This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/TPuALIMyKHTAJN5eUnqBGspsy3E.roa File: TPuALIMyKHTAJN5eUnqBGspsy3E.roa (raw, json) Hash identifier: ebun0C4ydv6bPmHr73fW6etob8nrsagGkwWDv5pcdsU= Subject key identifier: 4C:FB:80:2C:83:32:28:74:C0:24:DE:5E:52:7A:81:1A:CA:6C:CB:71 Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173 Certificate serial: 019B7F1500B9A0843C8B9C38A6B96BB7FCBA Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/TPuALIMyKHTAJN5eUnqBGspsy3E.roa Signing time: Fri 02 Jan 2026 14:20:41 +0000 ROA not before: Fri 02 Jan 2026 14:20:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 984 IP address blocks: 45.141.168.0/23 maxlen: 24 148.222.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.mft rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:00:b9:a0:84:3c:8b:9c:38:a6:b9:6b:b7:fc:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18101772248996b87d90840c2d27d62549458173 Validity Not Before: Jan 2 14:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4cfb802c83322874c024de5e527a811aca6ccb71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8b:09:b6:23:f4:d5:60:53:c4:9f:05:42:19: fd:97:dc:63:79:12:87:96:b9:40:5b:bd:d6:a4:a9: 4c:53:b8:77:13:5d:23:9b:b6:8d:a1:e8:bd:ba:99: 07:90:93:0a:b6:5b:7d:b0:7c:3a:86:43:91:cb:d6: f0:f1:dc:82:a4:3f:3d:b2:34:f5:42:30:91:98:9a: 2a:55:49:41:cb:a3:e8:35:e2:3e:37:37:65:49:f1: 8e:6e:60:47:f1:83:1b:cc:78:9a:64:10:b5:e2:88: b7:f7:d7:61:0c:67:62:7d:eb:13:8f:0c:b8:62:57: d4:35:00:94:5b:fc:24:bf:87:f2:c2:83:4a:c8:10: 27:4c:ed:49:78:cf:cd:03:99:6f:3a:3b:d1:06:6a: 16:a2:fd:db:d3:a8:97:47:b3:8a:d6:d0:e5:e0:76: 5b:87:98:c5:0a:41:51:ee:ac:89:5e:5c:08:b1:c9: 68:6f:aa:a1:9f:ff:71:42:f5:52:d3:8b:77:fe:d2: 1a:08:53:06:9e:7e:ee:cd:d9:b4:e1:a2:44:fd:7e: f6:bb:74:c1:8e:93:86:c7:7f:58:4f:26:82:de:e5: 4f:17:96:38:6c:cb:33:38:36:f7:1a:e8:ae:5e:3f: 10:ed:13:28:3c:32:17:55:cc:2b:6e:3d:1a:5c:41: d1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:FB:80:2C:83:32:28:74:C0:24:DE:5E:52:7A:81:1A:CA:6C:CB:71 X509v3 Authority Key Identifier: keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/TPuALIMyKHTAJN5eUnqBGspsy3E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.141.168.0/23 148.222.240.0/22 Signature Algorithm: sha256WithRSAEncryption 21:9a:8f:69:25:77:e6:62:40:64:88:28:b6:18:6d:8d:6b:b5: 6b:d3:5f:c3:07:d7:aa:48:f3:97:20:bf:3e:5b:66:90:11:60: fb:42:7a:36:98:80:9d:f6:d1:a2:a0:31:ba:23:08:47:ac:27: ed:24:c0:54:7f:a2:5f:06:b3:7f:db:e8:fb:8e:e3:ff:c3:43: f4:71:9a:c5:89:ce:a3:c1:a5:59:02:65:62:e7:83:ef:5f:40: 5d:32:68:20:a4:1b:ec:33:66:d2:dd:1b:7e:50:4d:b9:f3:ed: a8:7f:b9:31:c9:ed:72:70:c5:7a:7d:36:f3:b8:5d:16:a5:91: 07:83:4b:6d:9b:da:4f:28:af:75:3c:56:e0:bf:a9:86:08:95: 7c:08:c2:86:af:51:26:6e:5f:08:09:66:d3:b4:a3:6b:86:0d: b4:c0:ac:d8:7c:48:11:82:54:a3:25:2a:31:31:21:70:46:fc: a8:7e:db:ad:5b:27:03:61:26:1d:92:3f:af:99:b7:c3:1c:14: d5:3f:30:81:ac:83:39:a4:d9:6f:bb:c4:33:69:75:20:ae:1c: c3:fe:03:c9:8c:ab:b3:76:bc:5a:0b:6b:ec:b0:61:a2:09:db: 72:10:f1:3b:a7:c8:d0:2f:9d:fb:6b:5d:ca:a0:88:c6:e5:9d: 89:60:43:1c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FQC5oIQ8i5w4prlrt/y6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0 NTgxNzMwHhcNMjYwMTAyMTQyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0Y2ZiODAyYzgzMzIyODc0YzAyNGRlNWU1MjdhODExYWNhNmNjYjcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw4sJtiP01WBTxJ8FQhn9l9xjeRKH lrlAW73WpKlMU7h3E10jm7aNoei9upkHkJMKtlt9sHw6hkORy9bw8dyCpD89sjT1 QjCRmJoqVUlBy6PoNeI+NzdlSfGObmBH8YMbzHiaZBC14oi399dhDGdifesTjwy4 YlfUNQCUW/wkv4fywoNKyBAnTO1JeM/NA5lvOjvRBmoWov3b06iXR7OK1tDl4HZb h5jFCkFR7qyJXlwIsclob6qhn/9xQvVS04t3/tIaCFMGnn7uzdm04aJE/X72u3TB jpOGx39YTyaC3uVPF5Y4bMszODb3GuiuXj8Q7RMoPDIXVcwrbj0aXEHRyQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEz7gCyDMih0wCTeXlJ6gRrKbMtxMB8GA1UdIwQY MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt M2NjODVhZDNjMTkwLzEvVFB1QUxJTXlLSFRBSk41ZVVucUJHc3BzeTNFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLY2oAwQC lN7wMA0GCSqGSIb3DQEBCwUAA4IBAQAhmo9pJXfmYkBkiCi2GG2Na7Vr01/DB9eq SPOXIL8+W2aQEWD7Qno2mICd9tGioDG6IwhHrCftJMBUf6JfBrN/2+j7juP/w0P0 cZrFic6jwaVZAmVi54PvX0BdMmggpBvsM2bS3Rt+UE258+2of7kxye1ycMV6fTbz uF0WpZEHg0ttm9pPKK91PFbgv6mGCJV8CMKGr1Embl8ICWbTtKNrhg20wKzYfEgR glSjJSoxMSFwRvyoftutWycDYSYdkj+vmbfDHBTVPzCBrIM5pNlvu8QzaXUgrhzD /gPJjKuzdrxaC2vssGGiCdtyEPE7p8jQL537a13KoIjG5Z2JYEMc -----END CERTIFICATE-----Generated at Sun Jan 18 04:26:24 2026 by rpki-client