This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gp68bSkHmFibYR6TG22NCtwrsQI.roa File: gp68bSkHmFibYR6TG22NCtwrsQI.roa (raw, json) Hash identifier: AxCsv2/lu3lCPZ4u95foSyMgfpb571BC5GWxvIhXWZg= Subject key identifier: 82:9E:BC:6D:29:07:98:58:9B:61:1E:93:1B:6D:8D:0A:DC:2B:B1:02 Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019B7C12F1CE93936024EFA701F0FF8D2AF4 Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gp68bSkHmFibYR6TG22NCtwrsQI.roa Signing time: Fri 02 Jan 2026 00:19:34 +0000 ROA not before: Fri 02 Jan 2026 00:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208111 IP address blocks: 89.106.64.0/24 maxlen: 24 185.13.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 14:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:f1:ce:93:93:60:24:ef:a7:01:f0:ff:8d:2a:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Jan 2 00:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=829ebc6d290798589b611e931b6d8d0adc2bb102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:41:74:ff:06:da:30:e1:fe:61:66:ae:5a:39: fc:d3:b0:41:e6:5a:33:2c:61:90:1e:aa:36:1d:68: 16:f4:8c:f2:05:42:e9:45:c5:70:a6:90:4b:ca:9c: 81:5f:3a:7e:c8:92:5d:42:2c:06:29:6c:d7:eb:87: f4:de:07:42:a9:ef:61:4a:5b:27:88:3c:78:4b:61: a1:b9:a9:d7:5b:33:62:69:48:11:e8:41:58:4c:b3: 62:84:f7:cd:41:0b:ef:32:ee:df:f2:63:2a:0d:57: 48:72:84:d6:94:5c:57:5b:ab:22:f8:91:bb:d0:ce: f7:03:25:93:0d:42:85:4c:4d:23:2c:1b:f9:58:a1: 83:2f:7d:fc:56:02:fe:68:4c:47:eb:94:43:6a:bc: 51:b3:c7:4d:01:7e:30:78:2b:41:76:45:a9:79:76: 7b:5e:fc:f3:4a:55:d5:0e:af:2f:79:1f:5e:d2:7b: 82:17:5c:e9:8c:1b:32:56:c3:57:61:07:91:32:82: e3:b7:61:49:f6:52:cb:20:61:ea:0b:93:ba:14:a8: 60:5e:ac:32:a6:eb:0a:d0:c1:67:5c:a7:93:6d:32: 6f:14:0f:a1:76:56:0e:e1:b8:a4:95:b4:af:4f:af: f9:01:b6:ed:96:f3:10:96:3c:a3:6c:f1:97:7b:ac: 82:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:9E:BC:6D:29:07:98:58:9B:61:1E:93:1B:6D:8D:0A:DC:2B:B1:02 X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gp68bSkHmFibYR6TG22NCtwrsQI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.106.64.0/24 185.13.156.0/24 Signature Algorithm: sha256WithRSAEncryption 30:81:bd:d4:f7:f5:4e:00:38:c1:27:76:5b:77:70:05:de:14: 75:81:0b:fa:80:e8:bb:b6:a3:15:4f:d2:69:99:18:48:5e:48: 55:30:ee:7f:81:c3:ef:46:47:75:d8:08:7d:e0:9b:6c:d7:5c: 5b:85:fa:54:be:6b:4c:c7:74:a9:be:69:b0:2a:35:ad:27:cf: 31:11:ab:b0:b5:12:c4:32:21:d2:fa:0f:d4:37:ce:b4:d5:0c: 64:ad:7e:b8:5a:61:53:e6:0a:1e:03:b7:ea:41:7c:c6:0d:84: ce:73:a2:64:84:59:de:57:3c:8e:b4:f5:ed:ab:fb:b0:14:42: 53:af:0d:4f:e0:c8:76:b2:50:a3:b2:b4:01:c5:67:88:9b:7d: ba:fa:49:69:bf:44:be:ca:39:ab:2d:90:a3:5f:3d:f9:f5:51: ef:4e:d7:f5:92:0f:5e:ca:8a:0c:76:bc:b2:45:de:97:e0:c4: 4f:e0:36:c1:13:a2:74:33:e0:5f:c0:23:84:dd:68:11:21:95: b6:b8:e8:17:60:21:27:16:9e:18:12:17:82:12:3b:87:75:5e: 67:eb:5e:4a:3c:37:37:29:8e:6a:1a:62:39:94:e9:33:de:bb: b4:4e:28:47:f5:78:fe:93:47:37:c4:46:ba:41:21:56:90:72: 0f:ff:35:17 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EvHOk5NgJO+nAfD/jSr0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjYwMTAyMDAxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MjllYmM2ZDI5MDc5ODU4OWI2MTFlOTMxYjZkOGQwYWRjMmJiMTAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00F0/wbaMOH+YWauWjn807BB5loz LGGQHqo2HWgW9IzyBULpRcVwppBLypyBXzp+yJJdQiwGKWzX64f03gdCqe9hSlsn iDx4S2GhuanXWzNiaUgR6EFYTLNihPfNQQvvMu7f8mMqDVdIcoTWlFxXW6si+JG7 0M73AyWTDUKFTE0jLBv5WKGDL338VgL+aExH65RDarxRs8dNAX4weCtBdkWpeXZ7 XvzzSlXVDq8veR9e0nuCF1zpjBsyVsNXYQeRMoLjt2FJ9lLLIGHqC5O6FKhgXqwy pusK0MFnXKeTbTJvFA+hdlYO4biklbSvT6/5AbbtlvMQljyjbPGXe6yCqQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIKevG0pB5hYm2EekxttjQrcK7ECMB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvZ3A2OGJTa0htRmliWVI2VEcyMk5DdHdyc1FJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWWpAAwQA uQ2cMA0GCSqGSIb3DQEBCwUAA4IBAQAwgb3U9/VOADjBJ3Zbd3AF3hR1gQv6gOi7 tqMVT9JpmRhIXkhVMO5/gcPvRkd12Ah94Jts11xbhfpUvmtMx3SpvmmwKjWtJ88x EauwtRLEMiHS+g/UN8601QxkrX64WmFT5goeA7fqQXzGDYTOc6JkhFneVzyOtPXt q/uwFEJTrw1P4Mh2slCjsrQBxWeIm326+klpv0S+yjmrLZCjXz359VHvTtf1kg9e yooMdryyRd6X4MRP4DbBE6J0M+BfwCOE3WgRIZW2uOgXYCEnFp4YEheCEjuHdV5n 615KPDc3KY5qGmI5lOkz3ru0TihH9Xj+k0c3xEa6QSFWkHIP/zUX -----END CERTIFICATE-----Generated at Mon Jan 19 19:57:16 2026 by rpki-client