This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63023.roa File: AS63023.roa (raw, json) Hash identifier: EVHuTVlEYbJ1zp/jfgH35Ba7kl5NS7Rbar8ys7k/SD4= Subject key identifier: 72:00:64:2E:12:E9:30:26:CC:53:1F:83:9A:EE:F9:FD:64:17:B5:B5 Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 68CFD5018939E9F18EBAB14F27D516C3809E2647 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63023.roa Signing time: Fri 02 Jan 2026 15:18:20 +0000 ROA not before: Fri 02 Jan 2026 15:13:20 +0000 ROA not after: Fri 01 Jan 2027 15:18:20 +0000 asID: 63023 IP address blocks: 96.62.77.0/24 maxlen: 24 96.62.100.0/24 maxlen: 24 143.14.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:cf:d5:01:89:39:e9:f1:8e:ba:b1:4f:27:d5:16:c3:80:9e:26:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Jan 2 15:13:20 2026 GMT Not After : Jan 1 15:18:20 2027 GMT Subject: CN=7200642E12E93026CC531F839AEEF9FD6417B5B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:3d:a4:47:98:b8:06:33:64:99:e2:ca:af:22: 67:4b:07:23:c2:16:52:23:26:8d:44:45:88:ac:d1: 2d:c2:86:92:ca:61:f6:83:f2:6d:31:2f:5b:aa:74: 95:2e:74:34:bd:01:bb:52:69:b0:f2:d4:28:30:35: e7:3c:08:6a:46:a9:2b:2b:61:c7:c4:23:4e:d2:87: 25:19:b0:52:63:e8:f2:d1:34:89:32:3b:23:9c:80: dd:c3:a3:97:9d:78:88:8f:d8:49:cf:b3:a8:c5:86: b4:c7:8e:f8:06:af:f5:76:ce:76:42:9d:5f:de:66: e9:0e:c3:77:ec:8b:88:7d:df:be:2c:cb:0d:d1:ab: a0:14:3f:53:b6:ca:b4:00:bd:8e:27:d8:27:0b:4c: da:15:3f:7c:72:13:ed:d5:68:de:c3:d9:73:7a:a7: ae:e8:a5:3b:34:b5:5a:02:55:1b:8a:40:0a:62:b7: 73:b9:c6:fd:bd:8c:8a:1b:db:ca:02:34:70:25:c2: 9a:31:be:7c:12:5d:7f:d8:3f:ae:c6:21:9d:95:ee: 64:78:eb:ae:9a:ee:62:fb:dd:02:27:18:56:0f:fa: 9e:e0:dc:b7:fa:4e:e1:6e:93:9a:00:c3:07:66:e0: 6c:41:af:fc:84:91:e1:c6:30:50:09:0f:9d:97:11: 05:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:00:64:2E:12:E9:30:26:CC:53:1F:83:9A:EE:F9:FD:64:17:B5:B5 X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS63023.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.77.0/24 96.62.100.0/24 143.14.67.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:66:bb:a9:2d:f0:07:13:15:c2:33:6a:68:98:94:79:0f:52: 01:92:6f:f2:b0:9a:af:4f:76:0a:3d:7e:b4:a3:a6:72:61:51: b1:e1:f2:7b:b7:c5:be:c7:8e:b4:f7:9f:11:a6:a2:0f:94:32: ec:a9:4b:4f:01:3c:ef:11:b6:c2:75:44:ef:f4:33:c9:3e:b4: f9:40:93:5f:f8:95:0f:c1:6a:1a:53:dc:e1:14:af:48:a2:87: 69:7c:65:d2:0d:df:07:37:ab:a5:a0:79:91:69:00:5b:c0:00: 5e:ee:ba:b5:cb:88:b8:d8:ea:2e:fc:36:20:54:6a:cc:7b:96: d3:1e:c4:18:97:23:12:56:55:35:60:fe:dc:2e:98:b1:73:69: 0f:2f:52:77:c7:12:78:bf:84:55:e8:33:6f:2c:75:14:c6:71: 91:68:fa:e3:b0:ac:ad:7d:ec:58:20:bb:f6:d5:6a:d8:f3:61: 1d:4b:b0:61:07:ca:ab:35:fc:9e:5a:6e:cb:ee:47:d1:88:d4: e7:d8:55:a8:8f:ef:50:9e:83:db:9d:f9:d8:15:be:25:ef:76: 22:5c:1e:4a:f3:d6:3a:18:6d:33:08:23:d0:d5:4a:15:dd:28: d9:99:f7:ec:1a:12:1f:d7:6f:df:b1:f0:6d:7b:ef:23:ae:3c: f4:f3:7a:4d -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUaM/VAYk56fGOurFPJ9UWw4CeJkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNjAxMDIxNTEzMjBaFw0yNzAxMDExNTE4MjBaMDMxMTAvBgNV BAMTKDcyMDA2NDJFMTJFOTMwMjZDQzUzMUY4MzlBRUVGOUZENjQxN0I1QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhPaRHmLgGM2SZ4sqvImdLByPC FlIjJo1ERYis0S3ChpLKYfaD8m0xL1uqdJUudDS9AbtSabDy1CgwNec8CGpGqSsr YcfEI07ShyUZsFJj6PLRNIkyOyOcgN3Do5edeIiP2EnPs6jFhrTHjvgGr/V2znZC nV/eZukOw3fsi4h9374syw3Rq6AUP1O2yrQAvY4n2CcLTNoVP3xyE+3VaN7D2XN6 p67opTs0tVoCVRuKQApit3O5xv29jIob28oCNHAlwpoxvnwSXX/YP67GIZ2V7mR4 666a7mL73QInGFYP+p7g3Lf6TuFuk5oAwwdm4GxBr/yEkeHGMFAJD52XEQVlAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUcgBkLhLpMCbMUx+Dmu75/WQXtbUwHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNjMwMjMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBABgPk0D BABgPmQDBACPDkMwDQYJKoZIhvcNAQELBQADggEBAJtmu6kt8AcTFcIzamiYlHkP UgGSb/Kwmq9Pdgo9frSjpnJhUbHh8nu3xb7HjrT3nxGmog+UMuypS08BPO8RtsJ1 RO/0M8k+tPlAk1/4lQ/BahpT3OEUr0iih2l8ZdIN3wc3q6WgeZFpAFvAAF7uurXL iLjY6i78NiBUasx7ltMexBiXIxJWVTVg/twumLFzaQ8vUnfHEni/hFXoM28sdRTG cZFo+uOwrK197Fggu/bVatjzYR1LsGEHyqs1/J5absvuR9GI1OfYVaiP71Ceg9ud +dgVviXvdiJcHkrz1joYbTMII9DVShXdKNmZ9+waEh/Xb9+x8G177yOuPPTzek0= -----END CERTIFICATE-----Generated at Sun Jan 25 07:28:29 2026 by rpki-client