This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/UpZ-DRH2FLqKcZot9WnKKGPDaxI.roa File: UpZ-DRH2FLqKcZot9WnKKGPDaxI.roa (raw, json) Hash identifier: Z2/3lO45yvIZPeXxsjAynXOHDKVBDLOjLTwLnTbPDbU= Subject key identifier: 52:96:7E:0D:11:F6:14:BA:8A:71:9A:2D:F5:69:CA:28:63:C3:6B:12 Certificate issuer: /CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc Certificate serial: 019B7BA37AFD8684B239520914629A465E24 Authority key identifier: DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/UpZ-DRH2FLqKcZot9WnKKGPDaxI.roa Signing time: Thu 01 Jan 2026 22:17:50 +0000 ROA not before: Thu 01 Jan 2026 22:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 212.46.57.0/24 maxlen: 24 2a12:fc0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 16:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:7a:fd:86:84:b2:39:52:09:14:62:9a:46:5e:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc Validity Not Before: Jan 1 22:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52967e0d11f614ba8a719a2df569ca2863c36b12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e0:0d:be:51:80:fa:24:35:5b:00:b7:56:9f: 38:2c:7f:c7:5d:2b:86:8b:18:ba:a7:e3:24:05:40: b0:2e:9d:ca:2c:74:8a:88:69:5c:18:d4:ba:11:ab: ea:0b:7a:f6:83:1f:c7:8f:9f:c0:91:0e:b6:6f:79: fe:06:db:a9:d8:99:9a:92:6a:e7:87:12:ec:5f:49: 24:25:56:76:1b:56:8c:08:f5:cd:7e:d5:1d:de:d3: 97:a5:06:86:73:ce:4f:a1:99:a9:d4:25:9c:bc:7b: 21:80:52:dd:4f:fa:86:46:15:04:f9:5e:85:8d:93: 57:35:6e:d1:cf:96:e3:d6:fb:49:2d:b9:79:85:49: 02:dc:07:22:c6:cf:a9:f1:cc:5a:75:0d:f5:bf:b8: 38:01:66:2f:c4:e9:2f:f9:07:7e:2b:56:e6:35:39: 6c:91:b1:1d:15:d7:f0:cb:1a:9b:06:7e:2c:82:04: df:0c:5c:c4:f7:c5:f9:10:32:23:5b:92:b0:69:f7: f2:7c:15:22:0d:68:02:9e:63:55:81:72:39:ac:3b: 0e:24:f9:50:19:82:35:60:01:62:93:9a:05:62:63: 28:f1:48:3b:82:90:87:8b:d2:00:3b:2b:82:af:b4: e8:c5:99:57:bb:49:aa:0a:7d:cb:27:9b:3d:b4:35: 8d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:96:7E:0D:11:F6:14:BA:8A:71:9A:2D:F5:69:CA:28:63:C3:6B:12 X509v3 Authority Key Identifier: keyid:DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/UpZ-DRH2FLqKcZot9WnKKGPDaxI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.46.57.0/24 IPv6: 2a12:fc0::/44 Signature Algorithm: sha256WithRSAEncryption a0:1b:06:99:3b:46:48:5f:63:48:27:d4:7b:47:6a:c1:4f:3d: b0:54:b6:4e:f9:bc:e2:06:c0:f9:86:bf:9b:da:a3:19:74:c8: 93:2b:a2:c7:d4:1f:4a:ab:df:cd:94:52:61:9f:74:45:13:9c: 47:d3:bb:48:cf:7e:e1:70:5d:7e:e9:8f:ab:9d:04:06:2d:1b: 8f:31:fe:78:52:15:86:25:2b:e8:e4:36:c6:db:38:6d:9e:25: ff:76:69:89:63:57:4f:60:73:7f:59:83:74:f0:6b:82:f9:67: cd:cb:c8:1b:66:62:9d:2a:11:a9:91:06:bb:44:0a:82:08:fd: c2:76:62:27:82:91:f9:93:04:13:8a:af:d6:dc:50:eb:8a:c6: 25:13:eb:b2:9d:f7:d4:27:54:7a:f9:ca:e9:76:53:f1:c2:3b: 29:ea:c4:c2:c7:5a:c8:b1:44:cc:a5:36:5c:00:5f:dd:bb:10: a7:c9:03:9b:8f:7e:98:e2:15:3f:30:40:ab:44:61:62:db:7e: fa:81:b3:dc:75:b9:bd:e8:e9:34:65:38:f7:6b:c0:92:85:bc: 66:f4:11:ff:2f:44:f0:92:94:ac:85:36:4b:90:57:af:6d:77: fc:37:45:e1:a9:9d:4d:9a:12:af:33:8d:8e:dd:49:d7:95:85: 9f:34:3b:0e -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7o3r9hoSyOVIJFGKaRl4kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYzMyNjMyYWE5MTU0MjUzYzZkY2QyMzMxZTlhZDY5MjBi NmJkY2MwHhcNMjYwMTAxMjIxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Mjk2N2UwZDExZjYxNGJhOGE3MTlhMmRmNTY5Y2EyODYzYzM2YjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+ANvlGA+iQ1WwC3Vp84LH/HXSuG ixi6p+MkBUCwLp3KLHSKiGlcGNS6EavqC3r2gx/Hj5/AkQ62b3n+Btup2Jmakmrn hxLsX0kkJVZ2G1aMCPXNftUd3tOXpQaGc85PoZmp1CWcvHshgFLdT/qGRhUE+V6F jZNXNW7Rz5bj1vtJLbl5hUkC3Acixs+p8cxadQ31v7g4AWYvxOkv+Qd+K1bmNTls kbEdFdfwyxqbBn4sggTfDFzE98X5EDIjW5KwaffyfBUiDWgCnmNVgXI5rDsOJPlQ GYI1YAFik5oFYmMo8Ug7gpCHi9IAOyuCr7ToxZlXu0mqCn3LJ5s9tDWNFwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFFKWfg0R9hS6inGaLfVpyihjw2sSMB8GA1UdIwQY MBaAFNrDJjKqkVQlPG3NIzHprWkgtr3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2Mjct MjQ2NTRlOTQxYzEyLzEvVXBaLURSSDJGTHFLY1pvdDlXbktLR1BEYXhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2MjctMjQ2NTRlOTQxYzEy LzEvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQA1C45MA8E AgACMAkDBwQqEg/AAAAwDQYJKoZIhvcNAQELBQADggEBAKAbBpk7RkhfY0gn1HtH asFPPbBUtk75vOIGwPmGv5vaoxl0yJMrosfUH0qr382UUmGfdEUTnEfTu0jPfuFw XX7pj6udBAYtG48x/nhSFYYlK+jkNsbbOG2eJf92aYljV09gc39Zg3Twa4L5Z83L yBtmYp0qEamRBrtECoII/cJ2YieCkfmTBBOKr9bcUOuKxiUT67Kd99QnVHr5yul2 U/HCOynqxMLHWsixRMylNlwAX927EKfJA5uPfpjiFT8wQKtEYWLbfvqBs9x1ub3o 6TRlOPdrwJKFvGb0Ef8vRPCSlKyFNkuQV69td/w3ReGpnU2aEq8zjY7dSdeVhZ80 Ow4= -----END CERTIFICATE-----Generated at Sat Jan 3 01:32:35 2026 by rpki-client