This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/8f41a4-e140-4f65-80e6-28170ac02b32/1/tHyycM5QCv8W9vwXc_sS0QuTCdY.roa File: tHyycM5QCv8W9vwXc_sS0QuTCdY.roa (raw, json) Hash identifier: /5xLYAkh1elAbGPbQgHDZyios7R0OiSG4E8AdgZhCYU= Subject key identifier: B4:7C:B2:70:CE:50:0A:FF:16:F6:FC:17:73:FB:12:D1:0B:93:09:D6 Certificate issuer: /CN=4813b9c5fe8315807d7856cd230003aa16741c0d Certificate serial: 019B783483EC483C94632AFC8D80EDF7E5C7 Authority key identifier: 48:13:B9:C5:FE:83:15:80:7D:78:56:CD:23:00:03:AA:16:74:1C:0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SBO5xf6DFYB9eFbNIwADqhZ0HA0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/8f41a4-e140-4f65-80e6-28170ac02b32/1/tHyycM5QCv8W9vwXc_sS0QuTCdY.roa Signing time: Thu 01 Jan 2026 06:17:46 +0000 ROA not before: Thu 01 Jan 2026 06:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49244 IP address blocks: 193.203.104.0/24 maxlen: 32 2a12:c080::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/8f41a4-e140-4f65-80e6-28170ac02b32/1/SBO5xf6DFYB9eFbNIwADqhZ0HA0.crl rsync://rpki.ripe.net/repository/DEFAULT/de/8f41a4-e140-4f65-80e6-28170ac02b32/1/SBO5xf6DFYB9eFbNIwADqhZ0HA0.mft rsync://rpki.ripe.net/repository/DEFAULT/SBO5xf6DFYB9eFbNIwADqhZ0HA0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:83:ec:48:3c:94:63:2a:fc:8d:80:ed:f7:e5:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4813b9c5fe8315807d7856cd230003aa16741c0d Validity Not Before: Jan 1 06:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b47cb270ce500aff16f6fc1773fb12d10b9309d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:81:3e:7e:3e:77:5f:1c:17:86:82:ff:fa:cc: 78:54:5f:5b:5a:f5:70:58:95:e7:1d:dd:8b:8b:10: 1a:e0:ba:86:73:6a:20:ee:be:5a:fe:95:80:be:c9: 67:66:75:8c:c1:cc:67:72:d1:87:05:f9:23:7a:b6: 22:08:6e:15:50:54:da:a4:8c:4a:e0:ec:3d:78:21: 5e:d5:0f:a3:e3:39:c4:24:71:a2:43:8e:ea:db:09: 0f:be:61:87:69:cb:81:ab:fb:8a:05:d3:97:81:7f: 10:0c:5c:88:3d:4f:67:c9:ff:c0:34:17:eb:02:36: 19:4e:b6:77:ac:53:a3:00:7a:88:c5:d5:b2:1b:bc: 09:6e:3c:84:65:e3:6a:e4:a7:16:e1:a8:00:3e:e8: 99:d6:19:41:a9:94:71:c6:30:7c:12:fd:ac:ff:38: f1:56:09:0d:5b:49:a0:95:d6:f3:d8:1f:e0:b7:a0: 7d:ec:a2:dc:78:08:ed:f3:dd:a5:98:0a:62:e3:c7: 4d:be:b8:60:3a:8f:49:ef:b7:4a:d4:47:04:06:c6: af:c5:49:51:84:fb:23:b8:5e:81:96:56:87:4b:71: 1c:bc:7d:97:c8:ca:ed:34:64:85:5a:a1:46:a2:a4: ab:96:cb:c4:f2:a0:c4:b5:af:5c:9e:a0:31:74:48: b9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:7C:B2:70:CE:50:0A:FF:16:F6:FC:17:73:FB:12:D1:0B:93:09:D6 X509v3 Authority Key Identifier: keyid:48:13:B9:C5:FE:83:15:80:7D:78:56:CD:23:00:03:AA:16:74:1C:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SBO5xf6DFYB9eFbNIwADqhZ0HA0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/8f41a4-e140-4f65-80e6-28170ac02b32/1/tHyycM5QCv8W9vwXc_sS0QuTCdY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/8f41a4-e140-4f65-80e6-28170ac02b32/1/SBO5xf6DFYB9eFbNIwADqhZ0HA0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.203.104.0/24 