This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/1d44f2-1706-4bf1-b71d-74ca36402a85/1/tHbTG3Z27Xxml2LD62IzLQ8NPpA.roa File: tHbTG3Z27Xxml2LD62IzLQ8NPpA.roa (raw, json) Hash identifier: 6FrNp4ihw6Akn84W38Q7cORvrRuZSEma+E+FSzurAL8= Subject key identifier: B4:76:D3:1B:76:76:ED:7C:66:97:62:C3:EB:62:33:2D:0F:0D:3E:90 Certificate issuer: /CN=44131ee936a6fa42ff3af0a6ae86c2c6653dd573 Certificate serial: 019B7BA38D2160F296EDC08635F2BE886429 Authority key identifier: 44:13:1E:E9:36:A6:FA:42:FF:3A:F0:A6:AE:86:C2:C6:65:3D:D5:73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RBMe6Tam-kL_OvCmrobCxmU91XM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/1d44f2-1706-4bf1-b71d-74ca36402a85/1/tHbTG3Z27Xxml2LD62IzLQ8NPpA.roa Signing time: Thu 01 Jan 2026 22:17:54 +0000 ROA not before: Thu 01 Jan 2026 22:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60906 IP address blocks: 193.23.16.0/22 maxlen: 22 193.23.16.0/23 maxlen: 23 193.23.18.0/23 maxlen: 23 2a0f:5680::/32 maxlen: 32 2a0f:5680::/48 maxlen: 48 2a0f:5680:1::/48 maxlen: 48 2a0f:5680:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/1d44f2-1706-4bf1-b71d-74ca36402a85/1/RBMe6Tam-kL_OvCmrobCxmU91XM.crl rsync://rpki.ripe.net/repository/DEFAULT/98/1d44f2-1706-4bf1-b71d-74ca36402a85/1/RBMe6Tam-kL_OvCmrobCxmU91XM.mft rsync://rpki.ripe.net/repository/DEFAULT/RBMe6Tam-kL_OvCmrobCxmU91XM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:8d:21:60:f2:96:ed:c0:86:35:f2:be:88:64:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44131ee936a6fa42ff3af0a6ae86c2c6653dd573 Validity Not Before: Jan 1 22:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b476d31b7676ed7c669762c3eb62332d0f0d3e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f8:8d:30:11:18:05:da:02:69:9c:16:4e:71: 1b:2a:f2:e9:83:cf:6d:38:e0:48:ac:11:92:d2:98: 1b:3a:7a:a9:bb:fd:0c:8a:c8:81:6a:d8:7e:42:0d: 9e:58:6f:23:b5:65:7a:72:c3:a8:ea:d0:db:9e:b2: a5:a2:cf:5a:35:03:53:19:84:9f:71:16:5c:4c:2c: d2:f9:86:41:bc:54:63:9d:b7:1d:12:64:51:fa:39: 2e:73:46:7b:29:f5:d8:5b:86:77:ee:d1:1e:15:0d: 84:d2:31:fd:d2:26:b6:b6:42:af:80:11:6b:c6:52: 29:83:e9:44:d3:51:6e:3f:27:b7:54:ab:42:57:f5: c8:fc:3c:71:7c:09:4e:21:bf:37:9a:50:9e:8b:f6: ef:15:49:5d:35:7e:40:b9:3f:94:00:03:a5:53:98: dc:cc:a0:99:57:92:f8:01:cf:56:9c:42:8f:12:a9: 20:4f:cc:51:34:dd:e4:c8:53:0d:53:2e:4f:f9:62: d8:70:a0:d7:70:92:ff:96:22:6f:87:45:cc:9a:a1: 58:6d:b4:ad:c0:a8:02:3c:95:6b:22:e4:a0:29:9f: 22:4f:31:40:af:76:a1:89:7b:db:d6:fc:69:6b:0e: f3:f8:90:ef:31:46:b3:61:dd:0e:35:a3:7d:84:ff: 76:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:76:D3:1B:76:76:ED:7C:66:97:62:C3:EB:62:33:2D:0F:0D:3E:90 X509v3 Authority Key Identifier: