This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/uiUA9rFzwCVmpldaL_1DuqAC0i0.roa File: uiUA9rFzwCVmpldaL_1DuqAC0i0.roa (raw, json) Hash identifier: QMavraZU6ZAdGJNTi+1D/li54O+wY6n/ksAu33IS/8c= Subject key identifier: BA:25:00:F6:B1:73:C0:25:66:A6:57:5A:2F:FD:43:BA:A0:02:D2:2D Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Certificate serial: 019B76EACF32F7D046BE29B161522CC4B59B Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/uiUA9rFzwCVmpldaL_1DuqAC0i0.roa Signing time: Thu 01 Jan 2026 00:17:38 +0000 ROA not before: Thu 01 Jan 2026 00:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207432 IP address blocks: 2a0f:5ec0::/29 maxlen: 36 2a0f:7fc0::/29 maxlen: 36 2a0f:edc0::/29 maxlen: 36 2a0f:fb40::/29 maxlen: 36 2a11:3a80::/29 maxlen: 37 2a11:6600::/29 maxlen: 36 2a11:6780::/29 maxlen: 37 2a11:6880::/29 maxlen: 37 2a11:6980::/29 maxlen: 37 2a11:6c00::/29 maxlen: 36 2a11:a680::/29 maxlen: 37 2a11:d400::/29 maxlen: 36 2a12:3c80::/29 maxlen: 36 2a12:e4c0::/29 maxlen: 36 2a13:3a80::/29 maxlen: 36 2a13:3e80::/29 maxlen: 36 2a13:4680::/29 maxlen: 36 2a13:64c0::/29 maxlen: 36 2a13:6540::/29 maxlen: 36 2a13:6840::/29 maxlen: 36 2a13:68c0::/29 maxlen: 36 2a13:69c0::/29 maxlen: 36 2a13:6a40::/29 maxlen: 36 2a13:6ac0::/29 maxlen: 36 2a13:6bc0::/29 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:cf:32:f7:d0:46:be:29:b1:61:52:2c:c4:b5:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Validity Not Before: Jan 1 00:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba2500f6b173c02566a6575a2ffd43baa002d22d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:72:dd:b5:49:47:7b:ab:33:28:1b:43:54:8a: 2a:95:53:13:89:05:28:45:5a:b7:2d:35:3d:55:84: 23:07:f6:aa:6c:7d:c8:41:d7:6d:b8:9d:f2:1a:1c: d9:ec:c5:2f:ab:74:77:78:64:9a:ba:2c:15:40:19: 85:9f:76:3a:f2:04:b7:f7:c8:f0:63:6e:3d:d2:ed: 82:09:5a:92:ec:d2:8b:0d:49:e7:ae:8c:5d:33:6a: 66:19:61:43:63:e5:e7:c3:44:af:94:9c:fc:04:f9: 35:99:b8:1b:d5:3b:61:b5:6d:76:75:6a:b6:c9:d8: 1b:f4:e7:de:dc:33:fd:df:3b:32:4d:85:e1:bb:a0: f4:d8:9e:71:21:dc:ad:0d:de:ac:cb:28:8a:ba:cd: e3:cf:d7:71:5f:d6:2c:5a:68:d4:c8:a6:57:b1:87: 19:de:2d:8d:91:93:ea:0e:dd:10:e5:35:19:05:1e: b5:d4:b0:6d:52:a1:e1:98:aa:2a:9f:46:6c:f8:e3: a2:15:a0:11:3f:dc:1f:2e:20:ee:e3:d3:af:67:4d: 2d:ce:7c:ba:77:cf:c5:ef:4f:fa:8f:f5:9d:ac:a1: b6:60:6c:47:4c:7b:c4:5f:91:b4:e5:76:2e:ef:c7: 74:3d:84:1e:3c:8c:3e:8e:1e:91:96:08:e9:25:7b: 7e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:25:00:F6:B1:73:C0:25:66:A6:57:5A:2F:FD:43:BA:A0:02:D2:2D X509v3 Authority Key Identifier: keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/uiUA9rFzwCVmpldaL_1DuqAC0i0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:5ec0::/29 2a0f:7fc0::/29 2a0f:edc0::/29 2a0f:fb40::/29 2a11:3a80::/29 2a11:6600::/29 