This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f67177-78d5-4388-a21a-28263656c6de/1/tuDCv4lvmfDzJRQ3OOYakiJXpLk.roa File: tuDCv4lvmfDzJRQ3OOYakiJXpLk.roa (raw, json) Hash identifier: B9WwSI4TdVDoQmekvK0lWtI32JXbnkCFS/fzwW4JyBM= Subject key identifier: B6:E0:C2:BF:89:6F:99:F0:F3:25:14:37:38:E6:1A:92:22:57:A4:B9 Certificate issuer: /CN=b48184549e12e9934bffb7615bca3d0c25681360 Certificate serial: 019B7D5C983BAFFD4737106672E65D2111D0 Authority key identifier: B4:81:84:54:9E:12:E9:93:4B:FF:B7:61:5B:CA:3D:0C:25:68:13:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIGEVJ4S6ZNL_7dhW8o9DCVoE2A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f67177-78d5-4388-a21a-28263656c6de/1/tuDCv4lvmfDzJRQ3OOYakiJXpLk.roa Signing time: Fri 02 Jan 2026 06:19:38 +0000 ROA not before: Fri 02 Jan 2026 06:19:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5409 IP address blocks: 185.95.80.0/22 maxlen: 22 213.218.0.0/19 maxlen: 19 2001:4180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/f67177-78d5-4388-a21a-28263656c6de/1/tIGEVJ4S6ZNL_7dhW8o9DCVoE2A.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/f67177-78d5-4388-a21a-28263656c6de/1/tIGEVJ4S6ZNL_7dhW8o9DCVoE2A.mft rsync://rpki.ripe.net/repository/DEFAULT/tIGEVJ4S6ZNL_7dhW8o9DCVoE2A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:98:3b:af:fd:47:37:10:66:72:e6:5d:21:11:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b48184549e12e9934bffb7615bca3d0c25681360 Validity Not Before: Jan 2 06:19:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b6e0c2bf896f99f0f325143738e61a922257a4b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9e:f7:b8:c3:03:7c:75:ce:63:3f:aa:7a:19: b2:07:67:82:99:bc:1c:59:fb:05:fc:7a:9d:3c:62: 68:6a:ee:32:1d:f6:b3:71:5f:42:3c:17:b9:12:2b: 35:f9:6d:8e:c3:ee:1e:9a:c5:ad:ea:2f:1f:c7:36: 58:de:5e:a6:00:6f:43:02:04:8c:e2:1b:6a:24:0d: ea:64:ab:ea:e9:08:3e:a3:34:f6:09:29:81:a1:3b: a1:16:e5:1d:7a:65:9d:ef:cb:c3:e1:22:f9:ae:d1: db:e5:3c:f5:5f:59:d7:c7:bb:5a:0f:bd:fb:27:04: fa:cf:85:6f:15:c7:41:be:4b:1d:fc:3a:10:b1:db: 83:9d:e1:c8:30:e2:77:cd:5e:a3:12:69:3b:37:90: 44:62:62:05:a6:63:ac:a3:e0:07:39:4b:21:f5:1c: a2:88:e2:15:9c:e7:f7:68:d1:31:b6:69:bb:3f:ba: 1f:c4:20:0e:e2:49:f4:a5:5a:87:43:f8:c5:47:a7: 13:0b:41:64:d8:b9:16:05:d7:f8:60:19:f6:a3:c6: 6e:68:08:6c:87:34:ff:a0:88:61:c6:8f:13:56:93: df:b8:cc:09:f2:a7:05:fb:46:35:b7:dd:14:56:cd: 78:19:62:2d:6c:81:76:97:83:c2:5a:56:cd:06:e7: 1d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:E0:C2:BF:89:6F:99:F0:F3:25:14:37:38:E6:1A:92:22:57:A4:B9 X509v3 Authority Key Identifier: keyid:B4:81:84:54:9E:12:E9:93:4B:FF:B7:61:5B:CA:3D:0C:25:68:13:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIGEVJ4S6ZNL_7dhW8o9DCVoE2A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f67177-78d5-4388-a21a-28263656c6de/1/tuDCv4lvmfDzJRQ3OOYakiJXpLk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f67177-78d5-4388-a21a-28263656c6de/1/tIGEVJ4S6ZNL_7dhW8o9DCVoE2A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.95.80.0/22 