This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/TB2uobnUVymGTH4RA03gIOhAZRg.roa File: TB2uobnUVymGTH4RA03gIOhAZRg.roa (raw, json) Hash identifier: 6oz05ThoSNjSotd8Y3/7ZJcBXHZDvJhujoU9Z+4I/C0= Subject key identifier: 4C:1D:AE:A1:B9:D4:57:29:86:4C:7E:11:03:4D:E0:20:E8:40:65:18 Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901 Certificate serial: 019B7A5B7E9CC079FA126937B718A83D98FB Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/TB2uobnUVymGTH4RA03gIOhAZRg.roa Signing time: Thu 01 Jan 2026 16:19:35 +0000 ROA not before: Thu 01 Jan 2026 16:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212862 IP address blocks: 91.205.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.mft rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:7e:9c:c0:79:fa:12:69:37:b7:18:a8:3d:98:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901 Validity Not Before: Jan 1 16:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4c1daea1b9d45729864c7e11034de020e8406518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7b:b3:8c:10:e5:0f:a2:17:16:18:4d:5a:35: e2:53:3e:37:2b:aa:70:74:c8:84:e2:69:d5:f6:ca: 6f:66:34:fd:12:29:a9:d8:ec:ce:b3:5a:c8:cb:99: 17:35:1c:34:89:ab:16:f3:ed:ad:47:47:c4:93:27: 6b:ac:00:de:ad:be:df:fc:b6:f2:35:f7:ab:60:ea: b5:b3:27:52:02:db:2b:d0:1a:fd:e6:08:46:2a:35: 5a:3a:10:82:06:30:34:7f:3c:c9:50:47:2d:7f:86: 5d:f8:99:ad:83:87:f4:ea:53:ae:ae:27:d1:04:1a: 00:d1:a7:c3:dc:c2:84:3c:68:8c:ef:b0:a3:ed:ed: f9:64:40:07:8c:6b:f0:92:01:46:b5:49:78:90:f3: 49:6d:ab:85:2c:b3:4d:8a:4d:7b:5b:a5:c3:9d:12: eb:ec:d6:2d:d3:7a:fb:4d:8b:88:17:74:82:10:47: a2:0c:0b:33:0a:c6:72:03:e2:bf:13:ef:a8:d8:f4: 4b:f5:0d:47:d2:2c:0a:a9:0b:8f:54:30:f0:51:3f: 6c:e1:15:b1:2a:0c:11:0c:1d:53:21:41:47:9c:8e: 6e:96:49:95:57:ac:b1:4b:eb:fa:12:0a:60:51:ed: 66:0c:81:97:bd:5a:13:2d:df:99:f6:00:6c:a0:c4: 62:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1D:AE:A1:B9:D4:57:29:86:4C:7E:11:03:4D:E0:20:E8:40:65:18 X509v3 Authority Key Identifier: keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/TB2uobnUVymGTH4RA03gIOhAZRg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.205.220.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:88:f4:15:4c:42:5e:28:11:90:14:6e:6a:9a:12:fa:32:46: 8f:19:a7:bc:11:f0:a5:29:47:80:da:50:12:3f:d4:33:f6:75: 8e:69:ec:7b:d9:12:97:8d:0e:4b:f7:03:a3:05:36:e0:99:56: 68:72:b2:b7:c6:3f:70:b7:0a:6a:a5:94:27:ba:14:a0:67:23: 64:b9:30:ad:2a:6a:da:53:18:5e:93:0c:90:54:64:50:40:ab: 56:dd:dc:e2:67:61:08:9e:94:ab:4d:0d:4c:63:a1:7a:0b:22: bb:cd:4c:32:af:f8:dc:0c:ef:5a:86:9b:36:8d:6c:66:ab:0c: 14:26:d9:b7:4a:72:df:f9:23:86:cb:8f:10:b7:51:22:a8:99: b0:b7:28:86:8e:4d:5b:fb:34:1e:14:82:da:9a:c7:b3:7a:02: d5:a0:09:fb:f5:0b:30:cd:9b:1c:ee:81:93:f8:fa:2d:0f:1f: 5d:ca:e5:43:6b:bd:58:6b:2c:27:e7:6d:0b:03:41:06:7a:bc: 16:1f:f4:c4:8f:1f:d3:8d:d9:2a:ee:5b:a3:2d:ff:49:7c:32: 6f:6e:7f:6d:d4:19:25:cd:8a:ad:21:6c:61:c4:13:e9:da:1f: e0:67:98:aa:bd:c6:4a:44:ea:fa:48:bb:dd:01:1b:7c:a0:ed: f7:de:00:9d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W36cwHn6Emk3txioPZj7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhYmExMTcyNDcyZWE4MDI2NWQxMjk4Mjk2N2RlMGE4YjBi YzU5MDEwHhcNMjYwMTAxMTYxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YzFkYWVhMWI5ZDQ1NzI5ODY0YzdlMTEwMzRkZTAyMGU4NDA2NTE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2nuzjBDlD6IXFhhNWjXiUz43K6pw dMiE4mnV9spvZjT9Eimp2OzOs1rIy5kXNRw0iasW8+2tR0fEkydrrADerb7f/Lby NferYOq1sydSAtsr0Br95ghGKjVaOhCCBjA0fzzJUEctf4Zd+Jmtg4f06lOurifR BBoA0afD3MKEPGiM77Cj7e35ZEAHjGvwkgFGtUl4kPNJbauFLLNNik17W6XDnRLr 7NYt03r7TYuIF3SCEEeiDAszCsZyA+K/E++o2PRL9Q1H0iwKqQuPVDDwUT9s4RWx KgwRDB1TIUFHnI5ulkmVV6yxS+v6EgpgUe1mDIGXvVoTLd+Z9gBsoMRiYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEwdrqG51Fcphkx+EQNN4CDoQGUYMB8GA1UdIwQY MBaAFDq6EXJHLqgCZdEpgpZ94KiwvFkBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3JvUmNrY3VxQUpsMFNtQ2xuM2dxTEM4V1FFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My83YjFjNTUtZGRkMC00MjgxLTgzNzgt NGRkMDQzNDZhYmMzLzEvVEIydW9iblVWeW1HVEg0UkEwM2dJT2hBWlJnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My83YjFjNTUtZGRkMC00MjgxLTgzNzgtNGRkMDQzNDZhYmMz LzEvT3JvUmNrY3VxQUpsMFNtQ2xuM2dxTEM4V1FFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW83cMA0G CSqGSIb3DQEBCwUAA4IBAQBOiPQVTEJeKBGQFG5qmhL6MkaPGae8EfClKUeA2lAS P9Qz9nWOaex72RKXjQ5L9wOjBTbgmVZocrK3xj9wtwpqpZQnuhSgZyNkuTCtKmra UxhekwyQVGRQQKtW3dziZ2EInpSrTQ1MY6F6CyK7zUwyr/jcDO9ahps2jWxmqwwU Jtm3SnLf+SOGy48Qt1EiqJmwtyiGjk1b+zQeFILamsezegLVoAn79QswzZsc7oGT +PotDx9dyuVDa71Yaywn520LA0EGerwWH/TEjx/Tjdkq7lujLf9JfDJvbn9t1Bkl zYqtIWxhxBPp2h/gZ5iqvcZKROr6SLvdARt8oO333gCd -----END CERTIFICATE-----Generated at Sat Jan 3 03:02:51 2026 by rpki-client