This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/tR_zS3A481vfOfnyyYvyFxLHia0.roa File: tR_zS3A481vfOfnyyYvyFxLHia0.roa (raw, json) Hash identifier: Qhq0h0WmbkiB7Z075UwkzQfNFRsgPnPMZNA9izf97NA= Subject key identifier: B5:1F:F3:4B:70:38:F3:5B:DF:39:F9:F2:C9:8B:F2:17:12:C7:89:AD Certificate issuer: /CN=f5346d3edbec6da72780722c0a41abeea63661d8 Certificate serial: 019B7C8039143D65DCAFB4EBC7B281CF4F79 Authority key identifier: F5:34:6D:3E:DB:EC:6D:A7:27:80:72:2C:0A:41:AB:EE:A6:36:61:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9TRtPtvsbacngHIsCkGr7qY2Ydg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/tR_zS3A481vfOfnyyYvyFxLHia0.roa Signing time: Fri 02 Jan 2026 02:18:56 +0000 ROA not before: Fri 02 Jan 2026 02:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60044 IP address blocks: 185.57.216.0/22 maxlen: 24 2a04:dec0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/9TRtPtvsbacngHIsCkGr7qY2Ydg.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/9TRtPtvsbacngHIsCkGr7qY2Ydg.mft rsync://rpki.ripe.net/repository/DEFAULT/9TRtPtvsbacngHIsCkGr7qY2Ydg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:39:14:3d:65:dc:af:b4:eb:c7:b2:81:cf:4f:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5346d3edbec6da72780722c0a41abeea63661d8 Validity Not Before: Jan 2 02:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b51ff34b7038f35bdf39f9f2c98bf21712c789ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4a:c9:41:4d:3b:d7:14:05:a1:03:52:89:7c: cd:cd:ed:64:22:d9:e2:08:8f:56:55:03:cb:74:6d: 91:f9:00:a1:a6:30:c2:35:7a:27:3f:90:25:ff:45: c9:7c:6b:a3:76:9b:42:84:38:d9:7d:fb:86:8a:51: 48:9c:17:66:a0:61:59:94:f6:79:f3:36:93:65:cf: fb:03:86:ee:1d:81:5e:fb:87:5a:49:1a:84:0b:73: 4f:58:e8:0b:57:c2:08:35:9b:b6:96:dd:0f:41:26: 20:b8:cd:42:cf:2a:19:ae:2f:a3:49:90:8a:01:46: 18:8d:81:6d:a5:a6:c6:02:b2:66:25:12:86:5c:af: e1:e0:4f:98:be:24:10:89:45:2a:25:db:48:3b:80: 90:eb:ff:c0:48:3f:0e:cb:81:85:e4:10:1d:20:86: 09:10:be:3f:8d:35:a5:e2:7b:26:72:b4:e6:d4:26: 16:59:6a:d3:d5:21:61:13:93:fd:ed:f5:b2:a8:48: bb:17:e8:db:24:32:03:99:14:ba:58:57:92:db:b5: cc:b6:67:1f:6e:09:f2:dc:c1:2c:b2:c3:31:10:8b: 09:76:54:4e:ab:51:10:fd:6f:e4:2e:3b:bf:bd:b8: f5:5c:78:91:3c:d7:b7:18:00:d7:e7:98:da:e9:d7: 56:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:1F:F3:4B:70:38:F3:5B:DF:39:F9:F2:C9:8B:F2:17:12:C7:89:AD X509v3 Authority Key Identifier: keyid:F5:34:6D:3E:DB:EC:6D:A7:27:80:72:2C:0A:41:AB:EE:A6:36:61:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9TRtPtvsbacngHIsCkGr7qY2Ydg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/tR_zS3A481vfOfnyyYvyFxLHia0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/be8064-9e11-461a-936d-fa70bd90e894/1/9TRtPtvsbacngHIsCkGr7qY2Ydg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.57.216.0/22 