This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/TSMmdeYlBq7sI2bS37hPDBlOeN8.roa File: TSMmdeYlBq7sI2bS37hPDBlOeN8.roa (raw, json) Hash identifier: CLDfJzK4GBCKFl3cWoBbxFRpkccragNG1vTUCUZkjb8= Subject key identifier: 4D:23:26:75:E6:25:06:AE:EC:23:66:D2:DF:B8:4F:0C:19:4E:78:DF Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Certificate serial: 019B7BA52A8DAEF12DB6430479D37BCA00C3 Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/TSMmdeYlBq7sI2bS37hPDBlOeN8.roa Signing time: Thu 01 Jan 2026 22:19:40 +0000 ROA not before: Thu 01 Jan 2026 22:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12982 IP address blocks: 212.72.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:2a:8d:ae:f1:2d:b6:43:04:79:d3:7b:ca:00:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Validity Not Before: Jan 1 22:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d232675e62506aeec2366d2dfb84f0c194e78df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2b:db:0c:8a:ec:e8:c5:d3:10:bd:37:60:90: f5:12:46:64:57:d5:c8:08:13:14:fb:2d:f3:b8:c8: 9d:91:d9:a0:18:93:ea:42:5f:7b:ce:5d:56:50:96: 5a:3d:17:25:6e:e1:df:96:d3:98:da:9f:9e:80:fe: d0:6d:85:a9:fa:39:3d:3e:d0:0e:3e:df:ba:22:75: 61:5a:23:d4:01:c8:a8:7b:eb:76:ac:55:99:61:97: 57:cf:da:76:16:92:51:e4:b8:d1:4f:c9:63:64:b0: d7:6c:cc:88:c9:21:a8:a1:ce:e2:a6:7a:54:d5:b0: 9c:aa:07:84:28:04:d7:d3:7f:69:05:94:f7:38:46: ee:03:d8:49:a8:6e:ca:3b:e8:4b:ff:b8:17:e3:ba: 91:ca:97:85:5d:9a:46:cc:d0:7d:47:dd:25:20:e2: 5a:f4:c4:ea:08:ed:98:c2:fc:0c:ba:24:90:7b:aa: 33:d7:db:08:28:66:48:e1:59:1e:f1:12:c3:5b:6c: f1:84:07:c3:48:76:35:6e:9f:32:62:22:74:4c:8f: c4:cb:0c:09:40:24:07:a2:c7:57:40:0f:f5:69:78: b6:13:6e:6c:f4:e2:6e:34:8b:75:cd:0a:fa:74:cc: c9:c6:2a:10:74:28:c7:6e:54:e7:3f:99:e8:3b:56: b9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:23:26:75:E6:25:06:AE:EC:23:66:D2:DF:B8:4F:0C:19:4E:78:DF X509v3 Authority Key Identifier: keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/TSMmdeYlBq7sI2bS37hPDBlOeN8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.72.195.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:b6:e8:90:e8:9b:5d:f0:6c:4b:fd:72:c7:af:d3:38:de:49: 59:2a:0e:31:c6:36:4b:d1:14:2a:bb:25:65:e7:ec:55:42:8d: 04:15:d3:13:80:e7:dd:a3:47:b2:0c:b6:b5:5a:ee:ec:27:20: 80:15:f4:e2:87:de:3e:e7:19:3c:a6:72:d6:e4:5e:30:82:ca: 40:20:e8:25:23:34:f7:15:f2:69:bc:8c:25:a5:c7:7f:19:f9: 46:5c:3f:65:fc:70:e7:9f:22:45:92:1e:10:1c:81:28:17:5a: 99:cf:7a:6e:5d:06:5b:ec:12:ae:07:88:58:45:33:2a:69:84: 29:74:14:57:f4:59:27:de:09:e6:49:f3:00:6e:5b:75:74:c9: 4d:27:ec:6d:fa:77:d6:ac:80:2c:54:56:32:d1:23:09:ce:d6: 28:fb:72:02:b2:d1:92:47:50:a7:f9:f9:f5:f8:96:1c:91:d5: c6:18:0f:40:ab:45:e9:da:19:b2:30:57:b8:d1:a0:2a:24:96: a9:14:67:e3:02:14:0b:bc:0d:9a:21:30:70:99:f9:ba:94:cd: 76:65:c6:29:60:1e:38:c2:88:26:b4:00:0c:e5:7d:fb:3f:54: b8:d3:eb:d9:e2:88:93:46:7f:b5:7b:3d:a4:f6:71:a7:26:3c: 35:e1:5b:0c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pSqNrvEttkMEedN7ygDDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4 ZmI0YzQwHhcNMjYwMTAxMjIxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDIzMjY3NWU2MjUwNmFlZWMyMzY2ZDJkZmI4NGYwYzE5NGU3OGRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6CvbDIrs6MXTEL03YJD1EkZkV9XI CBMU+y3zuMidkdmgGJPqQl97zl1WUJZaPRclbuHfltOY2p+egP7QbYWp+jk9PtAO Pt+6InVhWiPUAcioe+t2rFWZYZdXz9p2FpJR5LjRT8ljZLDXbMyIySGooc7ipnpU 1bCcqgeEKATX039pBZT3OEbuA9hJqG7KO+hL/7gX47qRypeFXZpGzNB9R90lIOJa 9MTqCO2YwvwMuiSQe6oz19sIKGZI4Vke8RLDW2zxhAfDSHY1bp8yYiJ0TI/EywwJ QCQHosdXQA/1aXi2E25s9OJuNIt1zQr6dMzJxioQdCjHblTnP5noO1a5pQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE0jJnXmJQau7CNm0t+4TwwZTnjfMB8GA1UdIwQY MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct ODcyYmEyZDlmNDRjLzEvVFNNbWRlWWxCcTdzSTJiUzM3aFBEQmxPZU44LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1EjDMA0G CSqGSIb3DQEBCwUAA4IBAQAvtuiQ6Jtd8GxL/XLHr9M43klZKg4xxjZL0RQquyVl 5+xVQo0EFdMTgOfdo0eyDLa1Wu7sJyCAFfTih94+5xk8pnLW5F4wgspAIOglIzT3 FfJpvIwlpcd/GflGXD9l/HDnnyJFkh4QHIEoF1qZz3puXQZb7BKuB4hYRTMqaYQp dBRX9Fkn3gnmSfMAblt1dMlNJ+xt+nfWrIAsVFYy0SMJztYo+3ICstGSR1Cn+fn1 +JYckdXGGA9Aq0Xp2hmyMFe40aAqJJapFGfjAhQLvA2aITBwmfm6lM12ZcYpYB44 wogmtAAM5X37P1S40+vZ4oiTRn+1ez2k9nGnJjw14VsM -----END CERTIFICATE-----Generated at Mon Jan 26 10:24:58 2026 by rpki-client