IPv6: 2a12:c080::/29 Signature Algorithm: sha256WithRSAEncryption ba:fb:96:05:b0:de:29:3c:92:b4:3d:3a:f4:34:f1:30:3b:63: d7:17:16:52:fb:07:5d:fc:00:69:e6:61:4d:39:66:c7:00:9c: 81:a8:93:36:a2:3d:1c:41:8d:74:fe:ed:da:a7:32:59:e9:cd: c5:71:d9:b9:67:44:bc:05:2c:74:3a:89:c1:a1:4c:50:5d:6c: 46:46:06:38:3f:48:35:d0:d5:b6:2c:57:14:4d:c0:a9:7e:cb: 2b:9a:b2:7a:d0:f7:bc:eb:c4:23:39:ee:ed:eb:5a:22:e1:ca: a5:63:16:b8:f0:93:55:62:a7:c5:19:a7:a3:c6:86:cd:c3:e1: 79:19:0b:57:e6:e8:88:c4:05:54:4d:fd:97:e3:51:6a:4b:b3: 6e:3c:6e:47:67:ff:69:88:a6:a8:d9:71:0f:2d:94:6e:de:f4: dc:a4:b5:b1:ab:5b:62:a1:3f:50:09:f5:c5:2f:f9:db:0e:0b: 5c:f1:bd:ba:de:df:6d:81:89:c8:92:06:ae:3a:a4:7e:fd:0b: 83:7f:78:a0:c7:55:09:3f:48:11:5f:a8:94:08:0b:5d:5b:56: 41:b2:7b:f0:7d:5f:b2:66:1a:90:fd:20:0b:bf:38:25:7d:da: 5c:8d:01:0b:3c:cd:44:c7:44:41:8d:5d:8a:27:cb:8e:6a:04: b4:dc:17:b5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NIPsSDyUYyr8jYDt9+XHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4MTNiOWM1ZmU4MzE1ODA3ZDc4NTZjZDIzMDAwM2FhMTY3 NDFjMGQwHhcNMjYwMTAxMDYxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDdjYjI3MGNlNTAwYWZmMTZmNmZjMTc3M2ZiMTJkMTBiOTMwOWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4E+fj53XxwXhoL/+sx4VF9bWvVw WJXnHd2LixAa4LqGc2og7r5a/pWAvslnZnWMwcxnctGHBfkjerYiCG4VUFTapIxK 4Ow9eCFe1Q+j4znEJHGiQ47q2wkPvmGHacuBq/uKBdOXgX8QDFyIPU9nyf/ANBfr AjYZTrZ3rFOjAHqIxdWyG7wJbjyEZeNq5KcW4agAPuiZ1hlBqZRxxjB8Ev2s/zjx VgkNW0mgldbz2B/gt6B97KLceAjt892lmApi48dNvrhgOo9J77dK1EcEBsavxUlR hPsjuF6BllaHS3EcvH2XyMrtNGSFWqFGoqSrlsvE8qDEta9cnqAxdEi5kwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLR8snDOUAr/Fvb8F3P7EtELkwnWMB8GA1UdIwQY MBaAFEgTucX+gxWAfXhWzSMAA6oWdBwNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU0JPNXhmNkRGWUI5ZUZiTkl3QURxaFowSEEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS84ZjQxYTQtZTE0MC00ZjY1LTgwZTYt MjgxNzBhYzAyYjMyLzEvdEh5eWNNNVFDdjhXOXZ3WGNfc1MwUXVUQ2RZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS84ZjQxYTQtZTE0MC00ZjY1LTgwZTYtMjgxNzBhYzAyYjMy LzEvU0JPNXhmNkRGWUI5ZUZiTkl3QURxaFowSEEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwctoMA0E AgACMAcDBQMqEsCAMA0GCSqGSIb3DQEBCwUAA4IBAQC6+5YFsN4pPJK0PTr0NPEw O2PXFxZS+wdd/ABp5mFNOWbHAJyBqJM2oj0cQY10/u3apzJZ6c3Fcdm5Z0S8BSx0 OonBoUxQXWxGRgY4P0g10NW2LFcUTcCpfssrmrJ60Pe868QjOe7t61oi4cqlYxa4 8JNVYqfFGaejxobNw+F5GQtX5uiIxAVUTf2X41FqS7NuPG5HZ/9piKao2XEPLZRu 3vTcpLWxq1tioT9QCfXFL/nbDgtc8b263t9tgYnIkgauOqR+/QuDf3igx1UJP0gR X6iUCAtdW1ZBsnvwfV+yZhqQ/SALvzglfdpcjQELPM1Ex0RBjV2KJ8uOagS03Be1 -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:28 2026 by rpki-client