This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/uSOwId1qIYVukNJzL3tphSWmSqk.roa File: uSOwId1qIYVukNJzL3tphSWmSqk.roa (raw, json) Hash identifier: Hvrj2M1fkLAroWyWgyKi9FWdxr1RbWVO4o7VW+KyG7I= Subject key identifier: B9:23:B0:21:DD:6A:21:85:6E:90:D2:73:2F:7B:69:85:25:A6:4A:A9 Certificate issuer: /CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc Certificate serial: 019B7E39069406B70DB11636199FAB2A94F7 Authority key identifier: CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/uSOwId1qIYVukNJzL3tphSWmSqk.roa Signing time: Fri 02 Jan 2026 10:20:25 +0000 ROA not before: Fri 02 Jan 2026 10:20:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48108 IP address blocks: 2a14:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:06:94:06:b7:0d:b1:16:36:19:9f:ab:2a:94:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc Validity Not Before: Jan 2 10:20:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b923b021dd6a21856e90d2732f7b698525a64aa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3b:66:3a:9d:6e:ba:93:2c:29:fd:d3:ef:9c: 3c:fa:6a:a9:07:7f:a9:7f:f8:a5:a2:04:a7:85:99: 3c:34:4c:09:96:62:98:06:b3:6b:b6:90:65:7b:04: 3a:8a:cd:54:cc:60:75:98:4c:a5:22:7b:20:d8:a0: c6:ba:ed:44:a2:b4:8e:2d:ea:db:1c:2e:50:83:76: 9b:72:2d:e2:54:e3:7f:28:9b:02:fc:34:d5:83:61: 4f:1e:2b:dd:6f:66:b5:95:2e:ff:41:83:22:81:13: 6d:58:16:e8:67:38:d4:90:ff:9b:a8:10:8d:92:de: 69:6e:f1:7f:8e:3f:f9:18:c2:08:1d:99:d7:3a:fb: 93:ef:61:25:46:2e:ae:48:d8:9f:39:0b:33:62:c7: b2:f5:0a:fb:d7:6a:27:1f:77:b7:2c:fd:7b:f1:45: 42:0e:04:96:de:9d:83:b0:e7:d7:0b:59:e9:c1:36: 5e:3b:a8:d2:ec:a5:c4:e1:6c:99:7f:0d:9b:b4:ef: 13:06:6b:9c:25:63:0d:10:d6:68:a6:42:ca:55:49: cc:87:c5:c6:36:ef:a4:25:b4:34:52:4a:d8:b4:29: 74:e7:85:c3:5b:3e:e4:d2:cd:20:1c:fb:fb:55:b8: e8:d8:ab:57:77:8f:0e:01:69:0f:ec:83:af:ab:bd: 7f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:23:B0:21:DD:6A:21:85:6E:90:D2:73:2F:7B:69:85:25:A6:4A:A9 X509v3 Authority Key Identifier: keyid:CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/uSOwId1qIYVukNJzL3tphSWmSqk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:a080::/48 Signature Algorithm: sha256WithRSAEncryption 8c:12:e2:71:f5:48:55:dc:91:de:31:e2:72:80:fc:43:fd:23: a8:d2:85:b5:3b:3d:b3:e9:25:ac:4a:a7:b4:bb:06:6b:e0:9c: 85:50:af:0e:35:40:52:32:1f:11:b2:84:8a:af:79:3e:29:38: 34:61:79:c8:0d:45:cc:c5:1e:31:5a:b2:0a:a5:6e:60:c8:7a: 60:04:d8:94:6a:27:99:6d:de:6c:f5:10:b7:0f:15:c3:bc:43: b7:10:48:04:16:43:58:d9:d6:21:25:c4:8a:89:de:3f:d9:2e: b6:c6:a6:2a:08:a9:6d:e1:9c:66:d3:d9:aa:18:d0:ca:52:de: 31:6f:cc:7c:0d:3f:9d:ab:a3:82:71:16:8d:ca:77:90:1e:45: 15:cb:82:9e:98:50:c2:ed:a4:96:6a:2c:cc:e6:e1:c8:a8:48: 5e:fc:72:4c:2c:77:47:f1:47:b2:af:3e:35:29:37:e2:76:8c: cf:e4:b0:2b:81:f9:96:96:b2:07:ca:f2:4d:80:4c:cc:04:bc: 5c:9e:86:73:ce:38:23:2d:6e:c9:7f:ee:10:1b:b5:42:79:52: f0:8b:db:39:31:b2:c3:ec:92:13:90:1b:27:b9:50:ff:ac:00: fa:b8:0b:bc:89:1a:11:d3:b1:29:f8:43:b2:f9:8b:a9:ee:d0: 30:9a:db:62 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OQaUBrcNsRY2GZ+rKpT3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNjQ0MWQ5ZDgwN2UwZDc4Y2U3NTIxM2ExMDM0MDBlZTE0 YTdjZGMwHhcNMjYwMTAyMTAyMDI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTIzYjAyMWRkNmEyMTg1NmU5MGQyNzMyZjdiNjk4NTI1YTY0YWE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTtmOp1uupMsKf3T75w8+mqpB3+p f/ilogSnhZk8NEwJlmKYBrNrtpBlewQ6is1UzGB1mEylInsg2KDGuu1EorSOLerb HC5Qg3abci3iVON/KJsC/DTVg2FPHivdb2a1lS7/QYMigRNtWBboZzjUkP+bqBCN kt5pbvF/jj/5GMIIHZnXOvuT72ElRi6uSNifOQszYsey9Qr712onH3e3LP178UVC DgSW3p2DsOfXC1npwTZeO6jS7KXE4WyZfw2btO8TBmucJWMNENZopkLKVUnMh8XG Nu+kJbQ0UkrYtCl054XDWz7k0s0gHPv7Vbjo2KtXd48OAWkP7IOvq71/oQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLkjsCHdaiGFbpDScy97aYUlpkqpMB8GA1UdIwQY MBaAFMpkQdnYB+DXjOdSE6EDQA7hSnzcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW1SQjJkZ0g0TmVNNTFJVG9RTkFEdUZLZk53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC85OTQ3YjYtMzRiYy00NzdlLTg4MTYt MmUyOGI5NjQ5OGE5LzEvdVNPd0lkMXFJWVZ1a05KekwzdHBoU1dtU3FrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC85OTQ3YjYtMzRiYy00NzdlLTg4MTYtMmUyOGI5NjQ5OGE5 LzEveW1SQjJkZ0g0TmVNNTFJVG9RTkFEdUZLZk53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhSggAAA MA0GCSqGSIb3DQEBCwUAA4IBAQCMEuJx9UhV3JHeMeJygPxD/SOo0oW1Oz2z6SWs Sqe0uwZr4JyFUK8ONUBSMh8RsoSKr3k+KTg0YXnIDUXMxR4xWrIKpW5gyHpgBNiU aieZbd5s9RC3DxXDvEO3EEgEFkNY2dYhJcSKid4/2S62xqYqCKlt4Zxm09mqGNDK Ut4xb8x8DT+dq6OCcRaNyneQHkUVy4KemFDC7aSWaizM5uHIqEhe/HJMLHdH8Uey rz41KTfidozP5LArgfmWlrIHyvJNgEzMBLxcnoZzzjgjLW7Jf+4QG7VCeVLwi9s5 MbLD7JITkBsnuVD/rAD6uAu8iRoR07Ep+EOy+Yup7tAwmtti -----END CERTIFICATE-----Generated at Wed Jan 21 15:23:59 2026 by rpki-client