This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/qugU-YU09_0FDT14HtVKbauDwCo.roa File: qugU-YU09_0FDT14HtVKbauDwCo.roa (raw, json) Hash identifier: sCz9Bfsw3Cu9Y1hvG+fhFHHYxrkKCeTlVZs128b6wM0= Subject key identifier: AA:E8:14:F9:85:34:F7:FD:05:0D:3D:78:1E:D5:4A:6D:AB:83:C0:2A Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e Certificate serial: 019B77C6800AE45AE9FFC82BF93A315F51D2 Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/qugU-YU09_0FDT14HtVKbauDwCo.roa Signing time: Thu 01 Jan 2026 04:17:36 +0000 ROA not before: Thu 01 Jan 2026 04:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2914 IP address blocks: 84.232.28.0/24 maxlen: 24 88.148.24.0/23 maxlen: 24 88.148.54.0/24 maxlen: 24 88.148.56.0/24 maxlen: 24 88.148.60.0/24 maxlen: 24 88.148.61.0/24 maxlen: 24 88.148.84.0/24 maxlen: 24 94.24.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.mft rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:80:0a:e4:5a:e9:ff:c8:2b:f9:3a:31:5f:51:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e Validity Not Before: Jan 1 04:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aae814f98534f7fd050d3d781ed54a6dab83c02a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:38:cc:bf:1d:3f:3c:fb:25:ff:fa:90:86:9a: 07:e7:66:a4:03:5f:c3:47:1c:12:43:df:32:d3:31: e7:7d:f6:fa:26:d6:a4:bb:01:cc:22:7e:7d:6e:95: 16:d3:36:d5:1f:30:3d:99:28:d8:89:11:30:14:c8: 26:36:37:7e:37:13:73:29:04:bb:41:e3:9e:0f:bd: fc:45:21:a0:69:72:76:65:b0:05:af:44:7a:56:1f: d6:54:22:31:a8:a6:4f:03:23:f4:25:a8:78:9a:48: de:83:68:04:4d:73:bd:a2:93:ba:c3:8c:56:56:62: 7c:93:b5:ea:81:61:bd:a9:fe:09:fa:c2:69:35:37: ce:2b:56:f6:59:52:4a:94:7e:8d:62:43:21:ae:6f: 0b:3b:fa:22:81:5e:3a:b2:00:b3:00:30:7a:cc:c3: 72:ee:ad:db:4c:ef:8e:7f:99:33:c9:40:1d:65:c2: 7c:b5:8d:81:e2:d7:ee:16:ba:e3:d0:41:22:78:cf: 25:f4:57:19:e0:9b:fb:09:7a:bb:d9:dc:95:49:d6: d2:c3:df:d9:25:81:00:3b:1c:70:e5:97:15:f5:96: 68:68:08:54:65:d8:cd:91:25:81:ab:b8:b0:6d:71: 79:e2:44:04:89:39:0d:a9:c5:d3:87:77:2d:d5:16: 35:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E8:14:F9:85:34:F7:FD:05:0D:3D:78:1E:D5:4A:6D:AB:83:C0:2A X509v3 Authority Key Identifier: keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/qugU-YU09_0FDT14HtVKbauDwCo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.232.28.0/24 88.148.24.0/23 88.148.54.0/24 88.148.56.0/24 88.148.60.0/23 88.148.84.0/24 94.24.35.