This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/2a55cf-ce4a-498d-bcd7-d8cfe591dd9e/1/TZjBq4odAN7upelKgfu1RPB63zo.roa File: TZjBq4odAN7upelKgfu1RPB63zo.roa (raw, json) Hash identifier: bR7hMvq2zyGR+w9kpTZrW9dDTe7aMsxdA/NdBaV269g= Subject key identifier: 4D:98:C1:AB:8A:1D:00:DE:EE:A5:E9:4A:81:FB:B5:44:F0:7A:DF:3A Certificate issuer: /CN=ce08fe33a5f0ba0b286253505bbfb293220f5816 Certificate serial: 019B7DCB360661093AF7C1FD0103C7EB48E5 Authority key identifier: CE:08:FE:33:A5:F0:BA:0B:28:62:53:50:5B:BF:B2:93:22:0F:58:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zgj-M6XwugsoYlNQW7-ykyIPWBY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/2a55cf-ce4a-498d-bcd7-d8cfe591dd9e/1/TZjBq4odAN7upelKgfu1RPB63zo.roa Signing time: Fri 02 Jan 2026 08:20:28 +0000 ROA not before: Fri 02 Jan 2026 08:20:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28985 IP address blocks: 195.47.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/2a55cf-ce4a-498d-bcd7-d8cfe591dd9e/1/zgj-M6XwugsoYlNQW7-ykyIPWBY.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/2a55cf-ce4a-498d-bcd7-d8cfe591dd9e/1/zgj-M6XwugsoYlNQW7-ykyIPWBY.mft rsync://rpki.ripe.net/repository/DEFAULT/zgj-M6XwugsoYlNQW7-ykyIPWBY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:36:06:61:09:3a:f7:c1:fd:01:03:c7:eb:48:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce08fe33a5f0ba0b286253505bbfb293220f5816 Validity Not Before: Jan 2 08:20:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d98c1ab8a1d00deeea5e94a81fbb544f07adf3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7e:15:cc:bb:f6:48:02:26:fb:d0:f7:32:d5: 3b:bd:7f:07:96:56:26:53:28:7f:91:88:1b:2f:7d: 7e:3a:a7:9f:29:83:22:2e:e3:9d:14:32:ef:d9:1c: 7d:d6:46:eb:50:af:ab:d1:21:9a:84:12:a3:db:bc: 75:a0:d2:80:26:1b:67:af:d5:50:a0:e7:8f:c3:de: bd:ce:5e:b8:56:d9:8e:03:45:0b:11:5a:1c:4b:be: fc:ef:b5:d6:0b:98:bf:95:3e:61:00:a3:19:85:3b: ee:e8:6e:32:95:25:22:bc:47:6d:f2:3f:f2:4b:0a: ca:ed:4b:28:65:05:cb:68:ce:6c:94:5d:c6:38:13: b1:19:a7:1b:55:5c:f7:c5:40:50:cd:ab:33:b2:ad: 7f:f5:89:e5:6e:86:b7:91:47:cc:2c:94:e9:d8:92: 9c:a4:0e:9c:55:05:68:6a:80:f0:59:fd:cc:05:bf: 74:c7:b8:85:1f:aa:30:11:37:2b:2e:01:91:8d:a3: 19:83:6b:a7:31:3c:04:2d:3b:f0:6e:91:61:7f:5d: 14:bd:3e:29:ed:35:b5:ef:1b:63:e1:85:94:db:d5: 72:81:82:f3:dc:34:f2:a9:8d:ea:3a:38:90:e6:1f: 35:0f:e5:1f:c3:58:9d:6d:bc:8e:8b:48:9f:79:3d: 06:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:98:C1:AB:8A:1D:00:DE:EE:A5:E9:4A:81:FB:B5:44:F0:7A:DF:3A X509v3 Authority Key Identifier: keyid:CE:08:FE:33:A5:F0:BA:0B:28:62:53:50:5B:BF:B2:93:22:0F:58:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zgj-M6XwugsoYlNQW7-ykyIPWBY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/2a55cf-ce4a-498d-bcd7-d8cfe591dd9e/1/TZjBq4odAN7upelKgfu1RPB63zo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/2a55cf-ce4a-498d-bcd7-d8cfe591dd9e/1/zgj-M6XwugsoYlNQW7-ykyIPWBY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.47.211.0/24 