This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tRBZha-dN2cpuIoIJAsObE0M5xk.roa File: tRBZha-dN2cpuIoIJAsObE0M5xk.roa (raw, json) Hash identifier: WR98I069Vi/8NDTCn1b5uEe+mpJ95XnSY+rTG8Hm8cM= Subject key identifier: B5:10:59:85:AF:9D:37:67:29:B8:8A:08:24:0B:0E:6C:4D:0C:E7:19 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C139917C091AE4030501885819AB402 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tRBZha-dN2cpuIoIJAsObE0M5xk.roa Signing time: Fri 02 Jan 2026 00:20:17 +0000 ROA not before: Fri 02 Jan 2026 00:20:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212830 IP address blocks: 95.214.144.0/22 maxlen: 24 185.119.48.0/22 maxlen: 24 185.128.52.0/22 maxlen: 24 185.175.152.0/22 maxlen: 24 185.199.44.0/22 maxlen: 24 185.223.60.0/22 maxlen: 24 194.124.68.0/23 maxlen: 24 194.124.68.0/24 maxlen: 24 194.124.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:99:17:c0:91:ae:40:30:50:18:85:81:9a:b4:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b5105985af9d376729b88a08240b0e6c4d0ce719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2b:4c:d4:24:1f:79:4d:c2:96:d1:45:55:2a: 80:8d:ad:ed:4a:c4:b7:ab:ea:01:d6:2d:e8:de:fa: 0e:6f:39:b9:80:06:57:11:fe:7e:a1:0d:25:ab:db: 6b:aa:a5:f9:66:10:c3:22:22:0d:5f:4e:e9:f9:55: 04:55:b6:47:50:3a:07:aa:c3:cc:a8:0c:4e:e5:e9: a4:b5:88:d4:ba:4c:d7:70:46:52:1a:42:b1:d7:68: bd:c4:cb:8d:fa:71:2d:0e:ed:6b:1e:4a:44:13:c7: 4c:40:8f:78:b7:cd:95:15:00:8a:3e:1b:14:ae:c6: 9e:4f:a7:d7:41:dd:4f:b9:d2:c7:50:b9:0d:5d:0c: b5:23:52:03:62:0a:6f:4f:c3:11:e0:58:81:08:43: 25:97:d1:bd:89:1a:bc:55:4b:af:06:60:13:72:5e: a0:06:48:76:52:4f:ea:2f:ec:84:4c:71:82:35:29: 8a:83:e3:f1:72:98:15:a6:04:af:00:77:34:02:1a: 7b:e4:04:a6:af:b9:ab:e8:c2:df:31:f5:2f:a1:54: 04:71:aa:43:2b:16:57:89:52:b3:00:09:55:be:7e: 4e:e6:08:5e:fa:af:6d:76:e5:7d:9e:78:38:49:ea: e7:ab:af:e5:d8:d9:3a:7d:1c:25:b5:48:d7:5d:a9: c5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:10:59:85:AF:9D:37:67:29:B8:8A:08:24:0B:0E:6C:4D:0C:E7:19 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tRBZha-dN2cpuIoIJAsObE0M5xk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.214.144.0/22 185.119.48.0/22 185.128.52.0/22 185.175.152.0/22 185.199.44.0/22 185.223.60.0/22 194.124.68.0/22 Signature Algorithm: sha256WithRSAEncryption 42:d4:b5:63:1d:8d:53:2a:7c:51:a7:bb:3d:5e:18:ed:33:ab: 3e:d2:f7:ed:85:97:89:be:60:1d:e5:a5:ee:d4:27:e7:21:2b: d4:26:ba:b7:a7:0b:49:90:e1:27:b1:32:8a:08:b2:00:ab:21: e0:bc:3b:2f:44:90:53:07:f2:69:5e:3c:61:13:04:e9:e9:48: 43:a8:87:47:82:94:47:cd:28:9f:c3:b1:89:a2:5d:28:c8:5a: b2:84:83:2d:ed:2a:7b:02:0e:cc:c9:c0:34:45:9f:da:28:56: c0:b4:a3:4b:7f:7a:c7:47:16:1f:86:0c:af:be:32:d8:52:f5: b3:9c:99:b9:44:49:2b:3b:80:da:f1:d8:3a:6b:e9:27:68:25: d9:ca:5f:5c:89:20:c3:4d:54:07:a6:41:3a:d9:72:5d:a7:f9: 39:e7:a9:7f:e1:d6:b0:28:e2:e3:9c:61:37:1c:97:cb:5d:ad: ad:aa:31:09:06:25:45:ba:46:0e:d9:84:35:d4:4d:91:c3:c3: 2f:15:43:bc:b4:ba:ea:21:c3:d0:be:14:85:63:71:10:f5:11: bf:71:50:c6:ce:97:f0:e7:80:a3:7b:f4:f6:d1:61:e2:50:63: 42:dc:fc:0d:cc:c7:fe:87:26:84:58:00:41:bf:a6:b9:8e:21: 24:30:8e:f5 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt8E5kXwJGuQDBQGIWBmrQCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTEwNTk4NWFmOWQzNzY3MjliODhhMDgyNDBiMGU2YzRkMGNlNzE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCtM1CQfeU3CltFFVSqAja3tSsS3 q+oB1i3o3voObzm5gAZXEf5+oQ0lq9trqqX5ZhDDIiINX07p+VUEVbZHUDoHqsPM qAxO5emktYjUukzXcEZSGkKx12i9xMuN+nEtDu1rHkpEE8dMQI94t82VFQCKPhsU rsaeT6fXQd1PudLHULkNXQy1I1IDYgpvT8MR4FiBCEMll9G9iRq8VUuvBmATcl6g Bkh2Uk/qL+yETHGCNSmKg+PxcpgVpgSvAHc0Ahp75ASmr7mr6MLfMfUvoVQEcapD KxZXiVKzAAlVvn5O5ghe+q9tduV9nng4Sernq6/l2Nk6fRwltUjXXanF5wIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFLUQWYWvnTdnKbiKCCQLDmxNDOcZMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvdFJCWmhhLWROMmNwdUlvSUpBc09iRTBNNXhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQCX9aQAwQC uXcwAwQCuYA0AwQCua+YAwQCuccsAwQCud88AwQCwnxEMA0GCSqGSIb3DQEBCwUA A4IBAQBC1LVjHY1TKnxRp7s9XhjtM6s+0vfthZeJvmAd5aXu1CfnISvUJrq3pwtJ kOEnsTKKCLIAqyHgvDsvRJBTB/JpXjxhEwTp6UhDqIdHgpRHzSifw7GJol0oyFqy hIMt7Sp7Ag7MycA0RZ/aKFbAtKNLf3rHRxYfhgyvvjLYUvWznJm5REkrO4Da8dg6 a+knaCXZyl9ciSDDTVQHpkE62XJdp/k556l/4dawKOLjnGE3HJfLXa2tqjEJBiVF ukYO2YQ11E2Rw8MvFUO8tLrqIcPQvhSFY3EQ9RG/cVDGzpfw54Cje/T20WHiUGNC 3PwNzMf+hyaEWABBv6a5jiEkMI71 -----END CERTIFICATE-----Generated at Fri Jan 2 23:47:27 2026 by rpki-client