This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/PuWhap-0muVvQV-0BrycJNZtn1s.roa File: PuWhap-0muVvQV-0BrycJNZtn1s.roa (raw, json) Hash identifier: cwkFpse9f5j5nHN/rRZOX3pPvRyqmiPVwVbzwBgvaHU= Subject key identifier: 3E:E5:A1:6A:9F:B4:9A:E5:6F:41:5F:B4:06:BC:9C:24:D6:6D:9F:5B Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9 Certificate serial: 019B984A84353132B96B19B493EDCCB79EC4 Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/PuWhap-0muVvQV-0BrycJNZtn1s.roa Signing time: Wed 07 Jan 2026 11:49:38 +0000 ROA not before: Wed 07 Jan 2026 11:49:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35348 IP address blocks: 85.204.98.0/24 maxlen: 24 89.36.20.0/24 maxlen: 24 89.36.198.0/24 maxlen: 24 89.44.224.0/24 maxlen: 24 89.44.228.0/24 maxlen: 24 89.44.229.0/24 maxlen: 24 89.44.230.0/24 maxlen: 24 89.44.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.mft rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 04:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:98:4a:84:35:31:32:b9:6b:19:b4:93:ed:cc:b7:9e:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9 Validity Not Before: Jan 7 11:49:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3ee5a16a9fb49ae56f415fb406bc9c24d66d9f5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1b:36:41:5f:2a:c7:36:dc:09:ce:1a:a8:50: 10:22:8d:c0:52:30:c9:24:95:db:84:c0:c2:c5:14: 18:4b:99:79:65:5e:bd:13:38:21:c7:6e:f1:08:4d: ff:4b:ee:1d:32:df:97:ed:17:5a:99:13:e2:45:db: 9d:2c:ca:f4:4d:d9:a3:c1:92:4e:a0:9b:83:11:8b: 65:04:c6:4f:8c:2a:81:45:eb:92:ab:7a:c6:f4:58: 08:19:d1:b5:0f:77:5b:3f:b5:60:4c:cd:06:15:9d: ca:f8:f5:2e:e2:e0:d8:3e:cf:a3:b8:8d:53:3d:47: 86:4d:c4:3b:27:90:30:a5:c9:29:65:70:71:66:1c: 0e:aa:52:b0:5f:60:e2:12:87:2c:3e:b0:67:84:a0: f1:ce:21:a3:ed:62:5b:73:21:4d:63:24:73:21:a7: 3f:d9:03:77:a0:61:ca:f1:94:3e:a1:8f:d9:f8:94: 76:8f:3f:c2:ec:67:92:e5:2e:55:b1:d4:28:35:22: a6:77:a6:ec:df:79:e5:46:ad:c9:e1:2f:8c:1e:e4: 0d:89:ff:33:02:f5:32:e6:2c:ae:d4:9c:5d:5b:69: cf:ea:67:ae:50:fb:41:26:3d:c1:4a:13:61:da:09: c7:1f:4e:92:d3:1b:6a:e0:bb:b6:51:ad:e3:c3:6e: bd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E5:A1:6A:9F:B4:9A:E5:6F:41:5F:B4:06:BC:9C:24:D6:6D:9F:5B X509v3 Authority Key Identifier: keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/PuWhap-0muVvQV-0BrycJNZtn1s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.204.98.0/24 89.36.20.0/24 89.36.198.0/24 89.44.224.0/24 