This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/ESMuZH3p8eZcfxjSdFlU49_G9BY.roa File: ESMuZH3p8eZcfxjSdFlU49_G9BY.roa (raw, json) Hash identifier: eU/RIl1p7nycsadiq5D1MCtC0gJOFnvD+JDmCJY+OA8= Subject key identifier: 11:23:2E:64:7D:E9:F1:E6:5C:7F:18:D2:74:59:54:E3:DF:C6:F4:16 Certificate issuer: /CN=2455d7fee4a499ecaf11d2d3da8e389de323412f Certificate serial: 019B783519A52F81C1A51424EC9AF28A8B3B Authority key identifier: 24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/ESMuZH3p8eZcfxjSdFlU49_G9BY.roa Signing time: Thu 01 Jan 2026 06:18:24 +0000 ROA not before: Thu 01 Jan 2026 06:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206150 IP address blocks: 212.30.35.0/24 maxlen: 24 212.30.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.mft rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:19:a5:2f:81:c1:a5:14:24:ec:9a:f2:8a:8b:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2455d7fee4a499ecaf11d2d3da8e389de323412f Validity Not Before: Jan 1 06:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=11232e647de9f1e65c7f18d2745954e3dfc6f416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ed:df:af:2a:c2:69:66:5a:70:51:07:89:11: 71:88:15:49:a5:7d:74:7b:37:f8:28:80:ee:e6:6b: 2a:5f:b7:5b:18:28:28:f7:58:20:53:8c:da:90:de: 4b:66:20:0d:65:f5:99:0d:99:fa:49:ac:1b:54:31: ec:ce:8b:15:51:98:3c:20:a9:b6:ee:e0:1d:ca:b5: c6:2f:bc:14:ab:c5:7a:20:a6:c1:81:33:70:76:b6: c9:bc:08:ca:a6:17:1e:89:9a:58:f2:fa:a0:78:5b: 75:a4:60:86:cf:70:71:55:e2:6b:f1:a2:ee:ff:53: e5:3e:c3:74:c1:85:17:65:84:89:c5:f2:82:17:64: a0:a0:d0:38:68:8f:44:ca:0c:e8:79:1c:db:90:a6: ed:f4:44:85:37:7f:c3:7f:bb:f5:d1:75:a3:c7:d7: 9f:f9:ce:1e:67:7e:58:b6:86:43:e5:a2:e2:02:04: 6a:f1:80:4a:0e:05:1c:0a:3c:c7:a1:49:64:4d:a8: 00:c2:61:c2:9f:f5:20:44:9b:c0:dc:e4:a1:f9:26: 1e:e6:9d:ae:0f:25:21:d6:96:b0:a4:06:ad:9a:d7: 10:cc:93:ad:a5:ba:35:5d:60:19:77:67:62:fe:1d: da:60:eb:cb:98:4e:4e:6a:55:7b:d6:d7:36:c3:7a: 7e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:23:2E:64:7D:E9:F1:E6:5C:7F:18:D2:74:59:54:E3:DF:C6:F4:16 X509v3 Authority Key Identifier: keyid:24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/ESMuZH3p8eZcfxjSdFlU49_G9BY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.30.35.0/24 212.30.63.