This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/taTHP1eAZV5DFgScGmkLmOoYJTk.roa File: taTHP1eAZV5DFgScGmkLmOoYJTk.roa (raw, json) Hash identifier: w4zToqhdyScOj4eQSJZgMvLZqXoAq5qiIOEJ0CUK/zQ= Subject key identifier: B5:A4:C7:3F:57:80:65:5E:43:16:04:9C:1A:69:0B:98:EA:18:25:39 Certificate issuer: /CN=3eb1788fe220e46434692d1cc437072d792d7888 Certificate serial: 019B79ECDAC2F44037C015B39C62325F7DB1 Authority key identifier: 3E:B1:78:8F:E2:20:E4:64:34:69:2D:1C:C4:37:07:2D:79:2D:78:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/taTHP1eAZV5DFgScGmkLmOoYJTk.roa Signing time: Thu 01 Jan 2026 14:18:44 +0000 ROA not before: Thu 01 Jan 2026 14:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204680 IP address blocks: 2a00:139b::/32 maxlen: 32 2a00:139b:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.mft rsync://rpki.ripe.net/repository/DEFAULT/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:da:c2:f4:40:37:c0:15:b3:9c:62:32:5f:7d:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3eb1788fe220e46434692d1cc437072d792d7888 Validity Not Before: Jan 1 14:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b5a4c73f5780655e4316049c1a690b98ea182539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f8:9c:01:e8:a2:ce:32:ad:49:e1:d4:6b:ee: 7d:db:b7:af:b1:c9:12:74:23:18:82:83:3d:ad:a1: 62:2d:86:cd:b3:44:37:03:0b:a5:9b:96:c0:dc:ce: 17:7f:05:8e:09:75:65:88:4d:24:6b:f3:95:a9:21: 82:51:51:cf:99:a0:a8:71:25:14:49:00:23:1d:85: 34:46:7f:3c:1c:eb:ac:e0:50:65:17:e5:db:3f:ff: 5e:f8:9f:f6:7a:a9:bd:fb:3f:b2:0f:9d:ac:de:24: e7:fd:01:eb:72:d2:4b:38:cd:81:6e:2a:8c:98:57: f8:ce:3c:bc:43:0f:0b:62:7b:3a:74:58:10:db:57: d0:d5:7b:c6:57:8c:dd:47:b7:31:3a:62:c5:11:7a: 77:29:77:47:62:f3:b1:88:b8:da:1b:29:89:33:64: b9:69:61:3f:08:28:86:da:85:e2:29:90:d6:6e:fb: c6:de:86:44:36:bd:8a:b5:92:21:cb:75:27:0e:19: 99:24:86:98:c8:c6:ca:e1:b6:c4:74:b6:e7:aa:ef: d8:88:26:df:92:0a:8b:7b:14:19:be:52:27:05:e8: 64:d9:96:11:a7:65:b1:bc:80:2a:48:9d:d1:42:cb: 29:27:74:d8:86:2e:22:99:94:3d:53:74:d1:12:64: 15:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:A4:C7:3F:57:80:65:5E:43:16:04:9C:1A:69:0B:98:EA:18:25:39 X509v3 Authority Key Identifier: keyid:3E:B1:78:8F:E2:20:E4:64:34:69:2D:1C:C4:37:07:2D:79:2D:78:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/taTHP1eAZV5DFgScGmkLmOoYJTk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:139b::/32 Signature Algorithm: sha256WithRSAEncryption 33:25:ed:22:43:fc:8c:cc:ea:7b:a9:f9:c7:6d:4c:b1:d9:26: 