This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/TMlO6AnGXcNsROAhkS5JIDNDec4.roa File: TMlO6AnGXcNsROAhkS5JIDNDec4.roa (raw, json) Hash identifier: ukR+IVcQtxtVvJJ5kvn7AX1uPqReF7U+G980fOjPOR4= Subject key identifier: 4C:C9:4E:E8:09:C6:5D:C3:6C:44:E0:21:91:2E:49:20:33:43:79:CE Certificate issuer: /CN=25154d8eff493c39d2cb614bdb7aaab2d5d25909 Certificate serial: 019B76EB089CF418AC35B2148440B2C75D29 Authority key identifier: 25:15:4D:8E:FF:49:3C:39:D2:CB:61:4B:DB:7A:AA:B2:D5:D2:59:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JRVNjv9JPDnSy2FL23qqstXSWQk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/TMlO6AnGXcNsROAhkS5JIDNDec4.roa Signing time: Thu 01 Jan 2026 00:17:53 +0000 ROA not before: Thu 01 Jan 2026 00:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215141 IP address blocks: 185.60.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/JRVNjv9JPDnSy2FL23qqstXSWQk.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/JRVNjv9JPDnSy2FL23qqstXSWQk.mft rsync://rpki.ripe.net/repository/DEFAULT/JRVNjv9JPDnSy2FL23qqstXSWQk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:08:9c:f4:18:ac:35:b2:14:84:40:b2:c7:5d:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25154d8eff493c39d2cb614bdb7aaab2d5d25909 Validity Not Before: Jan 1 00:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4cc94ee809c65dc36c44e021912e4920334379ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:64:2d:8f:98:3a:6a:9e:d0:bf:40:20:d8:e7: ac:a5:32:37:0c:ee:14:fb:d7:d4:e7:95:19:f7:8c: 32:6f:46:8d:97:d6:1c:25:b4:07:b3:95:2e:fd:b1: aa:c7:f9:e8:02:d7:32:38:f6:25:ed:e6:8f:ab:5f: fc:14:40:a9:f7:2e:d9:9c:68:27:ac:9f:e3:79:90: 35:07:b0:3a:a2:35:10:39:94:9b:d4:21:a8:6f:79: 82:c8:8d:7e:6f:8f:93:ff:2b:a5:48:df:6e:20:56: 9c:e4:76:53:6a:9e:27:08:e4:5c:8e:40:26:98:63: 00:9b:0c:b5:c6:cc:e8:c3:44:9c:71:97:58:b9:c8: 2d:5e:59:1b:9b:6a:da:6a:b8:58:27:17:73:d8:93: bf:bb:97:73:e9:15:fd:5a:01:12:0f:36:27:6e:14: 95:11:51:7b:77:eb:47:eb:47:c0:5e:23:7a:fe:cd: cf:3e:60:3f:6a:11:76:27:07:de:0f:6d:65:96:7b: 9a:0d:f5:e9:88:2e:ac:f4:0c:6e:0d:f0:02:4e:3c: 76:5a:52:46:db:69:5a:b2:ce:48:71:d4:69:07:96: 58:0d:90:d1:53:fd:4e:9f:97:4c:13:a6:fa:f8:7a: 05:df:1a:50:67:ba:66:98:3c:e6:f2:5c:71:11:a8: ae:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C9:4E:E8:09:C6:5D:C3:6C:44:E0:21:91:2E:49:20:33:43:79:CE X509v3 Authority Key Identifier: keyid:25:15:4D:8E:FF:49:3C:39:D2:CB:61:4B:DB:7A:AA:B2:D5:D2:59:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JRVNjv9JPDnSy2FL23qqstXSWQk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/TMlO6AnGXcNsROAhkS5JIDNDec4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/66aef2-59c8-4b1d-8320-4c4e4fb425b1/1/JRVNjv9JPDnSy2FL23qqstXSWQk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.60.58.0/24 