This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/936806-bb6d-45f3-8837-c50734d020f0/1/tI5rZ2OkW-tqnmPYZ_XEde1g-_c.roa File: tI5rZ2OkW-tqnmPYZ_XEde1g-_c.roa (raw, json) Hash identifier: wfc7uwTsNdE3QVJnENIdl7HtSGoVTLNa8OFvwh5hQ/o= Subject key identifier: B4:8E:6B:67:63:A4:5B:EB:6A:9E:63:D8:67:F5:C4:75:ED:60:FB:F7 Certificate issuer: /CN=6aa6f9e3e2622a7815a259e58d552439c255a31b Certificate serial: 019B78A3250B98A92326ED278048025B0FC4 Authority key identifier: 6A:A6:F9:E3:E2:62:2A:78:15:A2:59:E5:8D:55:24:39:C2:55:A3:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aqb54-JiKngVolnljVUkOcJVoxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/936806-bb6d-45f3-8837-c50734d020f0/1/tI5rZ2OkW-tqnmPYZ_XEde1g-_c.roa Signing time: Thu 01 Jan 2026 08:18:36 +0000 ROA not before: Thu 01 Jan 2026 08:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9121 IP address blocks: 185.157.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/936806-bb6d-45f3-8837-c50734d020f0/1/aqb54-JiKngVolnljVUkOcJVoxs.crl rsync://rpki.ripe.net/repository/DEFAULT/99/936806-bb6d-45f3-8837-c50734d020f0/1/aqb54-JiKngVolnljVUkOcJVoxs.mft rsync://rpki.ripe.net/repository/DEFAULT/aqb54-JiKngVolnljVUkOcJVoxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:25:0b:98:a9:23:26:ed:27:80:48:02:5b:0f:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6aa6f9e3e2622a7815a259e58d552439c255a31b Validity Not Before: Jan 1 08:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b48e6b6763a45beb6a9e63d867f5c475ed60fbf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6d:e4:f3:1a:55:b5:db:84:06:7b:dd:31:2d: e4:8a:d6:a9:bc:22:02:1d:50:95:35:de:cc:66:65: 76:8f:45:04:c0:2c:66:32:96:ff:44:fe:31:de:03: ad:5d:86:69:23:a7:2c:cc:7a:36:28:31:bf:b8:b7: 06:6c:bd:60:1e:36:01:23:27:4f:18:21:d3:13:33: ba:b7:c1:91:a4:77:c8:6c:5e:fa:d6:c2:c6:d2:cd: 89:26:8f:05:73:ed:2a:88:54:8f:fc:a7:6b:f5:95: 6c:61:5d:7c:ba:a7:36:93:ee:d6:d6:6c:a4:92:11: 71:da:3b:9a:2e:71:c4:8c:8d:e6:64:6a:e5:cd:f9: bd:de:73:d9:8d:2e:2f:8b:dc:e6:d0:2a:5d:4e:ca: e2:f9:8c:9d:5b:0f:3b:20:5e:4e:db:aa:c7:e7:be: e6:c1:80:51:7a:3b:bb:99:ea:ed:9e:50:f0:6c:3e: b4:ea:27:1e:c6:b7:4e:d6:c9:20:e4:0d:17:10:32: 5f:ce:6a:b4:75:3a:d3:83:0e:43:d5:64:a4:18:a4: 97:a7:7c:36:5d:92:d5:bb:97:6e:8e:16:01:cd:b4: 25:47:a7:57:2a:45:d9:b3:af:f7:5a:8c:ca:40:b0: 69:c4:c6:06:ec:b2:77:1f:06:a5:42:09:38:be:98: f3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:8E:6B:67:63:A4:5B:EB:6A:9E:63:D8:67:F5:C4:75:ED:60:FB:F7 X509v3 Authority Key Identifier: keyid:6A:A6:F9:E3:E2:62:2A:78:15:A2:59:E5:8D:55:24:39:C2:55:A3:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqb54-JiKngVolnljVUkOcJVoxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/936806-bb6d-45f3-8837-c50734d020f0/1/tI5rZ2OkW-tqnmPYZ_XEde1g-_c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/936806-bb6d-45f3-8837-c50734d020f0/1/aqb54-JiKngVolnljVUkOcJVoxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.157.204.0/24 