This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/TIY8spYuz89Qegyi3StS0IPa_iQ.roa File: TIY8spYuz89Qegyi3StS0IPa_iQ.roa (raw, json) Hash identifier: wCtJzewPBMHhIEbN1jjOYehN3mb3xuj07QlMDoDL3UA= Subject key identifier: 4C:86:3C:B2:96:2E:CF:CF:50:7A:0C:A2:DD:2B:52:D0:83:DA:FE:24 Certificate issuer: /CN=a6f13d680ce480591bf8b37ddca0faeb3bbe744e Certificate serial: 019B7B363A7B32BA5212996C193473D85140 Authority key identifier: A6:F1:3D:68:0C:E4:80:59:1B:F8:B3:7D:DC:A0:FA:EB:3B:BE:74:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pvE9aAzkgFkb-LN93KD66zu-dE4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/TIY8spYuz89Qegyi3StS0IPa_iQ.roa Signing time: Thu 01 Jan 2026 20:18:30 +0000 ROA not before: Thu 01 Jan 2026 20:18:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33915 IP address blocks: 31.136.0.0/14 maxlen: 14 62.72.192.0/19 maxlen: 19 62.140.128.0/20 maxlen: 20 62.140.140.0/23 maxlen: 23 62.140.156.0/23 maxlen: 23 109.32.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/pvE9aAzkgFkb-LN93KD66zu-dE4.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/pvE9aAzkgFkb-LN93KD66zu-dE4.mft rsync://rpki.ripe.net/repository/DEFAULT/pvE9aAzkgFkb-LN93KD66zu-dE4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:3a:7b:32:ba:52:12:99:6c:19:34:73:d8:51:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6f13d680ce480591bf8b37ddca0faeb3bbe744e Validity Not Before: Jan 1 20:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4c863cb2962ecfcf507a0ca2dd2b52d083dafe24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:42:7b:19:c5:60:4d:19:ff:25:0b:3b:25:a1: 0d:6d:81:d2:7c:31:f0:01:9f:ff:af:0f:bb:fe:1a: bc:ca:a0:61:9e:fc:d6:78:7a:a2:f6:9f:a5:c7:91: 9f:85:3f:07:71:0e:09:71:d2:09:9d:79:ef:a3:9c: 7a:ce:c1:f3:ed:a9:b6:64:9d:b2:3f:80:7f:d5:ce: e5:61:ec:5f:e3:2d:23:c4:46:37:32:13:62:cc:aa: f0:db:c7:ff:b4:6c:21:ab:c7:55:78:ee:81:99:7c: 4c:d9:60:f1:09:4b:b7:e0:07:b0:99:00:11:8c:06: 13:5c:46:d3:1d:a9:57:e4:dd:47:d4:e2:0f:b8:5c: 75:f9:8a:a3:00:bb:dd:82:8a:59:01:ff:da:10:c0: 63:0f:46:7c:14:f2:75:15:39:df:53:e1:c9:1f:85: 44:57:20:a9:bc:39:88:41:09:e5:b3:50:4f:b8:60: 1e:4a:ab:01:73:76:91:31:64:1d:5e:af:76:27:38: a0:19:2c:e8:b4:78:1b:03:d6:c6:c1:c0:c7:08:c5: 6f:ed:f8:64:c5:7a:12:9f:eb:48:2e:7b:9b:aa:78: 35:bb:ae:ec:6a:32:6f:96:08:de:8f:d4:ed:51:9c: 93:ce:9c:57:d1:67:9c:47:b4:17:76:9f:03:30:01: c2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:86:3C:B2:96:2E:CF:CF:50:7A:0C:A2:DD:2B:52:D0:83:DA:FE:24 X509v3 Authority Key Identifier: keyid:A6:F1:3D:68:0C:E4:80:59:1B:F8:B3:7D:DC:A0:FA:EB:3B:BE:74:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pvE9aAzkgFkb-LN93KD66zu-dE4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/TIY8spYuz89Qegyi3StS0IPa_iQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/pvE9aAzkgFkb-LN93KD66zu-dE4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.136.0.0/14 