This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/068J9u-9DPhKz8VbAm8FpNPGPiY.roa File: 068J9u-9DPhKz8VbAm8FpNPGPiY.roa (raw, json) Hash identifier: +esb9M5j9IV22LJzyQWkhthxawZuVqPAoDThaS1QtUo= Subject key identifier: D3:AF:09:F6:EF:BD:0C:F8:4A:CF:C5:5B:02:6F:05:A4:D3:C6:3E:26 Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6 Certificate serial: 019B7F80C3617DE63A073C7E7AA8F7298D0B Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/068J9u-9DPhKz8VbAm8FpNPGPiY.roa Signing time: Fri 02 Jan 2026 16:18:23 +0000 ROA not before: Fri 02 Jan 2026 16:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211440 IP address blocks: 185.65.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.mft rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 17:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:80:c3:61:7d:e6:3a:07:3c:7e:7a:a8:f7:29:8d:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6 Validity Not Before: Jan 2 16:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d3af09f6efbd0cf84acfc55b026f05a4d3c63e26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ea:a2:63:4d:ab:f9:64:ae:32:05:0d:a0:69: f1:4b:0c:47:cb:0b:a1:12:33:00:69:26:b2:b0:ff: d1:7b:a5:86:dc:b4:b5:67:35:0f:42:43:66:5d:09: 5b:24:82:fd:e1:9b:83:13:56:4d:a0:30:02:2a:c4: 68:4a:49:bb:87:76:d1:05:3a:e7:2b:b0:8c:0d:7c: e8:88:16:19:09:33:1f:c2:b6:39:fb:25:93:d6:a1: 51:0f:e9:ee:81:d1:7f:82:4b:b3:fa:38:1b:29:8b: 05:be:a2:8e:4b:42:30:09:05:f5:9c:37:f2:2f:33: a9:d9:2c:fe:5b:fa:ee:f3:8b:31:fa:8e:2c:4f:c3: cf:9b:de:0d:e2:71:c6:c7:01:69:b3:51:0a:15:4c: 47:84:b3:96:f2:e3:8c:1a:88:d2:48:c6:b6:68:0a: c4:81:07:07:cc:51:02:cb:ec:92:5b:72:ea:ec:6f: d7:76:f2:8f:1e:6f:01:40:81:68:c6:3f:d0:9a:b3: 6b:b9:a6:fb:2c:d1:9f:1c:80:e7:8b:e6:40:04:81: fc:0f:40:ad:c5:bb:1e:93:0c:7e:c3:a7:dc:2c:bd: 68:cc:d6:8a:1d:05:41:b1:f8:46:b6:4d:64:ee:ce: 09:58:34:d9:0c:a0:be:09:cf:7b:60:c7:da:ce:2d: 13:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AF:09:F6:EF:BD:0C:F8:4A:CF:C5:5B:02:6F:05:A4:D3:C6:3E:26 X509v3 Authority Key Identifier: keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/068J9u-9DPhKz8VbAm8FpNPGPiY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.65.63.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:0c:00:03:16:80:f2:81:31:e7:8a:5a:00:fc:5a:ef:d3:ec: 7c:6d:7e:0b:46:c8:1d:1b:3b:f6:f5:02:3b:dc:98:0b:14:8a: 5e:7a:3a:01:a2:f7:92:ce:f6:3a:90:a0:fe:3f:6f:96:97:36: 62:1b:38:64:90:a8:8a:99:96:ce:68:be:3b:6e:28:4d:f8:02: f9:e4:36:2a:4c:b3:d8:11:0a:37:50:32:44:be:18:ac:eb:43: f8:c6:93:f4:3b:1d:29:1a:ed:8f:31:68:68:fe:8c:08:64:9a: 14:0b:0e:66:f9:d8:7a:11:33:72:77:09:99:3a:4d:e6:b2:38: 8b:cf:c1:63:91:5f:6c:3e:42:78:48:70:86:db:2c:e7:21:37: fb:90:1f:b0:23:6b:84:38:5b:3f:e9:eb:81:54:4a:54:8b:cd: 2d:a7:af:7a:b0:76:24:07:e8:b3:b4:fc:a2:01:2d:08:90:ee: a1:48:55:8e:12:7f:4d:de:ec:ca:0b:b2:f6:0f:7b:85:8a:f5: 52:2c:f5:67:82:44:c4:29:2f:1f:a5:8e:4e:ac:01:c4:15:fb: 53:5f:be:77:e9:0c:72:d4:c8:c7:d4:21:eb:78:bf:9c:38:39: 24:fa:63:47:6e:cf:13:20:93:88:f4:be:d0:a9:ab:c5:6c:d9: d8:03:42:4b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gMNhfeY6Bzx+eqj3KY0LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmNzVlNGU5NGI1Y2I3NDUxN2I3YjAxNTY4MDE1ZGE5ZTZl ZWNkYjYwHhcNMjYwMTAyMTYxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkM2FmMDlmNmVmYmQwY2Y4NGFjZmM1NWIwMjZmMDVhNGQzYzYzZTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+qiY02r+WSuMgUNoGnxSwxHywuh EjMAaSaysP/Re6WG3LS1ZzUPQkNmXQlbJIL94ZuDE1ZNoDACKsRoSkm7h3bRBTrn K7CMDXzoiBYZCTMfwrY5+yWT1qFRD+nugdF/gkuz+jgbKYsFvqKOS0IwCQX1nDfy LzOp2Sz+W/ru84sx+o4sT8PPm94N4nHGxwFps1EKFUxHhLOW8uOMGojSSMa2aArE gQcHzFECy+ySW3Lq7G/XdvKPHm8BQIFoxj/QmrNruab7LNGfHIDni+ZABIH8D0Ct xbsekwx+w6fcLL1ozNaKHQVBsfhGtk1k7s4JWDTZDKC+Cc97YMfazi0TkwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNOvCfbvvQz4Ss/FWwJvBaTTxj4mMB8GA1UdIwQY MBaAFG915OlLXLdFF7ewFWgBXanm7s22MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjNYazZVdGN0MFVYdDdBVmFBRmRxZWJ1emJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi81N2EzNGYtZTMzYi00ZTE3LWJjMzIt NjY0NTc3MjRjMmQzLzEvMDY4Sjl1LTlEUGhLejhWYkFtOEZwTlBHUGlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi81N2EzNGYtZTMzYi00ZTE3LWJjMzItNjY0NTc3MjRjMmQz LzEvYjNYazZVdGN0MFVYdDdBVmFBRmRxZWJ1emJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUE/MA0G CSqGSIb3DQEBCwUAA4IBAQB6DAADFoDygTHniloA/Frv0+x8bX4LRsgdGzv29QI7 3JgLFIpeejoBoveSzvY6kKD+P2+WlzZiGzhkkKiKmZbOaL47bihN+AL55DYqTLPY EQo3UDJEvhis60P4xpP0Ox0pGu2PMWho/owIZJoUCw5m+dh6ETNydwmZOk3msjiL z8FjkV9sPkJ4SHCG2yznITf7kB+wI2uEOFs/6euBVEpUi80tp696sHYkB+iztPyi AS0IkO6hSFWOEn9N3uzKC7L2D3uFivVSLPVngkTEKS8fpY5OrAHEFftTX7536Qxy 1MjH1CHreL+cODkk+mNHbs8TIJOI9L7QqavFbNnYA0JL -----END CERTIFICATE-----Generated at Mon Jan 19 23:20:32 2026 by rpki-client