This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/TCAvFFGRvOGj7ZTsHmq6PaB3UoY.roa File: TCAvFFGRvOGj7ZTsHmq6PaB3UoY.roa (raw, json) Hash identifier: cry3FkNL2HaffYnu7M9Y0TK7ndTp3ozAuFnKjTG+Nyk= Subject key identifier: 4C:20:2F:14:51:91:BC:E1:A3:ED:94:EC:1E:6A:BA:3D:A0:77:52:86 Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73 Certificate serial: 019B79102A1353AC04BD795F71EC6053730E Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/TCAvFFGRvOGj7ZTsHmq6PaB3UoY.roa Signing time: Thu 01 Jan 2026 10:17:41 +0000 ROA not before: Thu 01 Jan 2026 10:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 26548 IP address blocks: 109.238.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.mft rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 14:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:2a:13:53:ac:04:bd:79:5f:71:ec:60:53:73:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=172537601a31697404922d957e74450f5a9cbe73 Validity Not Before: Jan 1 10:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4c202f145191bce1a3ed94ec1e6aba3da0775286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b8:5e:e9:41:a3:7e:22:e8:c2:3f:37:5f:6d: f9:cb:d0:53:7e:33:f9:9b:45:2a:80:96:31:e3:b5: ac:67:4a:e1:17:94:fd:dd:13:96:96:30:36:e5:ea: 68:e4:e7:1b:56:cf:e3:6b:35:2a:a5:31:5c:1e:60: fd:71:3e:56:27:04:52:de:66:3c:99:3b:83:9d:d1: de:c6:0e:66:ca:67:60:63:4a:e2:05:c0:8f:66:3c: 75:00:07:52:77:42:b7:6f:d1:0e:f5:10:2d:82:53: 7b:3f:5a:a9:9c:f9:6d:b9:47:40:cd:ac:96:de:c1: d2:d9:29:1c:91:9e:5c:8e:87:b1:a8:4c:47:17:6a: 1e:08:6f:56:b8:89:95:9f:88:de:65:c0:d5:a7:23: 60:ee:c8:98:10:89:a9:22:21:b0:0d:49:e6:c0:bb: 7e:d5:d5:71:32:45:ed:81:c4:e5:b3:d2:00:89:87: c2:e6:03:9e:d1:bc:67:4d:5f:97:01:1b:ce:3d:80: 3f:ee:64:06:ea:42:1e:11:7a:8d:b6:14:a7:73:0e: 2b:0d:54:e6:2a:99:82:e6:51:63:63:f6:52:87:ab: 42:cc:82:77:b6:bd:4d:57:94:17:a3:1c:df:7d:d3: 87:ee:b0:24:24:b4:3c:6b:83:32:d6:dd:19:81:39: 18:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:20:2F:14:51:91:BC:E1:A3:ED:94:EC:1E:6A:BA:3D:A0:77:52:86 X509v3 Authority Key Identifier: keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/TCAvFFGRvOGj7ZTsHmq6PaB3UoY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.238.168.0/21 Signature Algorithm: sha256WithRSAEncryption b8:75:84:c9:8c:05:d0:8f:7d:bd:06:96:1c:80:5b:8b:d0:5b: 07:29:3a:3e:48:34:55:5b:38:3a:6f:b9:76:3a:44:ab:f8:93: 5b:c4:9c:3f:31:84:06:af:07:59:6a:1a:8c:c6:07:a7:4e:27: 9f:05:87:02:3c:cd:84:96:17:d8:3d:bb:9e:56:8b:ce:85:ca: 3e:11:28:2a:b7:e2:df:c8:d0:3e:62:9d:81:03:e5:e9:14:a4: 07:34:d0:6f:ee:78:a3:45:c5:83:be:18:1f:af:ca:43:11:32: 92:f1:e8:e2:42:d4:20:cb:db:43:b2:6c:a7:23:ea:a5:7d:fb: 49:73:9a:b3:68:28:d9:99:b7:b5:2e:18:5b:27:26:af:5f:38: c6:eb:eb:c7:0a:7a:63:09:76:a7:36:a7:10:dd:06:e0:13:0b: 17:28:9c:bd:1f:ba:94:5e:28:92:32:6f:82:e1:67:b1:1c:6e: 33:b2:31:dd:53:c5:3b:16:36:89:87:9e:e5:9f:65:ad:e3:60: 5d:9e:6a:b4:42:5c:c2:42:7b:42:34:9d:70:be:68:c7:ca:19: 9b:0d:d7:dc:54:de:88:12:9d:7a:2a:b1:63:a2:2f:20:f4:76: 3d:97:74:80:25:01:29:cf:32:48:f1:1e:18:36:17:b6:35:64: 94:bc:7f:9e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ECoTU6wEvXlfcexgU3MOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3MjUzNzYwMWEzMTY5NzQwNDkyMmQ5NTdlNzQ0NTBmNWE5 Y2JlNzMwHhcNMjYwMTAxMTAxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YzIwMmYxNDUxOTFiY2UxYTNlZDk0ZWMxZTZhYmEzZGEwNzc1Mjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArrhe6UGjfiLowj83X235y9BTfjP5 m0UqgJYx47WsZ0rhF5T93ROWljA25epo5OcbVs/jazUqpTFcHmD9cT5WJwRS3mY8 mTuDndHexg5mymdgY0riBcCPZjx1AAdSd0K3b9EO9RAtglN7P1qpnPltuUdAzayW 3sHS2SkckZ5cjoexqExHF2oeCG9WuImVn4jeZcDVpyNg7siYEImpIiGwDUnmwLt+ 1dVxMkXtgcTls9IAiYfC5gOe0bxnTV+XARvOPYA/7mQG6kIeEXqNthSncw4rDVTm KpmC5lFjY/ZSh6tCzIJ3tr1NV5QXoxzffdOH7rAkJLQ8a4My1t0ZgTkYWwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEwgLxRRkbzho+2U7B5quj2gd1KGMB8GA1UdIwQY MBaAFBclN2AaMWl0BJItlX50RQ9anL5zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQt ZTYwNGI2MWJlMGVhLzEvVENBdkZGR1J2T0dqN1pUc0htcTZQYUIzVW9ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQtZTYwNGI2MWJlMGVh LzEvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDbe6oMA0G CSqGSIb3DQEBCwUAA4IBAQC4dYTJjAXQj329BpYcgFuL0FsHKTo+SDRVWzg6b7l2 OkSr+JNbxJw/MYQGrwdZahqMxgenTiefBYcCPM2ElhfYPbueVovOhco+ESgqt+Lf yNA+Yp2BA+XpFKQHNNBv7nijRcWDvhgfr8pDETKS8ejiQtQgy9tDsmynI+qlfftJ c5qzaCjZmbe1LhhbJyavXzjG6+vHCnpjCXanNqcQ3QbgEwsXKJy9H7qUXiiSMm+C 4WexHG4zsjHdU8U7FjaJh57ln2Wt42Bdnmq0QlzCQntCNJ1wvmjHyhmbDdfcVN6I Ep16KrFjoi8g9HY9l3SAJQEpzzJI8R4YNhe2NWSUvH+e -----END CERTIFICATE-----Generated at Tue Jan 20 00:06:12 2026 by rpki-client