This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/397c1e-51a7-416f-a45c-2a0213179c07/1/TZ8jvTk6A1oo1Lzus_lifwt-Bn0.roa File: TZ8jvTk6A1oo1Lzus_lifwt-Bn0.roa (raw, json) Hash identifier: DbjvnCZSJdthAFWx2QS0tIkKV6q5D4WL/xKcQ3AHDmM= Subject key identifier: 4D:9F:23:BD:39:3A:03:5A:28:D4:BC:EE:B3:F9:62:7F:0B:7E:06:7D Certificate issuer: /CN=ef8669e70cea94973afd34fb08eb59e9d86b57fc Certificate serial: 019B7EA550FFCAFBA8D2365BCD18A855CD60 Authority key identifier: EF:86:69:E7:0C:EA:94:97:3A:FD:34:FB:08:EB:59:E9:D8:6B:57:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/74Zp5wzqlJc6_TT7COtZ6dhrV_w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/397c1e-51a7-416f-a45c-2a0213179c07/1/TZ8jvTk6A1oo1Lzus_lifwt-Bn0.roa Signing time: Fri 02 Jan 2026 12:18:41 +0000 ROA not before: Fri 02 Jan 2026 12:18:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209082 IP address blocks: 185.128.220.0/22 maxlen: 24 2a03:9ba0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/397c1e-51a7-416f-a45c-2a0213179c07/1/74Zp5wzqlJc6_TT7COtZ6dhrV_w.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/397c1e-51a7-416f-a45c-2a0213179c07/1/74Zp5wzqlJc6_TT7COtZ6dhrV_w.mft rsync://rpki.ripe.net/repository/DEFAULT/74Zp5wzqlJc6_TT7COtZ6dhrV_w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:50:ff:ca:fb:a8:d2:36:5b:cd:18:a8:55:cd:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef8669e70cea94973afd34fb08eb59e9d86b57fc Validity Not Before: Jan 2 12:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d9f23bd393a035a28d4bceeb3f9627f0b7e067d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:f7:fb:a1:0e:9e:05:11:33:ae:a2:24:ce:3f: fc:73:30:11:35:3d:01:47:5c:40:28:23:ef:17:12: 9b:12:2d:f1:45:11:c3:36:b2:bd:12:61:0d:42:2e: 5a:b9:51:6e:fb:19:95:38:b6:4c:19:2c:e7:77:43: b9:52:87:b7:78:03:29:9a:56:85:53:ec:e4:58:44: b7:cf:55:8b:52:a3:b0:7b:be:fb:a1:bf:5e:8a:b6: e1:fb:8d:3e:07:d5:6f:1f:bd:5e:6b:21:64:2a:14: de:4b:b8:66:eb:53:12:df:f0:db:13:73:09:ef:59: 20:d3:91:65:b7:ec:94:2c:2c:b8:7b:f1:ce:53:ff: 9f:da:d1:73:7c:d5:fa:71:c1:44:ed:90:33:45:8b: 5a:b7:33:71:09:42:22:b2:78:c1:2f:81:c5:37:ce: 33:b7:e8:db:1a:1c:6f:9f:f9:0e:8e:02:16:e2:81: 30:14:89:07:61:4f:6f:c1:02:c6:61:47:4e:32:32: 77:7b:b7:4b:6e:65:be:91:57:0e:cb:0e:6e:8e:9f: e8:5e:c5:44:d3:8d:cd:40:07:9b:d1:13:e1:1e:61: b8:f5:74:2a:64:f6:23:b2:d8:be:e1:d4:14:91:ea: bf:01:82:cd:f2:6f:0a:ae:f5:fd:56:92:66:27:cd: ba:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:9F:23:BD:39:3A:03:5A:28:D4:BC:EE:B3:F9:62:7F:0B:7E:06:7D X509v3 Authority Key Identifier: keyid:EF:86:69:E7:0C:EA:94:97:3A:FD:34:FB:08:EB:59:E9:D8:6B:57:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/74Zp5wzqlJc6_TT7COtZ6dhrV_w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/397c1e-51a7-416f-a45c-2a0213179c07/1/TZ8jvTk6A1oo1Lzus_lifwt-Bn0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/397c1e-51a7-416f-a45c-2a0213179c07/1/74Zp5wzqlJc6_TT7COtZ6dhrV_w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.128.220.0/22 