This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/2b729f-08a7-4c93-8bc9-815c5f2765d0/1/PPUFqBGUCmFmWCrlXoGH2AYfPuA.roa File: PPUFqBGUCmFmWCrlXoGH2AYfPuA.roa (raw, json) Hash identifier: L84g/xVBfxnI/AptpcgCwWfGsHlR8ZydiW8GLseCEig= Subject key identifier: 3C:F5:05:A8:11:94:0A:61:66:58:2A:E5:5E:81:87:D8:06:1F:3E:E0 Certificate issuer: /CN=ea880bcc302a5dba2c351a6fd39e0a8b3922a535 Certificate serial: 019B79ED2FD868646A8E40A52EE0D68AC542 Authority key identifier: EA:88:0B:CC:30:2A:5D:BA:2C:35:1A:6F:D3:9E:0A:8B:39:22:A5:35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6ogLzDAqXbosNRpv054KizkipTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/2b729f-08a7-4c93-8bc9-815c5f2765d0/1/PPUFqBGUCmFmWCrlXoGH2AYfPuA.roa Signing time: Thu 01 Jan 2026 14:19:05 +0000 ROA not before: Thu 01 Jan 2026 14:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25421 IP address blocks: 193.35.248.0/22 maxlen: 22 193.35.248.0/24 maxlen: 24 193.35.249.0/24 maxlen: 24 193.35.250.0/24 maxlen: 24 193.35.252.0/22 maxlen: 22 193.35.252.0/24 maxlen: 24 193.35.253.0/24 maxlen: 24 193.35.254.0/24 maxlen: 24 193.35.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/2b729f-08a7-4c93-8bc9-815c5f2765d0/1/6ogLzDAqXbosNRpv054KizkipTU.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/2b729f-08a7-4c93-8bc9-815c5f2765d0/1/6ogLzDAqXbosNRpv054KizkipTU.mft rsync://rpki.ripe.net/repository/DEFAULT/6ogLzDAqXbosNRpv054KizkipTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:2f:d8:68:64:6a:8e:40:a5:2e:e0:d6:8a:c5:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea880bcc302a5dba2c351a6fd39e0a8b3922a535 Validity Not Before: Jan 1 14:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3cf505a811940a6166582ae55e8187d8061f3ee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a8:10:ef:d9:8d:4f:c5:e8:2b:a1:54:45:b9: aa:a0:53:c4:c4:a1:b7:76:4c:81:62:92:7b:db:0b: ff:fe:4f:5e:49:d2:30:1a:f0:f1:b4:15:91:d4:72: 06:ab:fd:ea:f1:b1:9c:57:a7:04:06:a2:e4:d7:01: 19:25:4a:4a:16:88:be:94:ee:53:b1:28:ba:d6:d4: 37:eb:b3:2d:36:87:8f:b0:5b:20:ac:b0:4d:94:f5: 28:a3:c7:90:1c:32:65:dc:d6:50:d2:17:64:5a:8b: 1a:16:cd:1a:e1:9a:22:0c:38:e5:57:b7:f0:06:3f: b3:ba:15:70:a5:7a:36:f5:e6:c3:b5:1a:c1:55:09: 54:81:bd:13:64:6f:67:cf:54:c2:f9:2b:a3:08:1e: 50:28:67:11:cf:aa:79:ec:62:19:61:c2:cb:07:9e: 0a:47:36:9d:68:68:8f:0d:5b:ac:f4:ba:7c:b6:e6: 3a:b1:77:84:48:6d:3e:20:6d:c9:04:e0:ab:d0:47: 24:38:64:15:52:1d:70:03:13:ec:8d:6a:a6:df:51: 0b:3c:99:41:f2:2b:fd:1d:a8:0c:6d:6c:0c:34:c6: cc:1b:b4:5f:9d:88:85:96:6f:d3:a1:28:95:ce:f3: fc:0f:af:f7:96:ea:9f:44:46:dc:21:11:e5:35:e1: 3a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F5:05:A8:11:94:0A:61:66:58:2A:E5:5E:81:87:D8:06:1F:3E:E0 X509v3 Authority Key Identifier: keyid:EA:88:0B:CC:30:2A:5D:BA:2C:35:1A:6F:D3:9E:0A:8B:39:22:A5:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6ogLzDAqXbosNRpv054KizkipTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/2b729f-08a7-4c93-8bc9-815c5f2765d0/1/PPUFqBGUCmFmWCrlXoGH2AYfPuA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/2b729f-08a7-4c93-8bc9-815c5f2765d0/1/6ogLzDAqXbosNRpv054KizkipTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.35.248.0/21 Signature Algorithm: sha256WithRSAEncryption 49:86:83:a6:73:34:03:f6:dc:94:8a:08:d6:6e:ff:b9:7c:81: 9e:e2:63:2b:99:87:17:be:6d:42:04:bd:6f:df:0e:02:be:78: 40:e2:a3:02:2a:46:a5:02:cb:1f:9f:84:2d:0e:bb:3d:b1:fc: 15:a9:9a:62:7f:46:ca:53:af:69:30:f7:b7:e1:27:af:c5:c2: 91:06:cb:40:32:58:33:18:f6:56:32:10:be:f2:18:71:c7:29: 00:55:b2:df:2c:3a:a5:03:45:1d:96:52:4a:54:e5:55:1b:4c: c0:21:6d:de:ab:d6:4a:77:a7:0d:58:64:e3:73:79:8c:2e:e8: f0:f0:7f:1c:4d:49:a1:cc:e0:59:0a:89:1d:32:26:21:9d:7b: a4:a4:ee:6a:29:0f:ec:22:91:34:33:25:47:00:55:31:eb:81: c8:d3:90:24:7b:3b:c7:1f:2a:22:fb:95:04:87:7c:3e:5a:b1: b4:a0:a7:34:08:6b:24:27:c1:a5:94:38:56:34:75:f1:c3:91: 1b:b9:e3:bd:1d:ac:38:12:e4:9d:67:23:ed:f0:0e:76:b7:08: 89:e6:e7:74:7d:5c:e7:59:c5:d8:b4:66:df:f7:43:e6:3a:5e: d8:47:30:6e:a3:41:0a:e3:ef:e6:85:56:29:a3:9e:6d:b5:47: 64:96:89:78 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57S/YaGRqjkClLuDWisVCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhODgwYmNjMzAyYTVkYmEyYzM1MWE2ZmQzOWUwYThiMzky MmE1MzUwHhcNMjYwMTAxMTQxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzY2Y1MDVhODExOTQwYTYxNjY1ODJhZTU1ZTgxODdkODA2MWYzZWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6gQ79mNT8XoK6FURbmqoFPExKG3 dkyBYpJ72wv//k9eSdIwGvDxtBWR1HIGq/3q8bGcV6cEBqLk1wEZJUpKFoi+lO5T sSi61tQ367MtNoePsFsgrLBNlPUoo8eQHDJl3NZQ0hdkWosaFs0a4ZoiDDjlV7fw Bj+zuhVwpXo29ebDtRrBVQlUgb0TZG9nz1TC+SujCB5QKGcRz6p57GIZYcLLB54K RzadaGiPDVus9Lp8tuY6sXeESG0+IG3JBOCr0EckOGQVUh1wAxPsjWqm31ELPJlB 8iv9HagMbWwMNMbMG7RfnYiFlm/ToSiVzvP8D6/3luqfREbcIRHlNeE6FwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDz1BagRlAphZlgq5V6Bh9gGHz7gMB8GA1UdIwQY MBaAFOqIC8wwKl26LDUab9OeCos5IqU1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNm9nTHpEQXFYYm9zTlJwdjA1NEtpemtpcFRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8yYjcyOWYtMDhhNy00YzkzLThiYzkt ODE1YzVmMjc2NWQwLzEvUFBVRnFCR1VDbUZtV0NybFhvR0gyQVlmUHVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8yYjcyOWYtMDhhNy00YzkzLThiYzktODE1YzVmMjc2NWQw LzEvNm9nTHpEQXFYYm9zTlJwdjA1NEtpemtpcFRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwSP4MA0G CSqGSIb3DQEBCwUAA4IBAQBJhoOmczQD9tyUigjWbv+5fIGe4mMrmYcXvm1CBL1v 3w4CvnhA4qMCKkalAssfn4QtDrs9sfwVqZpif0bKU69pMPe34SevxcKRBstAMlgz GPZWMhC+8hhxxykAVbLfLDqlA0UdllJKVOVVG0zAIW3eq9ZKd6cNWGTjc3mMLujw 8H8cTUmhzOBZCokdMiYhnXukpO5qKQ/sIpE0MyVHAFUx64HI05AkezvHHyoi+5UE h3w+WrG0oKc0CGskJ8GllDhWNHXxw5EbueO9Haw4EuSdZyPt8A52twiJ5ud0fVzn WcXYtGbf90PmOl7YRzBuo0EK4+/mhVYpo55ttUdklol4 -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:56 2026 by rpki-client