This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/811f21-125b-4d07-bac8-7546dd1716c8/1/uWNKx0IJVXvtTHYU4bkunZTjfuw.roa File: uWNKx0IJVXvtTHYU4bkunZTjfuw.roa (raw, json) Hash identifier: AUH4XmlqocQ9F/9lHvt0FvG+HzGfyUQaY0PdFUq9T4I= Subject key identifier: B9:63:4A:C7:42:09:55:7B:ED:4C:76:14:E1:B9:2E:9D:94:E3:7E:EC Certificate issuer: /CN=c571d9580a8f01e49c61c5fcfdff2e5899534b8f Certificate serial: 019B77C70BEB0EF54A6F66F45F0C62884624 Authority key identifier: C5:71:D9:58:0A:8F:01:E4:9C:61:C5:FC:FD:FF:2E:58:99:53:4B:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xXHZWAqPAeScYcX8_f8uWJlTS48.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/811f21-125b-4d07-bac8-7546dd1716c8/1/uWNKx0IJVXvtTHYU4bkunZTjfuw.roa Signing time: Thu 01 Jan 2026 04:18:12 +0000 ROA not before: Thu 01 Jan 2026 04:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35327 IP address blocks: 2001:67c:e90::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/811f21-125b-4d07-bac8-7546dd1716c8/1/xXHZWAqPAeScYcX8_f8uWJlTS48.crl rsync://rpki.ripe.net/repository/DEFAULT/56/811f21-125b-4d07-bac8-7546dd1716c8/1/xXHZWAqPAeScYcX8_f8uWJlTS48.mft rsync://rpki.ripe.net/repository/DEFAULT/xXHZWAqPAeScYcX8_f8uWJlTS48.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:0b:eb:0e:f5:4a:6f:66:f4:5f:0c:62:88:46:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c571d9580a8f01e49c61c5fcfdff2e5899534b8f Validity Not Before: Jan 1 04:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b9634ac74209557bed4c7614e1b92e9d94e37eec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:27:ec:e5:dc:d2:2d:1e:8e:57:11:ef:63:d2: 8d:40:9b:2b:0f:6e:d3:69:fc:4d:f6:c8:c4:f5:70: 32:84:95:66:48:22:dd:43:7a:5a:bd:2f:ce:3f:c7: 80:7d:41:a9:5d:e1:8f:6e:85:0d:72:c8:ea:b8:b0: c5:79:cf:c5:f0:d1:e9:01:e7:d4:e8:d0:5f:2c:64: b8:8a:f3:fb:3e:e4:f6:32:e6:ba:63:77:c1:78:cc: f8:ce:72:89:aa:d3:cb:3e:dc:a5:89:4a:91:ef:ca: c2:07:e3:fd:02:f8:18:15:14:35:b5:39:99:ed:6b: 22:45:c2:b6:b5:d7:d4:d2:85:44:71:7d:ce:55:b9: ba:d7:d0:77:41:29:52:b3:8d:1a:9d:52:19:65:2b: 6d:65:e6:4a:c4:77:6e:3f:5b:78:32:d8:49:c9:f1: aa:81:78:2c:d5:53:a1:31:e3:17:60:d3:4e:f6:27: b2:27:35:af:1b:35:d9:de:06:9b:5d:a4:53:36:9f: e2:7a:a7:01:97:f2:8c:d1:ca:2e:a3:29:aa:db:10: b3:b7:77:15:30:88:cf:8f:27:eb:fa:1b:cc:18:ba: ff:e7:e1:2e:11:ae:a7:5a:ef:33:db:78:d6:c6:97: c0:f0:5b:7d:6c:f5:ab:8e:a9:df:00:f7:3b:8c:7a: 7c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:63:4A:C7:42:09:55:7B:ED:4C:76:14:E1:B9:2E:9D:94:E3:7E:EC X509v3 Authority Key Identifier: keyid:C5:71:D9:58:0A:8F:01:E4:9C:61:C5:FC:FD:FF:2E:58:99:53:4B:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xXHZWAqPAeScYcX8_f8uWJlTS48.