This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/TCmTK7NJX8puhN8to4156UZz-78.roa File: TCmTK7NJX8puhN8to4156UZz-78.roa (raw, json) Hash identifier: U1wNw1BCYDW5bA+bL2oNFTORSfPO4Pns6r2IGFi4l/I= Subject key identifier: 4C:29:93:2B:B3:49:5F:CA:6E:84:DF:2D:A3:8D:79:E9:46:73:FB:BF Certificate issuer: /CN=b607604501de3609768c5ba7c4cca9c56b61f9d5 Certificate serial: 019AB69BD3D5180C126D69BD1F7DF24A5DFC Authority key identifier: B6:07:60:45:01:DE:36:09:76:8C:5B:A7:C4:CC:A9:C5:6B:61:F9:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgdgRQHeNgl2jFunxMypxWth-dU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/TCmTK7NJX8puhN8to4156UZz-78.roa Signing time: Mon 24 Nov 2025 16:04:16 +0000 ROA not before: Mon 24 Nov 2025 16:04:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 400818 IP address blocks: 2a05:b0c7:1800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/tgdgRQHeNgl2jFunxMypxWth-dU.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/tgdgRQHeNgl2jFunxMypxWth-dU.mft rsync://rpki.ripe.net/repository/DEFAULT/tgdgRQHeNgl2jFunxMypxWth-dU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 29 Nov 2025 01:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b6:9b:d3:d5:18:0c:12:6d:69:bd:1f:7d:f2:4a:5d:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b607604501de3609768c5ba7c4cca9c56b61f9d5 Validity Not Before: Nov 24 16:04:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4c29932bb3495fca6e84df2da38d79e94673fbbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c4:45:52:b5:46:97:cb:e3:e4:b7:96:5b:c6: f8:9e:4f:df:44:e1:65:6d:3f:f7:90:5f:68:52:c9: 79:88:9d:f0:37:08:e0:5f:7d:fc:cc:a6:5b:cd:dc: 88:fb:03:e3:76:a3:5d:cc:bb:00:64:db:cb:a5:72: d3:4f:da:67:54:fb:1e:e0:0f:89:8f:12:61:e0:79: ec:fd:62:b1:6b:06:54:20:95:99:89:fb:b2:27:82: d2:30:52:8f:ba:2c:4e:6f:be:23:5a:e6:62:5a:a7: 1f:35:58:1a:a9:4b:77:48:8e:1a:10:a0:04:3a:c5: 38:d3:67:0e:9b:eb:d6:ea:c7:25:83:64:3d:b8:b0: ba:da:c7:22:8b:fe:dc:6e:96:9c:35:38:e0:11:5a: dd:09:50:80:40:0c:26:73:9d:4f:bd:dd:0c:d7:1e: 00:7a:e2:08:93:d3:ff:97:39:66:c3:cb:ec:2c:b9: 20:8e:8d:52:9e:e7:4b:59:ee:a6:9a:46:11:69:e6: 50:35:6a:b3:48:54:41:79:cb:1a:6a:a6:37:65:fd: 66:5e:c2:6f:8e:6f:a6:ee:e3:12:ad:b1:63:c4:a0: e5:d7:ab:c8:76:47:f6:90:b5:13:b2:af:21:97:dc: e8:ea:79:04:86:a3:a8:6e:32:fd:e0:e6:d3:47:db: 53:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:29:93:2B:B3:49:5F:CA:6E:84:DF:2D:A3:8D:79:E9:46:73:FB:BF X509v3 Authority Key Identifier: keyid:B6:07:60:45:01:DE:36:09:76:8C:5B:A7:C4:CC:A9:C5:6B:61:F9:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgdgRQHeNgl2jFunxMypxWth-dU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/TCmTK7NJX8puhN8to4156UZz-78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/d0f619-b2d3-4422-a618-b9dd51082655/1/tgdgRQHeNgl2jFunxMypxWth-dU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:b0c7:1800::/48 