This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/tPA1lLHRYrnuTglHjaaozl_h8f0.roa File: tPA1lLHRYrnuTglHjaaozl_h8f0.roa (raw, json) Hash identifier: 5ScYRmu1VsINo7G+2RuOzRzcNB8TY+OdTwClhvuZjzM= Subject key identifier: B4:F0:35:94:B1:D1:62:B9:EE:4E:09:47:8D:A6:A8:CE:5F:E1:F1:FD Certificate issuer: /CN=3096d7afbb8a5e315a5c489acea7dcb75aa65d04 Certificate serial: 019B7F1579B11ADC42C7771FA65F478BD2D3 Authority key identifier: 30:96:D7:AF:BB:8A:5E:31:5A:5C:48:9A:CE:A7:DC:B7:5A:A6:5D:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/tPA1lLHRYrnuTglHjaaozl_h8f0.roa Signing time: Fri 02 Jan 2026 14:21:12 +0000 ROA not before: Fri 02 Jan 2026 14:21:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34606 IP address blocks: 77.72.32.0/21 maxlen: 21 77.108.0.0/18 maxlen: 18 81.30.0.0/20 maxlen: 20 82.215.128.0/18 maxlen: 18 82.215.128.0/22 maxlen: 22 85.159.176.0/21 maxlen: 21 85.208.232.0/22 maxlen: 22 88.87.96.0/19 maxlen: 19 95.140.136.0/21 maxlen: 21 185.73.244.0/22 maxlen: 22 185.117.216.0/22 maxlen: 22 185.127.32.0/22 maxlen: 22 194.116.0.0/18 maxlen: 18 194.176.126.0/24 maxlen: 24 2a02:260::/32 maxlen: 32 2a03:4560::/32 maxlen: 32 2a06:8580::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/MJbXr7uKXjFaXEiazqfct1qmXQQ.crl rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/MJbXr7uKXjFaXEiazqfct1qmXQQ.mft rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:79:b1:1a:dc:42:c7:77:1f:a6:5f:47:8b:d2:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3096d7afbb8a5e315a5c489acea7dcb75aa65d04 Validity Not Before: Jan 2 14:21:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4f03594b1d162b9ee4e09478da6a8ce5fe1f1fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:76:12:4d:3e:bf:bc:4f:45:cf:3b:6f:ab:94: 88:4c:3b:c4:2b:98:dd:26:d5:65:94:f8:f0:19:71: 57:84:d8:e5:cf:d0:d8:43:ab:f5:c7:86:3d:04:ca: 67:5f:f9:f0:ae:df:d4:02:9b:c7:70:12:1f:25:2b: 3d:3b:17:73:a4:85:f9:6a:d5:a4:d9:74:4e:b0:6b: 03:96:c0:b7:e9:42:a6:3c:26:ce:5f:64:49:14:dd: a3:74:56:e2:7a:11:c7:a5:3b:c3:06:01:e3:f6:6d: be:9e:b2:f1:45:d8:cb:9d:37:57:c6:3a:f1:03:93: 35:31:2c:94:44:c9:c2:cd:86:58:67:97:08:3a:c9: a9:2d:3d:fb:0c:8a:33:8b:f3:8f:ac:b2:03:8f:c7: b5:27:54:7a:b7:17:af:77:32:66:bf:ac:e1:b7:f8: 30:75:d2:78:4c:59:c7:41:b6:a8:e7:58:99:e6:23: 3f:66:e2:1a:2f:41:9a:70:58:b5:4c:f0:8e:96:97: 8d:5f:b8:3a:e4:4f:bc:a7:62:2f:14:4f:c9:8b:04: 68:f6:03:b7:9a:a7:9e:08:19:fa:5c:1d:89:7d:79: 62:5e:1d:c3:96:5d:95:8f:21:7c:2c:ff:65:56:a9: 94:76:c6:94:7b:91:f2:3c:6b:97:9c:01:f8:c3:f4: 13:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F0:35:94:B1:D1:62:B9:EE:4E:09:47:8D:A6:A8:CE:5F:E1:F1:FD X509v3 Authority Key Identifier: keyid:30:96:D7:AF:BB:8A:5E:31:5A:5C:48:9A:CE:A7:DC:B7:5A:A6:5D:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/tPA1lLHRYrnuTglHjaaozl_h8f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/MJbXr7uKXjFaXEiazqfct1qmXQQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.72.32.0/21 