This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/uqno00iVqXEbyw4Jce9I4NCSd6U.roa File: uqno00iVqXEbyw4Jce9I4NCSd6U.roa (raw, json) Hash identifier: LOvolmVlOGfS5/Lu0OZEEESsBkxydv7fTijwns2OR4M= Subject key identifier: BA:A9:E8:D3:48:95:A9:71:1B:CB:0E:09:71:EF:48:E0:D0:92:77:A5 Certificate issuer: /CN=ce4ddafc2cf5658d02e56828c2c91353529ede8e Certificate serial: 019B7F152DE1D99B5614B73883C6F728AB65 Authority key identifier: CE:4D:DA:FC:2C:F5:65:8D:02:E5:68:28:C2:C9:13:53:52:9E:DE:8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/uqno00iVqXEbyw4Jce9I4NCSd6U.roa Signing time: Fri 02 Jan 2026 14:20:52 +0000 ROA not before: Fri 02 Jan 2026 14:20:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202733 IP address blocks: 2001:67c:1b64::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:2d:e1:d9:9b:56:14:b7:38:83:c6:f7:28:ab:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce4ddafc2cf5658d02e56828c2c91353529ede8e Validity Not Before: Jan 2 14:20:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=baa9e8d34895a9711bcb0e0971ef48e0d09277a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:cc:8d:f7:61:ca:e8:93:6e:36:bb:ff:11:9f: ea:bb:4a:5c:55:a9:9b:ce:fe:cf:12:e8:99:3d:fa: b3:0b:c3:44:87:1a:95:9f:15:44:36:fc:12:93:12: d4:5e:a9:b9:91:d7:8d:f5:e6:bc:27:4a:8a:5a:02: 5b:c4:83:48:eb:b6:67:66:65:50:47:45:d6:7d:d7: 47:f3:8c:d8:cf:ab:1a:28:4b:6f:6a:f8:b2:56:a3: 8e:18:7c:4d:6c:fc:56:00:b5:5b:51:5d:54:1b:5c: 44:6e:95:a3:cc:3f:05:8d:ab:5b:c5:2c:53:15:fc: 36:65:58:2a:f3:32:46:1b:9a:33:5c:04:5b:49:4c: 77:14:5e:aa:eb:17:53:6e:fe:56:68:c0:29:05:b6: ed:cd:cd:0b:b4:ff:0c:31:31:da:4b:aa:9e:42:b6: a8:11:e6:55:c8:0c:45:82:0b:5e:b2:98:50:29:b5: c5:c1:8e:2d:db:48:0c:37:09:c4:2d:d5:75:f1:33: 73:15:3e:34:9e:b1:8f:50:7c:30:8f:cd:18:af:0a: 8f:11:0a:3e:3c:8d:47:f4:f9:4e:a4:e1:a5:da:6e: 97:72:bc:a1:e8:76:23:89:22:1e:c9:9d:ee:09:24: 16:fa:f7:54:63:03:ed:96:72:aa:ab:f6:b8:9c:ac: 07:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A9:E8:D3:48:95:A9:71:1B:CB:0E:09:71:EF:48:E0:D0:92:77:A5 X509v3 Authority Key Identifier: keyid:CE:4D:DA:FC:2C:F5:65:8D:02:E5:68:28:C2:C9:13:53:52:9E:DE:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/uqno00iVqXEbyw4Jce9I4NCSd6U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:1b64::/48 Signature Algorithm: sha256WithRSAEncryption 25:74:4e:25:b6:0a:9c:36:84:f0:87:96:dd:e5:6e:85:f5:55: fc:0d:c0:b7:44:df:ca:fd:f4:14:67:26:a3:dd:d4:ed:67:74: 