This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Tkz8m1Jr8tfaMAIELG4VoMxret4.roa File: Tkz8m1Jr8tfaMAIELG4VoMxret4.roa (raw, json) Hash identifier: Ikgnpsjpj4CM2/661QF1/WXQiwV1IznX5MRWsNLxq68= Subject key identifier: 4E:4C:FC:9B:52:6B:F2:D7:DA:30:02:04:2C:6E:15:A0:CC:6B:7A:DE Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808 Certificate serial: 019B7EA66EA5833224527B37C295B8A5001B Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Tkz8m1Jr8tfaMAIELG4VoMxret4.roa Signing time: Fri 02 Jan 2026 12:19:55 +0000 ROA not before: Fri 02 Jan 2026 12:19:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28745 IP address blocks: 89.237.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.mft rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 31 Jan 2026 23:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:6e:a5:83:32:24:52:7b:37:c2:95:b8:a5:00:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808 Validity Not Before: Jan 2 12:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4e4cfc9b526bf2d7da3002042c6e15a0cc6b7ade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:89:30:df:5f:b9:32:04:a2:e7:cb:23:4f:02: 77:92:59:6f:6a:9f:d3:10:78:0b:b4:11:af:9d:4f: df:59:c6:6b:df:4f:be:5a:75:2a:02:9a:68:ea:fc: a2:5b:dc:38:d5:b9:e9:73:14:4f:b1:45:c0:9b:0e: 69:b5:78:6a:86:7c:b8:95:51:fe:3a:3a:a5:36:7c: df:ce:02:81:2d:5a:82:b3:33:f6:a5:99:a2:23:80: 0d:11:7b:ac:9b:b8:f1:2b:f9:95:f8:f5:a0:2f:91: b8:02:b9:9f:07:9f:cc:d6:10:07:ba:63:26:18:19: 21:61:85:2e:2a:24:35:49:f4:d7:33:a8:bb:c9:cd: 5d:12:61:bb:4f:f2:18:bb:e9:c4:ac:c5:82:7c:97: be:7c:7e:5d:fa:5d:68:a9:10:1f:cb:76:20:0e:19: 34:f9:d8:e7:a3:b5:08:b4:a1:02:96:21:64:2f:94: 4f:0a:dc:88:61:fa:79:7a:76:35:ae:16:5c:cd:12: 72:6d:29:f5:64:04:f1:4f:e3:9a:2b:2c:1c:f3:48: 10:3c:b2:2f:bb:99:f7:6b:fe:50:d0:5b:d7:c3:77: 1b:62:83:ef:e4:36:94:3f:15:52:f2:8b:ac:8a:ae: f4:5f:a2:34:c8:e1:58:de:62:93:cb:ee:b7:e7:5c: 49:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:4C:FC:9B:52:6B:F2:D7:DA:30:02:04:2C:6E:15:A0:CC:6B:7A:DE X509v3 Authority Key Identifier: keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Tkz8m1Jr8tfaMAIELG4VoMxret4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.237.60.0/24 Signature Algorithm: sha256WithRSAEncryption 53:29:fb:c8:96:f6:0b:32:66:77:e3:6c:b4:f4:9b:a0:62:1a: f2:27:91:6f:f1:42:89:42:89:17:2f:05:18:22:28:51:06:20: cd:7d:46:81:b6:40:17:44:3f:b0:7f:85:a6:22:5f:0f:cc:8a: ca:a5:1c:96:7e:83:75:2a:48:e8:fc:b6:b7:58:8a:79:88:ec: 3c:3d:30:bb:d4:24:7b:8d:21:ec:90:17:f9:a7:b7:ec:e9:fa: 57:da:5e:17:7b:8c:bf:f1:ef:3d:3c:74:8a:0d:27:0b:2b:6f: 55:0b:46:1b:01:92:9a:88:d9:90:05:0f:84:06:ca:72:37:29: 20:55:57:d9:28:41:d4:10:71:c3:ab:f1:0d:ca:ce:f8:06:3b: 03:af:6e:13:eb:b6:0a:6b:a5:e8:63:0f:0c:e2:86:82:8b:4d: 7f:e1:9d:3d:18:95:b8:dc:bc:92:35:d0:e0:a7:ef:8e:46:fe: 2e:2e:d8:be:48:ef:9d:98:ec:28:ef:18:82:1e:f2:63:7f:67: b3:61:49:9a:1d:41:52:57:a8:4c:df:90:b1:d9:df:6a:31:30: dc:67:41:48:70:65:37:1d:e2:25:03:48:26:4c:ca:37:44:26: 3c:cc:ae:fc:9b:e9:e3:b2:68:82:12:2d:c3:d5:17:d3:ee:49: c7:86:55:35 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pm6lgzIkUns3wpW4pQAbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkYWM4MzBjY2FhNzQ3ODNkZDk2MWZhYjI0MWEyMjhkN2Nj NmY4MDgwHhcNMjYwMTAyMTIxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZTRjZmM5YjUyNmJmMmQ3ZGEzMDAyMDQyYzZlMTVhMGNjNmI3YWRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4kw31+5MgSi58sjTwJ3kllvap/T EHgLtBGvnU/fWcZr30++WnUqAppo6vyiW9w41bnpcxRPsUXAmw5ptXhqhny4lVH+ OjqlNnzfzgKBLVqCszP2pZmiI4ANEXusm7jxK/mV+PWgL5G4ArmfB5/M1hAHumMm GBkhYYUuKiQ1SfTXM6i7yc1dEmG7T/IYu+nErMWCfJe+fH5d+l1oqRAfy3YgDhk0 +djno7UItKECliFkL5RPCtyIYfp5enY1rhZczRJybSn1ZATxT+OaKywc80gQPLIv u5n3a/5Q0FvXw3cbYoPv5DaUPxVS8ousiq70X6I0yOFY3mKTy+6351xJywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE5M/JtSa/LX2jACBCxuFaDMa3reMB8GA1UdIwQY MBaAFK2sgwzKp0eD3ZYfqyQaIo18xvgIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmF5RERNcW5SNFBkbGgtckpCb2lqWHpHLUFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8zMjVjOGQtZDM2OC00ZWVlLTljYTgt OTI5ZjdkNjM1ZjRiLzEvVGt6OG0xSnI4dGZhTUFJRUxHNFZvTXhyZXQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8zMjVjOGQtZDM2OC00ZWVlLTljYTgtOTI5ZjdkNjM1ZjRi LzEvcmF5RERNcW5SNFBkbGgtckpCb2lqWHpHLUFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWe08MA0G CSqGSIb3DQEBCwUAA4IBAQBTKfvIlvYLMmZ342y09JugYhryJ5Fv8UKJQokXLwUY IihRBiDNfUaBtkAXRD+wf4WmIl8PzIrKpRyWfoN1Kkjo/La3WIp5iOw8PTC71CR7 jSHskBf5p7fs6fpX2l4Xe4y/8e89PHSKDScLK29VC0YbAZKaiNmQBQ+EBspyNykg VVfZKEHUEHHDq/ENys74BjsDr24T67YKa6XoYw8M4oaCi01/4Z09GJW43LySNdDg p++ORv4uLti+SO+dmOwo7xiCHvJjf2ezYUmaHUFSV6hM35Cx2d9qMTDcZ0FIcGU3 HeIlA0gmTMo3RCY8zK78m+njsmiCEi3D1RfT7knHhlU1 -----END CERTIFICATE-----Generated at Sat Jan 31 07:24:59 2026 by rpki-client