This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/TPinzjQGStjo9WplkE5Cz7wKV1E.roa File: TPinzjQGStjo9WplkE5Cz7wKV1E.roa (raw, json) Hash identifier: PHy3g+7P0F5Q3MN1sN50m0Ft2cJh+htWlf3pquiUF5Y= Subject key identifier: 4C:F8:A7:CE:34:06:4A:D8:E8:F5:6A:65:90:4E:42:CF:BC:0A:57:51 Certificate issuer: /CN=aaf1c8dd40884b49f088064d3c100d2a189a8474 Certificate serial: 019BEDF6C1D2161220CFD015C01F1340EED0 Authority key identifier: AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/TPinzjQGStjo9WplkE5Cz7wKV1E.roa Signing time: Sat 24 Jan 2026 03:05:30 +0000 ROA not before: Sat 24 Jan 2026 03:05:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214213 IP address blocks: 185.38.173.0/24 maxlen: 24 2001:35c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ed:f6:c1:d2:16:12:20:cf:d0:15:c0:1f:13:40:ee:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aaf1c8dd40884b49f088064d3c100d2a189a8474 Validity Not Before: Jan 24 03:05:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4cf8a7ce34064ad8e8f56a65904e42cfbc0a5751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:55:32:0d:95:ae:03:1f:5f:7b:66:81:fd:f6: db:b0:89:e6:e4:9d:81:6f:7b:20:7c:e7:00:a8:72: 70:48:d0:e8:d8:9e:75:69:c3:db:44:5f:b5:91:88: 8a:27:22:a1:0a:74:9a:e5:ba:3f:63:02:75:22:e3: 19:3b:73:83:a4:2b:f4:db:f6:c4:1b:d6:b8:98:af: 54:78:7d:a2:fc:9d:ca:0f:44:12:73:24:0e:7b:a6: da:4f:97:2d:87:dd:50:a1:ad:0e:7c:10:30:20:5b: 38:f0:cf:ed:f9:14:50:5c:71:51:3a:75:91:27:39: fd:a8:b0:28:e9:03:c3:59:cf:e4:e6:8d:89:fc:db: 29:83:a5:c9:91:7a:09:3f:07:1f:f4:07:79:66:a1: d5:d3:44:55:73:78:d1:98:47:0f:e1:f0:de:1d:90: d4:97:4f:08:86:99:d7:31:78:5f:ae:24:cc:4a:c8: d9:ac:87:ee:19:0b:ad:c7:e5:8f:a7:6c:28:98:cd: f2:d4:4a:9f:a7:af:d6:5a:b8:f7:71:49:3b:5d:78: 71:ee:d6:06:51:2a:97:ac:ba:a1:81:ff:1f:f2:20: fb:41:0a:d0:7c:9c:7e:5a:a5:fe:63:3b:96:88:d8: e9:dd:cf:4e:6e:68:f1:7d:8d:2c:0d:b5:f5:7b:33: d9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F8:A7:CE:34:06:4A:D8:E8:F5:6A:65:90:4E:42:CF:BC:0A:57:51 X509v3 Authority Key Identifier: keyid:AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/TPinzjQGStjo9WplkE5Cz7wKV1E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.38.173.0/24 IPv6: 2001:35c0::/29 Signature Algorithm: sha256WithRSAEncryption 7d:e7:71:1d:fb:7e:87:94:42:6b:dc:12:bc:6c:3b:c2:c7:be: b0:37:cc:83:db:40:0d:9b:2a:a2:c7:f2:c4:14:9c:7b:ee:5a: a9:c6:07:b1:77:73:94:0f:ab:67:00:e0:22:22:69:68:5e:24: 