This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/tMB9T63h2AxVcnmEC9Clmh4Mxz4.roa File: tMB9T63h2AxVcnmEC9Clmh4Mxz4.roa (raw, json) Hash identifier: eRDKuNR9g7wHqomVYtVjkOxig97ycGQqLwRrNuKvQAY= Subject key identifier: B4:C0:7D:4F:AD:E1:D8:0C:55:72:79:84:0B:D0:A5:9A:1E:0C:C7:3E Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Certificate serial: 019B7AC8C13FE4FE9969FC1318C94CF0C9A0 Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/tMB9T63h2AxVcnmEC9Clmh4Mxz4.roa Signing time: Thu 01 Jan 2026 18:18:55 +0000 ROA not before: Thu 01 Jan 2026 18:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34073 IP address blocks: 81.198.73.0/24 maxlen: 24 81.198.192.0/22 maxlen: 24 81.198.194.0/24 maxlen: 24 87.110.220.0/24 maxlen: 24 87.110.221.0/24 maxlen: 24 87.246.172.0/24 maxlen: 24 94.100.10.0/24 maxlen: 24 2a02:2330:b2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:c1:3f:e4:fe:99:69:fc:13:18:c9:4c:f0:c9:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Validity Not Before: Jan 1 18:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4c07d4fade1d80c557279840bd0a59a1e0cc73e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e8:e1:7c:3c:56:7f:4d:db:f0:75:2e:aa:fa: 79:ec:a7:ad:58:10:4d:48:c5:7d:32:c9:76:d4:e0: 2e:08:4c:97:1b:ed:90:db:27:5b:fc:8d:69:0a:a7: 4d:f1:1d:05:78:1a:ed:fa:6c:52:3e:9f:91:47:a0: 2e:a1:d0:81:a9:88:ac:94:63:e4:68:ca:df:47:fe: f4:04:3b:55:b8:42:95:05:3d:66:93:50:a7:86:0d: c5:52:cc:d9:71:d8:70:55:d2:4d:14:ac:86:ae:82: 3b:cd:e7:19:33:1f:db:2e:ab:e2:7c:62:c7:da:d7: 80:fb:0c:f5:ca:72:30:f4:0c:1d:fb:3e:09:54:4b: c4:c7:ce:ab:a9:63:6d:c6:b4:1e:6a:32:e7:85:e0: 6c:f1:56:bb:ac:cf:19:12:60:57:19:68:ff:d1:81: 46:37:70:a6:8f:15:7f:98:a2:63:34:29:af:47:0b: d6:09:bc:a5:68:96:1f:db:1b:32:f4:54:51:af:98: 7a:ba:97:13:e3:9c:49:57:e0:68:c0:5c:dd:c6:d8: 75:19:c1:83:fe:be:94:66:8e:9c:57:83:fa:60:62: 22:f7:d5:c1:0c:54:65:03:ac:34:b8:16:33:96:e3: 54:13:d1:0d:d9:8f:8f:e2:80:8b:bc:06:f6:33:18: 6c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C0:7D:4F:AD:E1:D8:0C:55:72:79:84:0B:D0:A5:9A:1E:0C:C7:3E X509v3 Authority Key Identifier: keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/tMB9T63h2AxVcnmEC9Clmh4Mxz4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.198.73.0/24 81.198.192.0/22 87.110.220.0/23 87.246.172.0/24 94.100.10.0/24 IPv6: 2a02:2330:b2::/48 Signature Algorithm: sha256WithRSAEncryption 