75:51:32:f7:70:be:4a:5f:56:a3:ac:38:5e:47:79:ea:2c:7a: 8c:ea:57:e4:05:77:0f:2f:df:58:44:67:26:9c:d1:c3:c5:58: 18:22:40:27:85:39:71:f1:dc:db:ae:d1:46:ad:0c:ad:7f:f6: c3:17:cf:59:29:a5:3f:3a:3c:6e:a0:e7:69:f3:43:3f:95:88: dd:b2:73:c9:c7:4a:f4:b3:52:e9:51:e8:ba:e3:bc:57:42:96: bd:62:c4:f4:f2:37:33:a8:82:e9:ff:26:51:d2:c0:6e:5c:ca: 68:fc:08:58:b2:ab:6e:22:02:83:01:a3:a7:99:c8:ee:f3:b0: 21:6b:8d:be:fa:c8:6e:cd:f8:a4:ca:c7:b1:82:d0:79:f6:96: 2b:de:42:95:40:83:c2:32:2a:1e:c9:b4:cb:31:23:ae:a4:83: b3:0b:fe:d5:c5:f8:65:fa:52:b2:0a:31:76:d9:59:dd:65:74: fe:18:6e:33:36:40:af:14:d7:6a:2a:94:1b:f9:3e:8a:4f:e6: 16:22:93:cb:3c:68:bc:71:96:f4:90:e4:dd:80:78:c1:17:ed: 32:9b:aa:2c:cf:31:3a:43:ed:09:45:cd:18:03:b7:61:b7:e1: ee:4e:7c:a4 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt57NrC9EA3wBWznGIyX32xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlYjE3ODhmZTIyMGU0NjQzNDY5MmQxY2M0MzcwNzJkNzky ZDc4ODgwHhcNMjYwMTAxMTQxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNWE0YzczZjU3ODA2NTVlNDMxNjA0OWMxYTY5MGI5OGVhMTgyNTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvicAeiizjKtSeHUa+5927evsckS dCMYgoM9raFiLYbNs0Q3Awulm5bA3M4XfwWOCXVliE0ka/OVqSGCUVHPmaCocSUU SQAjHYU0Rn88HOus4FBlF+XbP/9e+J/2eqm9+z+yD52s3iTn/QHrctJLOM2BbiqM mFf4zjy8Qw8LYns6dFgQ21fQ1XvGV4zdR7cxOmLFEXp3KXdHYvOxiLjaGymJM2S5 aWE/CCiG2oXiKZDWbvvG3oZENr2KtZIhy3UnDhmZJIaYyMbK4bbEdLbnqu/YiCbf kgqLexQZvlInBehk2ZYRp2WxvIAqSJ3RQsspJ3TYhi4imZQ9U3TREmQVRQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFLWkxz9XgGVeQxYEnBppC5jqGCU5MB8GA1UdIwQY MBaAFD6xeI/iIORkNGktHMQ3By15LXiIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHJGNGotSWc1R1EwYVMwY3hEY0hMWGt0ZUlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8yMmY1NzAtMGIyNi00MDA0LThlZDAt ZDk1MDk0NzMwNzJjLzEvdGFUSFAxZUFaVjVERmdTY0dta0xtT29ZSlRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS8yMmY1NzAtMGIyNi00MDA0LThlZDAtZDk1MDk0NzMwNzJj LzEvUHJGNGotSWc1R1EwYVMwY3hEY0hMWGt0ZUlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgATmzAN BgkqhkiG9w0BAQsFAAOCAQEAMyXtIkP8jMzqe6n5x21MsdkmdVEy93C+Sl9Wo6w4 Xkd56ix6jOpX5AV3Dy/fWERnJpzRw8VYGCJAJ4U5cfHc267RRq0MrX/2wxfPWSml Pzo8bqDnafNDP5WI3bJzycdK9LNS6VHouuO8V0KWvWLE9PI3M6iC6f8mUdLAblzK aPwIWLKrbiICgwGjp5nI7vOwIWuNvvrIbs34pMrHsYLQefaWK95ClUCDwjIqHsm0 yzEjrqSDswv+1cX4ZfpSsgoxdtlZ3WV0/hhuMzZArxTXaiqUG/k+ik/mFiKTyzxo vHGW9JDk3YB4wRftMpuqLM8xOkPtCUXNGAO3Ybfh7k58pA== -----END CERTIFICATE-----Generated at Mon Feb 2 08:07:48 2026 by rpki-client