This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/uWkEc-fbIJqw99dNiiEwAeVlWfM.roa File: uWkEc-fbIJqw99dNiiEwAeVlWfM.roa (raw, json) Hash identifier: 1DSbIjvJqT3rylhutdS0OLOYTOnrBsAi7+g/hYhs1tM= Subject key identifier: B9:69:04:73:E7:DB:20:9A:B0:F7:D7:4D:8A:21:30:01:E5:65:59:F3 Certificate issuer: /CN=ad5c2e74c6d46cc73c98a4c16087a8a3b3a6f759 Certificate serial: 019B77C738E56C933BB3A45E3BB07342CFF2 Authority key identifier: AD:5C:2E:74:C6:D4:6C:C7:3C:98:A4:C1:60:87:A8:A3:B3:A6:F7:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rVwudMbUbMc8mKTBYIeoo7Om91k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/uWkEc-fbIJqw99dNiiEwAeVlWfM.roa Signing time: Thu 01 Jan 2026 04:18:23 +0000 ROA not before: Thu 01 Jan 2026 04:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211415 IP address blocks: 2a0e:ac0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/rVwudMbUbMc8mKTBYIeoo7Om91k.crl rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/rVwudMbUbMc8mKTBYIeoo7Om91k.mft rsync://rpki.ripe.net/repository/DEFAULT/rVwudMbUbMc8mKTBYIeoo7Om91k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:38:e5:6c:93:3b:b3:a4:5e:3b:b0:73:42:cf:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad5c2e74c6d46cc73c98a4c16087a8a3b3a6f759 Validity Not Before: Jan 1 04:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b9690473e7db209ab0f7d74d8a213001e56559f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:47:24:50:7b:f6:fb:5c:c0:ec:12:e1:79:7c: 7a:eb:96:2e:f0:f6:ad:ae:9e:c7:ee:17:15:e0:ef: 74:e7:88:7e:64:2e:3e:e3:82:c8:bb:c1:b3:be:3f: cf:40:9a:21:16:8c:4d:2b:e3:2a:1e:09:ff:71:ba: fa:0f:61:97:f6:12:df:7e:a3:4a:07:07:f5:32:29: c8:1f:4a:38:4a:60:d0:d5:d8:ec:78:c3:bd:88:36: b7:09:32:4e:65:a8:dc:b6:6e:38:3a:a4:58:2c:4e: 9c:f6:37:6b:f8:41:d2:c1:cc:19:c9:15:44:7f:9e: 46:b6:e6:40:6f:d1:07:a1:22:1e:0a:a9:bf:d8:5a: 7f:8a:52:be:87:64:2d:32:f0:96:05:6b:7f:47:57: 1a:e3:7f:34:55:d5:a7:f9:c2:30:62:03:8e:cf:3d: c0:37:8a:88:c5:35:05:a6:e8:e7:9f:3b:29:52:b8: fd:0b:4f:db:64:37:11:f2:10:c6:b5:77:fe:1f:23: 8e:a0:64:15:81:ff:ab:bc:3e:ee:f8:1d:fd:20:82: c0:1e:fc:25:73:19:2c:a5:3a:1e:cc:96:d6:8a:3f: 02:3b:19:d5:16:1f:74:eb:a5:d8:d4:5b:7d:e9:02: f8:ca:4a:c0:f5:34:77:27:05:07:de:5c:ef:b2:b7: 35:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:69:04:73:E7:DB:20:9A:B0:F7:D7:4D:8A:21:30:01:E5:65:59:F3 X509v3 Authority Key Identifier: keyid:AD:5C:2E:74:C6:D4:6C:C7:3C:98:A4:C1:60:87:A8:A3:B3:A6:F7:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rVwudMbUbMc8mKTBYIeoo7Om91k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/uWkEc-fbIJqw99dNiiEwAeVlWfM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/rVwudMbUbMc8mKTBYIeoo7Om91k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:ac0::/29 