This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/ucwG4CaoAiwGKGTJqQHLPIY-zv4.roa File: ucwG4CaoAiwGKGTJqQHLPIY-zv4.roa (raw, json) Hash identifier: 8PZlZM6lXcGqnU2IQOrIMigvJJRBeS8QEgrG/QSjxyc= Subject key identifier: B9:CC:06:E0:26:A8:02:2C:06:28:64:C9:A9:01:CB:3C:86:3E:CE:FE Certificate issuer: /CN=9bed36af13da482fdf79fb5403e5074860eecd0d Certificate serial: 019B7A5ACBD271B9EFB5981DA311409B3291 Authority key identifier: 9B:ED:36:AF:13:DA:48:2F:DF:79:FB:54:03:E5:07:48:60:EE:CD:0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m-02rxPaSC_feftUA-UHSGDuzQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/ucwG4CaoAiwGKGTJqQHLPIY-zv4.roa Signing time: Thu 01 Jan 2026 16:18:49 +0000 ROA not before: Thu 01 Jan 2026 16:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39232 IP address blocks: 134.19.208.0/22 maxlen: 22 134.19.208.0/23 maxlen: 23 134.19.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/m-02rxPaSC_feftUA-UHSGDuzQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/m-02rxPaSC_feftUA-UHSGDuzQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/m-02rxPaSC_feftUA-UHSGDuzQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:cb:d2:71:b9:ef:b5:98:1d:a3:11:40:9b:32:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bed36af13da482fdf79fb5403e5074860eecd0d Validity Not Before: Jan 1 16:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b9cc06e026a8022c062864c9a901cb3c863ecefe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a4:58:2c:a8:9d:42:37:4b:ef:3f:64:1a:9b: eb:8c:2f:17:5f:2c:e2:d9:fe:8f:d8:fd:76:f4:93: 88:35:1d:34:a3:fe:8a:08:73:91:34:66:f8:4c:86: df:35:ef:3e:0f:0d:2b:37:8d:52:92:cf:df:1c:28: 2e:32:66:bb:52:a9:a0:ec:f3:41:9b:e1:68:9b:de: 25:5c:1d:2f:4d:e4:1b:3e:67:50:c7:9d:df:85:0f: 77:b0:d8:d2:af:69:0d:f4:bb:46:a8:d6:d3:3e:e6: f5:26:ac:16:69:d2:55:2d:9c:fd:12:a5:9e:bf:d4: 05:d3:d6:da:0b:95:21:86:0f:53:19:04:49:31:4e: 6f:34:db:59:e7:3e:eb:84:87:ef:05:fa:6b:8f:f2: c5:9b:92:bb:c0:1a:3d:44:ba:13:1b:58:d1:2a:dd: 23:b7:fc:5f:3d:86:e4:8c:fc:76:c8:85:be:91:3c: 20:1e:7c:0a:56:1e:93:b8:8d:42:56:bc:3f:c2:a7: a9:c0:6c:44:72:a4:e4:db:6b:cd:e5:9d:6b:fb:31: 45:f5:fe:98:8b:18:68:8c:2f:9c:4d:cc:30:c2:91: 28:83:ed:22:8b:ec:8b:ef:84:3c:6d:fa:a5:f6:2f: 0e:2f:61:82:e8:ec:25:43:be:c0:d2:1d:63:6b:06: 9d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:CC:06:E0:26:A8:02:2C:06:28:64:C9:A9:01:CB:3C:86:3E:CE:FE X509v3 Authority Key Identifier: keyid:9B:ED:36:AF:13:DA:48:2F:DF:79:FB:54:03:E5:07:48:60:EE:CD:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m-02rxPaSC_feftUA-UHSGDuzQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/ucwG4CaoAiwGKGTJqQHLPIY-zv4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/m-02rxPaSC_feftUA-UHSGDuzQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.19.208.