This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/TC-CR-ZUgo3wldIr7f4nCXHpZbc.roa File: TC-CR-ZUgo3wldIr7f4nCXHpZbc.roa (raw, json) Hash identifier: Tqa6a80CqmnICEwwvMch0Zn79fYz9/pDyy0fkcJDSKo= Subject key identifier: 4C:2F:82:47:E6:54:82:8D:F0:95:D2:2B:ED:FE:27:09:71:E9:65:B7 Certificate issuer: /CN=5524b2e26dd3afcc5c1eac01f90263d201fbe099 Certificate serial: 019B7F84F8880BDB617055581B9F144F04D9 Authority key identifier: 55:24:B2:E2:6D:D3:AF:CC:5C:1E:AC:01:F9:02:63:D2:01:FB:E0:99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/TC-CR-ZUgo3wldIr7f4nCXHpZbc.roa Signing time: Fri 02 Jan 2026 16:22:59 +0000 ROA not before: Fri 02 Jan 2026 16:22:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 2a13:4a80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.mft rsync://rpki.ripe.net/repository/DEFAULT/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:f8:88:0b:db:61:70:55:58:1b:9f:14:4f:04:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5524b2e26dd3afcc5c1eac01f90263d201fbe099 Validity Not Before: Jan 2 16:22:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4c2f8247e654828df095d22bedfe270971e965b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:05:8b:26:d5:ca:39:01:fd:0d:86:fc:1d:a6: 00:24:28:1a:8c:f8:b8:98:68:86:6a:36:e5:0d:a6: 90:09:7e:49:13:ac:1d:70:64:22:4e:a4:4b:ac:ee: 18:e7:c9:de:3e:2a:60:a3:c7:36:88:9e:e8:97:5e: d6:70:93:37:cc:a7:db:c6:c6:67:c2:94:ea:03:ac: 22:b2:16:d6:ce:33:18:14:e3:40:84:af:8b:1d:1e: d0:a4:fd:16:08:a7:67:c3:43:b7:23:32:db:93:7f: e5:0c:e9:d9:8b:49:5e:53:a4:38:a9:71:3d:d6:a8: 5f:a4:20:88:4f:83:99:85:ad:ad:25:c4:8c:6d:a0: 8e:3e:fc:fd:6d:d0:6c:9d:06:44:87:53:d0:93:8b: 50:18:e8:db:da:a4:90:30:ae:10:d0:96:91:6f:e4: 84:d3:8f:43:8b:1b:5b:4e:1a:08:a0:86:fa:74:15: 83:ff:41:f1:4b:34:90:f5:c9:0e:50:d2:a5:84:90: e5:7c:67:40:4f:cf:33:8b:64:0b:68:16:fa:1d:bd: a1:dd:69:ce:89:09:b9:ab:e8:f3:a0:72:ec:24:62: 1a:b3:4c:a9:f3:40:cd:e4:5d:64:be:d9:c7:d3:ec: 9d:c8:39:1a:47:25:4f:97:62:c0:f4:a4:71:0b:bc: 6f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:2F:82:47:E6:54:82:8D:F0:95:D2:2B:ED:FE:27:09:71:E9:65:B7 X509v3 Authority Key Identifier: keyid:55:24:B2:E2:6D:D3:AF:CC:5C:1E:AC:01:F9:02:63:D2:01:FB:E0:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/TC-CR-ZUgo3wldIr7f4nCXHpZbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:4a80::/29 Signature Algorithm: sha256WithRSAEncryption 2f:fb:40:3d:21:a2:5c:78:90:d8:47:73:e2:2d:23:6a:0c:18: eb:40:cc:27:93:62:03:46:76:5a:be:c3:bd:d3:92:05:85:44: 51:64:de:43:e1:9a:2c:36:fc:f7:c5:cf:92:19:9e:eb:b3:e9: a1:17:96:78:61:59:b7:0a:5d:81:0d:b8:ea:ff:8b:40:57:1d: 94:82:23:93:33:fe:aa:1f:6e:c8:02:b9:16:1a:40:4f:41:8f: 45:1e:d8:1b:41:66:ec:ee:8f:d0:be:14:f5:c5:e8:e9:55:00: 73:28:91:5d:24:d4:72:8c:f0:ad:26:94:b4:06:c7:5b:2b:29: 31:6a:37:3e:0b:85:1b:b7:68:cf:19:34:ef:53:8c:21:7f:29: cf:73:d5:5a:15:d0:ee:55:1c:06:2c:cc:ad:64:ab:4b:ae:27: 83:ca:d5:22:c9:03:e0:34:b4:68:80:71:e1:e6:98:50:fb:18: 82:73:eb:c3:36:d8:c8:f6:68:c8:64:2e:40:c1:4d:c8:e2:eb: 2e:e9:0f:8d:eb:46:63:df:7e:82:db:8e:48:86:cd:4b:b0:72: 6c:bb:e7:21:11:9f:b5:78:8a:43:60:5b:e3:f8:da:e1:9b:1e: d3:5a:28:51:65:b0:5a:17:f1:3a:36:3a:56:e9:12:f2:20:20: 8f:e6:da:3d -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/hPiIC9thcFVYG58UTwTZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1MjRiMmUyNmRkM2FmY2M1YzFlYWMwMWY5MDI2M2QyMDFm YmUwOTkwHhcNMjYwMTAyMTYyMjU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YzJmODI0N2U2NTQ4MjhkZjA5NWQyMmJlZGZlMjcwOTcxZTk2NWI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwWLJtXKOQH9DYb8HaYAJCgajPi4 mGiGajblDaaQCX5JE6wdcGQiTqRLrO4Y58nePipgo8c2iJ7ol17WcJM3zKfbxsZn wpTqA6wishbWzjMYFONAhK+LHR7QpP0WCKdnw0O3IzLbk3/lDOnZi0leU6Q4qXE9 1qhfpCCIT4OZha2tJcSMbaCOPvz9bdBsnQZEh1PQk4tQGOjb2qSQMK4Q0JaRb+SE 049DixtbThoIoIb6dBWD/0HxSzSQ9ckOUNKlhJDlfGdAT88zi2QLaBb6Hb2h3WnO iQm5q+jzoHLsJGIas0yp80DN5F1kvtnH0+ydyDkaRyVPl2LA9KRxC7xvxwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFEwvgkfmVIKN8JXSK+3+Jwlx6WW3MB8GA1UdIwQY MBaAFFUksuJt06/MXB6sAfkCY9IB++CZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVlNTeTRtM1RyOHhjSHF3Qi1RSmowZ0g3NEprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8xNDMzOTItZDg2OC00YTI2LTg1NDMt M2FhMjIyN2JhZGZlLzEvVEMtQ1ItWlVnbzN3bGRJcjdmNG5DWEhwWmJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS8xNDMzOTItZDg2OC00YTI2LTg1NDMtM2FhMjIyN2JhZGZl LzEvVlNTeTRtM1RyOHhjSHF3Qi1RSmowZ0g3NEprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhNKgDAN BgkqhkiG9w0BAQsFAAOCAQEAL/tAPSGiXHiQ2Edz4i0jagwY60DMJ5NiA0Z2Wr7D vdOSBYVEUWTeQ+GaLDb898XPkhme67PpoReWeGFZtwpdgQ246v+LQFcdlIIjkzP+ qh9uyAK5FhpAT0GPRR7YG0Fm7O6P0L4U9cXo6VUAcyiRXSTUcozwrSaUtAbHWysp MWo3PguFG7dozxk071OMIX8pz3PVWhXQ7lUcBizMrWSrS64ng8rVIskD4DS0aIBx 4eaYUPsYgnPrwzbYyPZoyGQuQMFNyOLrLukPjetGY99+gtuOSIbNS7BybLvnIRGf tXiKQ2Bb4/ja4Zse01ooUWWwWhfxOjY6VukS8iAgj+baPQ== -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:38 2026 by rpki-client