2a11:6780::/29 2a11:6880::/29 2a11:6980::/29 2a11:6c00::/29 2a11:a680::/29 2a11:d400::/29 2a12:3c80::/29 2a12:e4c0::/29 2a13:3a80::/29 2a13:3e80::/29 2a13:4680::/29 2a13:64c0::/29 2a13:6540::/29 2a13:6840::/29 2a13:68c0::/29 2a13:69c0::/29 2a13:6a40::/29 2a13:6ac0::/29 2a13:6bc0::/29 Signature Algorithm: sha256WithRSAEncryption 35:5c:39:e2:1c:bf:18:0e:1b:26:bf:b8:14:0d:42:70:07:c8: 71:3d:cd:61:de:f2:d4:d2:68:86:1e:96:b5:78:55:e3:69:86: 98:38:1d:e4:d9:1c:6a:9f:5d:73:3e:ef:32:3b:4c:09:0b:33: c4:69:a7:f5:55:36:bd:d5:23:9d:e6:52:fc:45:d5:85:c9:84: e9:04:dd:94:18:e2:96:d2:eb:5c:a3:fb:d1:62:72:ac:9a:79: 42:f4:0a:87:d7:80:37:0d:e0:34:de:fd:68:6f:83:99:83:3c: 44:5b:bc:19:59:df:22:44:17:6b:a7:ee:f8:1b:b7:f9:64:27: 90:4c:fa:99:1d:e4:db:bf:ba:ee:8c:b2:17:63:eb:03:7e:68: 7c:a9:78:8d:2e:ef:44:54:5e:18:a6:53:f7:a1:32:ea:44:7b: 1b:63:81:34:2a:c5:79:99:b5:3b:14:25:fd:70:45:bb:f2:a5: 1a:10:0d:d2:29:76:db:83:f3:55:8b:ff:b7:e4:13:64:05:75: 29:a7:9a:5b:58:00:08:f7:ea:39:3d:1f:02:30:14:55:8e:2e: 7e:e9:e9:93:f3:42:1b:6c:82:19:03:b4:9b:a0:c0:fb:62:42: 68:59:25:3e:b0:92:77:6b:14:14:51:e9:d3:37:02:5d:f9:06: 67:73:5e:66 -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgISAZt26s8y99BGvimxYVIsxLWbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj Zjk3MDQwHhcNMjYwMTAxMDAxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTI1MDBmNmIxNzNjMDI1NjZhNjU3NWEyZmZkNDNiYWEwMDJkMjJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5XLdtUlHe6szKBtDVIoqlVMTiQUo RVq3LTU9VYQjB/aqbH3IQddtuJ3yGhzZ7MUvq3R3eGSauiwVQBmFn3Y68gS398jw Y2490u2CCVqS7NKLDUnnroxdM2pmGWFDY+Xnw0SvlJz8BPk1mbgb1TthtW12dWq2 ydgb9Ofe3DP93zsyTYXhu6D02J5xIdytDd6syyiKus3jz9dxX9YsWmjUyKZXsYcZ 3i2NkZPqDt0Q5TUZBR611LBtUqHhmKoqn0Zs+OOiFaARP9wfLiDu49OvZ00tzny6 d8/F70/6j/WdrKG2YGxHTHvEX5G05XYu78d0PYQePIw+jh6RlgjpJXt+UQIDAQAB o4ICtzCCArMwHQYDVR0OBBYEFLolAPaxc8AlZqZXWi/9Q7qgAtItMB8GA1UdIwQY MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct ZTg2MTIxYzU5NGRmLzEvdWlVQTlyRnp3Q1ZtcGxkYUxfMUR1cUFDMGkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHMBggrBgEFBQcBBwEB/wSBvDCBuTCBtgQCAAIwga8DBQMq D17AAwUDKg9/wAMFAyoP7cADBQMqD/tAAwUDKhE6gAMFAyoRZgADBQMqEWeAAwUD KhFogAMFAyoRaYADBQMqEWwAAwUDKhGmgAMFAyoR1AADBQMqEjyAAwUDKhLkwAMF AyoTOoADBQMqEz6AAwUDKhNGgAMFAyoTZMADBQMqE2VAAwUDKhNoQAMFAyoTaMAD BQMqE2nAAwUDKhNqQAMFAyoTasADBQMqE2vAMA0GCSqGSIb3DQEBCwUAA4IBAQA1 XDniHL8YDhsmv7gUDUJwB8hxPc1h3vLU0miGHpa1eFXjaYaYOB3k2Rxqn11zPu8y O0wJCzPEaaf1VTa91SOd5lL8RdWFyYTpBN2UGOKW0utco/vRYnKsmnlC9AqH14A3 DeA03v1ob4OZgzxEW7wZWd8iRBdrp+74G7f5ZCeQTPqZHeTbv7rujLIXY+sDfmh8 qXiNLu9EVF4YplP3oTLqRHsbY4E0KsV5mbU7FCX9cEW78qUaEA3SKXbbg/NVi/+3 5BNkBXUpp5pbWAAI9+o5PR8CMBRVji5+6emT80IbbIIZA7SboMD7YkJoWSU+sJJ3 axQUUenTNwJd+QZnc15m -----END CERTIFICATE-----Generated at Sun Jan 25 07:17:41 2026 by rpki-client