3e:53:a3:94:cb:5b:67:af:f1:4b:41:b3:6b:fd:68:64:29:b6: f5:25:36:3f:a1:40:74:d1:14:72:5c:fd:76:64:0c:87:13:4f: d5:a2:fc:e9:8b:70:3b:b0:3a:5d:5b:e1:8b:50:d4:60:0c:bb: 43:61:7d:d7:4d:cc:b8:1c:42:b0:c8:01:ef:65:15:50:79:b8: f5:d1:a0:e7:f5:87:4e:ca:d6:b9:5f:7e:49:b1:be:a0:66:9a: 32:ac:66:6f:a1:e1:e5:f7:06:b3:5b:62:da:52:27:48:c3:a7: 36:d1:8d:7b:9f:42:f4:eb:df:36:cd:45:ed:5c:19:5f:ef:4e: 0e:9f:e1:c5:3f:41:3b:74:3d:48:2a:ab:ea:71:52:31:3c:cf: 90:e9:6d:90:1e:f6:e2:9a:c3:f4:0f:59:a9:da:90:1e:52:17: 63:31:2d:db:d1:16:d9:23:48:af:5e:95:4c:f4:2b:e7:4d:a2: 2b:fb:66:c5:36:b8:26:31:60:a1:8b:24:e9:7b:5b:cf:02:93: 6d:9e:75:a3:61:87:b7:b5:8e:27:38:32:8a:3e:bb:d1:19:01: 82:ea:4d:29:97:a9:ee:1c:04:bd:d5:45:1e:7d:48:af:99:18: e7:7a:ea:c4:7e:62:83:fa:ac:6f:40:c9:47:86:ea:0c:ee:9a: 71:fb:ec:25 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt6yME/5P6ZafwTGMlM8MmgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzYmUwN2NiMWZkNGYxZTNjOTIyMzAzYjY3MGE4ODFiODJl NjE0OTEwHhcNMjYwMTAxMTgxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGMwN2Q0ZmFkZTFkODBjNTU3Mjc5ODQwYmQwYTU5YTFlMGNjNzNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8ujhfDxWf03b8HUuqvp57KetWBBN SMV9Msl21OAuCEyXG+2Q2ydb/I1pCqdN8R0FeBrt+mxSPp+RR6AuodCBqYislGPk aMrfR/70BDtVuEKVBT1mk1Cnhg3FUszZcdhwVdJNFKyGroI7zecZMx/bLqvifGLH 2teA+wz1ynIw9Awd+z4JVEvEx86rqWNtxrQeajLnheBs8Va7rM8ZEmBXGWj/0YFG N3CmjxV/mKJjNCmvRwvWCbylaJYf2xsy9FRRr5h6upcT45xJV+BowFzdxth1GcGD /r6UZo6cV4P6YGIi99XBDFRlA6w0uBYzluNUE9EN2Y+P4oCLvAb2Mxhs0wIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFLTAfU+t4dgMVXJ5hAvQpZoeDMc+MB8GA1UdIwQY MBaAFOO+B8sf1PHjySIwO2cKiBuC5hSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMt ZDRlZTFkMzg5ZTBkLzEvdE1COVQ2M2gyQXhWY25tRUM5Q2xtaDRNeHo0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMtZDRlZTFkMzg5ZTBk LzEvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAkBAIAATAeAwQAUcZJAwQC UcbAAwQBV27cAwQAV/asAwQAXmQKMA8EAgACMAkDBwAqAiMwALIwDQYJKoZIhvcN AQELBQADggEBAD5To5TLW2ev8UtBs2v9aGQptvUlNj+hQHTRFHJc/XZkDIcTT9Wi /OmLcDuwOl1b4YtQ1GAMu0NhfddNzLgcQrDIAe9lFVB5uPXRoOf1h07K1rlffkmx vqBmmjKsZm+h4eX3BrNbYtpSJ0jDpzbRjXufQvTr3zbNRe1cGV/vTg6f4cU/QTt0 PUgqq+pxUjE8z5DpbZAe9uKaw/QPWanakB5SF2MxLdvRFtkjSK9elUz0K+dNoiv7 ZsU2uCYxYKGLJOl7W88Ck22edaNhh7e1jic4Moo+u9EZAYLqTSmXqe4cBL3VRR59 SK+ZGOd66sR+YoP6rG9AyUeG6gzumnH77CU= -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:31 2026 by rpki-client