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:dd:20:f4:2e:6a:36:b3:ab:01:8b:67:db:5e:4f:67:3c:45: 6e:2a:51:15:9a:0c:ac:ca:5a:93:76:6e:50:ca:4e:52:bc:2f: f1:51:77:4a:8f:87:36:41:e0:0b:3d:4a:a4:9d:fe:4b:67:1c: 45:b8:6c:0e:2f:7c:3c:bc:c1:6b:64:8b:99:d3:28:28:15:a9: dd:f8:5c:59:51:51:b6:bc:75:8c:7e:8e:43:7a:29:a4:46:86: ab:23:c2:fb:d4:2e:d7:7d:1b:ed:d4:47:8b:70:69:9d:c1:6c: 3e:9d:69:1d:8b:4d:e7:f5:34:0b:f8:bf:c7:14:09:4b:5f:22: bb:06:4f:82:0f:7a:0d:b6:86:36:9e:bf:ef:d6:57:b7:cd:aa: 17:05:af:27:dd:42:3a:51:e7:56:71:63:88:e7:a8:fc:66:1a: d2:ce:4f:23:de:a8:f8:1d:38:55:81:ab:a5:e3:28:6b:10:0b: 30:22:3f:1f:2d:b2:34:06:ef:56:09:08:17:e0:bd:0c:60:e0: ec:49:fa:23:e0:79:9f:af:72:c3:2c:06:95:95:f9:b1:3a:fd: c0:0a:16:e0:00:54:31:b5:01:ac:85:c5:33:46:d8:df:e4:98: 38:b0:75:85:a4:82:d4:16:ab:ad:1a:cd:84:fd:08:5e:9c:00: 22:d9:40:0c -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt3xoAK5Frp/8gr+ToxX1HSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYWYxN2IwMDE1ZGJiN2NkOTkyZjI2Y2RmZjAxYzRlMjYy MGI3M2UwHhcNMjYwMTAxMDQxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYWU4MTRmOTg1MzRmN2ZkMDUwZDNkNzgxZWQ1NGE2ZGFiODNjMDJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2TjMvx0/PPsl//qQhpoH52akA1/D RxwSQ98y0zHnffb6JtakuwHMIn59bpUW0zbVHzA9mSjYiREwFMgmNjd+NxNzKQS7 QeOeD738RSGgaXJ2ZbAFr0R6Vh/WVCIxqKZPAyP0Jah4mkjeg2gETXO9opO6w4xW VmJ8k7XqgWG9qf4J+sJpNTfOK1b2WVJKlH6NYkMhrm8LO/oigV46sgCzADB6zMNy 7q3bTO+Of5kzyUAdZcJ8tY2B4tfuFrrj0EEieM8l9FcZ4Jv7CXq72dyVSdbSw9/Z JYEAOxxw5ZcV9ZZoaAhUZdjNkSWBq7iwbXF54kQEiTkNqcXTh3ct1RY1DQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFKroFPmFNPf9BQ09eB7VSm2rg8AqMB8GA1UdIwQY MBaAFNqvF7ABXbt82ZLybN/wHE4mILc+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAt Y2YwNmQxOTgzYmExLzEvcXVnVS1ZVTA5XzBGRFQxNEh0VktiYXVEd0NvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAtY2YwNmQxOTgzYmEx LzEvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAVOgcAwQB WJQYAwQAWJQ2AwQAWJQ4AwQBWJQ8AwQAWJRUAwQAXhgjMA0GCSqGSIb3DQEBCwUA A4IBAQAr3SD0Lmo2s6sBi2fbXk9nPEVuKlEVmgysylqTdm5Qyk5SvC/xUXdKj4c2 QeALPUqknf5LZxxFuGwOL3w8vMFrZIuZ0ygoFand+FxZUVG2vHWMfo5DeimkRoar I8L71C7XfRvt1EeLcGmdwWw+nWkdi03n9TQL+L/HFAlLXyK7Bk+CD3oNtoY2nr/v 1le3zaoXBa8n3UI6UedWcWOI56j8ZhrSzk8j3qj4HThVgaul4yhrEAswIj8fLbI0 Bu9WCQgX4L0MYODsSfoj4Hmfr3LDLAaVlfmxOv3AChbgAFQxtQGshcUzRtjf5Jg4 sHWFpILUFqutGs2E/QhenAAi2UAM -----END CERTIFICATE-----Generated at Thu Jan 8 00:11:48 2026 by rpki-client