This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/042951-54d8-469c-bba1-a6546cd9da94/1/TNsH8ORuG4M2WxCLcjLbXlHGM-4.roa File: TNsH8ORuG4M2WxCLcjLbXlHGM-4.roa (raw, json) Hash identifier: 9o4sji++/DGEugsQB9IJvE/BvkiRj/BVLAkPHsTMQs0= Subject key identifier: 4C:DB:07:F0:E4:6E:1B:83:36:5B:10:8B:72:32:DB:5E:51:C6:33:EE Certificate issuer: /CN=3dc410e3f09bea6abc9dd8c6ff4185651b0ab867 Certificate serial: 019B7E37DFB20CE384E17D353224726FE265 Authority key identifier: 3D:C4:10:E3:F0:9B:EA:6A:BC:9D:D8:C6:FF:41:85:65:1B:0A:B8:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PcQQ4_Cb6mq8ndjG_0GFZRsKuGc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/042951-54d8-469c-bba1-a6546cd9da94/1/TNsH8ORuG4M2WxCLcjLbXlHGM-4.roa Signing time: Fri 02 Jan 2026 10:19:09 +0000 ROA not before: Fri 02 Jan 2026 10:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 680 IP address blocks: 134.30.0.0/16 maxlen: 16 193.149.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/042951-54d8-469c-bba1-a6546cd9da94/1/PcQQ4_Cb6mq8ndjG_0GFZRsKuGc.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/042951-54d8-469c-bba1-a6546cd9da94/1/PcQQ4_Cb6mq8ndjG_0GFZRsKuGc.mft rsync://rpki.ripe.net/repository/DEFAULT/PcQQ4_Cb6mq8ndjG_0GFZRsKuGc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:df:b2:0c:e3:84:e1:7d:35:32:24:72:6f:e2:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3dc410e3f09bea6abc9dd8c6ff4185651b0ab867 Validity Not Before: Jan 2 10:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4cdb07f0e46e1b83365b108b7232db5e51c633ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:e8:41:f1:65:ec:3e:c8:5b:df:c9:d7:07:da: 56:07:f1:9b:2c:9d:46:ee:a8:25:1e:fd:5b:24:54: 82:78:6b:13:b9:97:e3:e4:88:d1:0a:0c:4a:bd:25: b7:b5:2b:5b:7d:f3:76:0a:27:bc:d1:f2:d8:83:c0: a1:5e:a1:cb:55:40:67:1d:50:89:a3:51:d6:df:eb: d1:97:7c:a8:8f:dc:53:1a:cf:86:59:a7:b1:47:06: 2f:0c:38:74:03:75:7c:e7:49:28:2b:71:bb:b4:43: 37:06:84:59:fe:5a:26:2c:df:12:1b:ca:4d:78:1a: b8:74:4c:88:0e:e4:3e:39:df:5e:84:c4:c9:79:f7: 2f:6b:c5:8c:0d:1f:81:10:ce:7d:5c:41:1c:54:38: 66:71:c7:b4:1d:b6:1b:dc:9f:ca:4f:5b:11:03:9b: 94:da:0c:46:b0:9b:b8:f6:1f:a0:43:c7:04:c3:96: c3:06:e4:14:3c:24:d6:1b:9b:8a:da:50:b4:c3:6c: ca:a4:81:b6:60:fa:38:a9:5d:3e:ff:91:cc:d1:8b: c9:b3:90:18:e6:35:d1:23:95:af:6b:66:33:60:91: 27:cc:be:78:9a:ae:87:9f:c6:0c:61:36:0d:d7:91: 74:73:35:c5:3e:53:15:e7:8e:30:ad:bf:d6:e5:8e: 54:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:DB:07:F0:E4:6E:1B:83:36:5B:10:8B:72:32:DB:5E:51:C6:33:EE X509v3 Authority Key Identifier: keyid:3D:C4:10:E3:F0:9B:EA:6A:BC:9D:D8:C6:FF:41:85:65:1B:0A:B8:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PcQQ4_Cb6mq8ndjG_0GFZRsKuGc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/042951-54d8-469c-bba1-a6546cd9da94/1/TNsH8ORuG4M2WxCLcjLbXlHGM-4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/042951-54d8-469c-bba1-a6546cd9da94/1/PcQQ4_Cb6mq8ndjG_0GFZRsKuGc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.30.0.0/16 