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/811f21-125b-4d07-bac8-7546dd1716c8/1/uWNKx0IJVXvtTHYU4bkunZTjfuw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/811f21-125b-4d07-bac8-7546dd1716c8/1/xXHZWAqPAeScYcX8_f8uWJlTS48.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:e90::/48 Signature Algorithm: sha256WithRSAEncryption 91:fa:de:0c:a5:91:5e:aa:07:47:14:d4:97:5a:5d:29:fc:17: 68:86:31:78:6c:91:e2:b8:37:5f:77:75:83:0c:4b:7a:7a:fd: 19:0b:b9:20:f2:05:32:0f:58:b4:84:8e:4b:30:11:1f:05:40: 50:f0:56:f2:19:53:6f:b5:a2:cf:b9:06:bd:dd:1b:d1:8f:d7: 04:1e:19:2e:eb:e6:fc:9b:79:ad:c6:58:24:2d:33:a1:ca:88: 90:83:6c:1e:6d:6f:a1:39:97:41:68:5a:3f:ca:44:34:cd:5d: 28:fe:54:8e:b2:67:c8:0b:4f:3d:da:fe:02:15:22:38:eb:db: 9a:18:ba:7a:1c:05:05:f2:c6:26:0f:6a:55:63:63:01:52:d8: 2a:18:8f:bd:10:cd:ed:fe:c0:5c:3d:3b:29:1d:b0:6f:d3:6e: 49:a5:40:8a:86:60:e7:95:8d:6b:14:36:5f:f9:6f:8e:97:bd: b9:06:85:74:13:73:8a:c2:c4:6f:60:e9:bb:cb:5b:1f:16:00: 9c:7e:3d:82:21:e7:b0:7e:1e:99:b4:49:3b:97:ce:53:ca:36: 41:89:ae:c1:e9:7b:a5:a3:5e:e7:4c:3f:80:59:d6:4e:20:0e: c3:c0:d6:a4:e9:b3:fb:22:3e:de:f9:dc:52:82:01:31:b5:40: 35:99:b3:26 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3xwvrDvVKb2b0XwxiiEYkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1NzFkOTU4MGE4ZjAxZTQ5YzYxYzVmY2ZkZmYyZTU4OTk1 MzRiOGYwHhcNMjYwMTAxMDQxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTYzNGFjNzQyMDk1NTdiZWQ0Yzc2MTRlMWI5MmU5ZDk0ZTM3ZWVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtifs5dzSLR6OVxHvY9KNQJsrD27T afxN9sjE9XAyhJVmSCLdQ3pavS/OP8eAfUGpXeGPboUNcsjquLDFec/F8NHpAefU 6NBfLGS4ivP7PuT2Mua6Y3fBeMz4znKJqtPLPtyliUqR78rCB+P9AvgYFRQ1tTmZ 7WsiRcK2tdfU0oVEcX3OVbm619B3QSlSs40anVIZZSttZeZKxHduP1t4MthJyfGq gXgs1VOhMeMXYNNO9ieyJzWvGzXZ3gabXaRTNp/ieqcBl/KM0couoymq2xCzt3cV MIjPjyfr+hvMGLr/5+EuEa6nWu8z23jWxpfA8Ft9bPWrjqnfAPc7jHp8RwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLljSsdCCVV77Ux2FOG5Lp2U437sMB8GA1UdIwQY MBaAFMVx2VgKjwHknGHF/P3/LliZU0uPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFhIWldBcVBBZVNjWWNYOF9mOHVXSmxUUzQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni84MTFmMjEtMTI1Yi00ZDA3LWJhYzgt NzU0NmRkMTcxNmM4LzEvdVdOS3gwSUpWWHZ0VEhZVTRia3VuWlRqZnV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni84MTFmMjEtMTI1Yi00ZDA3LWJhYzgtNzU0NmRkMTcxNmM4 LzEveFhIWldBcVBBZVNjWWNYOF9mOHVXSmxUUzQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA6Q MA0GCSqGSIb3DQEBCwUAA4IBAQCR+t4MpZFeqgdHFNSXWl0p/BdohjF4bJHiuDdf d3WDDEt6ev0ZC7kg8gUyD1i0hI5LMBEfBUBQ8FbyGVNvtaLPuQa93RvRj9cEHhku 6+b8m3mtxlgkLTOhyoiQg2webW+hOZdBaFo/ykQ0zV0o/lSOsmfIC0892v4CFSI4 69uaGLp6HAUF8sYmD2pVY2MBUtgqGI+9EM3t/sBcPTspHbBv025JpUCKhmDnlY1r FDZf+W+Ol725BoV0E3OKwsRvYOm7y1sfFgCcfj2CIeewfh6ZtEk7l85TyjZBia7B 6Xulo17nTD+AWdZOIA7DwNak6bP7Ij7e+dxSggExtUA1mbMm -----END CERTIFICATE-----Generated at Tue Feb 10 00:03:21 2026 by rpki-client