Signature Algorithm: sha256WithRSAEncryption 87:91:e8:8b:72:e3:14:b7:e9:e6:1f:ff:40:ed:ad:98:84:ad: ae:0e:55:bf:3d:77:7d:21:b3:89:3a:f0:f8:76:26:ec:b8:2a: 54:2f:2a:70:56:cb:9c:b8:16:b3:a3:9b:66:01:98:0a:ba:4c: ae:37:9b:2f:4b:c7:ed:3a:4d:c8:5d:34:6a:54:f7:a5:e7:6c: 76:cc:a3:6c:d6:3d:95:e3:b8:d6:04:95:7c:69:89:17:17:28: 5c:91:97:53:8b:af:e7:64:8b:24:ff:12:85:04:10:dd:7b:bb: 91:73:3c:3d:7d:18:7c:d0:83:2d:6d:58:d8:05:99:3c:05:47: b4:b7:8a:4f:36:91:38:65:6c:9a:b7:0d:60:e1:40:8d:bd:2d: 5a:cf:dc:cd:de:4c:14:00:7e:4a:bd:f7:96:0d:26:32:af:02: 16:80:4d:c3:13:be:66:8a:c3:04:f9:9f:1e:ae:0b:5c:1b:21: 3a:3d:a8:5e:e1:7c:c5:37:47:8a:67:c9:a9:34:69:bf:e9:5e: 3c:1d:48:9e:8b:e7:c4:50:a6:18:cf:de:36:e3:e7:99:3c:78: 2d:6d:65:8d:de:a8:91:fd:af:e6:0e:45:22:02:44:47:f0:91: c3:bf:9b:66:a6:a1:0e:b6:55:29:e9:4f:51:34:b4:fb:83:39: 16:83:4b:41 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26wic9BisNbIUhECyx10pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1MTU0ZDhlZmY0OTNjMzlkMmNiNjE0YmRiN2FhYWIyZDVk MjU5MDkwHhcNMjYwMTAxMDAxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0Y2M5NGVlODA5YzY1ZGMzNmM0NGUwMjE5MTJlNDkyMDMzNDM3OWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWQtj5g6ap7Qv0Ag2OespTI3DO4U +9fU55UZ94wyb0aNl9YcJbQHs5Uu/bGqx/noAtcyOPYl7eaPq1/8FECp9y7ZnGgn rJ/jeZA1B7A6ojUQOZSb1CGob3mCyI1+b4+T/yulSN9uIFac5HZTap4nCORcjkAm mGMAmwy1xszow0SccZdYucgtXlkbm2raarhYJxdz2JO/u5dz6RX9WgESDzYnbhSV EVF7d+tH60fAXiN6/s3PPmA/ahF2JwfeD21llnuaDfXpiC6s9AxuDfACTjx2WlJG 22lass5IcdRpB5ZYDZDRU/1On5dME6b6+HoF3xpQZ7pmmDzm8lxxEaiuoQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEzJTugJxl3DbETgIZEuSSAzQ3nOMB8GA1UdIwQY MBaAFCUVTY7/STw50sthS9t6qrLV0lkJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlJWTmp2OUpQRG5TeTJGTDIzcXFzdFhTV1FrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC82NmFlZjItNTljOC00YjFkLTgzMjAt NGM0ZTRmYjQyNWIxLzEvVE1sTzZBbkdYY05zUk9BaGtTNUpJRE5EZWM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC82NmFlZjItNTljOC00YjFkLTgzMjAtNGM0ZTRmYjQyNWIx LzEvSlJWTmp2OUpQRG5TeTJGTDIzcXFzdFhTV1FrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuTw6MA0G CSqGSIb3DQEBCwUAA4IBAQCHkeiLcuMUt+nmH/9A7a2YhK2uDlW/PXd9IbOJOvD4 dibsuCpULypwVsucuBazo5tmAZgKukyuN5svS8ftOk3IXTRqVPel52x2zKNs1j2V 47jWBJV8aYkXFyhckZdTi6/nZIsk/xKFBBDde7uRczw9fRh80IMtbVjYBZk8BUe0 t4pPNpE4ZWyatw1g4UCNvS1az9zN3kwUAH5KvfeWDSYyrwIWgE3DE75misME+Z8e rgtcGyE6Pahe4XzFN0eKZ8mpNGm/6V48HUiei+fEUKYYz9424+eZPHgtbWWN3qiR /a/mDkUiAkRH8JHDv5tmpqEOtlUp6U9RNLT7gzkWg0tB -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:34 2026 by rpki-client