This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/tLKsS9rHMqeh-IFPdFpCYdg8ROM.roa File: tLKsS9rHMqeh-IFPdFpCYdg8ROM.roa (raw, json) Hash identifier: EG0Tu5j6vFe/p0ZOO6/JOj61PT4A02/SojBmqacBkr0= Subject key identifier: B4:B2:AC:4B:DA:C7:32:A7:A1:F8:81:4F:74:5A:42:61:D8:3C:44:E3 Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63 Certificate serial: 019B7BA50153460846DC59160EE8228DD4C0 Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/tLKsS9rHMqeh-IFPdFpCYdg8ROM.roa Signing time: Thu 01 Jan 2026 22:19:29 +0000 ROA not before: Thu 01 Jan 2026 22:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61317 IP address blocks: 37.148.220.0/23 maxlen: 24 195.191.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.mft rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 07:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:01:53:46:08:46:dc:59:16:0e:e8:22:8d:d4:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63 Validity Not Before: Jan 1 22:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4b2ac4bdac732a7a1f8814f745a4261d83c44e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:20:dd:4c:a5:48:6d:57:99:c6:70:b7:33:0a: 77:09:35:9e:04:24:42:bf:4d:50:4b:c1:67:81:de: 21:cf:b5:c9:16:7c:07:c9:b1:9a:75:bb:3c:e2:be: e0:f6:93:39:cb:04:9d:6f:25:a9:a6:32:b0:91:81: 92:f5:25:7e:7e:ae:31:06:b0:70:51:2d:45:97:b8: 02:50:06:12:ea:0d:81:b2:79:de:86:1c:f8:42:d8: 94:18:cc:e7:26:b1:cb:d8:fd:1a:d3:f5:83:0d:e1: 4c:45:d9:35:34:ac:2e:76:b7:67:60:1f:24:01:f3: 27:eb:57:05:17:99:fb:39:24:0e:5f:05:3c:6f:fb: bd:41:e9:66:3a:ee:f4:20:7f:f5:ce:0a:af:0a:eb: a3:bf:7d:56:96:3f:c6:70:1c:83:f3:a7:30:53:44: 4f:b4:bb:a4:ff:22:fd:4b:67:a6:e8:6d:bd:b8:48: 47:25:c3:9f:e4:16:d4:f7:f9:10:3a:e9:e3:fa:5c: d2:9b:ef:78:84:db:38:b5:a9:06:9b:f2:49:93:cf: 99:98:b4:5e:e0:6d:a5:0e:20:47:24:07:09:1f:6d: b9:03:84:41:a2:d1:43:16:5d:f4:41:89:59:6f:f3: 27:0a:d6:cc:16:00:af:fb:50:28:1a:80:e1:22:43: b5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B2:AC:4B:DA:C7:32:A7:A1:F8:81:4F:74:5A:42:61:D8:3C:44:E3 X509v3 Authority Key Identifier: keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/tLKsS9rHMqeh-IFPdFpCYdg8ROM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.148.220.0/23 195.191.102.0/23 Signature Algorithm: sha256WithRSAEncryption 05:85:5e:b9:a4:6b:0d:33:29:2a:c8:13:8c:eb:3d:6f:ef:65: b3:53:7a:65:e4:24:a1:a2:41:d6:c8:fe:e5:eb:8f:c5:a6:70: 88:b5:f9:0d:20:a9:1c:f5:97:5b:05:da:5d:e9:a4:3c:03:64: bf:bb:52:36:a9:cc:0f:9c:66:fb:3d:bb:6d:00:44:20:e5:aa: f2:35:32:a9:74:c8:81:cd:ab:aa:78:2b:e3:69:64:62:12:9b: 97:99:8e:50:46:8c:fb:c0:ce:77:14:62:2b:ac:0a:2d:a9:7a: 95:93:07:fb:42:ad:8e:6a:60:ef:c6:e4:46:4e:1e:ad:52:de: 60:d7:8a:fd:97:76:38:06:27:30:cd:f6:fb:8b:bf:98:c9:a6: d2:45:6d:b0:72:07:93:09:b2:56:10:53:cd:89:b2:3f:ca:65: 16:2a:fd:ca:e2:42:4e:71:f0:55:8d:28:e9:2b:f8:06:1a:01: 23:4a:88:df:b7:97:49:36:88:80:68:bf:d4:e4:14:fa:d6:92: 1c:2d:0b:3e:cf:5f:75:76:f5:50:d7:fd:06:ad:f7:21:06:6e: 0f:17:39:3c:6d:45:05:75:2b:3f:5d:32:19:ff:20:b8:a1:20: 06:c4:f4:37:4d:56:db:29:d5:5c:dd:93:d4:5e:da:8a:9e:39: 0b:2c:d8:74 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pQFTRghG3FkWDugijdTAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4YjNlZWQxYzdhY2E2MzZkNjI0NTg1MmI4MDJlMGU3Mzc1 NGRmNjMwHhcNMjYwMTAxMjIxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGIyYWM0YmRhYzczMmE3YTFmODgxNGY3NDVhNDI2MWQ4M2M0NGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCDdTKVIbVeZxnC3Mwp3CTWeBCRC v01QS8Fngd4hz7XJFnwHybGadbs84r7g9pM5ywSdbyWppjKwkYGS9SV+fq4xBrBw US1Fl7gCUAYS6g2Bsnnehhz4QtiUGMznJrHL2P0a0/WDDeFMRdk1NKwudrdnYB8k AfMn61cFF5n7OSQOXwU8b/u9QelmOu70IH/1zgqvCuujv31Wlj/GcByD86cwU0RP tLuk/yL9S2em6G29uEhHJcOf5BbU9/kQOunj+lzSm+94hNs4takGm/JJk8+ZmLRe 4G2lDiBHJAcJH225A4RBotFDFl30QYlZb/MnCtbMFgCv+1AoGoDhIkO1TwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLSyrEvaxzKnofiBT3RaQmHYPETjMB8GA1UdIwQY MBaAFOiz7tHHrKY21iRYUrgC4Oc3VN9jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNkxQdTBjZXNwamJXSkZoU3VBTGc1emRVMzJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8xNzczMjktMjhjZC00ODY0LTllMTYt OTQ2NDA0ZWMxYWE0LzEvdExLc1M5ckhNcWVoLUlGUGRGcENZZGc4Uk9NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi8xNzczMjktMjhjZC00ODY0LTllMTYtOTQ2NDA0ZWMxYWE0 LzEvNkxQdTBjZXNwamJXSkZoU3VBTGc1emRVMzJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBJZTcAwQB w79mMA0GCSqGSIb3DQEBCwUAA4IBAQAFhV65pGsNMykqyBOM6z1v72WzU3pl5CSh okHWyP7l64/FpnCItfkNIKkc9ZdbBdpd6aQ8A2S/u1I2qcwPnGb7PbttAEQg5ary NTKpdMiBzauqeCvjaWRiEpuXmY5QRoz7wM53FGIrrAotqXqVkwf7Qq2OamDvxuRG Th6tUt5g14r9l3Y4Bicwzfb7i7+YyabSRW2wcgeTCbJWEFPNibI/ymUWKv3K4kJO cfBVjSjpK/gGGgEjSojft5dJNoiAaL/U5BT61pIcLQs+z191dvVQ1/0GrfchBm4P Fzk8bUUFdSs/XTIZ/yC4oSAGxPQ3TVbbKdVc3ZPUXtqKnjkLLNh0 -----END CERTIFICATE-----Generated at Thu Jan 8 12:59:34 2026 by rpki-client