This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/762006-f158-4e5a-b956-7fb6ea89637f/1/B0xeJ6OlptEzuwHkDKb2uLt1U_4.roa File: B0xeJ6OlptEzuwHkDKb2uLt1U_4.roa (raw, json) Hash identifier: 0mnm00N6t5GT0+PQLMuChkiPF3X09nPjo6FNCsIiX9w= Subject key identifier: 07:4C:5E:27:A3:A5:A6:D1:33:BB:01:E4:0C:A6:F6:B8:BB:75:53:FE Certificate issuer: /CN=cd060238d0668d45a041618ac5df767f59a0c4ae Certificate serial: 019B7B361F332BF8FB169A69E88F72CE6394 Authority key identifier: CD:06:02:38:D0:66:8D:45:A0:41:61:8A:C5:DF:76:7F:59:A0:C4:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQYCONBmjUWgQWGKxd92f1mgxK4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/762006-f158-4e5a-b956-7fb6ea89637f/1/B0xeJ6OlptEzuwHkDKb2uLt1U_4.roa Signing time: Thu 01 Jan 2026 20:18:22 +0000 ROA not before: Thu 01 Jan 2026 20:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201618 IP address blocks: 185.68.220.0/23 maxlen: 23 185.68.220.0/24 maxlen: 24 185.68.221.0/24 maxlen: 24 185.68.222.0/23 maxlen: 23 185.68.222.0/24 maxlen: 24 185.68.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/762006-f158-4e5a-b956-7fb6ea89637f/1/zQYCONBmjUWgQWGKxd92f1mgxK4.crl rsync://rpki.ripe.net/repository/DEFAULT/25/762006-f158-4e5a-b956-7fb6ea89637f/1/zQYCONBmjUWgQWGKxd92f1mgxK4.mft rsync://rpki.ripe.net/repository/DEFAULT/zQYCONBmjUWgQWGKxd92f1mgxK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 10:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:1f:33:2b:f8:fb:16:9a:69:e8:8f:72:ce:63:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd060238d0668d45a041618ac5df767f59a0c4ae Validity Not Before: Jan 1 20:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=074c5e27a3a5a6d133bb01e40ca6f6b8bb7553fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7c:f0:b8:b9:ea:3c:c8:75:4e:86:46:cc:78: 3c:31:41:d3:2b:32:0b:2e:06:d5:d0:b3:1d:d6:99: f2:0a:7f:58:47:9a:22:34:9c:95:ef:03:14:d4:fe: 25:93:78:be:d1:37:79:4c:6e:69:6f:0b:7e:a5:38: 35:aa:8c:d2:57:a3:24:a8:83:5b:c7:20:fa:c3:39: eb:98:29:2d:27:ba:0c:1e:01:a3:be:97:a0:17:5b: e0:04:39:41:ac:56:02:c2:67:84:16:69:37:cd:90: 18:0e:27:e5:8e:d6:da:e3:cd:d1:55:92:85:27:04: 58:e2:f5:72:98:1b:21:bb:82:06:f2:58:42:fb:ab: 2a:2d:bd:ff:6d:90:00:a0:39:45:d1:e9:1b:85:bd: 7c:ff:43:cf:34:6b:26:e5:20:4a:b1:12:75:17:17: 39:6f:af:57:a7:d9:ba:0a:52:f5:35:3f:1b:14:eb: 41:79:e3:e4:95:3e:98:f8:d7:65:7d:97:bc:80:cc: 11:9d:8e:f8:c4:da:a5:af:ec:70:fa:68:84:c7:82: aa:2c:46:e6:c4:7b:f6:4a:e7:f5:e4:f2:6e:e7:eb: 5f:8c:10:03:ad:e1:a2:a2:ae:2d:47:a1:17:df:38: e5:e6:3a:31:85:f9:44:b0:29:d0:83:53:25:90:35: 41:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:4C:5E:27:A3:A5:A6:D1:33:BB:01:E4:0C:A6:F6:B8:BB:75:53:FE X509v3 Authority Key Identifier: keyid:CD:06:02:38:D0:66:8D:45:A0:41:61:8A:C5:DF:76:7F:59:A0:C4:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQYCONBmjUWgQWGKxd92f1mgxK4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/762006-f158-4e5a-b956-7fb6ea89637f/1/B0xeJ6OlptEzuwHkDKb2uLt1U_4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/762006-f158-4e5a-b956-7fb6ea89637f/1/zQYCONBmjUWgQWGKxd92f1mgxK4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.68.220.