213.218.0.0/19 IPv6: 2001:4180::/32 Signature Algorithm: sha256WithRSAEncryption 3a:4f:92:04:60:e8:2e:2c:93:ff:1e:2d:b4:73:47:4e:96:d6: 4f:44:cc:67:b8:ec:35:04:2f:88:6a:02:c5:91:b4:0b:a2:67: ad:66:c8:a6:8b:37:85:09:cf:cf:83:e9:81:b3:0c:65:5c:bf: 59:f6:13:00:3d:6b:9b:81:6a:6c:7b:a3:a5:2a:4f:5d:d2:48: d7:6a:4a:81:9e:10:a1:47:fb:08:42:af:d4:b0:3c:e6:e3:7c: ba:4e:75:cf:2f:7b:44:60:5d:3e:15:9c:9e:de:01:ec:96:e2: 80:fb:06:54:ff:68:da:53:62:4f:dc:86:90:98:76:8b:30:0d: 40:98:66:f6:64:25:f1:18:f7:80:9c:32:ed:12:a0:b1:89:0c: 54:5f:70:34:cc:77:a1:0e:69:15:ac:0f:28:d4:c9:48:fc:1c: 7e:fb:ac:de:8a:67:ff:9a:53:18:e4:52:d4:47:37:6e:07:98: 8d:77:1a:23:d5:58:80:78:d2:09:57:3b:50:5a:51:11:29:ad: 4f:5b:54:8e:20:be:3d:38:60:20:8b:58:58:75:a0:46:de:0b: b5:02:b2:61:a2:f8:e3:2d:45:d1:af:2f:4e:46:5f:81:3d:4c: a4:7d:5f:19:6b:5b:22:f0:db:96:ab:79:b8:cc:4f:44:b2:65: 27:38:61:77 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt9XJg7r/1HNxBmcuZdIRHQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0ODE4NDU0OWUxMmU5OTM0YmZmYjc2MTViY2EzZDBjMjU2 ODEzNjAwHhcNMjYwMTAyMDYxOTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNmUwYzJiZjg5NmY5OWYwZjMyNTE0MzczOGU2MWE5MjIyNTdhNGI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArp73uMMDfHXOYz+qehmyB2eCmbwc WfsF/HqdPGJoau4yHfazcV9CPBe5Eis1+W2Ow+4emsWt6i8fxzZY3l6mAG9DAgSM 4htqJA3qZKvq6Qg+ozT2CSmBoTuhFuUdemWd78vD4SL5rtHb5Tz1X1nXx7taD737 JwT6z4VvFcdBvksd/DoQsduDneHIMOJ3zV6jEmk7N5BEYmIFpmOso+AHOUsh9Ryi iOIVnOf3aNExtmm7P7ofxCAO4kn0pVqHQ/jFR6cTC0Fk2LkWBdf4YBn2o8ZuaAhs hzT/oIhhxo8TVpPfuMwJ8qcF+0Y1t90UVs14GWItbIF2l4PCWlbNBucdVQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFLbgwr+Jb5nw8yUUNzjmGpIiV6S5MB8GA1UdIwQY MBaAFLSBhFSeEumTS/+3YVvKPQwlaBNgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdElHRVZKNFM2Wk5MXzdkaFc4bzlEQ1ZvRTJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9mNjcxNzctNzhkNS00Mzg4LWEyMWEt MjgyNjM2NTZjNmRlLzEvdHVEQ3Y0bHZtZkR6SlJRM09PWWFraUpYcExrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy9mNjcxNzctNzhkNS00Mzg4LWEyMWEtMjgyNjM2NTZjNmRl LzEvdElHRVZKNFM2Wk5MXzdkaFc4bzlEQ1ZvRTJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuV9QAwQF 1doAMA0EAgACMAcDBQAgAUGAMA0GCSqGSIb3DQEBCwUAA4IBAQA6T5IEYOguLJP/ Hi20c0dOltZPRMxnuOw1BC+IagLFkbQLometZsimizeFCc/Pg+mBswxlXL9Z9hMA PWubgWpse6OlKk9d0kjXakqBnhChR/sIQq/UsDzm43y6TnXPL3tEYF0+FZye3gHs luKA+wZU/2jaU2JP3IaQmHaLMA1AmGb2ZCXxGPeAnDLtEqCxiQxUX3A0zHehDmkV rA8o1MlI/Bx++6zeimf/mlMY5FLURzduB5iNdxoj1ViAeNIJVztQWlERKa1PW1SO IL49OGAgi1hYdaBG3gu1ArJhovjjLUXRry9ORl+BPUykfV8Za1si8NuWq3m4zE9E smUnOGF3 -----END CERTIFICATE-----Generated at Tue Feb 10 01:23:47 2026 by rpki-client