2gyv40Za2Q= Subject key identifier: 4D:B8:34:1D:F1:6C:EE:D0:BE:4E:16:8D:31:83:3B:C2:57:7F:70:F7 Certificate issuer: /CN=60f72537edf1dc0b7f694453450bca4aeef83f64 Certificate serial: 019B79EC7EEA52F3E311AFCCA938539923F3 Authority key identifier: 60:F7:25:37:ED:F1:DC:0B:7F:69:44:53:45:0B:CA:4A:EE:F8:3F:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPclN-3x3At_aURTRQvKSu74P2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/b1015d-4122-4174-82a5-4bbf645b10d3/1/Tbg0HfFs7tC-ThaNMYM7wld_cPc.roa Signing time: Thu 01 Jan 2026 14:18:20 +0000 ROA not before: Thu 01 Jan 2026 14:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213048 IP address blocks: 83.136.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/b1015d-4122-4174-82a5-4bbf645b10d3/1/YPclN-3x3At_aURTRQvKSu74P2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/73/b1015d-4122-4174-82a5-4bbf645b10d3/1/YPclN-3x3At_aURTRQvKSu74P2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/YPclN-3x3At_aURTRQvKSu74P2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:7e:ea:52:f3:e3:11:af:cc:a9:38:53:99:23:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60f72537edf1dc0b7f694453450bca4aeef83f64 Validity Not Before: Jan 1 14:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4db8341df16ceed0be4e168d31833bc2577f70f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:95:bd:8b:08:ab:d0:fd:92:c0:f0:01:10:6a: e2:4e:51:72:f2:08:dc:c3:9a:6e:fd:da:d4:8f:a2: 38:30:74:54:43:a0:7e:ed:a6:b8:2b:22:2c:ad:4d: 76:7f:06:69:11:47:56:4a:31:66:f7:6a:1d:68:fe: e0:58:a3:28:ac:5c:4c:8b:d3:ef:5d:16:f2:0f:e4: 76:27:cb:ba:e5:d6:18:0c:dd:39:35:36:28:12:19: a5:7d:19:f1:42:7b:2b:6c:92:ca:42:4e:f8:b2:ba: 0e:d7:41:8b:0d:7d:4f:6b:ec:fc:6f:60:1f:0a:9f: c0:7c:6a:37:de:0f:67:6c:50:bb:f2:5a:95:b9:38: 3f:95:e7:9e:34:77:b9:9f:ea:dd:d4:42:bd:ec:04: 87:b8:91:49:31:24:ee:bd:b4:b6:d0:25:c1:e4:45: 05:c2:fe:75:b5:4f:97:82:3f:9a:4d:69:02:80:d9: a8:05:ed:2e:e6:b0:5b:17:64:a6:69:a4:46:45:cc: af:04:5e:49:d2:57:52:21:1c:30:a9:77:76:fb:e1: 87:09:4c:33:27:93:75:af:db:2b:5c:ba:d1:7c:f7: bb:b9:6e:ef:dd:bb:31:39:df:b0:f2:ab:73:68:06: 9e:23:dd:2d:36:40:c6:49:47:1a:95:92:65:17:bd: 5d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B8:34:1D:F1:6C:EE:D0:BE:4E:16:8D:31:83:3B:C2:57:7F:70:F7 X509v3 Authority Key Identifier: keyid:60:F7:25:37:ED:F1:DC:0B:7F:69:44:53:45:0B:CA:4A:EE:F8:3F:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPclN-3x3At_aURTRQvKSu74P2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/b1015d-4122-4174-82a5-4bbf645b10d3/1/Tbg0HfFs7tC-ThaNMYM7wld_cPc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/b1015d-4122-4174-82a5-4bbf645b10d3/1/YPclN-3x3At_aURTRQvKSu74P2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.136.220.