This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7a6545-5277-40f3-b366-2ea87e6ea2a0/1/TDVVAVJu7KfAhiGr1m5Du1HlA18.roa File: TDVVAVJu7KfAhiGr1m5Du1HlA18.roa (raw, json) Hash identifier: li+URB3yo8nZmvZyiiGhy9aGaIwk3rYi2nbOJFauLR0= Subject key identifier: 4C:35:55:01:52:6E:EC:A7:C0:86:21:AB:D6:6E:43:BB:51:E5:03:5F Certificate issuer: /CN=d356ae625d9506df4a3e577b24a86fce3c73a8f8 Certificate serial: 019B791054C236A0D68631B172C933089186 Authority key identifier: D3:56:AE:62:5D:95:06:DF:4A:3E:57:7B:24:A8:6F:CE:3C:73:A8:F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/01auYl2VBt9KPld7JKhvzjxzqPg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7a6545-5277-40f3-b366-2ea87e6ea2a0/1/TDVVAVJu7KfAhiGr1m5Du1HlA18.roa Signing time: Thu 01 Jan 2026 10:17:52 +0000 ROA not before: Thu 01 Jan 2026 10:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39590 IP address blocks: 109.105.124.0/22 maxlen: 24 2001:948:40::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7a6545-5277-40f3-b366-2ea87e6ea2a0/1/01auYl2VBt9KPld7JKhvzjxzqPg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/7a6545-5277-40f3-b366-2ea87e6ea2a0/1/01auYl2VBt9KPld7JKhvzjxzqPg.mft rsync://rpki.ripe.net/repository/DEFAULT/01auYl2VBt9KPld7JKhvzjxzqPg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 09:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:54:c2:36:a0:d6:86:31:b1:72:c9:33:08:91:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d356ae625d9506df4a3e577b24a86fce3c73a8f8 Validity Not Before: Jan 1 10:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4c355501526eeca7c08621abd66e43bb51e5035f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:70:7a:97:ca:52:e9:47:11:01:74:a6:1b:ab: b4:15:de:12:41:d0:7d:59:a5:7f:66:a1:9b:d2:2a: b2:aa:25:a1:ee:13:42:30:c8:ed:16:ea:c6:3f:7b: c3:cb:ee:4b:f9:5e:35:7c:0c:1d:eb:c1:a8:13:42: c7:27:ba:81:fd:4e:ea:c0:96:9d:0c:a4:0f:ff:28: 06:45:cd:b2:88:0c:33:e4:a9:17:1e:fa:f4:23:56: 39:24:2e:ca:88:c4:0a:4d:59:61:49:ad:5f:55:60: a4:22:fe:41:ee:a6:6b:f0:92:92:b7:bb:26:94:cd: 5f:41:32:b6:0a:4e:fe:ed:9e:df:c0:f1:b2:55:86: da:74:58:9a:12:54:a7:97:82:2e:82:69:6b:26:ff: 66:8e:42:c5:b9:7e:08:8e:0f:5f:16:13:90:a1:ec: 59:98:c7:4e:69:b7:4d:65:95:83:15:be:3c:3f:33: 06:1f:38:14:b7:c0:37:15:53:6d:a3:6a:60:fb:9c: fe:57:a9:d9:ac:3c:c8:4e:b2:63:bf:c6:b6:45:b2: 1e:eb:12:21:0e:52:8e:b1:3a:06:7c:52:f7:78:fb: 79:38:b3:7d:25:2c:d2:22:9c:98:13:46:c7:54:4a: ef:f7:3a:78:e0:ae:ea:91:00:78:94:99:23:ab:96: 9d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:35:55:01:52:6E:EC:A7:C0:86:21:AB:D6:6E:43:BB:51:E5:03:5F X509v3 Authority Key Identifier: keyid:D3:56:AE:62:5D:95:06:DF:4A:3E:57:7B:24:A8:6F:CE:3C:73:A8:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/01auYl2VBt9KPld7JKhvzjxzqPg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7a6545-5277-40f3-b366-2ea87e6ea2a0/1/TDVVAVJu7KfAhiGr1m5Du1HlA18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7a6545-5277-40f3-b366-2ea87e6ea2a0/1/01auYl2VBt9KPld7JKhvzjxzqPg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.105.124.0/22 IPv6: 2001:948:40::/42 Signature Algorithm: sha256WithRSAEncryption 01:5f:31:d3:57:7e:4d:6a:e5:c8:a5:ef:47:ef:e5:df:93:d7: dc:c3:20:c2:aa:e6:96:18:c8:16:83:4e:02:1d:8d:d9:17:63: 56:1a:bd:23:b3:08:74:d6:ec:e3:95:f3:05:bc:7c:b0:3d:9d: 2b:7c:9a:18:b0:74:8a:b8:39:c0:43:2c:c5:cf:51:ea:50:20: 30:82:0b:c4:c1:ab:93:83:90:9d:00:11:df:c0:2c:f2:14:d5: 83:c2:5c:f7:4b:5c:f4:11:0a:d7:e1:a3:8c:c7:ce:e4:60:e9: 1b:9c:c6:3a:29:f8:3d:57:16:ad:7d:d4:13:56:79:13:8d:50: e0:05:51:f1:05:73:b6:b5:42:ad:06:c2:56:90:4b:41:b4:1e: 83:53:05:9c:a9:bb:53:2a:72:32:da:ae:9b:5e:ce:74:5a:f0: d2:c4:fe:69:1e:99:7b:22:39:4e:7e:50:e8:7c:35:86:31:1c: 80:b5:e4:52:79:ba:ba:fb:8a:49:31:ac:ee:a9:75:f6:45:17: 14:3d:bc:99:1a:84:6b:a4:10:75:d8:6d:ae:41:d7:41:4f:e5: 8c:67:59:7c:09:d5:3a:ad:c8:51:ac:ce:d3:91:e7:31:76:e7: 0f:4b:13:94:77:c2:93:d3:bc:0b:43:ab:fb:77:1a:ed:43:a7: 66:b1:a0:ed -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt5EFTCNqDWhjGxcskzCJGGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzNTZhZTYyNWQ5NTA2ZGY0YTNlNTc3YjI0YTg2ZmNlM2M3 M2E4ZjgwHhcNMjYwMTAxMTAxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YzM1NTUwMTUyNmVlY2E3YzA4NjIxYWJkNjZlNDNiYjUxZTUwMzVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhXB6l8pS6UcRAXSmG6u0Fd4SQdB9 WaV/ZqGb0iqyqiWh7hNCMMjtFurGP3vDy+5L+V41fAwd68GoE0LHJ7qB/U7qwJad DKQP/ygGRc2yiAwz5KkXHvr0I1Y5JC7KiMQKTVlhSa1fVWCkIv5B7qZr8JKSt7sm lM1fQTK2Ck7+7Z7fwPGyVYbadFiaElSnl4IugmlrJv9mjkLFuX4Ijg9fFhOQoexZ mMdOabdNZZWDFb48PzMGHzgUt8A3FVNto2pg+5z+V6nZrDzITrJjv8a2RbIe6xIh DlKOsToGfFL3ePt5OLN9JSzSIpyYE0bHVErv9zp44K7qkQB4lJkjq5ad8QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFEw1VQFSbuynwIYhq9ZuQ7tR5QNfMB8GA1UdIwQY MBaAFNNWrmJdlQbfSj5XeySob848c6j4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDFhdVlsMlZCdDlLUGxkN0pLaHZ6anh6cVBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83YTY1NDUtNTI3Ny00MGYzLWIzNjYt MmVhODdlNmVhMmEwLzEvVERWVkFWSnU3S2ZBaGlHcjFtNUR1MUhsQTE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS83YTY1NDUtNTI3Ny00MGYzLWIzNjYtMmVhODdlNmVhMmEw LzEvMDFhdVlsMlZCdDlLUGxkN0pLaHZ6anh6cVBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCbWl8MA8E AgACMAkDBwYgAQlIAEAwDQYJKoZIhvcNAQELBQADggEBAAFfMdNXfk1q5cil70fv 5d+T19zDIMKq5pYYyBaDTgIdjdkXY1YavSOzCHTW7OOV8wW8fLA9nSt8mhiwdIq4 OcBDLMXPUepQIDCCC8TBq5ODkJ0AEd/ALPIU1YPCXPdLXPQRCtfho4zHzuRg6Ruc xjop+D1XFq191BNWeRONUOAFUfEFc7a1Qq0GwlaQS0G0HoNTBZypu1MqcjLarpte znRa8NLE/mkemXsiOU5+UOh8NYYxHIC15FJ5urr7ikkxrO6pdfZFFxQ9vJkahGuk EHXYba5B10FP5YxnWXwJ1TqtyFGsztOR5zF25w9LE5R3wpPTvAtDq/t3Gu1Dp2ax oO0= -----END CERTIFICATE-----Generated at Thu Jan 1 15:53:50 2026 by rpki-client