193.149.8.0/21 Signature Algorithm: sha256WithRSAEncryption 5a:a3:d1:71:f3:64:f4:09:7e:74:0b:d9:d2:a3:0c:ec:3a:1b: 9c:03:61:bd:4b:9a:53:c3:8a:b3:47:e2:19:35:57:63:ec:20: 02:c8:90:b7:8b:7e:a1:6d:f8:6d:7c:b9:f2:02:b2:86:f4:9c: af:c9:55:34:09:ae:65:bb:e4:0b:4a:78:d5:be:f5:b8:27:89: 43:4f:fb:22:28:32:79:f9:93:fb:03:bc:8c:41:f8:63:5e:25: d6:66:53:6f:08:6d:4e:3e:ec:f9:94:7b:b6:0d:87:f9:80:e4: d3:df:52:d5:58:c3:17:01:26:cd:30:c3:c3:25:c7:c1:3e:59: 1f:7a:89:bb:40:89:fa:02:5b:ee:13:b4:72:26:c8:37:1d:e1: 20:bf:65:d4:43:04:43:32:8d:86:2e:63:22:dc:e8:1f:02:cc: fb:98:5c:52:9d:bf:a7:5c:63:e4:fa:c9:31:78:22:c5:60:9c: 14:6b:ce:a3:53:af:45:fb:56:37:b0:4f:0f:ea:6d:fd:05:fa: ed:61:5a:08:01:a3:b1:0c:83:15:8d:48:b5:45:d7:1c:af:a1: 54:e5:15:80:dd:46:44:b3:c8:2f:90:48:0e:bd:12:4f:64:08: 5a:9e:c8:c2:a5:b9:5a:3e:92:bf:c1:fd:ed:e9:4b:3f:b4:36: b0:bf:4f:05 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgISAZt+N9+yDOOE4X01MiRyb+JlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkYzQxMGUzZjA5YmVhNmFiYzlkZDhjNmZmNDE4NTY1MWIw YWI4NjcwHhcNMjYwMTAyMTAxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0Y2RiMDdmMGU0NmUxYjgzMzY1YjEwOGI3MjMyZGI1ZTUxYzYzM2VlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjuhB8WXsPshb38nXB9pWB/GbLJ1G 7qglHv1bJFSCeGsTuZfj5IjRCgxKvSW3tStbffN2Cie80fLYg8ChXqHLVUBnHVCJ o1HW3+vRl3yoj9xTGs+GWaexRwYvDDh0A3V850koK3G7tEM3BoRZ/lomLN8SG8pN eBq4dEyIDuQ+Od9ehMTJefcva8WMDR+BEM59XEEcVDhmcce0HbYb3J/KT1sRA5uU 2gxGsJu49h+gQ8cEw5bDBuQUPCTWG5uK2lC0w2zKpIG2YPo4qV0+/5HM0YvJs5AY 5jXRI5Wva2YzYJEnzL54mq6Hn8YMYTYN15F0czXFPlMV544wrb/W5Y5U9wIDAQAB o4ICDjCCAgowHQYDVR0OBBYEFEzbB/DkbhuDNlsQi3Iy215RxjPuMB8GA1UdIwQY MBaAFD3EEOPwm+pqvJ3Yxv9BhWUbCrhnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGNRUTRfQ2I2bXE4bmRqR18wR0ZaUnNLdUdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8wNDI5NTEtNTRkOC00NjljLWJiYTEt YTY1NDZjZDlkYTk0LzEvVE5zSDhPUnVHNE0yV3hDTGNqTGJYbEhHTS00LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC8wNDI5NTEtNTRkOC00NjljLWJiYTEtYTY1NDZjZDlkYTk0 LzEvUGNRUTRfQ2I2bXE4bmRqR18wR0ZaUnNLdUdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAATALAwMAhh4DBAPB lQgwDQYJKoZIhvcNAQELBQADggEBAFqj0XHzZPQJfnQL2dKjDOw6G5wDYb1LmlPD irNH4hk1V2PsIALIkLeLfqFt+G18ufICsob0nK/JVTQJrmW75AtKeNW+9bgniUNP +yIoMnn5k/sDvIxB+GNeJdZmU28IbU4+7PmUe7YNh/mA5NPfUtVYwxcBJs0ww8Ml x8E+WR96ibtAifoCW+4TtHImyDcd4SC/ZdRDBEMyjYYuYyLc6B8CzPuYXFKdv6dc Y+T6yTF4IsVgnBRrzqNTr0X7VjewTw/qbf0F+u1hWggBo7EMgxWNSLVF1xyvoVTl FYDdRkSzyC+QSA69Ek9kCFqeyMKluVo+kr/B/e3pSz+0NrC/TwU= -----END CERTIFICATE-----Generated at Tue Jan 27 11:25:38 2026 by rpki-client