This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/PGUUZM8u8YWCrmYPpZ5UGlkMe7E.roa File: PGUUZM8u8YWCrmYPpZ5UGlkMe7E.roa (raw, json) Hash identifier: vabTxUmDYcjlCjqakgT+rEZSHxdr7LOmZlkCx88W/fM= Subject key identifier: 3C:65:14:64:CF:2E:F1:85:82:AE:66:0F:A5:9E:54:1A:59:0C:7B:B1 Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90 Certificate serial: 019B78A266CCBA3BB1266FBC4CDE581BAC34 Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/PGUUZM8u8YWCrmYPpZ5UGlkMe7E.roa Signing time: Thu 01 Jan 2026 08:17:47 +0000 ROA not before: Thu 01 Jan 2026 08:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208320 IP address blocks: 45.143.108.0/22 maxlen: 22 45.143.108.0/24 maxlen: 24 45.143.109.0/24 maxlen: 24 45.143.110.0/24 maxlen: 24 45.143.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:66:cc:ba:3b:b1:26:6f:bc:4c:de:58:1b:ac:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90 Validity Not Before: Jan 1 08:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3c651464cf2ef18582ae660fa59e541a590c7bb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c9:c3:02:e5:e7:01:69:31:95:4b:72:8a:c8: 01:c6:a5:c9:e7:b7:5d:91:75:11:b9:43:20:af:0e: 12:7b:46:76:d2:2a:7e:f0:a9:49:78:a8:5a:70:19: 8d:be:88:41:37:b7:14:ad:5e:9b:1f:4f:20:c1:90: 48:81:ff:58:b0:33:55:56:86:6a:22:f0:b0:6c:93: 6f:73:a4:b9:90:14:0d:19:a1:a2:99:d3:f2:04:0e: 53:75:ef:d2:0a:91:b5:c0:40:20:e2:19:d1:13:07: 21:f9:e1:98:7d:47:42:5c:43:e9:2b:bf:af:f7:0f: 95:30:69:d9:99:53:54:c5:a6:ba:59:8b:f4:45:5c: 8e:85:f7:40:53:9b:70:cc:f6:6c:09:43:38:8e:46: e6:a9:fc:ee:43:9a:f4:30:83:2e:c3:af:7c:2e:0d: 2f:87:17:9e:39:29:4a:5d:47:b0:45:e1:0d:c0:6c: fb:c7:2b:34:91:e6:34:41:bb:e6:b1:75:72:25:6d: 20:69:5f:87:0e:48:c4:29:60:21:50:09:a0:c7:71: 44:fa:fe:06:92:79:a1:0a:97:10:85:92:bd:41:fe: bd:81:7f:25:a6:96:a4:bd:38:0f:b8:99:7c:28:6b: ce:56:f1:16:0d:f0:51:61:e7:35:cd:df:61:cb:da: 63:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:65:14:64:CF:2E:F1:85:82:AE:66:0F:A5:9E:54:1A:59:0C:7B:B1 X509v3 Authority Key Identifier: keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/PGUUZM8u8YWCrmYPpZ5UGlkMe7E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.108.0/22 Signature Algorithm: sha256WithRSAEncryption 93:a6:ea:97:83:66:3d:6e:e9:d1:0b:48:84:2b:b0:46:f5:bb: 4c:90:9e:30:e3:35:44:2a:70:cd:2a:49:ce:1a:49:a2:86:71: eb:23:03:f6:b0:d3:30:53:2b:8c:66:95:06:1f:35:9b:34:a9: d3:78:f7:9f:8c:88:ec:06:83:80:f2:08:09:94:a0:e4:cc:36: 7c:63:80:9b:69:7a:cb:7e:cb:86:18:4e:e8:3e:49:64:38:f2: fc:cd:b1:da:5c:92:3b:fe:50:8c:1f:29:df:a7:c7:c7:18:aa: 6b:2a:a3:37:ee:f7:5f:a0:08:2d:0d:75:b1:49:d5:ed:ea:86: 56:df:09:6b:73:22:a7:c1:60:07:f9:87:52:e0:34:3b:4f:e8: 47:ed:70:45:28:70:e0:9e:79:21:1a:e8:2e:35:7f:b6:6a:03: 3c:74:89:f8:2a:ae:a1:e9:9d:4a:01:72:72:21:dd:f1:95:9e: b7:7c:cc:7e:b5:3d:f0:37:88:21:c6:91:51:4e:2e:29:28:20: bb:03:e4:38:52:8d:c0:6d:67:b8:bd:70:ef:99:c6:a2:3d:28: 35:4e:e6:bb:b7:10:07:fe:7c:93:85:1d:3a:29:5e:ab:b8:e8: fd:c2:e3:35:e5:f5:cd:aa:51:6b:9c:48:8d:0d:24:fe:1f:a7: 07:07:34:5d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4ombMujuxJm+8TN5YG6w0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNjVhZjY5N2RmMWY2Y2RhZjRjYmJkNjZkZTNkNDNiZWQ4 NjllOTAwHhcNMjYwMTAxMDgxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYzY1MTQ2NGNmMmVmMTg1ODJhZTY2MGZhNTllNTQxYTU5MGM3YmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA38nDAuXnAWkxlUtyisgBxqXJ57dd kXURuUMgrw4Se0Z20ip+8KlJeKhacBmNvohBN7cUrV6bH08gwZBIgf9YsDNVVoZq IvCwbJNvc6S5kBQNGaGimdPyBA5Tde/SCpG1wEAg4hnREwch+eGYfUdCXEPpK7+v 9w+VMGnZmVNUxaa6WYv0RVyOhfdAU5twzPZsCUM4jkbmqfzuQ5r0MIMuw698Lg0v hxeeOSlKXUewReENwGz7xys0keY0QbvmsXVyJW0gaV+HDkjEKWAhUAmgx3FE+v4G knmhCpcQhZK9Qf69gX8lppakvTgPuJl8KGvOVvEWDfBRYec1zd9hy9pjXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDxlFGTPLvGFgq5mD6WeVBpZDHuxMB8GA1UdIwQY MBaAFKplr2l98fbNr0y71m3j1Dvthp6QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcW1XdmFYM3g5czJ2VEx2V2JlUFVPLTJHbnBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8wNDAxOWMtYWQxNy00MjhkLWIzYTIt MWJlMTNiYThkNDU2LzEvUEdVVVpNOHU4WVdDcm1ZUHBaNVVHbGtNZTdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8wNDAxOWMtYWQxNy00MjhkLWIzYTItMWJlMTNiYThkNDU2 LzEvcW1XdmFYM3g5czJ2VEx2V2JlUFVPLTJHbnBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLY9sMA0G CSqGSIb3DQEBCwUAA4IBAQCTpuqXg2Y9bunRC0iEK7BG9btMkJ4w4zVEKnDNKknO GkmihnHrIwP2sNMwUyuMZpUGHzWbNKnTePefjIjsBoOA8ggJlKDkzDZ8Y4CbaXrL fsuGGE7oPklkOPL8zbHaXJI7/lCMHynfp8fHGKprKqM37vdfoAgtDXWxSdXt6oZW 3wlrcyKnwWAH+YdS4DQ7T+hH7XBFKHDgnnkhGuguNX+2agM8dIn4Kq6h6Z1KAXJy Id3xlZ63fMx+tT3wN4ghxpFRTi4pKCC7A+Q4Uo3AbWe4vXDvmcaiPSg1Tua7txAH /nyThR06KV6ruOj9wuM15fXNqlFrnEiNDST+H6cHBzRd -----END CERTIFICATE-----Generated at Mon Feb 9 18:21:48 2026 by rpki-client