This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/UvFRLcdnN72RMKcY-6GkngwKWkg.roa File: UvFRLcdnN72RMKcY-6GkngwKWkg.roa (raw, json) Hash identifier: 8Itln6PEQnR3OxkcnuhYuWLxcSYWOcJ+PQmytB21lHs= Subject key identifier: 52:F1:51:2D:C7:67:37:BD:91:30:A7:18:FB:A1:A4:9E:0C:0A:5A:48 Certificate issuer: /CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90 Certificate serial: 019B7F812029D82AAC557ADAF27DF82E7413 Authority key identifier: BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/UvFRLcdnN72RMKcY-6GkngwKWkg.roa Signing time: Fri 02 Jan 2026 16:18:47 +0000 ROA not before: Fri 02 Jan 2026 16:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214405 IP address blocks: 212.32.45.0/24 maxlen: 24 2a01:fe00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:20:29:d8:2a:ac:55:7a:da:f2:7d:f8:2e:74:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90 Validity Not Before: Jan 2 16:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52f1512dc76737bd9130a718fba1a49e0c0a5a48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e7:81:58:a8:52:b9:4e:0e:da:da:3c:33:57: 5d:a9:0a:0c:0c:c6:74:30:1e:a0:08:c5:8d:4a:1d: 23:f5:37:f6:2d:ac:6d:b5:e6:7f:a5:a7:33:c5:13: f8:ce:55:00:cb:04:70:ed:58:8e:59:fd:39:55:ce: f6:cc:6e:e3:09:e8:dc:1b:e1:1a:fa:da:e3:96:c3: e4:bd:02:40:4d:75:9b:df:5d:db:b9:c0:c2:5e:2a: 6f:af:e4:03:2d:f8:82:af:e8:af:d8:0b:32:c8:cb: 6b:e4:aa:0e:f3:61:ac:2d:7a:92:2a:ef:1a:62:16: cc:ea:5a:7e:bf:e4:4c:94:d5:78:72:12:64:7b:0a: a1:99:c8:6a:fc:a6:b8:c7:ff:82:ea:93:d9:05:4e: e2:6a:9f:61:f2:b4:b4:8e:9a:d8:f0:6d:50:a6:3b: c1:0c:e1:9c:f1:44:be:72:69:45:3a:de:15:8c:a0: a6:93:36:80:25:77:4e:b9:3d:72:33:18:e3:56:19: 86:0e:69:4d:ad:99:ca:7c:fb:40:59:27:b8:8e:e9: 25:6a:f1:3e:c0:be:0c:6a:c5:75:c0:72:46:49:6f: 07:3d:02:2d:12:c1:47:94:22:fe:2d:63:74:c4:25: ad:12:99:62:90:bc:86:f6:6e:c6:18:f3:9d:7d:b7: 48:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F1:51:2D:C7:67:37:BD:91:30:A7:18:FB:A1:A4:9E:0C:0A:5A:48 X509v3 Authority Key Identifier: keyid:BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/UvFRLcdnN72RMKcY-6GkngwKWkg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.32.45.0/24 IPv6: 2a01:fe00::/48 Signature Algorithm: sha256WithRSAEncryption 67:42:d5:46:d5:61:6f:da:af:ad:8e:a8:bf:77:93:ea:53:62: 6c:b6:e4:d6:51:91:9c:bb:6d:36:d9:82:11:26:93:68:c5:de: da:78:33:db:04:d3:ee:6a:62:58:f1:ac:9c:af:75:72:ee:0d: d5:02:22:96:bd:06:9c:8e:03:48:3c:f0:95:28:d3:23:17:f4: 85:1a:60:8a:f8:d3:70:a1:c3:68:8a:09:ef:74:18:13:29:c8: ee:8e:f3:28:77:b5:46:dd:be:13:77:6e:61:53:f0:0a:79:a7: 3b:cd:3c:07:87:ea:4f:8b:0c:0b:06:47:60:4e:8d:c0:00:72: 74:e0:fa:41:18:07:32:b7:f5:f1:36:de:58:cf:79:49:74:84: b3:5b:28:d6:f2:72:56:77:f6:52:75:42:19:40:9b:a4:86:23: e9:d0:6e:07:ae:b7:39:57:c9:21:42:c6:38:d1:0d:9d:ad:14: a5:54:fc:9c:ae:34:30:e8:8e:b9:7b:16:3b:bc:70:3f:1c:a9: 3b:e6:61:ab:1d:4d:be:68:5d:dc:3f:2c:d7:d6:e9:a2:a3:23: a4:ff:56:a9:bf:8c:d9:5e:d6:14:18:90:8b:75:66:a4:e5:0f: b1:6b:44:5e:2f:c5:bc:9b:09:27:a0:67:af:b3:30:36:fb:26: 2d:0b:82:37 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/gSAp2CqsVXra8n34LnQTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmOGQ4NTQ3MzQyZTJmYzllY2ZhZGZjZWYwMGNmMjczZWY5 ZDZlOTAwHhcNMjYwMTAyMTYxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmYxNTEyZGM3NjczN2JkOTEzMGE3MThmYmExYTQ5ZTBjMGE1YTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtueBWKhSuU4O2to8M1ddqQoMDMZ0 MB6gCMWNSh0j9Tf2LaxtteZ/paczxRP4zlUAywRw7ViOWf05Vc72zG7jCejcG+Ea +trjlsPkvQJATXWb313bucDCXipvr+QDLfiCr+iv2AsyyMtr5KoO82GsLXqSKu8a YhbM6lp+v+RMlNV4chJkewqhmchq/Ka4x/+C6pPZBU7iap9h8rS0jprY8G1QpjvB DOGc8US+cmlFOt4VjKCmkzaAJXdOuT1yMxjjVhmGDmlNrZnKfPtAWSe4juklavE+ wL4MasV1wHJGSW8HPQItEsFHlCL+LWN0xCWtEplikLyG9m7GGPOdfbdIOQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFFLxUS3HZze9kTCnGPuhpJ4MClpIMB8GA1UdIwQY MBaAFL+NhUc0Li/J7PrfzvAM8nPvnW6QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjQyRlJ6UXVMOG5zLXRfTzhBenljLS1kYnBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iNmY3MzQtYzY1NS00M2ExLTk5MzQt MWU3MTkzMGZjYzBmLzEvVXZGUkxjZG5ONzJSTUtjWS02R2tuZ3dLV2tnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9iNmY3MzQtYzY1NS00M2ExLTk5MzQtMWU3MTkzMGZjYzBm LzEvdjQyRlJ6UXVMOG5zLXRfTzhBenljLS1kYnBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQA1CAtMA8E AgACMAkDBwAqAf4AAAAwDQYJKoZIhvcNAQELBQADggEBAGdC1UbVYW/ar62OqL93 k+pTYmy25NZRkZy7bTbZghEmk2jF3tp4M9sE0+5qYljxrJyvdXLuDdUCIpa9BpyO A0g88JUo0yMX9IUaYIr403Chw2iKCe90GBMpyO6O8yh3tUbdvhN3bmFT8Ap5pzvN PAeH6k+LDAsGR2BOjcAAcnTg+kEYBzK39fE23ljPeUl0hLNbKNbyclZ39lJ1QhlA m6SGI+nQbgeutzlXySFCxjjRDZ2tFKVU/JyuNDDojrl7Fju8cD8cqTvmYasdTb5o Xdw/LNfW6aKjI6T/Vqm/jNle1hQYkIt1ZqTlD7FrRF4vxbybCSegZ6+zMDb7Ji0L gjc= -----END CERTIFICATE-----Generated at Tue Jan 27 07:44:11 2026 by rpki-client