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:be:ac:bd:a4:77:96:5a:0c:20:32:c7:fc:8e:75:cf:6d:28: 70:3b:5e:08:d3:ac:70:af:46:b6:e1:f1:b6:65:01:09:7d:96: 95:ec:b7:ae:c1:de:89:24:39:85:b9:5a:26:a7:1b:0b:ed:53: d7:b7:bc:27:08:e0:e7:d7:4b:b4:4c:05:af:f6:b4:ac:a2:37: 1e:af:f9:29:59:ac:4f:7c:b6:63:96:67:9e:1b:5e:87:5b:b6: f4:33:04:46:a0:fc:9f:8a:21:a8:32:65:d2:6a:ec:8b:65:f8: 3d:09:03:81:28:19:e2:3f:27:83:20:37:11:6d:92:c8:6f:2a: ba:35:a1:d4:6c:3e:60:c7:a1:87:27:06:71:3d:2f:06:27:3a: 32:06:37:2c:32:fb:fb:4c:35:f5:5c:a0:ce:df:1d:f1:64:f4: 4e:96:8f:0e:89:4d:80:0c:44:b1:10:18:f7:cd:ac:bd:cf:c3: 31:f4:7d:90:cd:f3:02:de:6b:20:5a:2c:23:96:b1:f7:fe:23: ae:79:fb:53:6a:18:d1:d3:c2:8b:08:7d:57:e5:32:05:82:ac: 9c:ce:b5:25:42:6f:4e:f5:6e:fa:90:5a:6d:c6:7c:a9:f3:95: 9a:18:7c:2c:cd:e2:91:14:31:43:db:1a:8f:af:75:48:2f:3e: d0:c6:be:ea -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WsvScbnvtZgdoxFAmzKRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliZWQzNmFmMTNkYTQ4MmZkZjc5ZmI1NDAzZTUwNzQ4NjBl ZWNkMGQwHhcNMjYwMTAxMTYxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOWNjMDZlMDI2YTgwMjJjMDYyODY0YzlhOTAxY2IzYzg2M2VjZWZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqRYLKidQjdL7z9kGpvrjC8XXyzi 2f6P2P129JOINR00o/6KCHORNGb4TIbfNe8+Dw0rN41Sks/fHCguMma7Uqmg7PNB m+Fom94lXB0vTeQbPmdQx53fhQ93sNjSr2kN9LtGqNbTPub1JqwWadJVLZz9EqWe v9QF09baC5Uhhg9TGQRJMU5vNNtZ5z7rhIfvBfprj/LFm5K7wBo9RLoTG1jRKt0j t/xfPYbkjPx2yIW+kTwgHnwKVh6TuI1CVrw/wqepwGxEcqTk22vN5Z1r+zFF9f6Y ixhojC+cTcwwwpEog+0ii+yL74Q8bfql9i8OL2GC6OwlQ77A0h1jawadpQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLnMBuAmqAIsBihkyakByzyGPs7+MB8GA1UdIwQY MBaAFJvtNq8T2kgv33n7VAPlB0hg7s0NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbS0wMnJ4UGFTQ19mZWZ0VUEtVUhTR0R1elEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni80YjAyODMtYTkwYy00ZDY0LTgzMDEt ZDIyMWViZDA4MThkLzEvdWN3RzRDYW9BaXdHS0dUSnFRSExQSVktenY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni80YjAyODMtYTkwYy00ZDY0LTgzMDEtZDIyMWViZDA4MThk LzEvbS0wMnJ4UGFTQ19mZWZ0VUEtVUhTR0R1elEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQChhPQMA0G CSqGSIb3DQEBCwUAA4IBAQA6vqy9pHeWWgwgMsf8jnXPbShwO14I06xwr0a24fG2 ZQEJfZaV7Leuwd6JJDmFuVompxsL7VPXt7wnCODn10u0TAWv9rSsojcer/kpWaxP fLZjlmeeG16HW7b0MwRGoPyfiiGoMmXSauyLZfg9CQOBKBniPyeDIDcRbZLIbyq6 NaHUbD5gx6GHJwZxPS8GJzoyBjcsMvv7TDX1XKDO3x3xZPROlo8OiU2ADESxEBj3 zay9z8Mx9H2QzfMC3msgWiwjlrH3/iOueftTahjR08KLCH1X5TIFgqyczrUlQm9O 9W76kFptxnyp85WaGHwszeKRFDFD2xqPr3VILz7Qxr7q -----END CERTIFICATE-----Generated at Mon Jan 26 13:46:30 2026 by rpki-client