This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/672a2f-ac2b-4631-ab3d-c2bc1451f271/1/taAXT03F3M3JAGdGzCZ9PUX6syw.roa File: taAXT03F3M3JAGdGzCZ9PUX6syw.roa (raw, json) Hash identifier: fgpH3fuH0sJY/Yp9V/TwIQ+R+Yd9bAUVli6dhikUJko= Subject key identifier: B5:A0:17:4F:4D:C5:DC:CD:C9:00:67:46:CC:26:7D:3D:45:FA:B3:2C Certificate issuer: /CN=b5c7d81ec4c4055c673ff571ccad07c3a699105e Certificate serial: 019B7F15B27EB4132C052F6E17EEE501455D Authority key identifier: B5:C7:D8:1E:C4:C4:05:5C:67:3F:F5:71:CC:AD:07:C3:A6:99:10:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tcfYHsTEBVxnP_VxzK0Hw6aZEF4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/672a2f-ac2b-4631-ab3d-c2bc1451f271/1/taAXT03F3M3JAGdGzCZ9PUX6syw.roa Signing time: Fri 02 Jan 2026 14:21:26 +0000 ROA not before: Fri 02 Jan 2026 14:21:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 194.88.150.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/672a2f-ac2b-4631-ab3d-c2bc1451f271/1/tcfYHsTEBVxnP_VxzK0Hw6aZEF4.crl rsync://rpki.ripe.net/repository/DEFAULT/af/672a2f-ac2b-4631-ab3d-c2bc1451f271/1/tcfYHsTEBVxnP_VxzK0Hw6aZEF4.mft rsync://rpki.ripe.net/repository/DEFAULT/tcfYHsTEBVxnP_VxzK0Hw6aZEF4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 08:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:b2:7e:b4:13:2c:05:2f:6e:17:ee:e5:01:45:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5c7d81ec4c4055c673ff571ccad07c3a699105e Validity Not Before: Jan 2 14:21:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b5a0174f4dc5dccdc9006746cc267d3d45fab32c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e1:99:8e:67:b9:44:bc:d5:ef:e8:86:c3:9c: 98:5e:5b:1d:ea:9f:dc:db:b6:e0:f5:4f:79:1f:84: da:40:e5:22:3d:73:6b:c7:08:29:41:34:e8:f8:2c: 22:87:59:a8:54:6f:d1:e5:40:30:2b:7d:52:72:b4: 9d:1a:3c:88:a0:f1:3c:ad:bf:11:a2:e1:54:41:51: 66:5a:5f:56:17:a0:d4:03:15:26:f6:98:15:7e:d9: 28:4a:f6:4e:78:90:60:2f:29:e0:11:87:f9:f8:c5: 68:33:9d:b7:ef:5b:bf:58:97:89:6a:05:a4:d8:ec: fb:3f:29:33:33:99:34:fe:79:cb:fd:75:6f:76:0b: 1e:40:5b:97:de:23:d3:ca:73:a6:34:13:f2:c2:50: 38:42:b8:31:6b:70:f7:07:5d:ab:55:e9:8f:cf:26: db:a6:e6:ca:53:36:f4:0d:08:b7:c4:1c:bc:38:61: 9a:62:5c:86:66:2e:b0:fe:2b:8c:dd:10:8f:95:b6: 4e:82:a2:10:cf:23:2b:8c:08:0a:b3:1a:9f:d5:24: 99:97:1b:aa:e9:72:46:f9:72:47:08:12:dd:da:b6: 57:90:c7:c4:17:dd:52:40:67:74:4f:5e:a6:78:5d: 86:c9:a3:09:5c:51:29:72:3e:94:c1:05:62:41:9b: 8d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:A0:17:4F:4D:C5:DC:CD:C9:00:67:46:CC:26:7D:3D:45:FA:B3:2C X509v3 Authority Key Identifier: keyid:B5:C7:D8:1E:C4:C4:05:5C:67:3F:F5:71:CC:AD:07:C3:A6:99:10:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tcfYHsTEBVxnP_VxzK0Hw6aZEF4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/672a2f-ac2b-4631-ab3d-c2bc1451f271/1/taAXT03F3M3JAGdGzCZ9PUX6syw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/672a2f-ac2b-4631-ab3d-c2bc1451f271/1/tcfYHsTEBVxnP_VxzK0Hw6aZEF4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.88.150.0/23 