19:95:21:63:dc:76:9b:bb:18:8e:5f:a9:30:7e:37:73:b2:a4: 40:0d:bf:9e:c7:d4:bb:5b:d3:70:a6:82:c5:86:d9:76:09:47: c7:65:c3:07:8a:e9:0d:53:c1:5e:d6:7c:ef:55:cf:4d:dc:aa: 0f:48:b3:0b:1c:62:67:11:ff:89:30:ff:4b:28:53:df:31:0d: 5e:d9:e6:21:97:0a:a4:52:c8:a2:9c:49:66:a4:91:d5:72:14: b9:da:fe:f2:b4:33:40:5d:db:9c:ab:40:c5:ea:98:6b:76:cb: 48:a3:c8:d8:72:91:ec:20:2e:b6:02:be:4a:01:2f:51:96:bb: 83:d3:df:47:47:e1:13:f6:d5:4c:14:30:d6:ce:04:7d:77:c3: 51:c8:01:16:89:35:e2:2d:46:4b:81:d5:32:19:f5:3b:f3:97: 85:b3:3a:9f:1b:d3:cd:98:4a:47:27:7b:c9:8c:68:76:a5:9a: 1d:d1:b5:55:c8:3c:7b:2e:bf:5b:34:81:52:1f:0f:c1:1f:7a: 10:89:26:2a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZvt9sHSFhIgz9AVwB8TQO7QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhZjFjOGRkNDA4ODRiNDlmMDg4MDY0ZDNjMTAwZDJhMTg5 YTg0NzQwHhcNMjYwMTI0MDMwNTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0Y2Y4YTdjZTM0MDY0YWQ4ZThmNTZhNjU5MDRlNDJjZmJjMGE1NzUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVUyDZWuAx9fe2aB/fbbsInm5J2B b3sgfOcAqHJwSNDo2J51acPbRF+1kYiKJyKhCnSa5bo/YwJ1IuMZO3ODpCv02/bE G9a4mK9UeH2i/J3KD0QScyQOe6baT5cth91Qoa0OfBAwIFs48M/t+RRQXHFROnWR Jzn9qLAo6QPDWc/k5o2J/Nspg6XJkXoJPwcf9Ad5ZqHV00RVc3jRmEcP4fDeHZDU l08IhpnXMXhfriTMSsjZrIfuGQutx+WPp2womM3y1Eqfp6/WWrj3cUk7XXhx7tYG USqXrLqhgf8f8iD7QQrQfJx+WqX+YzuWiNjp3c9ObmjxfY0sDbX1ezPZmwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFEz4p840BkrY6PVqZZBOQs+8CldRMB8GA1UdIwQY MBaAFKrxyN1AiEtJ8IgGTTwQDSoYmoR0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXZISTNVQ0lTMG53aUFaTlBCQU5LaGlhaEhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8zMzkwMGMtZTZjZS00NDRlLWJjOTYt M2IzMzlkMDgxZjgzLzEvVFBpbnpqUUdTdGpvOVdwbGtFNUN6N3dLVjFFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi8zMzkwMGMtZTZjZS00NDRlLWJjOTYtM2IzMzlkMDgxZjgz LzEvcXZISTNVQ0lTMG53aUFaTlBCQU5LaGlhaEhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuSatMA0E AgACMAcDBQMgATXAMA0GCSqGSIb3DQEBCwUAA4IBAQB953Ed+36HlEJr3BK8bDvC x76wN8yD20ANmyqix/LEFJx77lqpxgexd3OUD6tnAOAiImloXiQZlSFj3HabuxiO X6kwfjdzsqRADb+ex9S7W9NwpoLFhtl2CUfHZcMHiukNU8Fe1nzvVc9N3KoPSLML HGJnEf+JMP9LKFPfMQ1e2eYhlwqkUsiinElmpJHVchS52v7ytDNAXducq0DF6phr dstIo8jYcpHsIC62Ar5KAS9RlruD099HR+ET9tVMFDDWzgR9d8NRyAEWiTXiLUZL gdUyGfU785eFszqfG9PNmEpHJ3vJjGh2pZod0bVVyDx7Lr9bNIFSHw/BH3oQiSYq -----END CERTIFICATE-----Generated at Mon Jan 26 16:22:23 2026 by rpki-client