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:1a:29:13:88:46:2a:32:df:ae:9d:10:c9:13:dd:14:38:2f: 50:ac:15:a2:12:99:cc:ad:15:3d:8c:11:87:5d:94:05:ed:9d: 33:ee:82:9f:4c:53:82:92:a8:52:65:bd:29:e0:72:a6:40:3b: e7:75:6b:f3:db:af:5b:67:ec:11:25:e5:d0:e8:ab:84:2c:0c: 77:87:ca:1a:14:60:dc:7e:f9:7b:f9:d4:47:16:12:86:f0:1e: 6f:3a:5e:4f:98:b4:e2:ef:da:79:9a:a0:3b:fe:e5:9b:b9:c6: 40:a3:e6:bd:d5:8f:7f:f8:37:71:b3:5f:e2:9f:d9:5b:7d:0c: 35:a6:5a:bb:10:07:0d:d6:7b:05:41:ec:0c:dd:14:9f:21:bd: a5:34:d3:5a:b0:7b:51:f9:d5:00:d4:99:d4:39:bb:a3:26:58: 95:3c:ca:39:ea:40:53:95:b8:e9:37:63:00:4f:d1:da:19:99: 59:77:07:a8:ae:8b:5d:bb:f8:65:9c:68:9e:bd:0c:97:99:37: 15:54:9d:8d:29:e7:8b:2d:09:46:bf:b9:70:55:07:75:26:a5: 44:be:7e:6d:41:f7:0c:01:bc:e4:be:3a:c3:b4:d0:cf:2c:a2: 9c:8f:a6:49:77:f5:61:f9:ef:dd:28:b8:4b:1c:89:df:22:e7: ba:75:dd:b1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57H7qUvPjEa/MqThTmSPzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZjcyNTM3ZWRmMWRjMGI3ZjY5NDQ1MzQ1MGJjYTRhZWVm ODNmNjQwHhcNMjYwMTAxMTQxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZGI4MzQxZGYxNmNlZWQwYmU0ZTE2OGQzMTgzM2JjMjU3N2Y3MGY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZW9iwir0P2SwPABEGriTlFy8gjc w5pu/drUj6I4MHRUQ6B+7aa4KyIsrU12fwZpEUdWSjFm92odaP7gWKMorFxMi9Pv XRbyD+R2J8u65dYYDN05NTYoEhmlfRnxQnsrbJLKQk74sroO10GLDX1Pa+z8b2Af Cp/AfGo33g9nbFC78lqVuTg/leeeNHe5n+rd1EK97ASHuJFJMSTuvbS20CXB5EUF wv51tU+Xgj+aTWkCgNmoBe0u5rBbF2SmaaRGRcyvBF5J0ldSIRwwqXd2++GHCUwz J5N1r9srXLrRfPe7uW7v3bsxOd+w8qtzaAaeI90tNkDGSUcalZJlF71dpQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE24NB3xbO7Qvk4WjTGDO8JXf3D3MB8GA1UdIwQY MBaAFGD3JTft8dwLf2lEU0ULykru+D9kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVBjbE4tM3gzQXRfYVVSVFJRdktTdTc0UDJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9iMTAxNWQtNDEyMi00MTc0LTgyYTUt NGJiZjY0NWIxMGQzLzEvVGJnMEhmRnM3dEMtVGhhTk1ZTTd3bGRfY1BjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My9iMTAxNWQtNDEyMi00MTc0LTgyYTUtNGJiZjY0NWIxMGQz LzEvWVBjbE4tM3gzQXRfYVVSVFJRdktTdTc0UDJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU4jcMA0G CSqGSIb3DQEBCwUAA4IBAQBaGikTiEYqMt+unRDJE90UOC9QrBWiEpnMrRU9jBGH XZQF7Z0z7oKfTFOCkqhSZb0p4HKmQDvndWvz269bZ+wRJeXQ6KuELAx3h8oaFGDc fvl7+dRHFhKG8B5vOl5PmLTi79p5mqA7/uWbucZAo+a91Y9/+Ddxs1/in9lbfQw1 plq7EAcN1nsFQewM3RSfIb2lNNNasHtR+dUA1JnUObujJliVPMo56kBTlbjpN2MA T9HaGZlZdweorotdu/hlnGievQyXmTcVVJ2NKeeLLQlGv7lwVQd1JqVEvn5tQfcM AbzkvjrDtNDPLKKcj6ZJd/Vh+e/dKLhLHInfIue6dd2x -----END CERTIFICATE-----Generated at Tue Feb 10 06:28:41 2026 by rpki-client