This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/63e305-46e6-4363-8733-7d948dba5e3c/1/uUWVa1294AWFSpDUYVKBN-fvYMc.roa File: uUWVa1294AWFSpDUYVKBN-fvYMc.roa (raw, json) Hash identifier: axEGfOzW4g5Z2ybzJ+kEQtiDgU2ikyT0bamMhlhBt2Q= Subject key identifier: B9:45:95:6B:5D:BD:E0:05:85:4A:90:D4:61:52:81:37:E7:EF:60:C7 Certificate issuer: /CN=63c1b9ffe98672bf62f487f47dafea30f5bef09c Certificate serial: 019B7E3900454035972D2F96501078CE0666 Authority key identifier: 63:C1:B9:FF:E9:86:72:BF:62:F4:87:F4:7D:AF:EA:30:F5:BE:F0:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y8G5_-mGcr9i9If0fa_qMPW-8Jw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/63e305-46e6-4363-8733-7d948dba5e3c/1/uUWVa1294AWFSpDUYVKBN-fvYMc.roa Signing time: Fri 02 Jan 2026 10:20:23 +0000 ROA not before: Fri 02 Jan 2026 10:20:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39702 IP address blocks: 2001:678:a9c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/63e305-46e6-4363-8733-7d948dba5e3c/1/Y8G5_-mGcr9i9If0fa_qMPW-8Jw.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/63e305-46e6-4363-8733-7d948dba5e3c/1/Y8G5_-mGcr9i9If0fa_qMPW-8Jw.mft rsync://rpki.ripe.net/repository/DEFAULT/Y8G5_-mGcr9i9If0fa_qMPW-8Jw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 04:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:00:45:40:35:97:2d:2f:96:50:10:78:ce:06:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63c1b9ffe98672bf62f487f47dafea30f5bef09c Validity Not Before: Jan 2 10:20:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b945956b5dbde005854a90d461528137e7ef60c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ff:78:a5:6f:4f:53:0a:94:93:1b:17:0c:99: e5:29:0c:a9:9a:53:d0:7f:ba:a3:dc:b2:72:8f:00: 15:1d:5d:7b:9b:ee:61:6b:3a:41:8a:23:0d:a3:d1: e1:03:ad:df:71:6e:f6:d6:d8:33:07:d1:cc:ce:5f: dc:02:06:4e:35:0d:b2:a6:f6:79:77:8e:5f:25:b9: 11:21:8e:51:2c:9f:6a:5d:fc:4b:43:60:58:23:ad: c2:57:b4:e5:28:fd:c6:2c:f5:75:66:b1:72:7f:2b: 02:3d:92:0f:35:db:34:de:be:27:17:cf:f3:ed:f0: e0:82:07:6b:4c:97:54:e4:2d:90:ac:5b:ca:a9:0e: 5a:0b:6e:cd:24:ff:75:4b:32:d8:1d:5c:7e:06:86: 20:2d:06:72:2e:3d:ba:7e:ec:c9:68:db:d1:1d:ff: e4:35:fb:98:99:b5:ff:c9:63:5f:2c:64:9c:ed:f3: fd:67:61:20:e6:8e:e0:49:8d:b0:32:a2:2d:37:ce: d7:84:f5:bf:47:21:f7:6f:8d:a1:0b:b2:55:24:c5: e1:b3:4b:b1:2c:ab:87:46:a1:f6:40:bd:3b:3c:11: 88:0a:b7:a8:d8:eb:8d:7d:87:71:3e:df:8e:1d:ad: 35:cb:8b:a6:58:fa:1d:fd:02:5e:84:94:ef:d5:56: 18:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:45:95:6B:5D:BD:E0:05:85:4A:90:D4:61:52:81:37:E7:EF:60:C7 X509v3 Authority Key Identifier: keyid:63:C1:B9:FF:E9:86:72:BF:62:F4:87:F4:7D:AF:EA:30:F5:BE:F0:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y8G5_-mGcr9i9If0fa_qMPW-8Jw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/63e305-46e6-4363-8733-7d948dba5e3c/1/uUWVa1294AWFSpDUYVKBN-fvYMc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/63e305-46e6-4363-8733-7d948dba5e3c/1/Y8G5_-mGcr9i9If0fa_qMPW-8Jw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:a9c::/48 Signature Algorithm: sha256WithRSAEncryption 5d:13:10:d5:47:54:f7:f9:3f:e1:cf:52:5c:cd:64:56:1c:5d: fd:d4:56:70:49:72:26:38:87:8b:23:7c:90:fd:ee:c1:bf:bf: e4:af:f1:0c:6e:b0:20:24:6d:97:5f:63:72:0b:f7:ee:fe:d7: 08:77:69:f3:52:1e:36:ab:46:0e:c0:a7:29:ce:fb:da:05:4f: cd:4d:75:fe:f0:c5:14:0c:08:3a:32:14:47:ff:c3:b4:07:ee: 55:d4:62:0e:91:42:8a:74:ea:99:ba:29:7f:ed:eb:87:b7:3a: a7:f6:17:35:5f:4d:32:42:52:be:8a:d5:f1:99:20:4f:f1:7d: a8:aa:82:89:60:1a:8b:c5:6e:26:de:87:93:91:44:a6:93:46: d2:b7:71:6e:fa:f6:9e:15:eb:45:87:8f:2f:07:16:6c:49:d7: 51:40:f8:be:3a:0d:83:53:42:53:b7:c4:2b:3f:71:a7:2e:66: bc:98:05:01:23:fd:8f:2f:a3:78:4f:94:6a:26:7d:02:9a:cf: 3c:de:1e:de:91:5c:17:38:27:ce:d3:5d:da:3e:1b:41:bc:7c: 17:3b:7b:d8:f9:b9:8e:35:30:dd:16:78:01:2e:95:ac:94:6c: b6:66:c2:10:8b:b5:ff:6e:11:3d:ee:8b:a5:94:1a:70:d4:da: ef:20:27:63 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OQBFQDWXLS+WUBB4zgZmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzYzFiOWZmZTk4NjcyYmY2MmY0ODdmNDdkYWZlYTMwZjVi ZWYwOWMwHhcNMjYwMTAyMTAyMDIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTQ1OTU2YjVkYmRlMDA1ODU0YTkwZDQ2MTUyODEzN2U3ZWY2MGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArP94pW9PUwqUkxsXDJnlKQypmlPQ f7qj3LJyjwAVHV17m+5hazpBiiMNo9HhA63fcW721tgzB9HMzl/cAgZONQ2ypvZ5 d45fJbkRIY5RLJ9qXfxLQ2BYI63CV7TlKP3GLPV1ZrFyfysCPZIPNds03r4nF8/z 7fDgggdrTJdU5C2QrFvKqQ5aC27NJP91SzLYHVx+BoYgLQZyLj26fuzJaNvRHf/k NfuYmbX/yWNfLGSc7fP9Z2Eg5o7gSY2wMqItN87XhPW/RyH3b42hC7JVJMXhs0ux LKuHRqH2QL07PBGICreo2OuNfYdxPt+OHa01y4umWPod/QJehJTv1VYYUwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLlFlWtdveAFhUqQ1GFSgTfn72DHMB8GA1UdIwQY MBaAFGPBuf/phnK/YvSH9H2v6jD1vvCcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWThHNV8tbUdjcjlpOUlmMGZhX3FNUFctOEp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC82M2UzMDUtNDZlNi00MzYzLTg3MzMt N2Q5NDhkYmE1ZTNjLzEvdVVXVmExMjk0QVdGU3BEVVlWS0JOLWZ2WU1jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC82M2UzMDUtNDZlNi00MzYzLTg3MzMtN2Q5NDhkYmE1ZTNj LzEvWThHNV8tbUdjcjlpOUlmMGZhX3FNUFctOEp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAqc MA0GCSqGSIb3DQEBCwUAA4IBAQBdExDVR1T3+T/hz1JczWRWHF391FZwSXImOIeL I3yQ/e7Bv7/kr/EMbrAgJG2XX2NyC/fu/tcId2nzUh42q0YOwKcpzvvaBU/NTXX+ 8MUUDAg6MhRH/8O0B+5V1GIOkUKKdOqZuil/7euHtzqn9hc1X00yQlK+itXxmSBP 8X2oqoKJYBqLxW4m3oeTkUSmk0bSt3Fu+vaeFetFh48vBxZsSddRQPi+Og2DU0JT t8QrP3GnLma8mAUBI/2PL6N4T5RqJn0Cms883h7ekVwXOCfO013aPhtBvHwXO3vY +bmONTDdFngBLpWslGy2ZsIQi7X/bhE97oullBpw1NrvICdj -----END CERTIFICATE-----Generated at Tue Jan 27 12:42:34 2026 by rpki-client