IPv6: 2a03:9ba0::/32 Signature Algorithm: sha256WithRSAEncryption 4d:d9:95:9d:ee:67:60:01:6b:0a:11:e9:54:2c:53:44:59:1f: af:2a:b2:f8:7a:0e:8b:8c:a8:90:ea:f1:3e:c2:65:82:36:a6: 69:e3:7d:02:e0:1f:52:85:d1:6d:b9:a4:48:d8:e4:92:a2:7c: 16:ad:21:63:e7:d2:17:28:c4:05:59:2f:78:7c:f6:53:a0:ca: 07:6b:af:47:05:bf:78:93:bd:89:1a:61:b9:47:db:17:e6:8b: 43:6c:4a:1c:15:e6:af:1d:94:14:83:18:41:2a:c0:88:7c:53: b9:12:3e:81:1c:e3:10:06:26:14:1e:84:57:92:ea:b7:13:8e: 1f:18:11:87:b4:8d:2e:ca:af:f7:28:11:b8:1c:1c:d1:1d:e8: 89:4e:83:9f:4f:57:20:e7:80:f9:ca:36:a9:7f:27:43:b5:32: 0a:75:06:9b:59:68:8d:16:cb:12:08:82:1a:10:da:65:8d:34: 20:83:ef:4f:57:2c:16:a2:5c:4f:2b:ec:25:bb:e1:ba:d0:f0: b6:ad:23:89:f7:59:15:45:c4:e0:72:fa:a4:a2:f2:3f:12:d3: 91:87:f7:2b:8b:17:13:6d:64:95:f8:c5:86:5c:7b:f8:da:78: 66:14:cb:6f:76:15:f5:12:44:ba:46:c1:e6:13:07:1a:d2:45: a9:8a:6e:8c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pVD/yvuo0jZbzRioVc1gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmODY2OWU3MGNlYTk0OTczYWZkMzRmYjA4ZWI1OWU5ZDg2 YjU3ZmMwHhcNMjYwMTAyMTIxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDlmMjNiZDM5M2EwMzVhMjhkNGJjZWViM2Y5NjI3ZjBiN2UwNjdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8vf7oQ6eBREzrqIkzj/8czARNT0B R1xAKCPvFxKbEi3xRRHDNrK9EmENQi5auVFu+xmVOLZMGSznd0O5Uoe3eAMpmlaF U+zkWES3z1WLUqOwe777ob9eirbh+40+B9VvH71eayFkKhTeS7hm61MS3/DbE3MJ 71kg05Flt+yULCy4e/HOU/+f2tFzfNX6ccFE7ZAzRYtatzNxCUIisnjBL4HFN84z t+jbGhxvn/kOjgIW4oEwFIkHYU9vwQLGYUdOMjJ3e7dLbmW+kVcOyw5ujp/oXsVE 043NQAeb0RPhHmG49XQqZPYjsti+4dQUkeq/AYLN8m8KrvX9VpJmJ826SQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFE2fI705OgNaKNS87rP5Yn8LfgZ9MB8GA1UdIwQY MBaAFO+GaecM6pSXOv00+wjrWenYa1f8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzRacDV3enFsSmM2X1RUN0NPdFo2ZGhyVl93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8zOTdjMWUtNTFhNy00MTZmLWE0NWMt MmEwMjEzMTc5YzA3LzEvVFo4anZUazZBMW9vMUx6dXNfbGlmd3QtQm4wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS8zOTdjMWUtNTFhNy00MTZmLWE0NWMtMmEwMjEzMTc5YzA3 LzEvNzRacDV3enFsSmM2X1RUN0NPdFo2ZGhyVl93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuYDcMA0E AgACMAcDBQAqA5ugMA0GCSqGSIb3DQEBCwUAA4IBAQBN2ZWd7mdgAWsKEelULFNE WR+vKrL4eg6LjKiQ6vE+wmWCNqZp430C4B9ShdFtuaRI2OSSonwWrSFj59IXKMQF WS94fPZToMoHa69HBb94k72JGmG5R9sX5otDbEocFeavHZQUgxhBKsCIfFO5Ej6B HOMQBiYUHoRXkuq3E44fGBGHtI0uyq/3KBG4HBzRHeiJToOfT1cg54D5yjapfydD tTIKdQabWWiNFssSCIIaENpljTQgg+9PVywWolxPK+wlu+G60PC2rSOJ91kVRcTg cvqkovI/EtORh/crixcTbWSV+MWGXHv42nhmFMtvdhX1EkS6RsHmEwca0kWpim6M -----END CERTIFICATE-----Generated at Tue Feb 10 00:03:44 2026 by rpki-client