89.44.228.0/22 Signature Algorithm: sha256WithRSAEncryption 81:fa:2b:ec:ff:ed:49:ba:77:7d:b4:83:09:3e:7e:9a:a9:45: d5:6d:03:fa:11:6b:7f:90:8c:ef:67:8d:6f:b5:4d:b8:17:2c: 71:5b:b2:d3:ba:c3:d9:c5:fc:f0:98:58:cf:91:e7:d4:db:e8: a8:8b:5d:52:b7:6c:ac:81:e0:ca:2e:f6:22:5e:bc:85:1d:f5: c8:16:5b:94:85:f0:a1:97:c6:d3:b4:7d:2a:ab:a8:60:c6:71: 8a:f1:40:77:59:ea:80:68:6a:ac:da:8f:c8:ba:46:9c:c9:4c: 94:d4:26:14:fd:91:f3:94:e5:1c:a7:e6:64:c7:72:8a:fe:41: ee:b4:67:67:dd:ea:21:34:0a:9b:b7:81:c2:95:53:b9:10:72: 0b:9f:73:1c:6b:73:40:28:7a:28:be:f8:dd:08:26:e8:3b:0f: c5:ad:e9:46:47:0b:05:f9:70:b3:4c:80:f9:22:7e:32:e1:9c: 21:ad:17:58:f4:9f:ad:e6:01:fc:6f:ec:99:32:ce:83:ac:ec: 71:f7:27:4e:e8:d4:18:e3:eb:6c:97:96:d5:05:66:3a:69:47: 3a:f2:fa:b8:26:20:ce:34:04:e6:98:f1:e7:84:39:d5:fe:ff: 10:c3:7c:4f:88:e1:12:fb:9a:b1:17:54:32:a9:66:e1:86:86: 8a:11:0b:12 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZuYSoQ1MTK5axm0k+3Mt57EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlNTg5NTJkMzkzOTM1ZjBkM2JjZTgxNGZkOTE3OGQwNDY5 M2FlYjkwHhcNMjYwMTA3MTE0OTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZWU1YTE2YTlmYjQ5YWU1NmY0MTVmYjQwNmJjOWMyNGQ2NmQ5ZjViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRs2QV8qxzbcCc4aqFAQIo3AUjDJ JJXbhMDCxRQYS5l5ZV69Ezghx27xCE3/S+4dMt+X7RdamRPiRdudLMr0TdmjwZJO oJuDEYtlBMZPjCqBReuSq3rG9FgIGdG1D3dbP7VgTM0GFZ3K+PUu4uDYPs+juI1T PUeGTcQ7J5AwpckpZXBxZhwOqlKwX2DiEocsPrBnhKDxziGj7WJbcyFNYyRzIac/ 2QN3oGHK8ZQ+oY/Z+JR2jz/C7GeS5S5VsdQoNSKmd6bs33nlRq3J4S+MHuQNif8z AvUy5iyu1JxdW2nP6meuUPtBJj3BShNh2gnHH06S0xtq4Lu2Ua3jw269EwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFD7loWqftJrlb0FftAa8nCTWbZ9bMB8GA1UdIwQY MBaAFP5YlS05OTXw07zoFP2ReNBGk665MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUt NWQ0OGI2NWNlNTczLzEvUHVXaGFwLTBtdVZ2UVYtMEJyeWNKTlp0bjFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUtNWQ0OGI2NWNlNTcz LzEvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAVcxiAwQA WSQUAwQAWSTGAwQAWSzgAwQCWSzkMA0GCSqGSIb3DQEBCwUAA4IBAQCB+ivs/+1J und9tIMJPn6aqUXVbQP6EWt/kIzvZ41vtU24FyxxW7LTusPZxfzwmFjPkefU2+io i11St2ysgeDKLvYiXryFHfXIFluUhfChl8bTtH0qq6hgxnGK8UB3WeqAaGqs2o/I ukacyUyU1CYU/ZHzlOUcp+Zkx3KK/kHutGdn3eohNAqbt4HClVO5EHILn3Mca3NA KHoovvjdCCboOw/FrelGRwsF+XCzTID5In4y4ZwhrRdY9J+t5gH8b+yZMs6DrOxx 9ydO6NQY4+tsl5bVBWY6aUc68vq4JiDONATmmPHnhDnV/v8Qw3xPiOES+5qxF1Qy qWbhhoaKEQsS -----END CERTIFICATE-----Generated at Wed Jan 21 10:49:30 2026 by rpki-client