This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/tomIMtvtCpe8gmad9U9k_lat1uc.roa File: tomIMtvtCpe8gmad9U9k_lat1uc.roa (raw, json) Hash identifier: FXcY4S/ipCOPbpjzZ2S33Vgj5YAR8gNwys6dnaETvNs= Subject key identifier: B6:89:88:32:DB:ED:0A:97:BC:82:66:9D:F5:4F:64:FE:56:AD:D6:E7 Certificate issuer: /CN=501459c027a86e1a55709f860937fe2f81b312f0 Certificate serial: 019B7AC7846FF4BEEEC069248D7A14F229DB Authority key identifier: 50:14:59:C0:27:A8:6E:1A:55:70:9F:86:09:37:FE:2F:81:B3:12:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UBRZwCeobhpVcJ-GCTf-L4GzEvA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/tomIMtvtCpe8gmad9U9k_lat1uc.roa Signing time: Thu 01 Jan 2026 18:17:34 +0000 ROA not before: Thu 01 Jan 2026 18:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 378 IP address blocks: 147.233.0.0/16 maxlen: 16 147.233.0.0/17 maxlen: 17 147.233.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/UBRZwCeobhpVcJ-GCTf-L4GzEvA.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/UBRZwCeobhpVcJ-GCTf-L4GzEvA.mft rsync://rpki.ripe.net/repository/DEFAULT/UBRZwCeobhpVcJ-GCTf-L4GzEvA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:84:6f:f4:be:ee:c0:69:24:8d:7a:14:f2:29:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=501459c027a86e1a55709f860937fe2f81b312f0 Validity Not Before: Jan 1 18:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b6898832dbed0a97bc82669df54f64fe56add6e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:3f:f9:7d:6c:2e:cd:68:2c:75:59:b4:dd:34: b3:cf:a1:0a:7e:f3:78:9b:9e:c6:a6:40:ca:72:5a: 22:9f:4b:f8:66:df:04:6b:8a:ed:b9:a7:d3:fe:aa: c5:a8:d7:9a:ed:5f:d1:d3:70:0f:85:8f:07:b5:84: 84:98:a4:a2:e3:0a:06:c6:11:5f:1f:7f:17:9b:9a: 7a:26:46:d6:86:19:6a:fd:26:67:7e:6c:3c:11:6f: 02:ae:76:2c:7b:53:4d:96:ac:b5:5b:e4:e7:ef:69: 31:50:4c:17:3b:bb:44:bd:01:15:0b:80:ed:99:67: 9f:1d:47:8a:09:44:b7:e7:e8:d8:72:de:3e:08:68: e3:9f:72:d5:75:74:22:bb:9e:6f:12:0b:4d:f7:bb: 97:9e:f3:bd:24:64:1f:46:2b:02:2d:b4:56:d0:88: 44:d9:e7:bb:49:98:ca:fa:26:38:e1:94:33:4a:35: 89:20:88:d6:32:a1:74:e6:8c:0d:1a:7a:e9:79:be: 16:fb:2e:2c:f3:cd:ac:01:92:54:22:f0:ef:ec:22: 6e:32:a2:e6:23:a9:21:24:69:9d:54:6c:06:76:55: a7:0b:d3:49:52:d5:aa:ea:ec:21:17:89:df:0f:cb: 50:5d:59:e5:c5:d4:b8:35:e5:c4:35:4b:4d:bf:76: e3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:89:88:32:DB:ED:0A:97:BC:82:66:9D:F5:4F:64:FE:56:AD:D6:E7 X509v3 Authority Key Identifier: keyid:50:14:59:C0:27:A8:6E:1A:55:70:9F:86:09:37:FE:2F:81:B3:12:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UBRZwCeobhpVcJ-GCTf-L4GzEvA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/tomIMtvtCpe8gmad9U9k_lat1uc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/UBRZwCeobhpVcJ-GCTf-L4GzEvA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.233.0.0/16 