Signature Algorithm: sha256WithRSAEncryption 64:cf:d5:d5:ee:b1:6c:c4:ba:07:16:53:f6:99:e1:c9:f4:f9: b2:9f:dd:5e:f6:28:de:d4:be:28:aa:ca:68:27:21:18:38:d1: 6d:f3:b7:3e:de:08:e5:94:ed:aa:98:c0:00:00:d1:93:29:9c: 35:dc:5f:8e:4d:0a:2c:a1:e2:6b:67:dc:e4:cf:47:15:68:87: 88:b0:82:22:4a:28:69:ce:17:1d:6a:1c:61:24:8d:75:df:52: b9:2b:ed:48:45:f3:b0:02:79:32:1e:3c:69:94:4d:0a:12:54: 5f:a5:0d:93:d8:cb:0e:62:4b:6a:c0:52:c2:76:ca:51:3e:49: 78:c4:fc:98:80:24:0f:de:3c:02:6d:d2:72:2c:3f:f9:f5:78: 41:a7:a2:78:de:93:2a:81:32:85:b9:a1:bc:32:09:91:73:67: 6b:c2:c6:37:8b:09:f3:8f:2c:12:ad:6a:af:09:11:1a:74:cd: fd:34:c0:4f:39:95:04:fc:41:1c:10:a2:9b:3e:f6:dd:2d:92: 81:cf:a7:d2:c5:eb:e7:fa:34:f0:fd:80:f6:74:53:26:7f:6f: 3a:28:23:e8:d6:00:04:35:92:89:cd:5d:f0:13:67:b7:48:a6: bd:73:9a:1d:5f:20:e7:c0:df:52:cd:42:54:69:be:d9:e9:ba: e4:66:4c:a0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZq2m9PVGAwSbWm9H33ySl38MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2MDc2MDQ1MDFkZTM2MDk3NjhjNWJhN2M0Y2NhOWM1NmI2 MWY5ZDUwHhcNMjUxMTI0MTYwNDE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YzI5OTMyYmIzNDk1ZmNhNmU4NGRmMmRhMzhkNzllOTQ2NzNmYmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8RFUrVGl8vj5LeWW8b4nk/fROFl bT/3kF9oUsl5iJ3wNwjgX338zKZbzdyI+wPjdqNdzLsAZNvLpXLTT9pnVPse4A+J jxJh4Hns/WKxawZUIJWZifuyJ4LSMFKPuixOb74jWuZiWqcfNVgaqUt3SI4aEKAE OsU402cOm+vW6sclg2Q9uLC62scii/7cbpacNTjgEVrdCVCAQAwmc51Pvd0M1x4A euIIk9P/lzlmw8vsLLkgjo1SnudLWe6mmkYRaeZQNWqzSFRBecsaaqY3Zf1mXsJv jm+m7uMSrbFjxKDl16vIdkf2kLUTsq8hl9zo6nkEhqOobjL94ObTR9tTLwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFEwpkyuzSV/KboTfLaONeelGc/u/MB8GA1UdIwQY MBaAFLYHYEUB3jYJdoxbp8TMqcVrYfnVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGdkZ1JRSGVOZ2wyakZ1bnhNeXB4V3RoLWRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9kMGY2MTktYjJkMy00NDIyLWE2MTgt YjlkZDUxMDgyNjU1LzEvVENtVEs3TkpYOHB1aE44dG80MTU2VVp6LTc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9kMGY2MTktYjJkMy00NDIyLWE2MTgtYjlkZDUxMDgyNjU1 LzEvdGdkZ1JRSGVOZ2wyakZ1bnhNeXB4V3RoLWRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgWwxxgA MA0GCSqGSIb3DQEBCwUAA4IBAQBkz9XV7rFsxLoHFlP2meHJ9Pmyn91e9ije1L4o qspoJyEYONFt87c+3gjllO2qmMAAANGTKZw13F+OTQosoeJrZ9zkz0cVaIeIsIIi SihpzhcdahxhJI1131K5K+1IRfOwAnkyHjxplE0KElRfpQ2T2MsOYktqwFLCdspR Pkl4xPyYgCQP3jwCbdJyLD/59XhBp6J43pMqgTKFuaG8MgmRc2drwsY3iwnzjywS rWqvCREadM39NMBPOZUE/EEcEKKbPvbdLZKBz6fSxevn+jTw/YD2dFMmf286KCPo 1gAENZKJzV3wE2e3SKa9c5odXyDnwN9SzUJUab7Z6brkZkyg -----END CERTIFICATE-----Generated at Fri Nov 28 08:34:40 2025 by rpki-client