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:27:2d:0a:42:1e:8d:24:7c:3a:c1:5a:f0:97:6d:2f:91:ac: d1:75:fd:f5:7c:2f:5e:7a:c8:1b:0d:2d:aa:10:b7:96:17:c1: e4:58:be:30:eb:51:53:3b:e4:25:9e:b2:cc:e6:6f:ce:dc:1b: 9b:a4:81:87:52:ef:5f:5a:f3:6c:e1:92:7e:0e:02:b6:88:29: 42:33:44:79:8c:f1:a2:2b:d0:ea:88:2d:9b:22:64:79:7b:cb: ee:a5:55:a7:b9:a8:03:bb:ea:3e:c0:cd:ec:6a:c6:59:6b:32: c4:3f:54:94:86:7c:d6:ef:64:ba:ce:86:36:39:dc:22:b8:10: 79:5f:16:ee:86:8c:62:a1:64:e6:5e:4b:e7:13:0d:57:96:d2: 13:0b:5b:00:4c:27:0e:7f:ff:7c:59:13:ce:b3:ac:b7:9c:64: 00:d5:ce:35:c3:80:64:f2:ee:b6:ce:65:9a:2f:59:64:b3:16: 2c:b6:09:26:a7:c0:a3:48:ca:15:94:f5:3f:37:35:9c:40:cc: 3f:e0:93:f7:32:fe:e0:15:9f:c6:c6:1e:b5:b6:2c:52:c4:d1: 32:81:94:ed:af:2a:a7:5e:d3:35:6f:08:a0:7e:3e:6a:a3:31: d7:bc:b6:05:d2:b1:97:e6:24:f1:bb:53:50:ca:37:da:ba:77: b1:fe:76:9b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NRmlL4HBpRQk7Jryios7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0NTVkN2ZlZTRhNDk5ZWNhZjExZDJkM2RhOGUzODlkZTMy MzQxMmYwHhcNMjYwMTAxMDYxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTIzMmU2NDdkZTlmMWU2NWM3ZjE4ZDI3NDU5NTRlM2RmYzZmNDE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0u3fryrCaWZacFEHiRFxiBVJpX10 ezf4KIDu5msqX7dbGCgo91ggU4zakN5LZiANZfWZDZn6SawbVDHszosVUZg8IKm2 7uAdyrXGL7wUq8V6IKbBgTNwdrbJvAjKphceiZpY8vqgeFt1pGCGz3BxVeJr8aLu /1PlPsN0wYUXZYSJxfKCF2SgoNA4aI9EygzoeRzbkKbt9ESFN3/Df7v10XWjx9ef +c4eZ35YtoZD5aLiAgRq8YBKDgUcCjzHoUlkTagAwmHCn/UgRJvA3OSh+SYe5p2u DyUh1pawpAatmtcQzJOtpbo1XWAZd2di/h3aYOvLmE5OalV71tc2w3p+aQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBEjLmR96fHmXH8Y0nRZVOPfxvQWMB8GA1UdIwQY MBaAFCRV1/7kpJnsrxHS09qOOJ3jI0EvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkZYWF91U2ttZXl2RWRMVDJvNDRuZU1qUVM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8zZmZiNzYtOTkzMS00OTQyLTlkYTEt MWUwNDY1NTEzYjYzLzEvRVNNdVpIM3A4ZVpjZnhqU2RGbFU0OV9HOUJZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy8zZmZiNzYtOTkzMS00OTQyLTlkYTEtMWUwNDY1NTEzYjYz LzEvSkZYWF91U2ttZXl2RWRMVDJvNDRuZU1qUVM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA1B4jAwQA 1B4/MA0GCSqGSIb3DQEBCwUAA4IBAQAqJy0KQh6NJHw6wVrwl20vkazRdf31fC9e esgbDS2qELeWF8HkWL4w61FTO+QlnrLM5m/O3BubpIGHUu9fWvNs4ZJ+DgK2iClC M0R5jPGiK9DqiC2bImR5e8vupVWnuagDu+o+wM3sasZZazLEP1SUhnzW72S6zoY2 OdwiuBB5XxbuhoxioWTmXkvnEw1XltITC1sATCcOf/98WRPOs6y3nGQA1c41w4Bk 8u62zmWaL1lksxYstgkmp8CjSMoVlPU/NzWcQMw/4JP3Mv7gFZ/Gxh61tixSxNEy gZTtryqnXtM1bwigfj5qozHXvLYF0rGX5iTxu1NQyjfaunex/nab -----END CERTIFICATE-----Generated at Wed Jan 21 16:14:47 2026 by rpki-client