This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/11af42-d3ed-43cd-8274-742dc0c970c0/1/uZvBL7Adjps3YJPzPab2422Kfhw.roa File: uZvBL7Adjps3YJPzPab2422Kfhw.roa (raw, json) Hash identifier: jc1WIld0OO6y7I+8/9pDJkxR96M4dxWB/ebX7E2Vo1w= Subject key identifier: B9:9B:C1:2F:B0:1D:8E:9B:37:60:93:F3:3D:A6:F6:E3:6D:8A:7E:1C Certificate issuer: /CN=e1cadc8a421c1f22f1e2904ccfdbbcec5dbe1b11 Certificate serial: 019B7AC8A5B737DB490E9A2A1A581581B94F Authority key identifier: E1:CA:DC:8A:42:1C:1F:22:F1:E2:90:4C:CF:DB:BC:EC:5D:BE:1B:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4crcikIcHyLx4pBMz9u87F2-GxE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/11af42-d3ed-43cd-8274-742dc0c970c0/1/uZvBL7Adjps3YJPzPab2422Kfhw.roa Signing time: Thu 01 Jan 2026 18:18:48 +0000 ROA not before: Thu 01 Jan 2026 18:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214324 IP address blocks: 212.40.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/11af42-d3ed-43cd-8274-742dc0c970c0/1/4crcikIcHyLx4pBMz9u87F2-GxE.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/11af42-d3ed-43cd-8274-742dc0c970c0/1/4crcikIcHyLx4pBMz9u87F2-GxE.mft rsync://rpki.ripe.net/repository/DEFAULT/4crcikIcHyLx4pBMz9u87F2-GxE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:a5:b7:37:db:49:0e:9a:2a:1a:58:15:81:b9:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1cadc8a421c1f22f1e2904ccfdbbcec5dbe1b11 Validity Not Before: Jan 1 18:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b99bc12fb01d8e9b376093f33da6f6e36d8a7e1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bd:fc:5e:f8:6e:95:f3:0c:c8:a5:28:a9:d4: 88:c1:e0:69:bf:77:4b:b8:5f:47:02:f3:59:bb:2c: 3a:c8:6d:9c:b0:26:dc:43:dd:78:b1:47:25:da:44: 82:20:a7:ab:32:f9:14:59:28:4e:9f:84:4c:03:2c: 93:63:1a:a0:95:67:a1:6a:f2:9c:fe:45:f6:cc:4b: a7:2a:2e:86:b3:cc:68:c2:e2:dd:dd:ca:01:ee:e2: 86:9a:78:5e:49:9f:59:30:28:99:0d:db:5a:f5:5d: 65:c6:61:6f:72:0a:a4:4b:d9:bc:d2:12:88:cf:32: 08:ab:bf:b0:ca:33:3f:49:93:7b:f7:b8:fc:b2:01: 53:80:6a:b9:88:03:31:18:c9:c1:a6:c4:c1:d2:62: d6:fd:d1:22:de:ac:7f:20:31:8b:c7:76:92:ed:1b: 7c:51:fa:14:69:92:7a:46:8b:cc:86:36:8d:59:00: e7:36:f5:76:f4:ea:51:20:eb:d1:07:40:2b:2b:70: cd:70:46:5d:b3:2e:2c:0f:f6:0e:17:bb:b7:e0:0e: 11:1f:28:f1:c5:e8:d1:54:22:ed:11:ce:1b:26:2f: 25:ac:70:59:c2:cf:ee:6e:97:cc:9c:b4:88:63:9c: aa:f5:eb:e3:e7:88:bb:26:34:b0:4a:24:b7:56:16: f7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:9B:C1:2F:B0:1D:8E:9B:37:60:93:F3:3D:A6:F6:E3:6D:8A:7E:1C X509v3 Authority Key Identifier: keyid:E1:CA:DC:8A:42:1C:1F:22:F1:E2:90:4C:CF:DB:BC:EC:5D:BE:1B:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4crcikIcHyLx4pBMz9u87F2-GxE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/11af42-d3ed-43cd-8274-742dc0c970c0/1/uZvBL7Adjps3YJPzPab2422Kfhw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/11af42-d3ed-43cd-8274-742dc0c970c0/1/4crcikIcHyLx4pBMz9u87F2-GxE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.40.48.0/24 