77.108.0.0/18 81.30.0.0/20 82.215.128.0/18 85.159.176.0/21 85.208.232.0/22 88.87.96.0/19 95.140.136.0/21 185.73.244.0/22 185.117.216.0/22 185.127.32.0/22 194.116.0.0/18 194.176.126.0/24 IPv6: 2a02:260::/32 2a03:4560::/32 2a06:8580::/29 Signature Algorithm: sha256WithRSAEncryption 0f:33:26:60:bb:68:23:bf:7d:0e:30:5d:3d:89:8e:e7:e7:6b: 73:11:d2:a1:b6:93:02:6c:47:f1:56:5f:b1:56:96:e2:f0:71: 3a:08:13:39:59:2a:f4:9d:8f:41:7a:d1:b0:c8:90:41:9a:a5: 25:b5:a2:4d:f0:0c:4d:f7:6b:2c:2b:56:2b:d2:08:e6:89:da: 53:20:39:8d:9c:5b:ea:81:71:58:84:7a:b9:f1:b8:d3:bc:17: 4d:e0:72:5f:c1:44:9c:81:21:be:d1:d0:d9:33:6c:66:09:ec: cd:48:94:9f:22:ff:12:95:28:5f:70:f1:51:c3:c1:99:36:e4: 58:8d:e3:dd:b0:28:ef:e7:c2:22:c0:14:63:bd:9b:ab:c4:2a: 75:be:5e:d3:0a:fc:d2:36:52:96:e5:cb:fe:b6:36:51:bb:a3: f8:bf:ba:c5:43:66:fc:d4:59:d2:4b:51:b6:93:b8:65:6a:0a: 2c:49:18:34:55:e4:b7:2c:3e:51:bb:1b:14:35:8d:6e:d7:e6: 1b:db:15:dc:ce:90:c3:d8:ae:45:65:fe:f4:3d:9d:7c:e1:d8: a7:8b:1d:8d:e4:bf:c5:3a:7c:ba:90:5e:64:46:82:2e:7f:ee: 31:c3:60:22:77:21:27:f8:af:5a:07:86:68:b7:7f:fa:48:84: e8:74:62:ff -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgISAZt/FXmxGtxCx3cfpl9Hi9LTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwOTZkN2FmYmI4YTVlMzE1YTVjNDg5YWNlYTdkY2I3NWFh NjVkMDQwHhcNMjYwMTAyMTQyMTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGYwMzU5NGIxZDE2MmI5ZWU0ZTA5NDc4ZGE2YThjZTVmZTFmMWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXYSTT6/vE9Fzztvq5SITDvEK5jd JtVllPjwGXFXhNjlz9DYQ6v1x4Y9BMpnX/nwrt/UApvHcBIfJSs9OxdzpIX5atWk 2XROsGsDlsC36UKmPCbOX2RJFN2jdFbiehHHpTvDBgHj9m2+nrLxRdjLnTdXxjrx A5M1MSyURMnCzYZYZ5cIOsmpLT37DIozi/OPrLIDj8e1J1R6txevdzJmv6zht/gw ddJ4TFnHQbao51iZ5iM/ZuIaL0GacFi1TPCOlpeNX7g65E+8p2IvFE/JiwRo9gO3 mqeeCBn6XB2JfXliXh3Dll2VjyF8LP9lVqmUdsaUe5HyPGuXnAH4w/QT3wIDAQAB o4ICbzCCAmswHQYDVR0OBBYEFLTwNZSx0WK57k4JR42mqM5f4fH9MB8GA1UdIwQY MBaAFDCW16+7il4xWlxIms6n3Ldapl0EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUpiWHI3dUtYakZhWEVpYXpxZmN0MXFtWFFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9jZjhmOTktZTU4MS00ZjVmLTg3NWYt ZGY0ZThjNzM2NGZlLzEvdFBBMWxMSFJZcm51VGdsSGphYW96bF9oOGYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC9jZjhmOTktZTU4MS00ZjVmLTg3NWYtZGY0ZThjNzM2NGZl LzEvTUpiWHI3dUtYakZhWEVpYXpxZmN0MXFtWFFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGEBggrBgEFBQcBBwEB/wR1MHMwVAQCAAEwTgMEA01IIAME Bk1sAAMEBFEeAAMEBlLXgAMEA1WfsAMEAlXQ6AMEBVhXYAMEA1+MiAMEArlJ9AME Arl12AMEArl/IAMEBsJ0AAMEAMKwfjAbBAIAAjAVAwUAKgICYAMFACoDRWADBQMq BoWAMA0GCSqGSIb3DQEBCwUAA4IBAQAPMyZgu2gjv30OMF09iY7n52tzEdKhtpMC bEfxVl+xVpbi8HE6CBM5WSr0nY9BetGwyJBBmqUltaJN8AxN92ssK1Yr0gjmidpT IDmNnFvqgXFYhHq58bjTvBdN4HJfwUScgSG+0dDZM2xmCezNSJSfIv8SlShfcPFR w8GZNuRYjePdsCjv58IiwBRjvZurxCp1vl7TCvzSNlKW5cv+tjZRu6P4v7rFQ2b8 1FnSS1G2k7hlagosSRg0VeS3LD5RuxsUNY1u1+Yb2xXczpDD2K5FZf70PZ184din ix2N5L/FOny6kF5kRoIuf+4xw2AidyEn+K9aB4Zot3/6SITodGL/ -----END CERTIFICATE-----Generated at Mon Feb 9 21:24:22 2026 by rpki-client