66:fd:59:13:a8:aa:4e:e8:e8:cd:b4:db:cd:78:ab:5c:80:cd: f9:40:86:91:c4:31:4b:ab:de:41:9d:56:32:70:75:30:80:7d: 5b:c1:b8:2a:48:d5:e3:0f:4e:e6:a1:ec:98:e1:8e:bb:45:23: 05:b4:fb:bb:93:2b:2a:32:4e:35:fa:c6:b8:c4:b6:01:ec:46: f3:0f:25:d7:9a:c1:9c:da:f0:75:9e:1d:8b:8a:e7:e3:76:f1: e3:da:28:24:91:ed:6b:40:9d:03:8c:4e:04:9a:a6:94:80:f8: 64:af:2e:80:dd:68:19:41:6f:8c:d4:da:2b:2a:0e:96:4d:2e: a1:1e:a5:64:11:ff:7f:43:0d:ae:c0:a8:6f:ec:df:a7:07:de: 8a:3a:62:ae:72:dc:80:18:32:ed:cf:9f:a5:fa:9b:30:4c:4c: e9:34:11:21:f9:43:01:7b:6a:a7:42:dd:8d:a1:ed:c4:3b:d9: b0:d6:ee:05:6b:ad:cc:7a:7e:8d:6f:d6:17:cd:52:60:f4:85: ef:54:dd:c4:90:9e:e2:5c:13:57:2e:f4:e3:3f:34:93:9f:63: 5e:f9:38:b1 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/FS3h2ZtWFLc4g8b3KKtlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNGRkYWZjMmNmNTY1OGQwMmU1NjgyOGMyYzkxMzUzNTI5 ZWRlOGUwHhcNMjYwMTAyMTQyMDUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYWE5ZThkMzQ4OTVhOTcxMWJjYjBlMDk3MWVmNDhlMGQwOTI3N2E1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlcyN92HK6JNuNrv/EZ/qu0pcVamb zv7PEuiZPfqzC8NEhxqVnxVENvwSkxLUXqm5kdeN9ea8J0qKWgJbxINI67ZnZmVQ R0XWfddH84zYz6saKEtvaviyVqOOGHxNbPxWALVbUV1UG1xEbpWjzD8FjatbxSxT Ffw2ZVgq8zJGG5ozXARbSUx3FF6q6xdTbv5WaMApBbbtzc0LtP8MMTHaS6qeQrao EeZVyAxFggtesphQKbXFwY4t20gMNwnELdV18TNzFT40nrGPUHwwj80YrwqPEQo+ PI1H9PlOpOGl2m6Xcryh6HYjiSIeyZ3uCSQW+vdUYwPtlnKqq/a4nKwHMwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLqp6NNIlalxG8sOCXHvSODQknelMB8GA1UdIwQY MBaAFM5N2vws9WWNAuVoKMLJE1NSnt6OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemszYV9DejFaWTBDNVdnb3dza1RVMUtlM280LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yMzk3ZmItMGRkMC00MWMzLWJjNmUt YmE4NzQzOWI3ZGE5LzEvdXFubzAwaVZxWEVieXc0SmNlOUk0TkNTZDZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yMzk3ZmItMGRkMC00MWMzLWJjNmUtYmE4NzQzOWI3ZGE5 LzEvemszYV9DejFaWTBDNVdnb3dza1RVMUtlM280LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBtk MA0GCSqGSIb3DQEBCwUAA4IBAQAldE4ltgqcNoTwh5bd5W6F9VX8DcC3RN/K/fQU Zyaj3dTtZ3Rm/VkTqKpO6OjNtNvNeKtcgM35QIaRxDFLq95BnVYycHUwgH1bwbgq SNXjD07moeyY4Y67RSMFtPu7kysqMk41+sa4xLYB7EbzDyXXmsGc2vB1nh2Liufj dvHj2igkke1rQJ0DjE4EmqaUgPhkry6A3WgZQW+M1NorKg6WTS6hHqVkEf9/Qw2u wKhv7N+nB96KOmKuctyAGDLtz5+l+pswTEzpNBEh+UMBe2qnQt2Noe3EO9mw1u4F a63Men6Nb9YXzVJg9IXvVN3EkJ7iXBNXLvTjPzSTn2Ne+Tix -----END CERTIFICATE-----Generated at Tue Feb 10 00:14:16 2026 by rpki-client