Signature Algorithm: sha256WithRSAEncryption 12:e1:fb:d6:ab:b2:04:34:5b:a3:62:c2:0d:d0:80:27:f7:79: aa:81:e2:ae:77:03:24:c2:9a:c0:c4:89:5b:b1:36:2e:45:20: 8d:2c:bb:07:18:13:4d:3f:89:0f:5d:3c:24:55:8f:be:b2:91: 39:74:d9:56:3a:29:a5:c3:19:b9:a0:59:54:64:6e:80:b9:ec: d7:21:0e:94:25:b4:58:ae:47:a3:b7:3d:cc:02:1d:fc:20:46: 7a:ff:88:ca:55:14:e2:2d:a1:a6:90:05:cb:83:7b:5a:60:63: 68:8d:e2:cf:24:b0:29:4e:c2:50:75:3f:fc:53:41:a8:2d:1a: 6e:52:e4:4f:00:a3:80:2c:b7:7d:1f:43:5b:07:b2:7b:86:cd: 22:a4:22:8c:a0:10:6a:5a:ee:b1:00:73:29:83:66:b5:cb:26: ea:47:17:e3:23:b8:9d:97:db:70:fd:08:b3:9f:40:4a:dd:f6: 82:69:57:40:c3:8d:68:e0:25:14:4e:c1:bc:64:30:5d:c8:fa: 24:6b:c4:68:a8:a7:59:3a:ea:ef:24:15:b8:9e:aa:c5:39:8a: 8f:09:7b:f4:ca:e0:6b:d6:29:70:e2:3a:a8:c1:63:c6:ed:e9: 53:cf:cb:e7:db:55:e7:64:20:4e:0f:3f:a8:b3:4f:d5:28:f0: 31:1a:b0:8e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yKW3N9tJDpoqGlgVgblPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxY2FkYzhhNDIxYzFmMjJmMWUyOTA0Y2NmZGJiY2VjNWRi ZTFiMTEwHhcNMjYwMTAxMTgxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTliYzEyZmIwMWQ4ZTliMzc2MDkzZjMzZGE2ZjZlMzZkOGE3ZTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvr38XvhulfMMyKUoqdSIweBpv3dL uF9HAvNZuyw6yG2csCbcQ914sUcl2kSCIKerMvkUWShOn4RMAyyTYxqglWehavKc /kX2zEunKi6Gs8xowuLd3coB7uKGmnheSZ9ZMCiZDdta9V1lxmFvcgqkS9m80hKI zzIIq7+wyjM/SZN797j8sgFTgGq5iAMxGMnBpsTB0mLW/dEi3qx/IDGLx3aS7Rt8 UfoUaZJ6RovMhjaNWQDnNvV29OpRIOvRB0ArK3DNcEZdsy4sD/YOF7u34A4RHyjx xejRVCLtEc4bJi8lrHBZws/ubpfMnLSIY5yq9evj54i7JjSwSiS3Vhb3DQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLmbwS+wHY6bN2CT8z2m9uNtin4cMB8GA1UdIwQY MBaAFOHK3IpCHB8i8eKQTM/bvOxdvhsRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGNyY2lrSWNIeUx4NHBCTXo5dTg3RjItR3hFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8xMWFmNDItZDNlZC00M2NkLTgyNzQt NzQyZGMwYzk3MGMwLzEvdVp2Qkw3QWRqcHMzWUpQelBhYjI0MjJLZmh3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8xMWFmNDItZDNlZC00M2NkLTgyNzQtNzQyZGMwYzk3MGMw LzEvNGNyY2lrSWNIeUx4NHBCTXo5dTg3RjItR3hFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1CgwMA0G CSqGSIb3DQEBCwUAA4IBAQAS4fvWq7IENFujYsIN0IAn93mqgeKudwMkwprAxIlb sTYuRSCNLLsHGBNNP4kPXTwkVY++spE5dNlWOimlwxm5oFlUZG6AuezXIQ6UJbRY rkejtz3MAh38IEZ6/4jKVRTiLaGmkAXLg3taYGNojeLPJLApTsJQdT/8U0GoLRpu UuRPAKOALLd9H0NbB7J7hs0ipCKMoBBqWu6xAHMpg2a1yybqRxfjI7idl9tw/Qiz n0BK3faCaVdAw41o4CUUTsG8ZDBdyPoka8RoqKdZOurvJBW4nqrFOYqPCXv0yuBr 1ilw4jqowWPG7elTz8vn21XnZCBODz+os0/VKPAxGrCO -----END CERTIFICATE-----Generated at Mon Jan 26 07:40:14 2026 by rpki-client