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:73:32:73:4f:e8:14:c3:96:d7:e1:c5:31:a4:16:66:87:a6: 05:75:f6:a7:f1:e4:34:32:79:20:32:97:f1:50:ba:30:9d:2e: 53:87:38:48:0a:70:ba:a3:e7:a2:50:6f:8f:c9:4a:ee:fc:01: 11:3e:28:25:f1:57:6a:1e:42:83:ae:12:f4:38:29:51:e6:85: 4f:dd:a9:91:16:cc:7c:f0:99:8c:df:39:a4:4f:42:41:9f:a1: b4:db:0b:be:e6:80:47:9d:b2:38:aa:1c:f3:4c:ed:28:ce:6f: 27:6d:4b:e5:76:18:8a:7d:da:c4:14:23:a8:e2:f1:57:3e:ca: b1:40:d1:50:34:1a:e3:49:b2:d4:53:9a:26:70:34:b0:7c:47: 4e:11:df:47:d4:51:1d:ba:d5:ca:bd:ef:69:0c:2a:f9:60:09: 7f:81:c0:f8:9f:a6:4e:74:d9:61:1d:de:a9:8e:93:e2:be:00: 49:1d:be:21:5f:da:4f:f8:6f:8a:1b:5d:af:fc:ec:6b:5e:9b: 59:ae:cc:f5:46:29:99:da:97:34:dc:52:19:2d:c3:63:a4:a8: 62:c1:f9:c9:0f:29:31:89:76:ac:90:3a:e5:e7:5d:56:7b:51: 2a:50:d5:d8:d7:26:38:b7:73:0f:bc:17:44:0b:12:9b:5f:f2: 3c:c0:a3:7e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Nh8zK/j7Fppp6I9yzmOUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMDYwMjM4ZDA2NjhkNDVhMDQxNjE4YWM1ZGY3NjdmNTlh MGM0YWUwHhcNMjYwMTAxMjAxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNzRjNWUyN2EzYTVhNmQxMzNiYjAxZTQwY2E2ZjZiOGJiNzU1M2ZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3zwuLnqPMh1ToZGzHg8MUHTKzIL LgbV0LMd1pnyCn9YR5oiNJyV7wMU1P4lk3i+0Td5TG5pbwt+pTg1qozSV6MkqINb xyD6wznrmCktJ7oMHgGjvpegF1vgBDlBrFYCwmeEFmk3zZAYDifljtba483RVZKF JwRY4vVymBshu4IG8lhC+6sqLb3/bZAAoDlF0ekbhb18/0PPNGsm5SBKsRJ1Fxc5 b69Xp9m6ClL1NT8bFOtBeePklT6Y+NdlfZe8gMwRnY74xNqlr+xw+miEx4KqLEbm xHv2Suf15PJu5+tfjBADreGioq4tR6EX3zjl5joxhflEsCnQg1MlkDVB+QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAdMXiejpabRM7sB5Aym9ri7dVP+MB8GA1UdIwQY MBaAFM0GAjjQZo1FoEFhisXfdn9ZoMSuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelFZQ09OQm1qVVdnUVdHS3hkOTJmMW1neEs0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS83NjIwMDYtZjE1OC00ZTVhLWI5NTYt N2ZiNmVhODk2MzdmLzEvQjB4ZUo2T2xwdEV6dXdIa0RLYjJ1THQxVV80LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS83NjIwMDYtZjE1OC00ZTVhLWI5NTYtN2ZiNmVhODk2Mzdm LzEvelFZQ09OQm1qVVdnUVdHS3hkOTJmMW1neEs0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuUTcMA0G CSqGSIb3DQEBCwUAA4IBAQA9czJzT+gUw5bX4cUxpBZmh6YFdfan8eQ0MnkgMpfx ULownS5ThzhICnC6o+eiUG+PyUru/AERPigl8VdqHkKDrhL0OClR5oVP3amRFsx8 8JmM3zmkT0JBn6G02wu+5oBHnbI4qhzzTO0ozm8nbUvldhiKfdrEFCOo4vFXPsqx QNFQNBrjSbLUU5omcDSwfEdOEd9H1FEdutXKve9pDCr5YAl/gcD4n6ZOdNlhHd6p jpPivgBJHb4hX9pP+G+KG12v/OxrXptZrsz1RimZ2pc03FIZLcNjpKhiwfnJDykx iXaskDrl511We1EqUNXY1yY4t3MPvBdECxKbX/I8wKN+ -----END CERTIFICATE-----Generated at Wed Jan 21 16:15:45 2026 by rpki-client