This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/uYN_vM0N-3YHIHAtJf-M6HauVYQ.roa File: uYN_vM0N-3YHIHAtJf-M6HauVYQ.roa (raw, json) Hash identifier: f5hONkpWgXhhJqpfbpoTyP+OFLc2PQN+y37cWaZOEiI= Subject key identifier: B9:83:7F:BC:CD:0D:FB:76:07:20:70:2D:25:FF:8C:E8:76:AE:55:84 Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B7B358E16F19242FCE16E4CC0BA427022 Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/uYN_vM0N-3YHIHAtJf-M6HauVYQ.roa Signing time: Thu 01 Jan 2026 20:17:45 +0000 ROA not before: Thu 01 Jan 2026 20:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213782 IP address blocks: 2a14:67c1:70::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:8e:16:f1:92:42:fc:e1:6e:4c:c0:ba:42:70:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 1 20:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b9837fbccd0dfb760720702d25ff8ce876ae5584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3d:6d:10:67:ed:10:96:27:1a:55:57:e4:f0: ac:ba:75:bf:02:0c:c4:f3:ee:f5:88:ae:6c:52:7c: fe:1e:b4:66:90:f7:84:a0:e0:37:cc:07:30:5f:d2: d2:a0:4a:43:a4:e5:6e:e7:0c:16:a1:52:e7:4a:63: 2d:c0:65:87:ab:36:aa:0c:94:4c:0d:ca:f0:35:26: 32:cc:8d:80:da:ef:d9:11:b9:12:bc:41:ca:08:47: ec:38:ec:10:09:7a:5d:cc:8a:36:10:ff:29:e5:2e: 64:e8:64:6d:e9:ea:a9:43:41:c2:8f:68:93:f2:68: ec:1d:5b:8d:34:97:39:aa:c0:7a:60:db:25:4b:7c: 9c:a4:cb:36:bc:1a:9d:d6:4b:68:c4:e2:3e:2f:1b: 76:92:0b:e9:5b:2e:b8:dc:4b:23:8b:95:09:a7:d5: 05:fa:db:5a:8b:c6:f4:d8:70:1d:2e:d4:f8:50:ee: 2a:3f:aa:b2:bf:9f:6b:76:33:52:30:2a:74:30:7f: f9:c0:c3:3a:8a:a6:35:0a:f8:7a:30:90:4a:23:35: 51:6b:a1:1c:9c:b0:f3:79:15:cc:ab:3d:79:48:2f: fc:da:29:3c:3c:1f:a3:22:e9:4e:bd:80:c8:ef:cf: 45:cf:5a:ff:56:70:3e:1c:f4:b8:56:77:ab:61:ad: f9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:83:7F:BC:CD:0D:FB:76:07:20:70:2D:25:FF:8C:E8:76:AE:55:84 X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/uYN_vM0N-3YHIHAtJf-M6HauVYQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c1:70::/44 Signature Algorithm: sha256WithRSAEncryption 8b:9f:f5:da:d5:9c:4b:5e:5c:c0:0c:ea:44:ac:f8:9a:4c:cb: 43:8c:54:e8:f1:59:eb:46:2c:45:f2:fd:ee:69:64:e2:03:f0: 86:72:74:22:7e:32:d1:c9:26:e9:8e:74:ca:d1:4f:9e:5f:52: 84:e6:8d:61:21:da:0a:b9:34:fa:70:04:cd:4d:92:eb:b6:65: f1:78:84:68:d4:bc:47:52:bc:e4:f4:81:fe:4a:a1:fb:96:45: ca:17:cf:72:63:d4:b4:06:64:93:2e:ec:56:37:7c:d3:52:6b: 98:91:c4:0d:41:5e:68:69:fc:7e:89:3a:7b:1c:57:82:86:2a: 03:17:22:72:57:9d:10:b8:0e:9e:54:5c:78:6d:1a:0c:c9:40: e5:30:04:f5:d9:dc:43:0c:fa:23:f7:e9:d3:bc:d9:82:5b:0c: c5:92:fc:d2:cc:19:3d:cc:fb:4d:91:4a:c4:ed:e4:69:cb:1d: 3e:18:30:69:ec:05:87:20:3e:15:5a:ae:f8:e1:a4:4f:a2:15: ea:ab:40:bb:2a:32:f7:db:a3:e9:45:0f:4f:c2:1d:b7:46:d9: ec:ee:26:f9:8b:42:ff:8f:95:9c:42:2b:8b:ce:1a:10:be:22: e3:02:2d:0a:83:c3:00:cd:67:65:1d:eb:5f:48:bd:95:0a:8c: 5d:0d:97:35 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7NY4W8ZJC/OFuTMC6QnAiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTAxMjAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTgzN2ZiY2NkMGRmYjc2MDcyMDcwMmQyNWZmOGNlODc2YWU1NTg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvz1tEGftEJYnGlVX5PCsunW/AgzE 8+71iK5sUnz+HrRmkPeEoOA3zAcwX9LSoEpDpOVu5wwWoVLnSmMtwGWHqzaqDJRM DcrwNSYyzI2A2u/ZEbkSvEHKCEfsOOwQCXpdzIo2EP8p5S5k6GRt6eqpQ0HCj2iT 8mjsHVuNNJc5qsB6YNslS3ycpMs2vBqd1ktoxOI+Lxt2kgvpWy643Esji5UJp9UF +ttai8b02HAdLtT4UO4qP6qyv59rdjNSMCp0MH/5wMM6iqY1Cvh6MJBKIzVRa6Ec nLDzeRXMqz15SC/82ik8PB+jIulOvYDI789Fz1r/VnA+HPS4VnerYa351wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLmDf7zNDft2ByBwLSX/jOh2rlWEMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvdVlOX3ZNME4tM1lISUhBdEpmLU02SGF1VllRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhRnwQBw MA0GCSqGSIb3DQEBCwUAA4IBAQCLn/Xa1ZxLXlzADOpErPiaTMtDjFTo8VnrRixF 8v3uaWTiA/CGcnQifjLRySbpjnTK0U+eX1KE5o1hIdoKuTT6cATNTZLrtmXxeIRo 1LxHUrzk9IH+SqH7lkXKF89yY9S0BmSTLuxWN3zTUmuYkcQNQV5oafx+iTp7HFeC hioDFyJyV50QuA6eVFx4bRoMyUDlMAT12dxDDPoj9+nTvNmCWwzFkvzSzBk9zPtN kUrE7eRpyx0+GDBp7AWHID4VWq744aRPohXqq0C7KjL326PpRQ9Pwh23Rtns7ib5 i0L/j5WcQiuLzhoQviLjAi0Kg8MAzWdlHetfSL2VCoxdDZc1 -----END CERTIFICATE-----Generated at Sun Jan 25 12:06:33 2026 by rpki-client