keyid:44:13:1E:E9:36:A6:FA:42:FF:3A:F0:A6:AE:86:C2:C6:65:3D:D5:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RBMe6Tam-kL_OvCmrobCxmU91XM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1d44f2-1706-4bf1-b71d-74ca36402a85/1/tHbTG3Z27Xxml2LD62IzLQ8NPpA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1d44f2-1706-4bf1-b71d-74ca36402a85/1/RBMe6Tam-kL_OvCmrobCxmU91XM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.23.16.0/22 IPv6: 2a0f:5680::/32 Signature Algorithm: sha256WithRSAEncryption 2b:24:d4:ba:8d:a4:9d:cb:1c:78:96:f4:b2:30:31:80:44:e3: 2e:84:32:11:03:4c:93:6a:e4:55:c5:59:d8:45:a9:7f:65:76: 1c:45:16:c4:cc:0b:0c:d7:4d:9f:8b:48:aa:af:f8:a0:72:5a: df:b6:5d:e5:0f:67:42:0e:68:f6:87:8a:2c:98:7a:6b:ca:5f: 4e:2e:dc:10:02:3e:e1:b7:26:e4:95:42:00:20:55:8c:df:89: cc:ae:18:d5:42:93:9a:5c:03:3b:12:0f:56:43:eb:ef:89:66: 1e:9d:93:35:3c:77:6a:e7:b6:aa:3d:44:65:8c:27:65:42:2f: 37:5a:f8:9b:db:6d:22:b1:e6:17:cf:07:ce:48:0e:8b:5b:79: fb:db:2d:a0:38:33:6b:06:aa:6d:65:3f:df:40:53:b0:9f:32: 50:f6:b7:3b:3d:67:77:76:ba:aa:f2:e8:7c:02:6b:f5:c1:60: 78:b4:2c:aa:d0:bd:a0:91:18:b8:b0:ef:a6:94:a4:3c:ee:a7: 7e:ab:0a:99:0e:c2:9f:6c:db:4b:25:ff:00:3d:5c:50:05:d9: 0f:a5:99:7c:dd:33:f3:ae:b3:24:0c:cc:b1:2c:8f:f2:9c:e4: 90:f7:e7:02:7e:2d:14:be:75:b5:2d:1b:63:c0:db:72:f7:47: a7:14:16:b5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7o40hYPKW7cCGNfK+iGQpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0MTMxZWU5MzZhNmZhNDJmZjNhZjBhNmFlODZjMmM2NjUz ZGQ1NzMwHhcNMjYwMTAxMjIxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDc2ZDMxYjc2NzZlZDdjNjY5NzYyYzNlYjYyMzMyZDBmMGQzZTkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArviNMBEYBdoCaZwWTnEbKvLpg89t OOBIrBGS0pgbOnqpu/0MisiBath+Qg2eWG8jtWV6csOo6tDbnrKlos9aNQNTGYSf cRZcTCzS+YZBvFRjnbcdEmRR+jkuc0Z7KfXYW4Z37tEeFQ2E0jH90ia2tkKvgBFr xlIpg+lE01FuPye3VKtCV/XI/DxxfAlOIb83mlCei/bvFUldNX5AuT+UAAOlU5jc zKCZV5L4Ac9WnEKPEqkgT8xRNN3kyFMNUy5P+WLYcKDXcJL/liJvh0XMmqFYbbSt wKgCPJVrIuSgKZ8iTzFAr3ahiXvb1vxpaw7z+JDvMUazYd0ONaN9hP92cQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLR20xt2du18Zpdiw+tiMy0PDT6QMB8GA1UdIwQY MBaAFEQTHuk2pvpC/zrwpq6GwsZlPdVzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkJNZTZUYW0ta0xfT3ZDbXJvYkN4bVU5MVhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC8xZDQ0ZjItMTcwNi00YmYxLWI3MWQt NzRjYTM2NDAyYTg1LzEvdEhiVEczWjI3WHhtbDJMRDYySXpMUThOUHBBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC8xZDQ0ZjItMTcwNi00YmYxLWI3MWQtNzRjYTM2NDAyYTg1 LzEvUkJNZTZUYW0ta0xfT3ZDbXJvYkN4bVU5MVhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCwRcQMA0E AgACMAcDBQAqD1aAMA0GCSqGSIb3DQEBCwUAA4IBAQArJNS6jaSdyxx4lvSyMDGA ROMuhDIRA0yTauRVxVnYRal/ZXYcRRbEzAsM102fi0iqr/igclrftl3lD2dCDmj2 h4osmHpryl9OLtwQAj7htybklUIAIFWM34nMrhjVQpOaXAM7Eg9WQ+vviWYenZM1 PHdq57aqPURljCdlQi83Wvib220iseYXzwfOSA6LW3n72y2gODNrBqptZT/fQFOw nzJQ9rc7PWd3drqq8uh8Amv1wWB4tCyq0L2gkRi4sO+mlKQ87qd+qwqZDsKfbNtL Jf8APVxQBdkPpZl83TPzrrMkDMyxLI/ynOSQ9+cCfi0UvnW1LRtjwNty90enFBa1 -----END CERTIFICATE-----Generated at Mon Feb 9 23:41:38 2026 by rpki-client