Signature Algorithm: sha256WithRSAEncryption 27:89:2a:67:8d:5b:bb:d1:cc:ea:c9:14:2e:0c:f2:1b:8c:0c: 2d:f2:0a:a8:82:10:30:e9:ce:60:4e:ef:f9:b8:25:cd:5c:92: d4:f5:dc:59:30:6f:fb:8c:77:0d:52:fe:74:8f:f8:6f:3f:07: 04:03:fb:70:c9:78:33:7b:c1:99:04:e8:7b:3d:6c:bf:f5:76: 49:c4:e8:78:9a:6f:c3:85:46:41:3e:b9:88:c7:1c:2a:0d:39: d8:cd:40:0f:7f:a2:eb:9a:63:42:c3:76:e4:43:53:6c:f1:6e: 79:36:5f:29:ea:85:5c:fa:b4:c7:92:51:75:46:0e:07:b0:60: d6:03:4a:90:36:2b:57:ef:11:d3:a7:75:80:b2:2a:9e:bc:da: c1:03:58:48:f9:d6:5c:72:7b:10:ad:3c:18:fa:6b:07:b5:15: 80:1d:44:44:41:99:c6:d9:4b:14:58:e8:b2:e3:bb:0d:c1:48: 6d:29:a4:73:16:b2:bf:16:d1:79:4b:2b:b4:df:cc:48:0d:ff: 30:0c:19:92:a2:85:58:3c:20:bd:c5:80:6b:f7:b9:ee:96:99: 3d:5d:9a:7e:54:f6:45:88:c7:04:d4:b5:b9:26:02:69:9b:91: 9a:0e:42:79:e7:aa:13:22:56:de:cf:07:65:07:99:89:40:30: 15:1b:97:5d -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3xzjlbJM7s6ReO7BzQs/yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkNWMyZTc0YzZkNDZjYzczYzk4YTRjMTYwODdhOGEzYjNh NmY3NTkwHhcNMjYwMTAxMDQxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTY5MDQ3M2U3ZGIyMDlhYjBmN2Q3NGQ4YTIxMzAwMWU1NjU1OWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuUckUHv2+1zA7BLheXx665Yu8Pat rp7H7hcV4O9054h+ZC4+44LIu8Gzvj/PQJohFoxNK+MqHgn/cbr6D2GX9hLffqNK Bwf1MinIH0o4SmDQ1djseMO9iDa3CTJOZajctm44OqRYLE6c9jdr+EHSwcwZyRVE f55GtuZAb9EHoSIeCqm/2Fp/ilK+h2QtMvCWBWt/R1ca4380VdWn+cIwYgOOzz3A N4qIxTUFpujnnzspUrj9C0/bZDcR8hDGtXf+HyOOoGQVgf+rvD7u+B39IILAHvwl cxkspToezJbWij8COxnVFh9066XY1Ft96QL4ykrA9TR3JwUH3lzvsrc1/wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFLlpBHPn2yCasPfXTYohMAHlZVnzMB8GA1UdIwQY MBaAFK1cLnTG1GzHPJikwWCHqKOzpvdZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclZ3dWRNYlViTWM4bUtUQllJZW9vN09tOTFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81ZGEzNzUtOTlhOS00MzI5LTlkMjkt Y2VjODkzMWNlNjMxLzEvdVdrRWMtZmJJSnF3OTlkTmlpRXdBZVZsV2ZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC81ZGEzNzUtOTlhOS00MzI5LTlkMjktY2VjODkzMWNlNjMx LzEvclZ3dWRNYlViTWM4bUtUQllJZW9vN09tOTFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg4KwDAN BgkqhkiG9w0BAQsFAAOCAQEAJ4kqZ41bu9HM6skULgzyG4wMLfIKqIIQMOnOYE7v +bglzVyS1PXcWTBv+4x3DVL+dI/4bz8HBAP7cMl4M3vBmQToez1sv/V2ScToeJpv w4VGQT65iMccKg052M1AD3+i65pjQsN25ENTbPFueTZfKeqFXPq0x5JRdUYOB7Bg 1gNKkDYrV+8R06d1gLIqnrzawQNYSPnWXHJ7EK08GPprB7UVgB1EREGZxtlLFFjo suO7DcFIbSmkcxayvxbReUsrtN/MSA3/MAwZkqKFWDwgvcWAa/e57paZPV2aflT2 RYjHBNS1uSYCaZuRmg5CeeeqEyJW3s8HZQeZiUAwFRuXXQ== -----END CERTIFICATE-----Generated at Mon Jan 19 23:23:27 2026 by rpki-client