IPv6: 2a04:dec0::/29 Signature Algorithm: sha256WithRSAEncryption 46:76:1b:ed:b2:c0:c2:bf:ef:97:6b:8a:2f:2c:3e:b5:69:02: fb:ab:63:56:79:f4:fb:cf:00:20:7b:54:0e:4f:48:5b:72:06: 5d:70:dd:fd:3b:26:44:fc:eb:a8:fe:e3:6d:67:01:f1:26:5b: fe:41:08:22:1c:f4:b8:2e:9e:3f:75:40:9f:f4:be:43:39:b4: 1f:fe:d6:7f:b4:b7:23:5e:67:2c:1e:ce:e2:73:fd:1b:67:f6: 6d:57:6f:ca:7e:71:70:80:a4:18:f5:41:f6:86:63:41:b5:68: 76:af:b7:ae:5d:7d:ec:bb:7d:71:db:71:9e:d1:97:86:ab:04: e1:23:1c:e9:6e:81:a7:95:01:94:67:38:26:7a:af:2a:22:ed: 7a:4c:19:5d:77:62:e1:57:58:a9:38:8a:b8:47:11:e9:f7:23: 51:92:11:28:29:c8:d7:e6:e4:a1:8d:98:ee:19:f3:58:ad:34: e8:83:77:a0:e2:48:9e:1b:0a:fd:de:f0:d4:b5:f3:a1:41:4e: 89:e1:7d:04:aa:ed:6f:50:fd:54:5e:b2:fb:1f:95:c8:81:e6: 7e:66:da:d6:e8:bf:b7:33:5f:d1:21:20:7f:57:57:09:07:a2: f7:27:80:d8:86:23:90:84:76:52:06:23:b4:c2:0f:07:51:e5: 59:ae:d9:52 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8gDkUPWXcr7Trx7KBz095MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1MzQ2ZDNlZGJlYzZkYTcyNzgwNzIyYzBhNDFhYmVlYTYz NjYxZDgwHhcNMjYwMTAyMDIxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTFmZjM0YjcwMzhmMzViZGYzOWY5ZjJjOThiZjIxNzEyYzc4OWFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA10rJQU071xQFoQNSiXzNze1kItni CI9WVQPLdG2R+QChpjDCNXonP5Al/0XJfGujdptChDjZffuGilFInBdmoGFZlPZ5 8zaTZc/7A4buHYFe+4daSRqEC3NPWOgLV8IINZu2lt0PQSYguM1CzyoZri+jSZCK AUYYjYFtpabGArJmJRKGXK/h4E+YviQQiUUqJdtIO4CQ6//ASD8Oy4GF5BAdIIYJ EL4/jTWl4nsmcrTm1CYWWWrT1SFhE5P97fWyqEi7F+jbJDIDmRS6WFeS27XMtmcf bgny3MEsssMxEIsJdlROq1EQ/W/kLju/vbj1XHiRPNe3GADX55ja6ddWwQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLUf80twOPNb3zn58smL8hcSx4mtMB8GA1UdIwQY MBaAFPU0bT7b7G2nJ4ByLApBq+6mNmHYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOVRSdFB0dnNiYWNuZ0hJc0NrR3I3cVkyWWRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9iZTgwNjQtOWUxMS00NjFhLTkzNmQt ZmE3MGJkOTBlODk0LzEvdFJfelMzQTQ4MXZmT2ZueXlZdnlGeExIaWEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi9iZTgwNjQtOWUxMS00NjFhLTkzNmQtZmE3MGJkOTBlODk0 LzEvOVRSdFB0dnNiYWNuZ0hJc0NrR3I3cVkyWWRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTnYMA0E AgACMAcDBQMqBN7AMA0GCSqGSIb3DQEBCwUAA4IBAQBGdhvtssDCv++Xa4ovLD61 aQL7q2NWefT7zwAge1QOT0hbcgZdcN39OyZE/Ouo/uNtZwHxJlv+QQgiHPS4Lp4/ dUCf9L5DObQf/tZ/tLcjXmcsHs7ic/0bZ/ZtV2/KfnFwgKQY9UH2hmNBtWh2r7eu XX3su31x23Ge0ZeGqwThIxzpboGnlQGUZzgmeq8qIu16TBldd2LhV1ipOIq4RxHp 9yNRkhEoKcjX5uShjZjuGfNYrTTog3eg4kieGwr93vDUtfOhQU6J4X0Equ1vUP1U XrL7H5XIgeZ+ZtrW6L+3M1/RISB/V1cJB6L3J4DYhiOQhHZSBiO0wg8HUeVZrtlS -----END CERTIFICATE-----Generated at Tue Feb 10 03:11:14 2026 by rpki-client