Signature Algorithm: sha256WithRSAEncryption 38:32:8a:81:6d:fb:d6:73:8d:f7:47:a6:c3:1c:d0:c1:30:20: dd:e6:22:55:e7:3d:88:34:09:4a:9f:83:2e:dd:2f:58:3c:9f: 6b:73:bb:ba:c3:bf:a7:f3:f8:d8:f0:ae:a9:5b:42:e2:48:6a: de:14:3a:40:0c:dd:0e:5a:06:9e:2e:4f:72:47:1d:ed:81:64: 43:f5:77:68:f9:65:73:9b:34:f7:32:5b:67:cc:25:4f:55:c0: 04:16:37:47:e5:7b:1f:f2:20:fe:c7:85:68:58:57:a2:3e:37: ca:0d:d0:41:b9:73:bb:03:a0:fa:a3:60:1c:6e:68:a7:1b:de: 40:3b:04:57:96:54:71:74:36:0f:3d:67:26:23:e1:bc:28:d6: f4:63:13:f8:4c:f6:93:08:13:de:5b:63:82:44:c3:05:4b:07: ba:6d:f3:75:ac:5e:50:35:b1:3b:0e:b5:a1:14:62:76:ca:e5: 91:00:7e:c9:03:cd:f6:b7:b5:7e:45:e7:07:ca:ed:b4:52:82: fd:16:0b:92:95:95:09:1d:3a:50:92:47:14:69:fb:f8:c6:a1: 11:73:fc:08:ca:14:ad:67:93:71:05:6e:ad:44:66:7c:c7:3f: b8:6d:2b:56:f3:4b:cb:f4:2f:b7:d2:16:f2:21:0d:10:41:44: 63:a2:79:b0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FbJ+tBMsBS9uF+7lAUVdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1YzdkODFlYzRjNDA1NWM2NzNmZjU3MWNjYWQwN2MzYTY5 OTEwNWUwHhcNMjYwMTAyMTQyMTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNWEwMTc0ZjRkYzVkY2NkYzkwMDY3NDZjYzI2N2QzZDQ1ZmFiMzJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOGZjme5RLzV7+iGw5yYXlsd6p/c 27bg9U95H4TaQOUiPXNrxwgpQTTo+Cwih1moVG/R5UAwK31ScrSdGjyIoPE8rb8R ouFUQVFmWl9WF6DUAxUm9pgVftkoSvZOeJBgLyngEYf5+MVoM52371u/WJeJagWk 2Oz7PykzM5k0/nnL/XVvdgseQFuX3iPTynOmNBPywlA4Qrgxa3D3B12rVemPzybb pubKUzb0DQi3xBy8OGGaYlyGZi6w/iuM3RCPlbZOgqIQzyMrjAgKsxqf1SSZlxuq 6XJG+XJHCBLd2rZXkMfEF91SQGd0T16meF2GyaMJXFEpcj6UwQViQZuNlwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLWgF09NxdzNyQBnRswmfT1F+rMsMB8GA1UdIwQY MBaAFLXH2B7ExAVcZz/1ccytB8OmmRBeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGNmWUhzVEVCVnhuUF9WeHpLMEh3NmFaRUY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi82NzJhMmYtYWMyYi00NjMxLWFiM2Qt YzJiYzE0NTFmMjcxLzEvdGFBWFQwM0YzTTNKQUdkR3pDWjlQVVg2c3l3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi82NzJhMmYtYWMyYi00NjMxLWFiM2QtYzJiYzE0NTFmMjcx LzEvdGNmWUhzVEVCVnhuUF9WeHpLMEh3NmFaRUY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwliWMA0G CSqGSIb3DQEBCwUAA4IBAQA4MoqBbfvWc433R6bDHNDBMCDd5iJV5z2INAlKn4Mu 3S9YPJ9rc7u6w7+n8/jY8K6pW0LiSGreFDpADN0OWgaeLk9yRx3tgWRD9Xdo+WVz mzT3MltnzCVPVcAEFjdH5Xsf8iD+x4VoWFeiPjfKDdBBuXO7A6D6o2AcbminG95A OwRXllRxdDYPPWcmI+G8KNb0YxP4TPaTCBPeW2OCRMMFSwe6bfN1rF5QNbE7DrWh FGJ2yuWRAH7JA832t7V+RecHyu20UoL9FguSlZUJHTpQkkcUafv4xqERc/wIyhSt Z5NxBW6tRGZ8xz+4bStW80vL9C+30hbyIQ0QQURjonmw -----END CERTIFICATE-----Generated at Fri Jan 9 17:04:36 2026 by rpki-client