62.72.192.0/19 62.140.128.0/20 62.140.156.0/23 109.32.0.0/13 Signature Algorithm: sha256WithRSAEncryption 5f:42:54:cb:10:39:7f:8d:88:e2:db:16:db:97:e2:b0:8a:86: cf:03:75:88:eb:d9:0a:03:18:62:2b:d5:be:5f:98:8e:20:29: 3f:b9:82:20:3c:f4:5e:f3:4b:73:9e:74:70:53:29:a3:32:d9: b2:bf:46:f0:8f:b8:59:b4:aa:7f:96:b0:a8:52:1d:6a:de:93: e1:86:45:4e:f4:3c:fe:73:db:13:21:94:35:84:91:e2:74:30: 7f:a1:c8:6f:16:5c:f7:97:44:9d:6b:aa:ec:af:31:b4:92:cc: 18:39:61:99:d5:e0:ac:35:1c:3f:38:35:bd:7a:3b:96:44:0c: 0f:3e:12:f6:a1:10:ee:28:d2:ee:dc:4a:1a:e4:83:0c:d6:26: a4:43:f3:e8:6c:04:2b:71:1f:05:e8:e5:94:14:c1:42:28:b1: 4d:2f:b1:07:b7:a6:90:69:b3:5d:fe:3f:a6:08:b8:af:29:7e: ba:ef:9f:74:f4:c1:b1:31:48:6b:12:95:ab:cd:b9:f4:82:ef: 23:69:da:bf:00:fc:b4:8c:f2:a8:24:b0:1f:4e:58:f1:b3:66: 5d:1c:a7:e1:96:f3:58:41:77:52:0c:17:53:90:a4:8b:06:ff: f3:13:cc:e1:0f:df:45:02:06:15:82:74:56:28:18:ac:00:66: ca:03:c2:9e -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgISAZt7Njp7MrpSEplsGTRz2FFAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2ZjEzZDY4MGNlNDgwNTkxYmY4YjM3ZGRjYTBmYWViM2Ji ZTc0NGUwHhcNMjYwMTAxMjAxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0Yzg2M2NiMjk2MmVjZmNmNTA3YTBjYTJkZDJiNTJkMDgzZGFmZTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskJ7GcVgTRn/JQs7JaENbYHSfDHw AZ//rw+7/hq8yqBhnvzWeHqi9p+lx5GfhT8HcQ4JcdIJnXnvo5x6zsHz7am2ZJ2y P4B/1c7lYexf4y0jxEY3MhNizKrw28f/tGwhq8dVeO6BmXxM2WDxCUu34AewmQAR jAYTXEbTHalX5N1H1OIPuFx1+YqjALvdgopZAf/aEMBjD0Z8FPJ1FTnfU+HJH4VE VyCpvDmIQQnls1BPuGAeSqsBc3aRMWQdXq92JzigGSzotHgbA9bGwcDHCMVv7fhk xXoSn+tILnubqng1u67sajJvlgjej9TtUZyTzpxX0WecR7QXdp8DMAHCCwIDAQAB o4ICHzCCAhswHQYDVR0OBBYEFEyGPLKWLs/PUHoMot0rUtCD2v4kMB8GA1UdIwQY MBaAFKbxPWgM5IBZG/izfdyg+us7vnROMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHZFOWFBemtnRmtiLUxOOTNLRDY2enUtZEU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ZDFiMDItYjBmOS00ZTBlLWE0NTct MzBiZGI0OGRhNTIxLzEvVElZOHNwWXV6ODlRZWd5aTNTdFMwSVBhX2lRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy84ZDFiMDItYjBmOS00ZTBlLWE0NTctMzBiZGI0OGRhNTIx LzEvcHZFOWFBemtnRmtiLUxOOTNLRDY2enUtZEU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAATAcAwMCH4gDBAU+ SMADBAQ+jIADBAE+jJwDAwNtIDANBgkqhkiG9w0BAQsFAAOCAQEAX0JUyxA5f42I 4tsW25fisIqGzwN1iOvZCgMYYivVvl+YjiApP7mCIDz0XvNLc550cFMpozLZsr9G 8I+4WbSqf5awqFIdat6T4YZFTvQ8/nPbEyGUNYSR4nQwf6HIbxZc95dEnWuq7K8x tJLMGDlhmdXgrDUcPzg1vXo7lkQMDz4S9qEQ7ijS7txKGuSDDNYmpEPz6GwEK3Ef BejllBTBQiixTS+xB7emkGmzXf4/pgi4ryl+uu+fdPTBsTFIaxKVq8259ILvI2na vwD8tIzyqCSwH05Y8bNmXRyn4ZbzWEF3UgwXU5Ckiwb/8xPM4Q/fRQIGFYJ0VigY rABmygPCng== -----END CERTIFICATE-----Generated at Mon Jan 26 22:36:16 2026 by rpki-client