Signature Algorithm: sha256WithRSAEncryption a7:1c:66:35:5e:f7:ac:26:e0:30:9e:21:e3:5c:ee:09:34:74: a8:b3:99:91:2f:0a:05:bb:e7:60:bf:ea:e7:ea:bd:a2:26:a7: 1b:b3:58:88:9f:45:4d:46:50:85:cc:91:f7:ea:1a:2e:fa:68: ca:46:9c:6d:57:4d:0a:2e:33:92:bf:e6:88:9a:72:1b:56:e2: 38:9e:19:8e:7f:a9:95:2a:e5:bc:ef:2d:83:39:59:2e:40:14: 49:30:34:80:2b:d4:82:a4:8a:ac:8f:cb:1f:8d:b5:fa:d0:06: 71:08:76:e5:b4:d0:2f:94:e0:8d:59:1c:5d:4e:14:86:c1:08: 40:90:02:f4:15:01:05:81:f1:87:4f:9a:f3:ad:2b:23:ce:0e: 74:d1:86:77:4c:19:a8:dd:36:de:12:ff:ce:09:c2:0d:94:70: f6:aa:e4:6a:6a:06:c6:ca:b0:2a:af:49:d9:6e:a8:ad:2b:44: b3:fd:07:7a:77:f6:75:9e:4a:70:a6:c3:f3:2f:07:4e:51:1e: d0:7d:fe:07:3c:57:bf:b9:d9:b1:2c:ac:fe:d9:43:6e:4a:6d: ed:e7:63:ae:0a:c5:c0:16:9e:8a:1a:58:e0:34:ba:15:2b:b0: f2:85:db:94:05:b7:16:eb:8b:0b:dc:40:d1:66:32:e1:f8:0e: 19:3a:31:4c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yzYGYQk698H9AQPH60jlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlMDhmZTMzYTVmMGJhMGIyODYyNTM1MDViYmZiMjkzMjIw ZjU4MTYwHhcNMjYwMTAyMDgyMDI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDk4YzFhYjhhMWQwMGRlZWVhNWU5NGE4MWZiYjU0NGYwN2FkZjNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwn4VzLv2SAIm+9D3MtU7vX8HllYm Uyh/kYgbL31+OqefKYMiLuOdFDLv2Rx91kbrUK+r0SGahBKj27x1oNKAJhtnr9VQ oOePw969zl64VtmOA0ULEVocS77877XWC5i/lT5hAKMZhTvu6G4ylSUivEdt8j/y SwrK7UsoZQXLaM5slF3GOBOxGacbVVz3xUBQzaszsq1/9Ynlboa3kUfMLJTp2JKc pA6cVQVoaoDwWf3MBb90x7iFH6owETcrLgGRjaMZg2unMTwELTvwbpFhf10UvT4p 7TW17xtj4YWU29VygYLz3DTyqY3qOjiQ5h81D+Ufw1idbbyOi0ifeT0GnwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE2YwauKHQDe7qXpSoH7tUTwet86MB8GA1UdIwQY MBaAFM4I/jOl8LoLKGJTUFu/spMiD1gWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemdqLU02WHd1Z3NvWWxOUVc3LXlreUlQV0JZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS8yYTU1Y2YtY2U0YS00OThkLWJjZDct ZDhjZmU1OTFkZDllLzEvVFpqQnE0b2RBTjd1cGVsS2dmdTFSUEI2M3pvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS8yYTU1Y2YtY2U0YS00OThkLWJjZDctZDhjZmU1OTFkZDll LzEvemdqLU02WHd1Z3NvWWxOUVc3LXlreUlQV0JZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwy/TMA0G CSqGSIb3DQEBCwUAA4IBAQCnHGY1XvesJuAwniHjXO4JNHSos5mRLwoFu+dgv+rn 6r2iJqcbs1iIn0VNRlCFzJH36hou+mjKRpxtV00KLjOSv+aImnIbVuI4nhmOf6mV KuW87y2DOVkuQBRJMDSAK9SCpIqsj8sfjbX60AZxCHbltNAvlOCNWRxdThSGwQhA kAL0FQEFgfGHT5rzrSsjzg500YZ3TBmo3TbeEv/OCcINlHD2quRqagbGyrAqr0nZ bqitK0Sz/Qd6d/Z1nkpwpsPzLwdOUR7Qff4HPFe/udmxLKz+2UNuSm3t52OuCsXA Fp6KGljgNLoVK7DyhduUBbcW64sL3EDRZjLh+A4ZOjFM -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:47 2026 by rpki-client