Signature Algorithm: sha256WithRSAEncryption 70:33:34:7a:6f:e5:2a:9d:27:b2:44:ab:f9:d4:e5:fc:20:ef: 1c:bf:89:18:97:54:01:6d:a5:50:a2:2f:16:3c:75:a2:65:40: 9d:25:14:46:54:08:66:a5:67:e3:01:c5:62:4b:55:09:31:fd: e9:ff:24:01:d8:b8:b9:34:8f:10:8a:95:da:13:b9:02:f0:8d: 4b:cf:49:ec:d0:8c:5e:6a:ed:4a:20:89:4f:f9:38:04:25:51: 04:d2:90:a3:6f:43:8c:d6:82:94:98:db:57:71:08:60:c6:82: c4:ee:91:a4:19:74:80:70:e2:e0:bf:4e:ea:df:49:d0:0e:a5: c4:fd:a7:67:41:5a:08:27:8f:9b:33:82:b8:d0:46:57:3c:e5: f3:ef:e9:53:2e:78:86:1b:b8:97:2e:ca:a0:42:02:2b:62:96: 10:b8:bc:ba:d7:d1:67:e4:8d:c2:7a:de:b3:c0:dd:aa:94:02: 05:5a:d5:8c:fc:74:32:33:bb:e2:a4:a2:cc:83:19:8c:1a:5d: 82:4d:f5:6d:fc:68:09:69:2f:4a:4e:b9:08:87:ce:87:24:ad: 8e:c5:2f:80:3e:9a:a9:32:30:33:86:76:00:38:72:70:20:b5: 64:f7:17:9e:3a:4e:af:73:c2:9b:8e:72:11:9f:9d:94:16:9a: e5:04:d3:33 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oyULmKkjJu0ngEgCWw/EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhYTZmOWUzZTI2MjJhNzgxNWEyNTllNThkNTUyNDM5YzI1 NWEzMWIwHhcNMjYwMTAxMDgxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDhlNmI2NzYzYTQ1YmViNmE5ZTYzZDg2N2Y1YzQ3NWVkNjBmYmY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuG3k8xpVtduEBnvdMS3kitapvCIC HVCVNd7MZmV2j0UEwCxmMpb/RP4x3gOtXYZpI6cszHo2KDG/uLcGbL1gHjYBIydP GCHTEzO6t8GRpHfIbF761sLG0s2JJo8Fc+0qiFSP/Kdr9ZVsYV18uqc2k+7W1myk khFx2juaLnHEjI3mZGrlzfm93nPZjS4vi9zm0CpdTsri+YydWw87IF5O26rH577m wYBReju7mertnlDwbD606icexrdO1skg5A0XEDJfzmq0dTrTgw5D1WSkGKSXp3w2 XZLVu5dujhYBzbQlR6dXKkXZs6/3WozKQLBpxMYG7LJ3HwalQgk4vpjz5QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLSOa2djpFvrap5j2Gf1xHXtYPv3MB8GA1UdIwQY MBaAFGqm+ePiYip4FaJZ5Y1VJDnCVaMbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXFiNTQtSmlLbmdWb2xubGpWVWtPY0pWb3hzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS85MzY4MDYtYmI2ZC00NWYzLTg4Mzct YzUwNzM0ZDAyMGYwLzEvdEk1cloyT2tXLXRxbm1QWVpfWEVkZTFnLV9jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS85MzY4MDYtYmI2ZC00NWYzLTg4MzctYzUwNzM0ZDAyMGYw LzEvYXFiNTQtSmlLbmdWb2xubGpWVWtPY0pWb3hzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZ3MMA0G CSqGSIb3DQEBCwUAA4IBAQBwMzR6b+UqnSeyRKv51OX8IO8cv4kYl1QBbaVQoi8W PHWiZUCdJRRGVAhmpWfjAcViS1UJMf3p/yQB2Li5NI8QipXaE7kC8I1Lz0ns0Ixe au1KIIlP+TgEJVEE0pCjb0OM1oKUmNtXcQhgxoLE7pGkGXSAcOLgv07q30nQDqXE /adnQVoIJ4+bM4K40EZXPOXz7+lTLniGG7iXLsqgQgIrYpYQuLy619Fn5I3Cet6z wN2qlAIFWtWM/HQyM7vipKLMgxmMGl2CTfVt/GgJaS9KTrkIh86HJK2OxS+APpqp MjAzhnYAOHJwILVk9xeeOk6vc8KbjnIRn52UFprlBNMz -----END CERTIFICATE-----Generated at Wed Jan 21 13:19:09 2026 by rpki-client