Signature Algorithm: sha256WithRSAEncryption 31:fc:fe:ba:4f:e9:49:f2:8c:8a:ac:cd:60:5b:c4:13:1a:27: 74:c5:21:91:82:39:bb:23:b9:db:0c:a3:0b:17:de:ca:3e:53: 4b:80:62:48:fb:5a:b2:9e:0e:ef:0f:34:b7:43:cb:3d:a9:5e: 1f:9e:d6:eb:a2:cb:9c:f0:90:6f:6f:e0:76:10:2e:01:37:81: 62:93:0c:d1:3c:68:18:1e:1a:9a:83:62:f6:28:e1:4d:fe:be: 7b:96:8e:88:99:c5:e0:54:ac:af:38:d2:70:11:d6:81:57:b0: fd:a6:eb:e9:89:e6:7e:ec:20:82:f3:82:df:44:c5:24:e1:77: 92:03:0d:30:7d:e7:74:d2:e0:6e:b1:86:c5:16:80:ab:c0:55: b9:e7:8f:ed:ff:63:b2:19:2a:e1:b7:8c:ff:8f:41:d1:d0:1a: b8:45:6c:c1:7a:8f:cb:d7:6c:ab:11:bc:e5:cd:c3:0d:c6:18: 64:3c:bd:a8:a5:93:d1:6f:35:35:2b:77:4d:20:42:5d:bf:60: c3:56:1c:42:e0:70:9b:62:f9:cd:8d:ae:79:0c:b3:73:6f:cd: 8e:4c:83:ff:d4:e4:55:bf:14:19:a9:fb:a3:e1:d2:7c:aa:8f: ba:df:35:5b:a7:03:ca:52:1a:a3:11:56:0a:13:0c:bb:3f:a5: 7a:da:7d:88 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt6x4Rv9L7uwGkkjXoU8inbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwMTQ1OWMwMjdhODZlMWE1NTcwOWY4NjA5MzdmZTJmODFi MzEyZjAwHhcNMjYwMTAxMTgxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNjg5ODgzMmRiZWQwYTk3YmM4MjY2OWRmNTRmNjRmZTU2YWRkNmU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6D/5fWwuzWgsdVm03TSzz6EKfvN4 m57GpkDKcloin0v4Zt8Ea4rtuafT/qrFqNea7V/R03APhY8HtYSEmKSi4woGxhFf H38Xm5p6JkbWhhlq/SZnfmw8EW8CrnYse1NNlqy1W+Tn72kxUEwXO7tEvQEVC4Dt mWefHUeKCUS35+jYct4+CGjjn3LVdXQiu55vEgtN97uXnvO9JGQfRisCLbRW0IhE 2ee7SZjK+iY44ZQzSjWJIIjWMqF05owNGnrpeb4W+y4s882sAZJUIvDv7CJuMqLm I6khJGmdVGwGdlWnC9NJUtWq6uwhF4nfD8tQXVnlxdS4NeXENUtNv3bjQwIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFLaJiDLb7QqXvIJmnfVPZP5WrdbnMB8GA1UdIwQY MBaAFFAUWcAnqG4aVXCfhgk3/i+BsxLwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUJSWndDZW9iaHBWY0otR0NUZi1MNEd6RXZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi85ZWRlOTItYTgzOC00MGJjLWEyNjYt MTYyYjAyYmIxNWJkLzEvdG9tSU10dnRDcGU4Z21hZDlVOWtfbGF0MXVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi85ZWRlOTItYTgzOC00MGJjLWEyNjYtMTYyYjAyYmIxNWJk LzEvVUJSWndDZW9iaHBWY0otR0NUZi1MNEd6RXZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAk+kwDQYJ KoZIhvcNAQELBQADggEBADH8/rpP6UnyjIqszWBbxBMaJ3TFIZGCObsjudsMowsX 3so+U0uAYkj7WrKeDu8PNLdDyz2pXh+e1uuiy5zwkG9v4HYQLgE3gWKTDNE8aBge GpqDYvYo4U3+vnuWjoiZxeBUrK840nAR1oFXsP2m6+mJ5n7sIILzgt9ExSThd5ID DTB953TS4G6xhsUWgKvAVbnnj+3/Y7IZKuG3jP+PQdHQGrhFbMF6j8vXbKsRvOXN ww3GGGQ8vailk9FvNTUrd00gQl2/YMNWHELgcJti+c2NrnkMs3NvzY5Mg//U5FW/ FBmp+6Ph0nyqj7rfNVunA8pSGqMRVgoTDLs/pXrafYg= -----END CERTIFICATE-----Generated at Tue Jan 20 11:23:36 2026 by rpki-client